$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32312d3234203d3e203338313635.roa File: 3131342e33302e38382e302f32312d3234203d3e203338313635.roa (raw, json) Hash identifier: SFojNmnKp/0N+MqkT5hdYHIqsHchvdgociP0kwi0lY8= Subject key identifier: 3D:42:2F:13:39:C6:AD:B9:D1:C8:D8:36:1A:E9:97:B6:61:CB:0D:A7 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 44FFE6146D40BFE018024EF575413BFD05AEF5C8 Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32312d3234203d3e203338313635.roa Signing time: Thu 10 Aug 2023 01:00:00 +0000 ROA not before: Thu 10 Aug 2023 00:55:00 +0000 ROA not after: Thu 08 Aug 2024 01:00:00 +0000 asID: 38165 IP address blocks: 114.30.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ff:e6:14:6d:40:bf:e0:18:02:4e:f5:75:41:3b:fd:05:ae:f5:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Aug 10 00:55:00 2023 GMT Not After : Aug 8 01:00:00 2024 GMT Subject: CN=3D422F1339C6ADB9D1C8D8361AE997B661CB0DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a2:c2:4b:fe:0d:81:6e:26:c8:81:b3:73:ec: 32:00:e7:46:3c:0b:35:af:5d:ed:e9:4e:33:40:9f: 36:1a:d0:45:61:38:f2:35:cb:fc:28:bd:c4:67:83: 5f:4c:86:61:3d:23:15:ac:82:f6:ec:67:eb:f9:cc: 07:96:8e:7e:c9:90:ee:0a:a7:a4:77:3a:66:57:56: 84:97:09:07:b8:84:f3:31:3f:5e:99:ff:66:3e:3d: af:c8:4d:59:24:1f:11:86:92:fc:60:bf:38:8a:31: 38:cd:25:99:b8:34:10:a5:c7:97:42:8e:10:b2:93: 3f:8a:25:3e:e9:b6:c9:c9:83:82:97:0c:1f:2a:fe: 84:dd:13:4f:aa:ce:d2:3e:86:16:29:64:4c:9f:da: 91:fd:6f:cb:2e:33:aa:67:15:b1:06:60:1b:c0:7d: 02:85:8a:da:59:6c:26:d8:c3:ea:ee:c4:52:a6:b9: 6f:6c:80:b7:14:80:63:24:a3:8c:74:e8:99:f1:49: 06:ed:7c:26:0c:db:3d:57:44:37:55:06:6a:9a:7b: 9c:c4:e5:80:dd:16:e4:92:99:d3:af:81:9c:19:e0: a3:4f:01:fe:c4:bc:e9:fa:87:0f:26:7f:0a:57:65: 3f:8e:1b:fc:c7:df:c8:17:4d:93:be:60:34:5e:e9: 52:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:42:2F:13:39:C6:AD:B9:D1:C8:D8:36:1A:E9:97:B6:61:CB:0D:A7 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32312d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.88.0/21 Signature Algorithm: sha256WithRSAEncryption 35:4a:05:55:fb:45:80:f0:ea:bb:2c:a1:0a:9d:df:60:81:35: 03:04:99:7e:ae:8d:e8:99:b0:c3:7f:cf:9d:a4:6b:89:2c:44: be:fc:14:47:e4:87:28:35:90:5e:44:27:36:2e:0d:49:37:83: 3b:a9:8f:01:67:d1:f4:b0:52:1c:f5:9f:ab:79:74:e5:30:b6: 76:09:28:ed:93:31:40:bc:e8:d7:5b:60:3b:89:7b:f5:84:ee: 60:f8:a6:82:c9:c1:47:0b:03:ba:01:19:40:c9:bc:d4:cf:b3: d2:ba:c1:ab:47:bc:de:92:ed:46:ab:f2:e5:50:3a:85:73:9d: 48:8f:5d:b3:09:a3:21:20:97:3f:a8:67:92:4a:64:75:1f:9a: c6:79:e3:2d:60:c5:4b:a5:78:bc:d1:bf:36:20:3d:a2:67:ca: e9:8e:bc:01:7c:e5:49:57:4f:02:c3:62:87:18:09:41:e9:66: 51:7c:c0:f5:fd:44:e3:01:52:43:f8:eb:d2:86:6f:cb:75:ca: 73:9b:80:84:d4:5f:30:95:4b:4f:c9:60:d4:b8:b0:ab:66:7c: e8:fc:f1:61:56:6f:27:fb:db:df:a6:a1:0a:47:03:0a:a5:36: bb:0b:34:7d:4b:db:54:a3:be:32:1a:76:77:bb:1c:70:5b:e6: f3:4b:92:e2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURP/mFG1Av+AYAk71dUE7/QWu9cgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yMzA4MTAwMDU1MDBaFw0yNDA4MDgwMTAwMDBaMDMxMTAvBgNV BAMTKDNENDIyRjEzMzlDNkFEQjlEMUM4RDgzNjFBRTk5N0I2NjFDQjBEQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsosJL/g2BbibIgbNz7DIA50Y8 CzWvXe3pTjNAnzYa0EVhOPI1y/wovcRng19MhmE9IxWsgvbsZ+v5zAeWjn7JkO4K p6R3OmZXVoSXCQe4hPMxP16Z/2Y+Pa/ITVkkHxGGkvxgvziKMTjNJZm4NBClx5dC jhCykz+KJT7ptsnJg4KXDB8q/oTdE0+qztI+hhYpZEyf2pH9b8suM6pnFbEGYBvA fQKFitpZbCbYw+ruxFKmuW9sgLcUgGMko4x06JnxSQbtfCYM2z1XRDdVBmqae5zE 5YDdFuSSmdOvgZwZ4KNPAf7EvOn6hw8mfwpXZT+OG/zH38gXTZO+YDRe6VKFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPUIvEznGrbnRyNg2GumXtmHLDacwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNDJlMzMzMDJlMzgzODJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANyHlgwDQYJKoZIhvcN AQELBQADggEBADVKBVX7RYDw6rssoQqd32CBNQMEmX6ujeiZsMN/z52ka4ksRL78 FEfkhyg1kF5EJzYuDUk3gzupjwFn0fSwUhz1n6t5dOUwtnYJKO2TMUC86NdbYDuJ e/WE7mD4poLJwUcLA7oBGUDJvNTPs9K6watHvN6S7Uar8uVQOoVznUiPXbMJoyEg lz+oZ5JKZHUfmsZ54y1gxUuleLzRvzYgPaJnyumOvAF85UlXTwLDYocYCUHpZlF8 wPX9ROMBUkP469KGb8t1ynObgITUXzCVS0/JYNS4sKtmfOj88WFWbyf729+moQpH AwqlNrsLNH1L21SjvjIadne7HHBb5vNLkuI= -----END CERTIFICATE-----Generated at Fri May 31 10:00:19 2024 by rpki-client on console-ams.rpki-client.org