$ rpki-client -vvf repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3131322e37382e34302e302f32312d3234203d3e203435333032.roa File: 3131322e37382e34302e302f32312d3234203d3e203435333032.roa (raw, json) Hash identifier: f1VIuzKgq4/WdJQnFtlJrbI0Gkgs2LFwI27YfGp+Zhk= Subject key identifier: 5E:9E:F7:EC:61:DE:28:1A:D6:96:A7:CF:65:33:8E:C7:F3:BB:F5:F7 Certificate issuer: /CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Certificate serial: 1D40641F2762C2E0412F07A055F65CC47143A7A4 Authority key identifier: 19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3131322e37382e34302e302f32312d3234203d3e203435333032.roa Signing time: Mon 31 Jul 2023 00:07:26 +0000 ROA not before: Mon 31 Jul 2023 00:02:26 +0000 ROA not after: Mon 29 Jul 2024 00:07:26 +0000 asID: 45302 IP address blocks: 112.78.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:40:64:1f:27:62:c2:e0:41:2f:07:a0:55:f6:5c:c4:71:43:a7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Validity Not Before: Jul 31 00:02:26 2023 GMT Not After : Jul 29 00:07:26 2024 GMT Subject: CN=5E9EF7EC61DE281AD696A7CF65338EC7F3BBF5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c1:f9:2f:6f:4b:81:c7:e1:4a:26:9f:91:34: c8:fe:89:b7:9c:e3:b9:2a:11:ca:a7:93:50:86:24: 0e:c2:13:79:2d:ac:7e:cc:cd:95:14:a2:c8:80:0b: 9f:f7:2f:cd:22:af:04:0d:40:3a:32:e6:e5:9f:cf: 43:16:cc:58:f4:5e:44:31:3f:90:dd:52:da:2d:74: 94:d6:73:1a:ca:7d:90:ab:e8:6c:48:79:04:62:38: b5:13:50:89:ae:13:32:4d:cf:c7:fc:7a:65:50:04: 60:b6:39:00:a5:2d:7f:69:d6:3c:70:35:50:be:55: c8:00:d1:bd:8b:54:62:eb:d9:a0:46:97:ef:b1:a9: 0a:d1:87:83:2d:56:7b:59:89:f2:34:35:ec:d9:88: 23:20:4f:69:89:33:35:b0:58:36:07:10:92:13:55: e9:9d:bd:19:d7:ee:d8:d2:7c:06:bb:f6:93:66:36: e1:2d:21:4a:cf:cf:a7:ad:a9:16:8c:5f:f0:56:72: 60:7d:b9:39:da:69:fd:94:ea:69:77:c0:d1:58:69: 07:e3:fa:6d:bb:c3:c0:10:4f:89:f0:18:3e:7b:de: 95:0c:7f:ad:4f:71:ef:a8:b0:6b:fa:d6:8d:0d:11: 4e:d1:bf:ea:ee:ca:c9:e0:fd:5b:c0:2b:12:57:db: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9E:F7:EC:61:DE:28:1A:D6:96:A7:CF:65:33:8E:C7:F3:BB:F5:F7 X509v3 Authority Key Identifier: keyid:19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3131322e37382e34302e302f32312d3234203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.78.40.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:eb:2b:95:c3:b2:be:97:50:c0:9e:47:73:e8:a7:52:b4:f7: cc:60:68:ef:85:65:ea:4e:de:80:2e:73:93:fb:f0:b1:ab:45: 1e:fd:db:c2:7b:2a:78:87:0b:be:9f:88:28:ce:ef:ac:f4:18: e4:4a:1d:34:54:35:af:6f:fb:d5:4d:ea:47:61:e9:31:58:2d: 31:21:0c:97:e8:8d:10:e5:22:49:e5:15:61:51:b2:26:1b:43: 62:8e:c2:6d:4d:20:fa:cf:be:c5:bf:74:73:23:1f:03:0b:70: 48:ed:ee:c0:93:fb:5a:2a:81:8b:d1:73:55:fb:35:60:e6:67: 00:39:3c:52:aa:10:93:ed:c3:2b:4b:d9:6c:ea:2b:08:dd:03: 7f:8c:7f:9d:ad:08:1b:81:a7:2e:3a:e4:e1:6e:96:72:85:c8: fc:1f:2c:88:de:ba:4b:8a:8c:27:a7:f3:e2:06:ea:76:5b:7a: 88:dc:a6:b2:5a:52:b6:ef:8b:30:bb:ca:03:b7:06:d2:1b:b5: bd:de:df:00:e2:83:af:aa:5f:cd:e0:a1:53:a8:3c:4b:47:36: 6f:a3:77:2f:b3:57:9f:c6:01:ea:45:fc:61:bf:e3:89:c3:7e: 8b:c7:7c:d6:5f:ad:a3:e1:03:07:41:45:ee:29:65:35:bc:1d: ca:4c:a3:c4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHUBkHydiwuBBLwegVfZcxHFDp6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4 N0U2NUMzQzAeFw0yMzA3MzEwMDAyMjZaFw0yNDA3MjkwMDA3MjZaMDMxMTAvBgNV BAMTKDVFOUVGN0VDNjFERTI4MUFENjk2QTdDRjY1MzM4RUM3RjNCQkY1RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9wfkvb0uBx+FKJp+RNMj+ibec 47kqEcqnk1CGJA7CE3ktrH7MzZUUosiAC5/3L80irwQNQDoy5uWfz0MWzFj0XkQx P5DdUtotdJTWcxrKfZCr6GxIeQRiOLUTUImuEzJNz8f8emVQBGC2OQClLX9p1jxw NVC+VcgA0b2LVGLr2aBGl++xqQrRh4MtVntZifI0NezZiCMgT2mJMzWwWDYHEJIT VemdvRnX7tjSfAa79pNmNuEtIUrPz6etqRaMX/BWcmB9uTnaaf2U6ml3wNFYaQfj +m27w8AQT4nwGD573pUMf61Pce+osGv61o0NEU7Rv+ruysng/VvAKxJX284BAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXp737GHeKBrWlqfPZTOOx/O79fcwHwYDVR0j BBgwFoAUGaGW9eW6ujGSbFru9E/BY4fmXDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Yjg4NThlMC1lY2YwLTRlNTMtYTQ5MC0zYjdjMmRlMTY5M2MvMC8xOUExOTZGNUU1 QkFCQTMxOTI2QzVBRUVGNDRGQzE2Mzg3RTY1QzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4N0U2 NUMzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMxMzEzMjJlMzczODJlMzQzMDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDM0MzUzMzMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANwTigwDQYJKoZIhvcN AQELBQADggEBAHvrK5XDsr6XUMCeR3Pop1K098xgaO+FZepO3oAuc5P78LGrRR79 28J7KniHC76fiCjO76z0GORKHTRUNa9v+9VN6kdh6TFYLTEhDJfojRDlIknlFWFR siYbQ2KOwm1NIPrPvsW/dHMjHwMLcEjt7sCT+1oqgYvRc1X7NWDmZwA5PFKqEJPt wytL2WzqKwjdA3+Mf52tCBuBpy465OFulnKFyPwfLIjeukuKjCen8+IG6nZbeojc prJaUrbvizC7ygO3BtIbtb3e3wDig6+qX83goVOoPEtHNm+jdy+zV5/GAepF/GG/ 44nDfovHfNZfraPhAwdBRe4pZTW8HcpMo8Q= -----END CERTIFICATE-----Generated at Sun Jun 2 00:22:04 2024 by rpki-client on console-fra.rpki-client.org