$ rpki-client -vvf repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa File: 3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa (raw, json) Hash identifier: HzHsb6G/VptBpjVdI2HqEw4hKt5YRLdagmnVZSbOaak= Subject key identifier: FF:5A:4F:F5:9D:4B:D1:06:4F:E7:B6:9B:62:84:D3:45:F7:6A:F7:43 Certificate issuer: /CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Certificate serial: 4DC7647DC8510FD937FA2DAFAB92222B62984889 Authority key identifier: 19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa Signing time: Mon 31 Jul 2023 00:07:26 +0000 ROA not before: Mon 31 Jul 2023 00:02:26 +0000 ROA not after: Mon 29 Jul 2024 00:07:26 +0000 asID: 45302 IP address blocks: 157.119.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 22:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c7:64:7d:c8:51:0f:d9:37:fa:2d:af:ab:92:22:2b:62:98:48:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Validity Not Before: Jul 31 00:02:26 2023 GMT Not After : Jul 29 00:07:26 2024 GMT Subject: CN=FF5A4FF59D4BD1064FE7B69B6284D345F76AF743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:0f:06:d8:09:4e:61:45:be:33:17:c4:01: 1f:4f:68:6a:b8:a0:40:9b:5e:b0:e7:76:d9:1c:18: 41:0b:aa:35:6a:eb:af:cb:6d:a1:0d:ca:5d:e0:b5: 20:ae:22:69:9d:c6:c8:5d:0b:54:20:50:9e:f5:5a: b0:57:93:26:c4:4c:b3:29:2d:7b:f6:f9:3e:f1:70: 45:0a:9f:2e:2a:f7:c4:b7:98:1e:6a:f6:c4:0f:c3: b5:46:de:bc:57:2f:ed:7d:fb:5b:03:99:4a:b6:64: fc:dd:04:bc:47:49:5d:49:91:f9:64:13:44:c7:5d: d4:9a:f3:5a:df:9e:56:91:f6:40:6f:ec:45:ac:15: 3d:d6:f5:2a:39:f4:2c:a1:1a:90:23:d4:0a:07:a3: 42:82:ee:7f:c8:1b:93:f5:f3:9f:97:c8:f8:7a:74: f7:ce:a8:6d:a6:a6:fb:aa:b4:7d:9b:f2:7c:97:2d: dd:e8:c9:44:fb:47:6f:c5:0c:6c:f8:d9:c7:96:6f: 5c:b5:46:58:32:60:f9:89:c9:70:5a:02:f4:9a:ed: 60:de:7b:43:a7:56:b4:d0:3f:f4:b0:f7:54:ab:4b: 7a:13:d6:0e:a2:5d:3e:c9:36:fa:f3:d0:92:0f:78: a2:84:5c:6c:a7:32:68:43:d0:c2:93:84:9c:1b:1e: 2b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5A:4F:F5:9D:4B:D1:06:4F:E7:B6:9B:62:84:D3:45:F7:6A:F7:43 X509v3 Authority Key Identifier: keyid:19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.220.0/22 Signature Algorithm: sha256WithRSAEncryption 35:d1:6e:dc:fc:7f:d0:8b:f8:c8:a4:b7:18:02:8b:1b:70:62: 7f:fa:01:8c:8e:5a:d8:84:b3:56:ea:99:ec:d6:28:31:74:c7: cd:d2:15:5f:12:78:bc:e2:d8:4b:72:8e:e4:24:7f:fa:6f:37: f0:46:f1:1d:d3:4d:27:aa:51:6c:36:c2:6e:94:98:b3:2e:e7: 6e:ce:30:bd:3a:b2:2b:0b:61:cd:38:86:91:de:5c:f5:f6:f0: 24:eb:06:c3:03:dd:65:87:57:72:e7:24:61:51:20:70:1d:2e: fd:ce:13:fe:d1:9a:e7:d8:ad:39:35:8d:0b:d8:de:8a:1a:1e: 2f:12:2a:4a:63:f2:26:d7:a2:33:2d:7f:b4:10:8e:45:99:23: 1c:0f:96:56:63:5a:af:59:cd:fd:46:af:1b:ba:35:96:b8:63: 28:54:78:ec:2d:0b:3f:10:be:17:3e:c8:1b:be:a3:03:dd:db: 69:6f:e8:bd:42:4c:b3:56:84:9d:a0:fe:e6:5b:18:5a:98:cb: 76:38:80:ba:8e:49:9d:e2:74:4d:9e:6b:f3:ce:13:79:70:c4: e3:63:7c:b0:02:66:3d:a2:c3:ca:71:cc:64:be:1d:ef:f3:f1: 3f:f9:7b:62:fd:4a:99:a7:e2:a1:98:d7:4b:6c:a8:96:cc:ca: 2f:38:30:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTcdkfchRD9k3+i2vq5IiK2KYSIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4 N0U2NUMzQzAeFw0yMzA3MzEwMDAyMjZaFw0yNDA3MjkwMDA3MjZaMDMxMTAvBgNV BAMTKEZGNUE0RkY1OUQ0QkQxMDY0RkU3QjY5QjYyODREMzQ1Rjc2QUY3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDDg8G2AlOYUW+MxfEAR9PaGq4 oECbXrDndtkcGEELqjVq66/LbaENyl3gtSCuImmdxshdC1QgUJ71WrBXkybETLMp LXv2+T7xcEUKny4q98S3mB5q9sQPw7VG3rxXL+19+1sDmUq2ZPzdBLxHSV1Jkflk E0THXdSa81rfnlaR9kBv7EWsFT3W9So59CyhGpAj1AoHo0KC7n/IG5P185+XyPh6 dPfOqG2mpvuqtH2b8nyXLd3oyUT7R2/FDGz42ceWb1y1RlgyYPmJyXBaAvSa7WDe e0OnVrTQP/Sw91SrS3oT1g6iXT7JNvrz0JIPeKKEXGynMmhD0MKThJwbHitDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/1pP9Z1L0QZP57abYoTTRfdq90MwHwYDVR0j BBgwFoAUGaGW9eW6ujGSbFru9E/BY4fmXDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Yjg4NThlMC1lY2YwLTRlNTMtYTQ5MC0zYjdjMmRlMTY5M2MvMC8xOUExOTZGNUU1 QkFCQTMxOTI2QzVBRUVGNDRGQzE2Mzg3RTY1QzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4N0U2 NUMzQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMxMzUzNzJlMzEzMTM5MmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzMzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnXfcMA0GCSqG SIb3DQEBCwUAA4IBAQA10W7c/H/Qi/jIpLcYAosbcGJ/+gGMjlrYhLNW6pns1igx dMfN0hVfEni84thLco7kJH/6bzfwRvEd000nqlFsNsJulJizLuduzjC9OrIrC2HN OIaR3lz19vAk6wbDA91lh1dy5yRhUSBwHS79zhP+0Zrn2K05NY0L2N6KGh4vEipK Y/Im16IzLX+0EI5FmSMcD5ZWY1qvWc39Rq8bujWWuGMoVHjsLQs/EL4XPsgbvqMD 3dtpb+i9QkyzVoSdoP7mWxhamMt2OIC6jkmd4nRNnmvzzhN5cMTjY3ywAmY9osPK ccxkvh3v8/E/+Xti/UqZp+KhmNdLbKiWzMovODBf -----END CERTIFICATE-----Generated at Thu Jun 20 17:48:09 2024 by rpki-client on console-fra.rpki-client.org