$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38312e302f32342d3234203d3e203137373237.roa File: 3131302e33352e38312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 8/dmSv27FMMiSka9b4PtV2t7DqdBbq0gcxUccaIPR68= Subject key identifier: 35:3C:49:18:83:63:90:33:79:86:B3:E5:7B:1B:08:9E:07:62:AD:01 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 125EFDFA013A5876A5F8464043EFBFCA2844E2BF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38312e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:01 +0000 ROA not before: Sun 29 Oct 2023 07:55:01 +0000 ROA not after: Sun 27 Oct 2024 08:00:01 +0000 asID: 17727 IP address blocks: 110.35.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:5e:fd:fa:01:3a:58:76:a5:f8:46:40:43:ef:bf:ca:28:44:e2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:01 2023 GMT Not After : Oct 27 08:00:01 2024 GMT Subject: CN=353C4918836390337986B3E57B1B089E0762AD01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:30:83:ab:54:2d:f0:ca:bc:6a:2f:9e:30: 13:b7:fb:19:b3:b6:29:ed:d0:6a:eb:2a:5e:fd:2f: 59:96:15:b5:7b:6d:e1:31:0a:f3:07:4f:31:ce:66: 4d:bd:54:f6:99:50:ae:b1:93:c8:d6:1b:92:56:ff: 65:63:9c:29:8e:dc:78:cf:25:1a:19:12:52:8e:26: c9:5d:f3:ec:8b:7e:e2:d5:33:b8:94:21:cd:8f:07: 92:31:6f:c7:a7:3d:b4:fb:8d:36:62:a0:92:55:df: f1:a0:0b:aa:07:fe:5b:85:e3:e8:d9:b2:77:e7:ff: 55:b7:ce:14:1b:58:b3:5a:f6:51:fa:a8:a3:68:91: c1:3f:20:40:ef:a9:60:4d:02:31:f0:7a:1e:95:4f: bb:21:0a:7f:eb:0a:eb:59:59:13:8a:e7:6b:40:28: 40:64:39:02:8a:82:1b:c6:44:ae:ad:92:cf:9f:56: 39:83:fa:4c:4b:79:e9:7c:a1:11:f3:e7:da:ef:e7: cb:9d:81:14:ba:3f:20:48:a2:1a:1a:11:6b:df:85: 0e:79:3a:7e:82:c7:81:60:2e:25:2b:d1:1e:31:56: 6c:4c:27:61:49:01:48:8b:2b:e4:9c:cd:d7:c4:67: 6d:a4:58:64:e1:3e:4d:b6:53:e7:87:2b:57:2d:97: e1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3C:49:18:83:63:90:33:79:86:B3:E5:7B:1B:08:9E:07:62:AD:01 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.35.81.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c3:90:4e:e5:6c:fa:c2:90:53:06:b7:07:42:65:a9:2a:90: 95:ef:d5:eb:36:b1:2c:c3:0b:25:aa:b2:d6:8c:3b:06:6f:1a: 7e:53:ea:f4:12:fb:ad:e2:40:e4:5a:d5:7f:f0:eb:b5:a5:bb: 3c:57:aa:bb:3f:34:f1:90:5c:d2:7b:95:08:e2:b5:2b:6b:23: bd:20:7e:14:47:ac:76:38:3f:f9:58:ab:a1:ed:5c:c1:b7:86: 43:28:2c:0d:22:b2:b8:e5:d0:f2:e2:1e:e5:42:53:3b:5f:a2: f1:62:fc:e2:03:f9:a1:36:46:b1:01:43:95:19:31:c2:1d:e4: b6:5e:eb:97:14:f8:53:0d:e4:ee:de:f1:9d:54:06:56:95:41: b0:20:1f:d3:00:22:13:14:a9:57:60:96:b8:8b:11:da:48:37: a2:09:12:10:c9:34:93:e4:14:95:76:4e:6a:21:50:27:0f:16: d4:94:87:dc:48:00:19:36:cc:ba:9f:8c:87:90:d1:e2:d0:b9: 78:75:98:18:77:73:1c:c2:32:96:24:0b:cd:ef:87:06:2a:0f: 74:25:2b:35:b1:80:d4:70:a1:58:d0:69:0d:ce:29:90:ec:cd: 3f:26:d9:94:16:f2:7c:e3:38:50:2c:51:07:d3:65:1f:a3:43: 16:da:60:82 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEl79+gE6WHal+EZAQ++/yihE4r8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDFaFw0yNDEwMjcwODAwMDFaMDMxMTAvBgNV BAMTKDM1M0M0OTE4ODM2MzkwMzM3OTg2QjNFNTdCMUIwODlFMDc2MkFEMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTiDCDq1Qt8Mq8ai+eMBO3+xmz tint0GrrKl79L1mWFbV7beExCvMHTzHOZk29VPaZUK6xk8jWG5JW/2VjnCmO3HjP JRoZElKOJsld8+yLfuLVM7iUIc2PB5Ixb8enPbT7jTZioJJV3/GgC6oH/luF4+jZ snfn/1W3zhQbWLNa9lH6qKNokcE/IEDvqWBNAjHweh6VT7shCn/rCutZWROK52tA KEBkOQKKghvGRK6tks+fVjmD+kxLeel8oRHz59rv58udgRS6PyBIohoaEWvfhQ55 On6Cx4FgLiUr0R4xVmxMJ2FJAUiLK+SczdfEZ22kWGThPk22U+eHK1ctl+HZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNTxJGINjkDN5hrPlexsIngdirQEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzMDJlMzMzNTJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNzMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABuI1EwDQYJKoZIhvcN AQELBQADggEBADrDkE7lbPrCkFMGtwdCZakqkJXv1es2sSzDCyWqstaMOwZvGn5T 6vQS+63iQORa1X/w67WluzxXqrs/NPGQXNJ7lQjitStrI70gfhRHrHY4P/lYq6Ht XMG3hkMoLA0isrjl0PLiHuVCUztfovFi/OID+aE2RrEBQ5UZMcId5LZe65cU+FMN 5O7e8Z1UBlaVQbAgH9MAIhMUqVdglriLEdpIN6IJEhDJNJPkFJV2TmohUCcPFtSU h9xIABk2zLqfjIeQ0eLQuXh1mBh3cxzCMpYkC83vhwYqD3QlKzWxgNRwoVjQaQ3O KZDszT8m2ZQW8nzjOFAsUQfTZR+jQxbaYII= -----END CERTIFICATE-----Generated at Wed May 1 18:10:55 2024 by rpki-client on console-ams.rpki-client.org