$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e20313338303737.roa File: 3131302e34342e3137302e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: aq3iMOcZU4XVOFPAPd2Nh3J2J2xxy7ZZYh4S2cWkrJY= Subject key identifier: 36:F6:FC:55:F6:17:0F:67:22:D6:EA:5F:F4:7D:07:1A:ED:3C:5B:4C Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 20E4222ADFE4EEDA190CAA227341A4EE8C90262F Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e20313338303737.roa Signing time: Wed 27 Nov 2024 06:14:40 +0000 ROA not before: Wed 27 Nov 2024 06:09:40 +0000 ROA not after: Wed 26 Nov 2025 06:14:40 +0000 asID: 138077 IP address blocks: 110.44.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e4:22:2a:df:e4:ee:da:19:0c:aa:22:73:41:a4:ee:8c:90:26:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Nov 27 06:09:40 2024 GMT Not After : Nov 26 06:14:40 2025 GMT Subject: CN=36F6FC55F6170F6722D6EA5FF47D071AED3C5B4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f3:c0:18:c2:c1:b5:6e:53:7a:55:ce:db:6e: 19:da:36:d7:1e:7b:d3:8c:65:9b:e4:0b:1d:88:b3: 44:23:1a:a3:f5:f2:8d:cb:80:d3:52:3f:ba:4b:cb: 73:ab:a7:f7:2c:33:9c:6f:70:f9:92:32:22:ef:4b: 1c:81:89:b1:60:48:20:5f:3c:04:39:01:2f:1a:7d: 00:a8:d5:69:f5:16:54:2f:68:af:cb:1d:08:63:e5: b2:88:cf:5e:be:7c:d1:62:99:df:8c:f1:4c:5b:80: 59:99:a1:bd:15:f8:99:19:ed:fe:f8:42:2c:72:0c: 40:b8:f9:d7:ea:f2:a2:1d:a8:de:49:63:36:99:72: ab:15:c6:fc:8c:1e:0f:ad:87:e8:1f:e2:35:9b:74: 42:77:5d:8d:d2:91:00:af:ad:9e:d7:19:b4:9f:63: 06:a9:b2:5c:4b:9d:56:0b:66:b6:82:43:f9:62:75: 2f:52:3b:7f:c3:e1:ff:76:95:52:ee:80:ac:7b:c6: 65:b5:9d:4a:5d:14:bb:fc:ef:2f:7c:e3:3e:e8:b3: e6:3c:ac:50:cc:1a:07:e5:31:4a:c4:2f:84:e7:85: 2d:87:b6:23:18:c6:a1:b4:ae:9e:c8:2c:a7:b6:d7: e6:83:fb:84:09:89:94:20:e6:04:c9:b0:27:a8:64: fd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F6:FC:55:F6:17:0F:67:22:D6:EA:5F:F4:7D:07:1A:ED:3C:5B:4C X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.170.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:41:56:a4:ca:c9:29:cd:c2:b9:e5:26:89:3f:9a:e7:8d:2a: 38:39:86:1f:da:b4:0c:64:ed:1a:9a:22:68:00:99:1d:8d:35: 4f:14:6c:23:b2:a0:c4:57:61:4d:74:35:9a:2c:d3:2e:77:15: ec:fb:0b:87:db:95:51:b8:dc:cd:33:4c:c4:6c:0f:85:7a:fd: fb:4d:75:2a:ba:39:8e:76:d9:3c:de:9a:0e:5a:f2:22:1c:86: f3:c6:6a:3d:d9:90:1c:24:29:78:c8:66:6c:f3:bd:28:95:41: e6:51:e4:ae:e5:39:44:76:a4:93:1a:3d:ac:36:9c:fb:72:a8: 45:a6:0c:13:79:a1:2f:1c:1b:00:12:db:9c:43:d3:a3:03:9e: e4:5e:5a:fb:47:25:c6:f9:c3:04:04:fe:db:ab:a3:20:78:28: 4b:13:34:e9:58:a2:f9:bd:71:89:4b:4e:ff:0c:11:4d:31:d1: 3d:06:bd:f5:da:fa:f6:01:0b:50:55:7e:fc:e6:f3:0a:00:d5: a3:4d:34:81:4f:ba:28:e2:3f:ca:73:db:53:5b:1d:df:11:d8: c5:8b:ea:af:7d:7c:78:4f:a9:25:51:ea:8e:35:41:f4:7b:c1: 60:d9:3d:5e:b9:fd:c1:65:2f:92:56:8f:9a:71:b5:75:db:b1: 83:0b:83:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIOQiKt/k7toZDKoic0Gk7oyQJi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDExMjcwNjA5NDBaFw0yNTExMjYwNjE0NDBaMDMxMTAvBgNV BAMTKDM2RjZGQzU1RjYxNzBGNjcyMkQ2RUE1RkY0N0QwNzFBRUQzQzVCNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC988AYwsG1blN6Vc7bbhnaNtce e9OMZZvkCx2Is0QjGqP18o3LgNNSP7pLy3Orp/csM5xvcPmSMiLvSxyBibFgSCBf PAQ5AS8afQCo1Wn1FlQvaK/LHQhj5bKIz16+fNFimd+M8UxbgFmZob0V+JkZ7f74 QixyDEC4+dfq8qIdqN5JYzaZcqsVxvyMHg+th+gf4jWbdEJ3XY3SkQCvrZ7XGbSf YwapslxLnVYLZraCQ/lidS9SO3/D4f92lVLugKx7xmW1nUpdFLv87y984z7os+Y8 rFDMGgflMUrEL4TnhS2HtiMYxqG0rp7ILKe21+aD+4QJiZQg5gTJsCeoZP11AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNvb8VfYXD2ci1upf9H0HGu08W0wwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbiyqMA0GCSqG SIb3DQEBCwUAA4IBAQCcQVakyskpzcK55SaJP5rnjSo4OYYf2rQMZO0amiJoAJkd jTVPFGwjsqDEV2FNdDWaLNMudxXs+wuH25VRuNzNM0zEbA+Fev37TXUqujmOdtk8 3poOWvIiHIbzxmo92ZAcJCl4yGZs870olUHmUeSu5TlEdqSTGj2sNpz7cqhFpgwT eaEvHBsAEtucQ9OjA57kXlr7RyXG+cMEBP7bq6MgeChLEzTpWKL5vXGJS07/DBFN MdE9Br312vr2AQtQVX785vMKANWjTTSBT7oo4j/Kc9tTWx3fEdjFi+qvfXx4T6kl UeqONUH0e8Fg2T1euf3BZS+SVo+acbV127GDC4N5 -----END CERTIFICATE-----Generated at Sat Apr 5 21:32:28 2025 by rpki-client