$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131322e3130392e31362e302f32312d3234203d3e203234353231.roa File: 3131322e3130392e31362e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: LDaXAABLhtl1BhdSQL3gnZp6zYgGd8zbkZKuuXq6sDA= Subject key identifier: F8:61:D3:E8:AC:88:9F:C4:6B:34:52:3A:F5:40:92:81:54:F4:7B:A5 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 2163AA80EB304347015C37CF743C9C6B278AB082 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131322e3130392e31362e302f32312d3234203d3e203234353231.roa Signing time: Mon 01 Jul 2024 01:03:51 +0000 ROA not before: Mon 01 Jul 2024 00:58:51 +0000 ROA not after: Mon 30 Jun 2025 01:03:51 +0000 asID: 24521 IP address blocks: 112.109.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:63:aa:80:eb:30:43:47:01:5c:37:cf:74:3c:9c:6b:27:8a:b0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 1 00:58:51 2024 GMT Not After : Jun 30 01:03:51 2025 GMT Subject: CN=F861D3E8AC889FC46B34523AF540928154F47BA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ea:11:c7:7e:ed:8a:8b:3d:9e:cf:98:50:55: 16:01:8f:a4:b7:0d:f1:e6:24:7a:94:96:40:d6:2d: fe:e1:7c:4b:b2:f6:58:5c:fa:36:f4:e8:bd:0b:11: 95:43:a4:86:9f:ce:78:d7:b3:da:9d:11:45:e6:4e: 1b:1b:7d:2f:b8:b5:62:cf:ae:76:33:28:d6:6d:9d: 53:f1:cc:33:0b:8e:49:25:fb:b3:29:bd:71:73:11: 39:2e:d7:bd:33:07:8e:a8:a9:cb:c0:0b:8a:c1:26: 9b:d1:7a:c7:8e:f2:f9:2a:63:60:b8:c0:1c:fd:11: 31:42:4b:ae:ab:e4:d9:db:68:c5:e9:44:ab:be:2c: f0:63:4a:56:5c:fd:2b:82:93:2f:5b:66:22:21:cb: fb:2b:af:a9:bc:bd:69:f5:d1:b7:ea:03:3f:25:76: 2e:d7:f0:b2:6b:11:57:82:0a:b5:04:6d:1d:79:c4: ee:a6:ea:d4:47:c2:3f:b0:a5:3b:57:24:eb:65:f0: 33:5f:1d:bc:89:8e:07:36:59:f2:8b:fa:d5:33:01: 4c:10:c9:07:53:a7:89:70:e5:03:8c:16:d4:f0:a1: 52:7d:51:54:87:70:60:14:ce:ee:87:6b:35:fe:ff: 8c:cf:52:45:71:25:b3:98:09:32:fe:3d:8f:28:02: 04:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:61:D3:E8:AC:88:9F:C4:6B:34:52:3A:F5:40:92:81:54:F4:7B:A5 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131322e3130392e31362e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.109.16.0/21 Signature Algorithm: sha256WithRSAEncryption c2:57:b7:4b:37:af:28:37:63:3c:8e:38:96:c4:48:22:93:57: dc:0b:da:42:69:03:52:06:af:63:58:f0:b3:3d:44:b3:4b:01: d5:51:5d:ea:0a:f6:2b:b1:58:5b:82:e5:1d:7a:2b:f2:a9:a7: b0:9c:cb:c3:01:18:10:be:4b:7f:ab:a6:af:aa:a8:b6:37:00: 13:a6:ea:87:c9:83:e0:fe:52:ed:f5:de:df:f5:af:2b:c6:88: 09:ab:24:cd:56:fb:ed:30:d1:24:83:92:0e:30:16:01:c1:bf: f5:bd:36:14:15:a8:ce:50:47:a5:ad:50:0c:d4:75:02:42:1d: 00:54:4c:f0:f9:17:46:4a:66:ca:06:9a:89:ba:60:69:4f:b4: 2a:a7:05:dd:0e:0c:3c:00:c5:c3:bd:1b:6f:88:00:ed:79:c5: 55:71:cb:4a:db:33:07:01:78:f3:dc:78:7d:6a:07:0d:be:85: 11:05:0e:f7:2d:af:5c:2b:1f:e8:46:df:7d:52:a2:26:c5:8e: 09:82:65:4e:5a:a6:e6:ce:4e:ca:6f:b6:e7:ce:e4:90:dd:cc: d8:29:43:51:fe:8b:f3:09:3a:26:32:9e:f0:c9:05:7b:0f:8e: d0:d3:06:64:4a:ec:f7:d4:01:85:9f:cb:79:c0:70:a9:41:cf: 24:0a:20:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIWOqgOswQ0cBXDfPdDycayeKsIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDA3MDEwMDU4NTFaFw0yNTA2MzAwMTAzNTFaMDMxMTAvBgNV BAMTKEY4NjFEM0U4QUM4ODlGQzQ2QjM0NTIzQUY1NDA5MjgxNTRGNDdCQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp6hHHfu2Kiz2ez5hQVRYBj6S3 DfHmJHqUlkDWLf7hfEuy9lhc+jb06L0LEZVDpIafznjXs9qdEUXmThsbfS+4tWLP rnYzKNZtnVPxzDMLjkkl+7MpvXFzETku170zB46oqcvAC4rBJpvReseO8vkqY2C4 wBz9ETFCS66r5NnbaMXpRKu+LPBjSlZc/SuCky9bZiIhy/srr6m8vWn10bfqAz8l di7X8LJrEVeCCrUEbR15xO6m6tRHwj+wpTtXJOtl8DNfHbyJjgc2WfKL+tUzAUwQ yQdTp4lw5QOMFtTwoVJ9UVSHcGAUzu6HazX+/4zPUkVxJbOYCTL+PY8oAgSJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+GHT6KyIn8RrNFI69UCSgVT0e6UwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzEzMjJlMzEzMDM5MmUzMTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3BtEDANBgkqhkiG 9w0BAQsFAAOCAQEAwle3SzevKDdjPI44lsRIIpNX3AvaQmkDUgavY1jwsz1Es0sB 1VFd6gr2K7FYW4LlHXor8qmnsJzLwwEYEL5Lf6umr6qotjcAE6bqh8mD4P5S7fXe 3/WvK8aICaskzVb77TDRJIOSDjAWAcG/9b02FBWozlBHpa1QDNR1AkIdAFRM8PkX RkpmygaaibpgaU+0KqcF3Q4MPADFw70bb4gA7XnFVXHLStszBwF489x4fWoHDb6F EQUO9y2vXCsf6EbffVKiJsWOCYJlTlqm5s5Oym+2587kkN3M2ClDUf6L8wk6JjKe 8MkFew+O0NMGZErs99QBhZ/LecBwqUHPJAogFQ== -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:25 2024 by rpki-client on console-fra.rpki-client.org