$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa File: 3131392e38322e3234302e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: 3USXw8ez8RZNEenM7OuFZfO+Brt8ZY4gbUlk5ir/lCI= Subject key identifier: 90:66:46:3A:9A:1C:C9:62:92:15:84:54:54:38:D2:CE:3E:4C:00:93 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 5C01F15E49CA1D495CD3B875245E5F8B49BDC98F Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa Signing time: Mon 01 Jul 2024 01:03:52 +0000 ROA not before: Mon 01 Jul 2024 00:58:52 +0000 ROA not after: Mon 30 Jun 2025 01:03:52 +0000 asID: 24521 IP address blocks: 119.82.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:01:f1:5e:49:ca:1d:49:5c:d3:b8:75:24:5e:5f:8b:49:bd:c9:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 1 00:58:52 2024 GMT Not After : Jun 30 01:03:52 2025 GMT Subject: CN=9066463A9A1CC962921584545438D2CE3E4C0093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5d:7c:52:a0:41:7b:97:88:ea:65:ed:c7:1d: ec:62:37:69:fd:cc:0f:f1:9d:ec:e1:c7:f4:22:21: b5:5f:0c:9c:65:ef:6d:d9:6e:d4:fc:28:15:25:67: fc:51:18:c0:20:57:02:88:00:cb:36:fa:19:50:70: 4b:9a:3b:fa:3f:56:e5:f0:ae:c4:3a:56:7a:ab:e5: d8:ab:5d:cc:0a:bf:cf:85:d3:69:d8:81:d5:62:f2: f6:4e:85:45:41:0d:bf:74:70:a8:25:0b:06:1f:f9: e8:84:47:35:76:3e:74:92:56:5c:9f:6b:3d:9f:b6: c9:59:37:78:57:1d:f7:8e:a5:1e:e8:90:ef:eb:10: 38:25:6e:fe:a8:55:b6:26:16:f3:2c:b7:30:17:6a: f4:7b:71:b8:97:a5:67:02:c8:e3:26:ea:a9:2e:90: 7d:b7:d7:e6:ff:94:a9:b0:43:c4:ce:9e:9b:76:ff: 18:b3:f8:8c:b3:e5:9e:09:3b:ba:3d:89:55:28:09: c4:ef:e3:c3:e6:77:4c:12:95:0d:ad:e8:dc:fa:ff: 2e:4d:b0:91:65:f1:16:20:c1:00:97:6d:3a:d0:97: 2d:3e:f0:6e:f9:f5:c0:e5:84:86:51:29:0a:d5:d3: 20:09:fc:1c:c1:f8:4f:eb:05:7f:5c:56:6a:fe:0b: 56:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:66:46:3A:9A:1C:C9:62:92:15:84:54:54:38:D2:CE:3E:4C:00:93 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.82.240.0/21 Signature Algorithm: sha256WithRSAEncryption 11:ed:8b:78:ac:9a:d8:ee:d6:91:a3:d6:b7:a5:26:71:42:e4: 96:d7:16:8e:6e:d2:26:a7:9d:11:10:80:d6:4b:ca:e3:a0:23: 84:cb:44:35:99:17:c6:49:de:7c:28:9a:f0:9e:b8:fc:3d:cc: 91:5c:30:42:f7:a9:1a:88:a8:be:17:e2:37:1f:c6:91:8b:8d: aa:18:6f:7a:f8:75:75:b5:07:a5:6a:b2:3d:a7:a5:df:9e:2f: 8e:91:d5:54:3f:28:11:38:48:a4:82:b2:03:9c:0f:1e:a3:35: 1c:ae:e3:2a:5a:19:aa:e7:9e:7a:87:34:01:f9:38:0f:5f:d6: fd:16:b1:f0:35:b2:25:bd:e7:db:88:c9:5c:43:21:4a:88:7c: b9:e1:c0:db:74:07:bf:49:40:22:fd:2e:55:b2:18:c7:82:7c: f7:dc:85:cf:c4:30:42:ed:63:ad:c4:46:2e:e2:c6:5a:b5:ac: 54:32:a9:a9:8e:b1:21:37:93:16:f0:60:88:27:c8:db:3e:6b: 51:e6:bf:55:ee:96:95:5c:d8:bc:4b:02:b3:87:1d:2b:a8:20: 39:24:40:44:f4:a1:f5:d6:e0:3a:d3:80:71:ef:be:0d:f6:d4: 5b:9f:9d:4b:23:db:17:a5:d9:81:7f:fc:70:00:81:cd:97:35: 57:b6:c3:ec -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXAHxXknKHUlc07h1JF5fi0m9yY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDA3MDEwMDU4NTJaFw0yNTA2MzAwMTAzNTJaMDMxMTAvBgNV BAMTKDkwNjY0NjNBOUExQ0M5NjI5MjE1ODQ1NDU0MzhEMkNFM0U0QzAwOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOXXxSoEF7l4jqZe3HHexiN2n9 zA/xnezhx/QiIbVfDJxl723ZbtT8KBUlZ/xRGMAgVwKIAMs2+hlQcEuaO/o/VuXw rsQ6Vnqr5dirXcwKv8+F02nYgdVi8vZOhUVBDb90cKglCwYf+eiERzV2PnSSVlyf az2ftslZN3hXHfeOpR7okO/rEDglbv6oVbYmFvMstzAXavR7cbiXpWcCyOMm6qku kH231+b/lKmwQ8TOnpt2/xiz+Iyz5Z4JO7o9iVUoCcTv48Pmd0wSlQ2t6Nz6/y5N sJFl8RYgwQCXbTrQly0+8G759cDlhIZRKQrV0yAJ/BzB+E/rBX9cVmr+C1aDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkGZGOpocyWKSFYRUVDjSzj5MAJMwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzEzOTJlMzgzMjJlMzIzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3dS8DANBgkqhkiG 9w0BAQsFAAOCAQEAEe2LeKya2O7WkaPWt6UmcULkltcWjm7SJqedERCA1kvK46Aj hMtENZkXxknefCia8J64/D3MkVwwQvepGoiovhfiNx/GkYuNqhhvevh1dbUHpWqy Pael354vjpHVVD8oEThIpIKyA5wPHqM1HK7jKloZqueeeoc0Afk4D1/W/Rax8DWy Jb3n24jJXEMhSoh8ueHA23QHv0lAIv0uVbIYx4J899yFz8QwQu1jrcRGLuLGWrWs VDKpqY6xITeTFvBgiCfI2z5rUea/Ve6WlVzYvEsCs4cdK6ggOSRARPSh9dbgOtOA ce++DfbUW5+dSyPbF6XZgX/8cACBzZc1V7bD7A== -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:25 2024 by rpki-client on console-fra.rpki-client.org