$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32342d3234203d3e203234353330.roa File: 3131392e31302e3137362e302f32342d3234203d3e203234353330.roa (raw, json) Hash identifier: kLmEQPQ/od1FdskOnhWMMgPU8rf3JMAMKcmeKR1b8o8= Subject key identifier: 72:8B:3E:04:EE:C5:A2:79:4E:36:55:F1:4A:E9:8B:6A:D2:23:72:D6 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 31633A7CFAE3E568164AA77CA72779612DCAF7DB Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32342d3234203d3e203234353330.roa Signing time: Tue 03 Sep 2024 12:00:02 +0000 ROA not before: Tue 03 Sep 2024 11:55:02 +0000 ROA not after: Tue 02 Sep 2025 12:00:02 +0000 asID: 24530 IP address blocks: 119.10.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:63:3a:7c:fa:e3:e5:68:16:4a:a7:7c:a7:27:79:61:2d:ca:f7:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Sep 3 11:55:02 2024 GMT Not After : Sep 2 12:00:02 2025 GMT Subject: CN=728B3E04EEC5A2794E3655F14AE98B6AD22372D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:77:50:36:89:67:aa:05:91:8c:3d:78:7a:c1: 28:cd:d8:46:20:f6:41:7a:3f:48:4f:1b:02:82:60: d8:fe:9c:93:ed:85:b8:b6:95:b4:e3:a8:46:55:9d: f3:eb:b1:ad:34:46:c0:a3:b5:19:d8:77:e9:a9:40: 56:d4:ed:bd:44:5c:1b:15:bf:e3:91:dd:32:4b:d3: a6:55:2e:8b:e4:a3:03:3c:12:ec:7b:90:61:8d:46: 26:8e:1d:08:0e:fd:0b:01:3a:2b:fa:97:83:f0:c6: 37:9b:82:91:0f:4b:12:ad:c1:b4:52:51:c1:e2:0f: e4:9d:6c:a4:10:c1:e3:79:7b:ff:8f:b5:01:0f:89: 6f:94:04:f9:02:65:79:da:7a:72:76:11:75:5b:d0: 97:60:51:1a:5a:18:b5:5a:88:15:00:e0:6d:d8:e8: 50:50:2b:02:28:60:45:44:8b:db:83:1e:8c:b1:6f: e7:a8:0e:9c:fc:3c:d2:0d:03:c3:ec:e2:ba:b2:ed: 17:52:d4:da:c1:50:56:79:4f:28:dc:65:50:8e:43: 76:11:b3:c1:a2:82:6b:5b:13:a6:0c:91:56:9a:f9: 55:02:85:b7:71:30:68:1a:0b:93:e2:18:f6:09:d4: 73:ef:00:73:e9:74:4c:ad:bc:cc:db:da:10:84:6f: f4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:8B:3E:04:EE:C5:A2:79:4E:36:55:F1:4A:E9:8B:6A:D2:23:72:D6 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32342d3234203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.176.0/24 Signature Algorithm: sha256WithRSAEncryption 42:3b:60:30:29:26:38:fe:2c:ba:be:cd:f4:fc:ed:40:3a:da: 8f:8e:41:77:5d:67:b4:52:b2:c4:d6:fc:3b:7f:75:c9:d5:43: e3:36:b8:da:43:b2:4d:06:c9:ac:dc:9e:60:d7:67:de:b4:11: 20:47:6d:16:f2:e2:10:17:d3:58:74:f9:57:33:42:2a:b9:e3: eb:e0:38:bf:d5:e5:b6:6d:92:83:9d:6e:f1:d5:70:d9:e7:6a: af:9f:bd:8c:3f:ce:0a:32:d4:fc:f9:f6:d4:25:a3:ae:a8:7b: b0:56:8a:a0:86:3f:1d:87:b4:06:d0:c9:e2:49:01:7e:c6:36: 42:ef:ff:d2:2e:c1:30:53:df:dd:7c:33:89:63:a3:67:93:fc: 97:86:a7:c8:e5:5c:36:9c:03:c3:d3:e3:b0:14:c1:63:b3:56: 8c:b5:6f:f8:2c:a8:75:d6:6e:48:73:5a:f2:f1:5c:3d:aa:78: a2:09:7f:a8:91:7c:fe:f3:d7:8d:ef:34:7d:f5:fc:27:4f:4f: d9:c4:93:58:f3:5e:71:85:90:db:cd:98:20:38:93:0f:a9:e2: 71:62:63:7a:b5:7e:db:84:3b:ad:dd:18:b3:b3:09:01:41:3a: d2:b9:b1:b2:67:53:e2:ef:8a:3d:79:f8:62:d1:03:ad:78:28: b3:5a:10:ad -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMWM6fPrj5WgWSqd8pyd5YS3K99swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNDA5MDMxMTU1MDJaFw0yNTA5MDIxMjAwMDJaMDMxMTAvBgNV BAMTKDcyOEIzRTA0RUVDNUEyNzk0RTM2NTVGMTRBRTk4QjZBRDIyMzcyRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxd1A2iWeqBZGMPXh6wSjN2EYg 9kF6P0hPGwKCYNj+nJPthbi2lbTjqEZVnfPrsa00RsCjtRnYd+mpQFbU7b1EXBsV v+OR3TJL06ZVLovkowM8Eux7kGGNRiaOHQgO/QsBOiv6l4PwxjebgpEPSxKtwbRS UcHiD+SdbKQQweN5e/+PtQEPiW+UBPkCZXnaenJ2EXVb0JdgURpaGLVaiBUA4G3Y 6FBQKwIoYEVEi9uDHoyxb+eoDpz8PNINA8Ps4rqy7RdS1NrBUFZ5TyjcZVCOQ3YR s8GigmtbE6YMkVaa+VUChbdxMGgaC5PiGPYJ1HPvAHPpdEytvMzb2hCEb/TZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcos+BO7FonlONlXxSumLatIjctYwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcKsDANBgkqhkiG 9w0BAQsFAAOCAQEAQjtgMCkmOP4sur7N9PztQDraj45Bd11ntFKyxNb8O391ydVD 4za42kOyTQbJrNyeYNdn3rQRIEdtFvLiEBfTWHT5VzNCKrnj6+A4v9Xltm2Sg51u 8dVw2edqr5+9jD/OCjLU/Pn21CWjrqh7sFaKoIY/HYe0BtDJ4kkBfsY2Qu//0i7B MFPf3XwziWOjZ5P8l4anyOVcNpwDw9PjsBTBY7NWjLVv+CyoddZuSHNa8vFcPap4 ogl/qJF8/vPXje80ffX8J09P2cSTWPNecYWQ282YIDiTD6nicWJjerV+24Q7rd0Y s7MJAUE60rmxsmdT4u+KPXn4YtEDrXgos1oQrQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:33 2024 by rpki-client on console-ams.rpki-client.org