$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137372e302f32342d3234203d3e203234353330.roa File: 3131392e31302e3137372e302f32342d3234203d3e203234353330.roa (raw, json) Hash identifier: hZY7MER/Pu5kUXJcQltaiYZ3hA/GE0gKv11P6xLrU7Q= Subject key identifier: F2:BE:C8:3E:55:C5:4E:1E:CD:22:32:D5:BB:DF:E0:3F:62:4A:B4:19 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 33A77F387765438DAFECC021B402EBAC7001AE8B Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137372e302f32342d3234203d3e203234353330.roa Signing time: Tue 03 Oct 2023 12:00:00 +0000 ROA not before: Tue 03 Oct 2023 11:55:00 +0000 ROA not after: Tue 01 Oct 2024 12:00:00 +0000 asID: 24530 IP address blocks: 119.10.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a7:7f:38:77:65:43:8d:af:ec:c0:21:b4:02:eb:ac:70:01:ae:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Oct 3 11:55:00 2023 GMT Not After : Oct 1 12:00:00 2024 GMT Subject: CN=F2BEC83E55C54E1ECD2232D5BBDFE03F624AB419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:eb:70:c1:58:f3:46:f2:f0:b7:fc:12:78:30: 68:d1:5f:42:85:90:1f:eb:05:14:af:01:4a:23:f8: 09:21:a9:9b:7e:ff:e9:c3:db:b8:03:9b:5d:bd:24: c1:14:77:22:27:70:3e:ec:34:d9:94:d6:3c:96:53: 56:1b:ef:b0:9f:14:5f:f3:20:ca:1f:fc:cc:e1:fe: 25:5b:cd:d4:23:68:ca:30:ba:84:65:92:21:15:1b: 77:48:a8:ec:8f:70:3a:3e:99:46:a9:55:77:95:53: 63:47:20:09:c4:94:5b:6d:3b:41:ec:f8:41:6f:56: b3:2f:e6:86:ba:2d:43:45:93:41:e6:0d:3b:b7:e8: 26:50:0d:15:ba:67:8b:07:69:31:c3:ad:4a:c9:97: 78:a2:01:49:8b:54:7f:f6:06:15:53:8c:aa:8d:07: d4:78:1e:5d:d0:23:3f:23:eb:1b:e9:6d:d3:fb:b7: 32:a4:e8:1a:21:76:6e:b8:35:05:f8:9a:04:61:91: d2:6a:c0:82:ed:69:95:20:62:33:c6:a7:5c:42:fd: 9b:cb:c1:83:a4:41:82:38:c4:93:13:3a:65:63:ed: d8:06:e7:ed:e9:8e:70:8d:0a:3f:26:36:c4:8e:fa: a1:a4:b5:7c:05:0b:e7:3f:30:e8:41:d3:bf:6d:05: aa:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BE:C8:3E:55:C5:4E:1E:CD:22:32:D5:BB:DF:E0:3F:62:4A:B4:19 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137372e302f32342d3234203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.177.0/24 Signature Algorithm: sha256WithRSAEncryption b8:bc:b6:b6:18:a1:d2:59:51:2d:62:4e:44:60:3f:9f:c8:d9: 20:7f:cb:4c:05:e1:2b:a7:9e:5e:b6:3b:d0:53:20:a8:70:74: 1c:30:99:67:f2:c6:5e:5f:84:8a:5f:57:5b:73:33:61:b0:8a: 7a:ac:50:6a:63:c0:b9:ef:ce:a0:8f:0f:02:d4:4c:6a:08:a6: 3a:63:46:a3:7a:bc:73:d6:46:e4:b9:db:e4:86:ae:ea:9a:bf: 54:88:89:c2:60:b2:c9:81:53:73:9f:b7:cb:71:29:ea:6f:1b: f7:c1:5d:c9:d0:15:e5:5d:5b:68:7c:b9:de:bc:e5:2f:c2:9e: 5f:be:b7:4c:37:cb:b6:1c:ea:55:d8:d9:8f:fe:47:37:91:d8: 1d:0b:0f:3c:d7:93:f2:d0:fd:c9:83:57:94:07:fb:2b:1a:81: 79:d7:2a:c5:e7:be:d9:4e:88:11:40:10:2f:a3:a1:2e:ec:34: c0:6d:e5:e6:c2:28:f2:4a:5b:59:31:c7:dc:1a:38:49:69:75: 7f:41:b0:3f:b0:05:74:32:b1:f3:29:2d:78:cf:93:69:2c:93: 34:2e:4b:7f:9f:5e:76:cf:58:de:14:ac:1d:6d:30:34:a7:64: 56:dd:c3:5f:f7:1f:23:10:81:bb:af:69:06:44:15:ee:59:41: 41:8b:78:91 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM6d/OHdlQ42v7MAhtALrrHABroswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yMzEwMDMxMTU1MDBaFw0yNDEwMDExMjAwMDBaMDMxMTAvBgNV BAMTKEYyQkVDODNFNTVDNTRFMUVDRDIyMzJENUJCREZFMDNGNjI0QUI0MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/63DBWPNG8vC3/BJ4MGjRX0KF kB/rBRSvAUoj+AkhqZt+/+nD27gDm129JMEUdyIncD7sNNmU1jyWU1Yb77CfFF/z IMof/Mzh/iVbzdQjaMowuoRlkiEVG3dIqOyPcDo+mUapVXeVU2NHIAnElFttO0Hs +EFvVrMv5oa6LUNFk0HmDTu36CZQDRW6Z4sHaTHDrUrJl3iiAUmLVH/2BhVTjKqN B9R4Hl3QIz8j6xvpbdP7tzKk6Bohdm64NQX4mgRhkdJqwILtaZUgYjPGp1xC/ZvL wYOkQYI4xJMTOmVj7dgG5+3pjnCNCj8mNsSO+qGktXwFC+c/MOhB079tBapVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8r7IPlXFTh7NIjLVu9/gP2JKtBkwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcKsTANBgkqhkiG 9w0BAQsFAAOCAQEAuLy2thih0llRLWJORGA/n8jZIH/LTAXhK6eeXrY70FMgqHB0 HDCZZ/LGXl+Eil9XW3MzYbCKeqxQamPAue/OoI8PAtRMagimOmNGo3q8c9ZG5Lnb 5Iau6pq/VIiJwmCyyYFTc5+3y3Ep6m8b98FdydAV5V1baHy53rzlL8KeX763TDfL thzqVdjZj/5HN5HYHQsPPNeT8tD9yYNXlAf7KxqBedcqxee+2U6IEUAQL6OhLuw0 wG3l5sIo8kpbWTHH3Bo4SWl1f0GwP7AFdDKx8ykteM+TaSyTNC5Lf59eds9Y3hSs HW0wNKdkVt3DX/cfIxCBu69pBkQV7llBQYt4kQ== -----END CERTIFICATE-----Generated at Sun Jun 2 09:14:16 2024 by rpki-client on console-ams.rpki-client.org