$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32322d3232203d3e203234353330.roa File: 3131392e31302e3138302e302f32322d3232203d3e203234353330.roa (raw, json) Hash identifier: nxdAn3jn+XYvc4duvxuDcKKQ6L/WvqrTreEgfRLbG3Y= Subject key identifier: D4:3E:8D:B2:7D:82:BB:81:11:74:76:C0:3E:10:87:43:D1:9C:6B:87 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 7208F535B2C55E8F408E086FAA2344CCD9DA8851 Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32322d3232203d3e203234353330.roa Signing time: Tue 03 Sep 2024 11:00:01 +0000 ROA not before: Tue 03 Sep 2024 10:55:01 +0000 ROA not after: Tue 02 Sep 2025 11:00:01 +0000 asID: 24530 IP address blocks: 119.10.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:08:f5:35:b2:c5:5e:8f:40:8e:08:6f:aa:23:44:cc:d9:da:88:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Sep 3 10:55:01 2024 GMT Not After : Sep 2 11:00:01 2025 GMT Subject: CN=D43E8DB27D82BB81117476C03E108743D19C6B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c9:ab:8e:ec:dd:16:b9:87:45:5b:a8:dd:22: 0d:19:a6:d2:25:92:ae:2b:87:30:8d:8b:28:21:0d: 9d:47:56:30:2c:54:78:49:8f:a3:03:94:4c:8d:66: 92:05:94:7d:9f:ad:57:03:cb:05:67:12:9c:86:85: 66:79:3e:8b:9a:3b:94:20:4d:26:2a:ed:b5:c7:55: 18:ea:09:00:95:55:9b:9b:3b:61:3d:4d:d8:ff:1e: 5b:98:90:d7:f4:21:69:b0:65:2d:dc:f2:9d:2d:4b: e0:53:39:38:da:f8:eb:82:de:41:35:cb:e4:c6:3e: ef:19:ec:2c:f5:5b:59:2a:33:86:61:14:6f:e8:16: cc:93:54:d5:9d:2d:23:e3:12:88:32:7e:8e:54:1a: 64:0b:6b:02:fc:7c:5f:62:35:3a:52:a0:88:5f:48: 27:90:fc:4c:49:bf:b1:ea:76:7e:2e:c5:c3:f7:2f: 4a:79:5e:ad:83:74:6c:e1:06:6b:0c:3d:b8:0f:94: e4:3c:51:28:a5:1e:be:02:79:03:0b:a8:7e:d8:a5: 95:20:cf:bd:88:f2:47:4a:79:c4:28:9f:cd:d8:2f: e7:c4:4e:56:c1:0d:3c:71:b8:cc:a8:87:22:07:dc: e6:b2:d7:71:f5:20:6b:a1:4a:93:a9:12:e8:14:46: dc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3E:8D:B2:7D:82:BB:81:11:74:76:C0:3E:10:87:43:D1:9C:6B:87 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32322d3232203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.180.0/22 Signature Algorithm: sha256WithRSAEncryption 80:51:e6:d5:4f:5e:ea:34:2d:27:f6:6e:5c:cd:69:d6:be:d7: a5:7d:3f:5d:89:4e:81:b5:49:65:b1:a2:9b:d3:16:28:2a:68: 32:7c:03:f2:ca:b9:63:60:7d:25:48:b6:5e:25:25:4d:f6:3b: a8:47:e9:ce:6b:7e:4b:84:f3:02:50:de:42:d6:3e:15:f4:9f: 6e:50:bd:d1:61:dc:30:92:3d:c1:9f:6c:eb:45:bc:06:67:30: da:0a:4f:f1:8c:fe:d9:ff:98:70:c6:49:8c:87:fc:70:20:79: 74:e5:4a:60:19:74:2f:4f:62:41:53:43:95:0c:be:36:c4:f9: 88:9e:1c:88:86:71:c2:96:b1:a9:df:bf:f2:ec:11:e5:16:0a: 69:1a:a6:fd:15:94:ae:f5:29:51:09:88:1c:4e:c2:96:bd:14: af:bf:93:fd:07:ee:2b:f7:fa:ff:a1:ef:21:2d:cb:43:b8:a1: aa:55:7f:5e:47:e6:39:ca:d4:15:93:c5:c3:0e:33:d7:db:3b: 20:be:57:fe:55:98:89:3c:5f:0d:21:71:6c:6b:ab:b3:a2:41: 94:6b:19:95:83:37:c3:2e:92:e7:5d:a6:59:13:55:47:a7:0f: af:88:7a:8a:cb:97:c6:4e:a3:8b:4b:7a:b6:c4:d7:eb:bc:89: 38:a7:9b:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcgj1NbLFXo9AjghvqiNEzNnaiFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNDA5MDMxMDU1MDFaFw0yNTA5MDIxMTAwMDFaMDMxMTAvBgNV BAMTKEQ0M0U4REIyN0Q4MkJCODExMTc0NzZDMDNFMTA4NzQzRDE5QzZCODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtyauO7N0WuYdFW6jdIg0ZptIl kq4rhzCNiyghDZ1HVjAsVHhJj6MDlEyNZpIFlH2frVcDywVnEpyGhWZ5PouaO5Qg TSYq7bXHVRjqCQCVVZubO2E9Tdj/HluYkNf0IWmwZS3c8p0tS+BTOTja+OuC3kE1 y+TGPu8Z7Cz1W1kqM4ZhFG/oFsyTVNWdLSPjEogyfo5UGmQLawL8fF9iNTpSoIhf SCeQ/ExJv7Hqdn4uxcP3L0p5Xq2DdGzhBmsMPbgPlOQ8USilHr4CeQMLqH7YpZUg z72I8kdKecQon83YL+fETlbBDTxxuMyohyIH3Oay13H1IGuhSpOpEugURtz3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1D6Nsn2Cu4ERdHbAPhCHQ9Gca4cwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzODMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAncKtDANBgkqhkiG 9w0BAQsFAAOCAQEAgFHm1U9e6jQtJ/ZuXM1p1r7XpX0/XYlOgbVJZbGim9MWKCpo MnwD8sq5Y2B9JUi2XiUlTfY7qEfpzmt+S4TzAlDeQtY+FfSfblC90WHcMJI9wZ9s 60W8Bmcw2gpP8Yz+2f+YcMZJjIf8cCB5dOVKYBl0L09iQVNDlQy+NsT5iJ4ciIZx wpaxqd+/8uwR5RYKaRqm/RWUrvUpUQmIHE7Clr0Ur7+T/QfuK/f6/6HvIS3LQ7ih qlV/XkfmOcrUFZPFww4z19s7IL5X/lWYiTxfDSFxbGurs6JBlGsZlYM3wy6S512m WRNVR6cPr4h6isuXxk6ji0t6tsTX67yJOKebsw== -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:20 2024 by rpki-client on console-fra.rpki-client.org