$ rpki-client -vvf repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa File: 3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa (raw, json) Hash identifier: U2h2iJK31Mh+cPiEF1oMGsyRJEduBP+wnpM0z9zJpx8= Subject key identifier: 85:42:BB:6C:34:15:04:5B:D4:E1:D0:54:EB:EF:6B:17:F7:97:BB:4B Certificate issuer: /CN=45FD71C7EFF830D20E960225B4A971A14B081364 Certificate serial: 6816D8C037A5F7BC6DB49B680740315C8082B222 Authority key identifier: 45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject info access: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa Signing time: Mon 01 Jul 2024 01:05:19 +0000 ROA not before: Mon 01 Jul 2024 01:00:19 +0000 ROA not after: Mon 30 Jun 2025 01:05:19 +0000 asID: 46029 IP address blocks: 117.121.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:16:d8:c0:37:a5:f7:bc:6d:b4:9b:68:07:40:31:5c:80:82:b2:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45FD71C7EFF830D20E960225B4A971A14B081364 Validity Not Before: Jul 1 01:00:19 2024 GMT Not After : Jun 30 01:05:19 2025 GMT Subject: CN=8542BB6C3415045BD4E1D054EBEF6B17F797BB4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:30:b1:22:5f:f9:2f:15:5f:97:54:67:ef:1a: c9:37:6c:f3:7b:1a:12:a7:db:df:14:c9:75:10:4a: 67:12:7a:ae:0a:df:e3:e8:b8:52:08:48:2f:30:e3: 76:3a:5b:15:9a:1c:51:56:0d:ff:b9:e5:21:be:33: 29:de:21:e0:a1:91:8b:fa:dd:7e:59:2b:77:ac:95: d1:40:f2:de:15:4f:d6:e1:af:5d:d1:ca:97:41:82: f5:e5:f5:a8:ad:f3:49:50:86:3e:5e:43:26:d4:97: 7e:6f:4b:81:53:0f:cb:f9:3e:3d:bf:31:6d:cd:87: d4:48:f9:bc:9a:c1:c9:ac:e7:60:5d:46:7d:9d:26: af:02:a8:07:8f:1f:f4:fb:e9:ba:4a:b3:2e:fc:5a: e5:bc:52:37:90:f9:96:9f:3e:16:1e:21:4d:0d:fd: f6:7e:a9:e1:4e:22:f3:da:42:96:e4:43:6a:9c:17: 2f:51:99:19:a7:b8:da:75:1a:2f:8f:fc:ef:c2:22: 38:13:c4:d2:84:9e:8c:93:05:7f:99:fd:21:66:41: fc:fd:ce:88:ce:bc:4e:96:b9:2c:d7:9a:10:0f:a2: 01:ac:f9:45:61:01:50:67:0a:1c:85:52:bd:f8:71: 9b:16:22:fc:5c:38:2e:80:21:b3:20:fa:36:41:eb: 12:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:42:BB:6C:34:15:04:5B:D4:E1:D0:54:EB:EF:6B:17:F7:97:BB:4B X509v3 Authority Key Identifier: keyid:45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.200.0/21 Signature Algorithm: sha256WithRSAEncryption 88:f9:36:98:dd:47:cc:3a:a4:fe:79:7b:12:c5:cf:b6:e4:6e: fd:98:75:f9:f7:1a:7f:35:66:0f:7d:7e:c0:0e:37:4f:6f:39: 01:97:0b:4a:ad:48:97:03:7c:5b:7d:e4:12:57:42:22:23:21: 08:44:f2:d6:8b:3f:9c:12:01:12:8e:4b:48:ac:ca:82:18:b1: 5f:07:f0:0e:15:e1:f2:63:62:81:70:51:47:e2:a1:3f:b0:f1: 1c:f0:f1:5a:f1:98:f9:ab:06:37:f4:c3:a6:00:82:1b:16:03: 46:70:a7:77:c8:b8:6d:8e:02:27:bb:d4:ef:0c:69:e5:49:18: 67:8a:80:6d:22:e1:0f:de:ce:09:6a:14:10:6e:12:76:e6:ab: 31:06:63:41:3b:70:41:55:81:dd:78:cf:c0:b0:4c:a7:e9:1c: 2d:97:8a:37:e3:6b:70:3c:3c:77:33:32:ef:ca:6c:66:29:8f: 2e:44:6c:ca:67:7b:dd:3c:76:96:6e:b1:2b:2e:30:07:19:a3: 82:51:39:93:9c:57:e0:4c:56:5c:53:d3:46:13:75:2f:36:3c: 5b:61:55:61:d2:c7:b6:cb:d6:2a:0c:2d:69:b2:fb:85:e5:53: a7:ef:41:ac:2a:41:7f:2c:84:ff:74:44:f5:28:46:41:69:78: 92:f1:e5:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaBbYwDel97xttJtoB0AxXICCsiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0 QjA4MTM2NDAeFw0yNDA3MDEwMTAwMTlaFw0yNTA2MzAwMTA1MTlaMDMxMTAvBgNV BAMTKDg1NDJCQjZDMzQxNTA0NUJENEUxRDA1NEVCRUY2QjE3Rjc5N0JCNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBMLEiX/kvFV+XVGfvGsk3bPN7 GhKn298UyXUQSmcSeq4K3+PouFIISC8w43Y6WxWaHFFWDf+55SG+MyneIeChkYv6 3X5ZK3esldFA8t4VT9bhr13RypdBgvXl9ait80lQhj5eQybUl35vS4FTD8v5Pj2/ MW3Nh9RI+byawcms52BdRn2dJq8CqAePH/T76bpKsy78WuW8UjeQ+ZafPhYeIU0N /fZ+qeFOIvPaQpbkQ2qcFy9RmRmnuNp1Gi+P/O/CIjgTxNKEnoyTBX+Z/SFmQfz9 zojOvE6WuSzXmhAPogGs+UVhAVBnChyFUr34cZsWIvxcOC6AIbMg+jZB6xLtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhUK7bDQVBFvU4dBU6+9rF/eXu0swHwYDVR0j BBgwFoAURf1xx+/4MNIOlgIltKlxoUsIE2QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTNiMDY3Yy1lY2M5LTRkY2EtOTg3ZC1iOTU3NjgxNWY4NTUvMC80NUZENzFDN0VG RjgzMEQyMEU5NjAyMjVCNEE5NzFBMTRCMDgxMzY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0QjA4 MTM2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdXnIMA0GCSqG SIb3DQEBCwUAA4IBAQCI+TaY3UfMOqT+eXsSxc+25G79mHX59xp/NWYPfX7ADjdP bzkBlwtKrUiXA3xbfeQSV0IiIyEIRPLWiz+cEgESjktIrMqCGLFfB/AOFeHyY2KB cFFH4qE/sPEc8PFa8Zj5qwY39MOmAIIbFgNGcKd3yLhtjgInu9TvDGnlSRhnioBt IuEP3s4JahQQbhJ25qsxBmNBO3BBVYHdeM/AsEyn6Rwtl4o342twPDx3MzLvymxm KY8uRGzKZ3vdPHaWbrErLjAHGaOCUTmTnFfgTFZcU9NGE3UvNjxbYVVh0se2y9Yq DC1psvuF5VOn70GsKkF/LIT/dET1KEZBaXiS8eWH -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:55 2024 by rpki-client on console-ams.rpki-client.org