$ rpki-client -vvf repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203438343635.roa File: 3131372e3132312e3230302e302f32312d3234203d3e203438343635.roa (raw, json) Hash identifier: ROllfvSta0TCh6YGRaeXpWaL70BiJ6M/Qhaj/s9LqpM= Subject key identifier: D8:65:AD:00:01:0D:C7:CF:4F:30:34:A8:73:B4:9A:05:E8:BC:79:11 Certificate issuer: /CN=45FD71C7EFF830D20E960225B4A971A14B081364 Certificate serial: 209F6FCAFCBC184C4253ABE1D654133FF569AAFD Authority key identifier: 45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject info access: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203438343635.roa Signing time: Mon 15 Jul 2024 02:45:35 +0000 ROA not before: Mon 15 Jul 2024 02:40:35 +0000 ROA not after: Mon 14 Jul 2025 02:45:35 +0000 asID: 48465 IP address blocks: 117.121.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:9f:6f:ca:fc:bc:18:4c:42:53:ab:e1:d6:54:13:3f:f5:69:aa:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45FD71C7EFF830D20E960225B4A971A14B081364 Validity Not Before: Jul 15 02:40:35 2024 GMT Not After : Jul 14 02:45:35 2025 GMT Subject: CN=D865AD00010DC7CF4F3034A873B49A05E8BC7911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a1:4b:c7:9f:7e:68:8d:fe:1f:e3:95:98:ee: 95:2a:f6:50:19:20:ed:4c:75:ac:b6:bf:26:d5:43: c5:ef:40:96:fd:92:47:e0:8b:ed:7a:7a:07:01:6e: 54:50:07:72:e9:b2:5e:f1:3b:d1:af:6a:5e:fb:a9: 48:37:40:93:80:f5:d4:9b:57:41:5a:61:5c:c0:83: 81:b9:09:00:3f:80:2b:d3:e7:18:89:03:be:06:56: 3d:94:0d:94:da:bd:c2:d9:ba:70:f5:d4:da:7f:98: 69:c3:76:d7:d1:96:b0:b6:fc:32:ad:c6:b3:9e:3a: e1:2f:0f:83:02:55:4d:d9:69:ba:9d:c4:94:41:e4: 42:2d:fb:d3:1b:05:10:ce:94:e4:aa:8a:00:5b:fb: 95:83:49:73:7e:5c:20:13:33:a1:2b:73:08:76:96: 19:ca:d9:55:99:a5:f1:ca:65:4e:cf:50:7c:77:fc: 56:80:c2:41:b2:88:09:fb:f8:42:b8:ae:10:d0:bc: ce:0a:2b:8f:fa:ae:62:01:ee:4a:9a:98:ca:f7:86: 40:ac:ce:d7:5a:34:60:ee:68:5a:f1:08:d3:5d:ef: ac:e4:72:cd:80:a6:f9:5d:32:8c:60:c4:b4:a5:43: 03:05:8a:01:ea:47:42:f9:e1:75:92:31:3c:9f:f0: 45:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:65:AD:00:01:0D:C7:CF:4F:30:34:A8:73:B4:9A:05:E8:BC:79:11 X509v3 Authority Key Identifier: keyid:45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.200.0/21 Signature Algorithm: sha256WithRSAEncryption d9:50:51:a8:e7:33:81:ad:a2:bf:3c:7a:53:e7:a0:e0:91:1d: 8a:4e:36:74:36:b6:37:11:90:5d:74:79:64:85:8a:4a:5d:8a: b6:6e:f0:2d:af:c1:0b:81:f2:2e:06:1a:17:8c:bd:6a:64:ff: c6:d9:48:21:00:19:f6:ee:01:42:bf:30:25:6b:c5:55:3f:47: 4b:5d:9d:fa:1a:bb:28:9c:6d:6e:53:58:f4:e8:df:87:e8:89: 75:ae:2a:e5:6d:76:f2:1c:7a:03:ea:76:58:27:80:6b:fb:c0: 62:24:bb:a7:d0:b9:86:59:84:a1:b7:66:37:ee:ed:57:0b:66: 7d:43:e8:3a:c3:fa:46:30:7b:98:07:d0:c8:84:92:9c:5a:54: 42:d8:f5:6c:8b:95:7e:52:e4:c1:72:03:ca:e3:b9:d2:e9:19: a1:93:72:7d:b6:0f:cd:c4:ab:d2:06:e9:e5:ba:ce:54:3a:fd: 60:b4:f8:57:d7:f1:fd:0c:46:1f:a7:5d:70:8c:69:09:76:31: a6:b8:49:6a:e1:e3:a8:fb:81:9f:02:77:41:33:0e:e8:68:50: 39:43:2a:08:87:1c:23:6f:08:ce:c6:e1:eb:fe:c1:c4:5f:ad: ca:35:92:a4:56:9a:62:9e:20:d0:08:e3:1c:8f:3e:6b:e4:72: ff:08:48:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIJ9vyvy8GExCU6vh1lQTP/Vpqv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0 QjA4MTM2NDAeFw0yNDA3MTUwMjQwMzVaFw0yNTA3MTQwMjQ1MzVaMDMxMTAvBgNV BAMTKEQ4NjVBRDAwMDEwREM3Q0Y0RjMwMzRBODczQjQ5QTA1RThCQzc5MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYoUvHn35ojf4f45WY7pUq9lAZ IO1Mday2vybVQ8XvQJb9kkfgi+16egcBblRQB3Lpsl7xO9Gval77qUg3QJOA9dSb V0FaYVzAg4G5CQA/gCvT5xiJA74GVj2UDZTavcLZunD11Np/mGnDdtfRlrC2/DKt xrOeOuEvD4MCVU3ZabqdxJRB5EIt+9MbBRDOlOSqigBb+5WDSXN+XCATM6Ercwh2 lhnK2VWZpfHKZU7PUHx3/FaAwkGyiAn7+EK4rhDQvM4KK4/6rmIB7kqamMr3hkCs ztdaNGDuaFrxCNNd76zkcs2ApvldMoxgxLSlQwMFigHqR0L54XWSMTyf8EVTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2GWtAAENx89PMDSoc7SaBei8eREwHwYDVR0j BBgwFoAURf1xx+/4MNIOlgIltKlxoUsIE2QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTNiMDY3Yy1lY2M5LTRkY2EtOTg3ZC1iOTU3NjgxNWY4NTUvMC80NUZENzFDN0VG RjgzMEQyMEU5NjAyMjVCNEE5NzFBMTRCMDgxMzY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0QjA4 MTM2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdXnIMA0GCSqG SIb3DQEBCwUAA4IBAQDZUFGo5zOBraK/PHpT56DgkR2KTjZ0NrY3EZBddHlkhYpK XYq2bvAtr8ELgfIuBhoXjL1qZP/G2UghABn27gFCvzAla8VVP0dLXZ36GrsonG1u U1j06N+H6Il1rirlbXbyHHoD6nZYJ4Br+8BiJLun0LmGWYSht2Y37u1XC2Z9Q+g6 w/pGMHuYB9DIhJKcWlRC2PVsi5V+UuTBcgPK47nS6Rmhk3J9tg/NxKvSBunlus5U Ov1gtPhX1/H9DEYfp11wjGkJdjGmuElq4eOo+4GfAndBMw7oaFA5QyoIhxwjbwjO xuHr/sHEX63KNZKkVppiniDQCOMcjz5r5HL/CEgA -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:42 2024 by rpki-client on console-fra.rpki-client.org