$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133342e302f32332d3233203d3e203538333639.roa File: 3131362e3139372e3133342e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: g2MgbSC2iMaURhxdDfK+F7d1zp4XFszn8C/SSZESacA= Subject key identifier: 41:A1:56:1A:B0:87:57:7C:81:00:09:E1:42:B6:40:34:41:AE:58:AD Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 4EA07E4F9B1E034218AB11D47BDD25F2597651E4 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133342e302f32332d3233203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:04:36 +0000 ROA not before: Mon 01 Jul 2024 00:59:36 +0000 ROA not after: Mon 30 Jun 2025 01:04:36 +0000 asID: 58369 IP address blocks: 116.197.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a0:7e:4f:9b:1e:03:42:18:ab:11:d4:7b:dd:25:f2:59:76:51:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 1 00:59:36 2024 GMT Not After : Jun 30 01:04:36 2025 GMT Subject: CN=41A1561AB087577C810009E142B6403441AE58AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:89:4f:6d:5b:c5:4f:5d:b0:24:58:2e:a0:88: 48:10:0b:7c:4c:f3:5c:82:e3:00:f1:dc:87:cb:4a: 3b:74:97:53:5f:f9:fb:d8:26:d6:75:48:19:ba:ac: 09:f1:43:33:a1:0c:80:e5:09:7b:8a:83:e2:34:48: 43:bc:c8:ea:68:52:83:16:3c:17:fc:f7:3f:c5:0b: 5d:65:6f:ac:cc:9c:57:b1:d2:2e:f7:6b:cf:73:1d: b8:90:9d:0a:12:2b:cc:1c:46:b8:a2:82:4b:64:06: e3:1c:a1:3b:cc:10:fe:bd:bc:93:fc:1d:fe:40:8c: cb:38:20:09:f4:a7:5e:26:68:c5:eb:45:bd:18:20: 3e:35:cc:a4:30:b1:74:f4:01:d7:10:14:d6:88:10: 67:09:05:27:a1:9e:c6:3d:fe:1b:9d:0e:d0:dd:43: cd:91:94:fa:12:54:80:2c:0d:32:b4:6b:cf:ce:a4: 4b:97:10:ba:f5:b0:e9:90:4e:5d:8c:10:70:ed:af: dd:e4:77:16:e7:24:88:a1:a4:ce:bb:4e:2f:ae:ca: e8:67:26:16:08:eb:10:d9:ae:5a:e1:fd:3a:5a:0b: 89:a5:f6:6d:f2:23:f9:cc:ef:44:95:57:6a:2b:3f: 6e:f1:d3:fa:02:50:3a:11:d2:9f:72:9b:d2:34:6c: e0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A1:56:1A:B0:87:57:7C:81:00:09:E1:42:B6:40:34:41:AE:58:AD X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133342e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.134.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:99:d8:f2:cf:0e:71:e7:69:94:25:0a:6c:ac:10:65:6d:27: f5:9f:0a:64:77:f3:a2:1d:bb:ac:3c:66:d7:51:32:df:1a:26: be:5b:32:92:89:13:fe:aa:39:25:9f:5d:32:16:9e:d4:52:bd: 44:63:54:9d:d6:06:b2:a2:6a:69:92:8e:69:f2:34:04:1b:a1: e2:e7:10:01:aa:ef:f8:ce:01:54:52:16:20:78:0d:49:75:be: 1c:0c:8f:d1:20:3d:1e:14:58:a3:0b:fc:f7:c4:62:54:a0:21: 07:71:ce:bc:4c:7f:76:04:c3:9f:66:f0:f2:f2:90:a2:7d:f5: af:11:90:96:ca:2b:64:6f:c3:cb:c8:05:ac:1c:5e:9e:6b:88: 30:85:ed:d0:78:40:2d:d6:cf:69:ce:75:bc:52:65:51:fd:3b: 1a:cb:1f:be:98:83:c6:b1:87:64:24:f9:f2:a0:27:5e:b3:1c: bf:e2:8a:c1:b1:6d:53:03:d4:7b:1b:ad:25:ad:02:b9:96:14: 99:5a:d3:d3:05:b2:09:2b:33:e7:d2:b3:97:ea:d9:38:db:a2: 50:04:8d:c3:78:6b:28:03:41:83:b6:1c:67:42:57:fa:5c:90: cf:bb:d9:ef:b8:af:8a:2f:5c:c1:66:4e:e6:53:2f:80:90:3c: 60:81:14:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTqB+T5seA0IYqxHUe90l8ll2UeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNDA3MDEwMDU5MzZaFw0yNTA2MzAwMTA0MzZaMDMxMTAvBgNV BAMTKDQxQTE1NjFBQjA4NzU3N0M4MTAwMDlFMTQyQjY0MDM0NDFBRTU4QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKiU9tW8VPXbAkWC6giEgQC3xM 81yC4wDx3IfLSjt0l1Nf+fvYJtZ1SBm6rAnxQzOhDIDlCXuKg+I0SEO8yOpoUoMW PBf89z/FC11lb6zMnFex0i73a89zHbiQnQoSK8wcRriigktkBuMcoTvMEP69vJP8 Hf5AjMs4IAn0p14maMXrRb0YID41zKQwsXT0AdcQFNaIEGcJBSehnsY9/hudDtDd Q82RlPoSVIAsDTK0a8/OpEuXELr1sOmQTl2MEHDtr93kdxbnJIihpM67Ti+uyuhn JhYI6xDZrlrh/TpaC4ml9m3yI/nM70SVV2orP27x0/oCUDoR0p9ym9I0bODvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQaFWGrCHV3yBAAnhQrZANEGuWK0wHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBdMWGMA0GCSqG SIb3DQEBCwUAA4IBAQCamdjyzw5x52mUJQpsrBBlbSf1nwpkd/OiHbusPGbXUTLf Gia+WzKSiRP+qjkln10yFp7UUr1EY1Sd1gayomppko5p8jQEG6Hi5xABqu/4zgFU UhYgeA1Jdb4cDI/RID0eFFijC/z3xGJUoCEHcc68TH92BMOfZvDy8pCiffWvEZCW yitkb8PLyAWsHF6ea4gwhe3QeEAt1s9pznW8UmVR/Tsayx++mIPGsYdkJPnyoCde sxy/4orBsW1TA9R7G60lrQK5lhSZWtPTBbIJKzPn0rOX6tk426JQBI3DeGsoA0GD thxnQlf6XJDPu9nvuK+KL1zBZk7mUy+AkDxggRQ8 -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:19 2024 by rpki-client on console-fra.rpki-client.org