$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133352e302f32342d3234203d3e203538333639.roa File: 3131362e3139372e3133352e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: WFMA0KfUpSrmJctEpAuD2ahquiPjqXPqXQMaq1ejPrY= Subject key identifier: FC:35:B4:22:A9:4C:EC:4B:62:C3:21:A0:2A:4B:56:DD:4C:1A:65:C3 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 58A2444CBE498BF15ED80061A0DEDD863EA3931F Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133352e302f32342d3234203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:04:35 +0000 ROA not before: Mon 01 Jul 2024 00:59:35 +0000 ROA not after: Mon 30 Jun 2025 01:04:35 +0000 asID: 58369 IP address blocks: 116.197.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a2:44:4c:be:49:8b:f1:5e:d8:00:61:a0:de:dd:86:3e:a3:93:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 1 00:59:35 2024 GMT Not After : Jun 30 01:04:35 2025 GMT Subject: CN=FC35B422A94CEC4B62C321A02A4B56DD4C1A65C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4b:7e:5c:b1:8e:a0:52:03:c0:33:a4:7c:24: 43:83:87:ef:16:1b:a5:87:67:20:5f:87:5a:06:5c: 4b:50:f5:66:ab:1d:64:ba:9a:5f:ea:23:55:c9:db: 9e:0a:3f:18:f5:2d:be:b1:25:92:45:94:d6:f3:1f: ea:6f:cc:89:9b:cf:ff:30:65:0f:3f:96:d0:c7:10: 35:7b:19:ac:b2:f7:63:2a:fc:51:3b:0f:86:1b:a9: 62:06:8c:f6:b4:08:c2:6d:b7:c2:3b:5b:bb:19:8b: 51:3e:13:93:9e:76:79:80:05:1b:f9:75:20:40:79: 9f:8a:be:81:e9:2d:66:13:e9:dd:c0:d7:2f:55:be: 62:b6:78:88:64:d2:a5:87:32:6f:85:9c:ed:53:b2: 56:57:48:1a:35:b0:03:ff:cd:c2:f3:50:83:54:ea: cd:da:f7:3b:39:2e:f5:dc:22:b4:69:53:9b:ca:da: 69:b2:6c:21:0a:b9:2a:32:7c:f4:8d:66:ff:3c:12: 61:f8:26:4c:53:a8:e6:e7:ca:89:63:da:43:90:6f: 24:fa:1b:bf:45:51:5c:0c:ea:21:9a:f8:8a:d6:b4: e3:23:f2:f3:85:d7:32:e8:09:33:ff:8a:39:19:5e: f0:48:c8:68:ab:8a:ac:52:b5:b9:38:ce:ff:71:74: 0c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:35:B4:22:A9:4C:EC:4B:62:C3:21:A0:2A:4B:56:DD:4C:1A:65:C3 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133352e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.135.0/24 Signature Algorithm: sha256WithRSAEncryption 27:0c:e2:bf:b5:d2:ff:cc:74:6e:13:86:69:9a:91:6c:a2:2c: 13:2d:56:33:41:2d:13:91:f9:31:e4:9d:41:ae:91:1f:5d:e8: de:2d:0c:b8:90:08:45:3e:7b:9c:ec:f2:7e:00:54:20:35:ff: e3:79:db:3f:cb:2b:66:d3:87:3e:26:df:5e:83:e0:66:c2:ca: 01:6c:3c:11:c9:d1:f0:f6:7f:7b:32:fa:f6:96:cc:da:00:0f: 9a:0f:3d:db:d3:16:27:e5:72:c9:23:40:22:ba:c0:44:d6:2e: ea:67:c2:36:1f:3b:32:8b:e0:b2:0a:2e:f6:40:34:ce:af:33: fd:89:ea:aa:15:d0:2d:f0:a6:d9:ea:cf:da:b0:7b:6c:8f:0d: b2:e3:d0:fc:db:9b:7d:a6:ac:e1:2a:a4:e3:67:f7:15:d7:60: 83:e8:74:d8:69:d5:62:28:81:24:f3:7a:6c:8f:76:0a:5b:de: ee:dc:43:73:7b:16:9d:a0:22:ff:ee:51:47:53:2f:b5:7c:41: 48:77:ba:57:54:fb:0e:6a:03:0a:dc:70:50:37:d7:e6:29:44: 0c:60:36:3c:84:ad:17:22:b9:70:81:63:9c:88:1c:a4:6b:86: 39:0b:6c:bc:fc:1a:65:a1:ea:56:dd:a1:39:9e:85:c3:91:2a: e0:fd:c5:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWKJETL5Ji/Fe2ABhoN7dhj6jkx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNDA3MDEwMDU5MzVaFw0yNTA2MzAwMTA0MzVaMDMxMTAvBgNV BAMTKEZDMzVCNDIyQTk0Q0VDNEI2MkMzMjFBMDJBNEI1NkRENEMxQTY1QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvS35csY6gUgPAM6R8JEODh+8W G6WHZyBfh1oGXEtQ9WarHWS6ml/qI1XJ254KPxj1Lb6xJZJFlNbzH+pvzImbz/8w ZQ8/ltDHEDV7Gayy92Mq/FE7D4YbqWIGjPa0CMJtt8I7W7sZi1E+E5OednmABRv5 dSBAeZ+KvoHpLWYT6d3A1y9VvmK2eIhk0qWHMm+FnO1TslZXSBo1sAP/zcLzUINU 6s3a9zs5LvXcIrRpU5vK2mmybCEKuSoyfPSNZv88EmH4JkxTqObnyolj2kOQbyT6 G79FUVwM6iGa+IrWtOMj8vOF1zLoCTP/ijkZXvBIyGiriqxStbk4zv9xdAz9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/DW0IqlM7EtiwyGgKktW3UwaZcMwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdMWHMA0GCSqG SIb3DQEBCwUAA4IBAQAnDOK/tdL/zHRuE4ZpmpFsoiwTLVYzQS0Tkfkx5J1BrpEf XejeLQy4kAhFPnuc7PJ+AFQgNf/jeds/yytm04c+Jt9eg+BmwsoBbDwRydHw9n97 Mvr2lszaAA+aDz3b0xYn5XLJI0AiusBE1i7qZ8I2Hzsyi+CyCi72QDTOrzP9ieqq FdAt8KbZ6s/asHtsjw2y49D825t9pqzhKqTjZ/cV12CD6HTYadViKIEk83psj3YK W97u3ENzexadoCL/7lFHUy+1fEFId7pXVPsOagMK3HBQN9fmKUQMYDY8hK0XIrlw gWOciByka4Y5C2y8/BploepW3aE5noXDkSrg/cVV -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:19 2024 by rpki-client on console-fra.rpki-client.org