$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa File: 3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa (raw, json) Hash identifier: jjxSeOv5ZZK3KDWri7oH/M/kN4C20PSLZBGyiP0hV3s= Subject key identifier: 24:22:7F:2C:32:70:78:BC:D1:33:03:9C:63:6D:D8:91:F4:F1:70:48 Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 347F9CE48687E3373181BAE6FC8AC959B884B398 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa Signing time: Wed 08 May 2024 12:00:01 +0000 ROA not before: Wed 08 May 2024 11:55:01 +0000 ROA not after: Wed 07 May 2025 12:00:01 +0000 asID: 131111 IP address blocks: 119.235.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:7f:9c:e4:86:87:e3:37:31:81:ba:e6:fc:8a:c9:59:b8:84:b3:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: May 8 11:55:01 2024 GMT Not After : May 7 12:00:01 2025 GMT Subject: CN=24227F2C327078BCD133039C636DD891F4F17048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a9:2c:06:21:38:a1:c0:b0:07:94:ca:6c:5e: 27:4e:06:b7:b9:75:7a:30:5d:b3:f7:a0:ee:61:4a: 86:48:e8:b9:00:d4:0f:83:ce:dd:f9:06:f5:f6:d7: 00:17:fd:32:2d:71:9c:2e:97:59:fa:fc:5b:1d:c4: 61:4f:c6:0f:59:d7:cc:06:61:80:35:25:b1:f3:e7: be:47:34:8e:f7:84:8a:b2:af:24:b0:95:ba:11:58: 0e:e1:ec:15:a5:97:0f:df:2e:1f:cd:c1:55:9c:ab: cc:92:a9:01:f0:48:25:70:5e:3a:a2:42:9a:65:03: ad:7d:ee:4f:db:f1:e0:e6:fd:87:21:92:ab:6e:e8: eb:b0:5d:16:5c:86:de:e4:63:9c:18:a0:09:74:fa: 36:bc:b9:90:48:78:b1:4b:30:8f:87:4b:67:e4:82: 9f:c8:1b:c6:db:89:9b:7e:e6:ce:a1:06:35:dd:79: 2c:34:f8:3b:17:a7:f4:3d:8d:19:9c:8a:05:8b:37: a8:f8:42:78:e9:41:82:34:f7:91:8b:bc:97:98:58: 4c:02:6f:db:7d:70:4c:35:c5:db:26:a3:1f:c5:de: 2e:d7:55:04:b5:94:19:9a:13:e7:48:4c:44:61:15: 75:e3:a6:2b:e8:7e:f6:cb:5f:fd:40:d1:2c:03:17: 24:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:22:7F:2C:32:70:78:BC:D1:33:03:9C:63:6D:D8:91:F4:F1:70:48 X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.208.0/20 Signature Algorithm: sha256WithRSAEncryption 68:68:60:62:6a:2a:91:a7:28:e1:d1:de:7f:d2:45:b1:5c:44: 91:47:e9:11:a8:6f:6e:30:5d:c1:ea:0a:1a:c1:aa:52:4e:9c: ba:b0:17:36:d9:2b:97:8e:2d:fe:d8:15:8d:22:fd:9c:d6:42: 30:06:0e:df:7d:b2:e3:4f:8a:6a:2c:79:c3:3f:e5:8b:ce:25: 0e:41:15:72:6d:5f:68:ab:24:b8:1d:a7:d4:f2:5c:ee:46:3c: c8:69:a7:af:9d:6b:27:b4:aa:ad:03:0f:84:40:7e:02:50:b7: 33:e7:02:c7:2f:84:8c:41:fd:06:49:f0:2f:62:f9:49:c7:ba: a2:12:8d:ca:1a:8f:e6:67:d5:7a:ff:82:13:90:e0:0e:ca:6e: e7:29:c3:dc:a2:15:bf:4e:d6:c0:f4:b2:a5:2b:59:f5:33:dd: 0f:93:d4:5a:c5:9f:59:e2:7b:54:d3:e9:20:23:a1:28:c4:b6: 67:22:0d:15:62:cc:ce:45:36:73:44:6d:dd:c7:6e:87:a3:c2: 87:55:55:0b:af:c3:fb:4f:a5:fb:5b:33:a8:e9:b2:61:2b:92: b8:5a:54:0e:9c:70:5b:7b:9f:43:98:8a:a8:9c:b9:35:97:f0: a2:39:d9:75:7f:2b:ab:55:0c:f5:cf:d7:33:00:e6:de:d6:f7: 43:4d:b2:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNH+c5IaH4zcxgbrm/IrJWbiEs5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDA1MDgxMTU1MDFaFw0yNTA1MDcxMjAwMDFaMDMxMTAvBgNV BAMTKDI0MjI3RjJDMzI3MDc4QkNEMTMzMDM5QzYzNkREODkxRjRGMTcwNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOqSwGITihwLAHlMpsXidOBre5 dXowXbP3oO5hSoZI6LkA1A+Dzt35BvX21wAX/TItcZwul1n6/FsdxGFPxg9Z18wG YYA1JbHz575HNI73hIqyrySwlboRWA7h7BWllw/fLh/NwVWcq8ySqQHwSCVwXjqi QpplA6197k/b8eDm/Ychkqtu6OuwXRZcht7kY5wYoAl0+ja8uZBIeLFLMI+HS2fk gp/IG8bbiZt+5s6hBjXdeSw0+DsXp/Q9jRmcigWLN6j4QnjpQYI095GLvJeYWEwC b9t9cEw1xdsmox/F3i7XVQS1lBmaE+dITERhFXXjpivofvbLX/1A0SwDFyQZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJCJ/LDJweLzRMwOcY23YkfTxcEgwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzEzOTJlMzIzMzM1MmUzMjMwMzgyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR369AwDQYJ KoZIhvcNAQELBQADggEBAGhoYGJqKpGnKOHR3n/SRbFcRJFH6RGob24wXcHqChrB qlJOnLqwFzbZK5eOLf7YFY0i/ZzWQjAGDt99suNPimosecM/5YvOJQ5BFXJtX2ir JLgdp9TyXO5GPMhpp6+daye0qq0DD4RAfgJQtzPnAscvhIxB/QZJ8C9i+UnHuqIS jcoaj+Zn1Xr/ghOQ4A7Kbucpw9yiFb9O1sD0sqUrWfUz3Q+T1FrFn1nie1TT6SAj oSjEtmciDRVizM5FNnNEbd3HboejwodVVQuvw/tPpftbM6jpsmErkrhaVA6ccFt7 n0OYiqicuTWX8KI52XV/K6tVDPXP1zMA5t7W90NNsro= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org