$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa File: 3131342e3132392e31362e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: EK6IOQrf2rr4CozcXpyHn0lnKDzMTXzhLY1ojyQBefA= Subject key identifier: 2F:78:6A:13:BC:8D:6F:21:05:2A:00:27:A4:44:B0:6E:F1:02:C2:9D Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 0D6ACDA371BD26DE836F72F51F1375349A9FD797 Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa Signing time: Mon 01 Jul 2024 00:02:12 +0000 ROA not before: Sun 30 Jun 2024 23:57:12 +0000 ROA not after: Mon 30 Jun 2025 00:02:12 +0000 asID: 38758 IP address blocks: 114.129.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:6a:cd:a3:71:bd:26:de:83:6f:72:f5:1f:13:75:34:9a:9f:d7:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jun 30 23:57:12 2024 GMT Not After : Jun 30 00:02:12 2025 GMT Subject: CN=2F786A13BC8D6F21052A0027A444B06EF102C29D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a1:da:df:a4:65:64:2c:84:29:e6:43:96:5f: bf:d1:ac:c2:09:59:34:84:be:3b:f6:03:30:3d:37: 33:9a:16:b2:01:fa:cb:60:37:58:87:82:a8:d8:61: 67:1d:9a:38:5b:4a:b4:a3:1d:14:e7:c7:89:52:cd: 9c:38:33:9e:56:bf:ad:db:a1:24:51:30:d7:67:82: 9e:ea:de:cc:3b:23:04:20:11:a1:9f:75:f4:22:59: e6:38:b1:24:28:97:b1:b8:e8:a3:bb:2e:4e:b2:37: 3d:a9:c4:ba:77:c2:d4:42:04:4f:73:f6:ce:94:3a: d5:1b:35:3f:a6:01:ec:5f:19:34:08:ee:76:99:20: d2:11:1b:3a:89:c6:5e:fb:36:94:30:f9:2b:7e:df: cd:53:dd:ad:78:5c:4f:97:dc:b6:71:9f:65:6d:7d: 73:24:b2:a1:b7:c6:f5:0b:05:d3:6a:df:51:08:50: 88:d2:1f:9f:ca:92:cf:d7:36:87:be:8d:06:0d:d4: 27:5b:d3:d7:39:1e:97:0a:37:fe:38:b4:e7:0a:6f: 77:6d:e5:c6:24:87:59:a6:de:58:73:9d:a7:02:38: 9a:56:b9:2c:ac:97:77:c0:ef:01:c9:74:d5:24:70: 90:26:81:5c:67:6b:40:03:f6:a8:a3:68:21:11:fd: 9b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:78:6A:13:BC:8D:6F:21:05:2A:00:27:A4:44:B0:6E:F1:02:C2:9D X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.129.16.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:d8:8b:49:ce:a8:fe:0a:71:95:c9:6b:8c:08:aa:71:c3:ef: 90:49:81:22:24:f5:16:04:ba:07:9c:2b:fc:c6:f6:8f:ab:da: 13:22:82:eb:7a:03:3c:e9:d1:7b:6d:0a:f7:91:3a:36:73:05: d5:f8:0f:10:b0:91:fe:a4:ec:5d:df:dc:cc:0a:91:7f:d0:40: bc:6d:b8:af:bf:19:0b:97:16:bc:0e:04:df:c3:2a:01:f9:fc: ac:62:1c:02:2a:05:b7:49:18:f4:52:b9:a1:3b:af:1b:3c:cb: 26:67:f8:69:5f:51:79:69:25:1d:09:08:4d:29:a7:ed:e7:1f: 1b:02:a2:22:60:ee:6f:da:35:c8:9f:81:3f:03:5c:11:9e:c4: de:43:ae:f0:de:38:f1:f0:db:49:c3:7f:d0:90:7c:ec:20:b2: 74:06:38:fb:1f:9e:f2:5f:a8:a5:42:9b:6f:a1:fa:15:78:22: 43:5d:65:9c:d1:e5:ca:55:2a:cd:fe:72:4a:5c:8e:85:73:6c: f3:f4:6a:6d:5f:99:8c:7e:37:0f:b8:35:7a:ae:cf:8c:a5:c2: c0:22:af:95:e6:cf:61:4b:9f:fb:ed:cc:ae:d1:6f:da:5c:c5: 66:b9:1a:31:99:e3:35:d3:e9:f1:e5:9b:50:c7:28:24:c5:45: 2e:f0:c2:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDWrNo3G9Jt6Db3L1HxN1NJqf15cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yNDA2MzAyMzU3MTJaFw0yNTA2MzAwMDAyMTJaMDMxMTAvBgNV BAMTKDJGNzg2QTEzQkM4RDZGMjEwNTJBMDAyN0E0NDRCMDZFRjEwMkMyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnodrfpGVkLIQp5kOWX7/RrMIJ WTSEvjv2AzA9NzOaFrIB+stgN1iHgqjYYWcdmjhbSrSjHRTnx4lSzZw4M55Wv63b oSRRMNdngp7q3sw7IwQgEaGfdfQiWeY4sSQol7G46KO7Lk6yNz2pxLp3wtRCBE9z 9s6UOtUbNT+mAexfGTQI7naZINIRGzqJxl77NpQw+St+381T3a14XE+X3LZxn2Vt fXMksqG3xvULBdNq31EIUIjSH5/Kks/XNoe+jQYN1Cdb09c5HpcKN/44tOcKb3dt 5cYkh1mm3lhznacCOJpWuSysl3fA7wHJdNUkcJAmgVxna0AD9qijaCER/ZuTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL3hqE7yNbyEFKgAnpESwbvECwp0wHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzEzNDJlMzEzMjM5MmUzMTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3KBEDANBgkqhkiG 9w0BAQsFAAOCAQEATdiLSc6o/gpxlclrjAiqccPvkEmBIiT1FgS6B5wr/Mb2j6va EyKC63oDPOnRe20K95E6NnMF1fgPELCR/qTsXd/czAqRf9BAvG24r78ZC5cWvA4E 38MqAfn8rGIcAioFt0kY9FK5oTuvGzzLJmf4aV9ReWklHQkITSmn7ecfGwKiImDu b9o1yJ+BPwNcEZ7E3kOu8N448fDbScN/0JB87CCydAY4+x+e8l+opUKbb6H6FXgi Q11lnNHlylUqzf5ySlyOhXNs8/RqbV+ZjH43D7g1eq7PjKXCwCKvlebPYUuf++3M rtFv2lzFZrkaMZnjNdPp8eWbUMcoJMVFLvDC5g== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:05 2024 by rpki-client on console-ams.rpki-client.org