$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: 7qHsw3w27NVdqWTWhdv7nrW74KPBDCmwGCBiiRBioWQ= Subject key identifier: 44:E3:D7:9E:81:FB:61:F3:16:77:AD:B7:A8:CF:C5:25:A5:19:38:AC Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 453671A005C5DD3C3B7AEB6C4CE0FBFE3BFB36B0 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa Signing time: Mon 01 Jul 2024 01:02:28 +0000 ROA not before: Mon 01 Jul 2024 00:57:28 +0000 ROA not after: Mon 30 Jun 2025 01:02:28 +0000 asID: 46026 IP address blocks: 175.111.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:36:71:a0:05:c5:dd:3c:3b:7a:eb:6c:4c:e0:fb:fe:3b:fb:36:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 1 00:57:28 2024 GMT Not After : Jun 30 01:02:28 2025 GMT Subject: CN=44E3D79E81FB61F31677ADB7A8CFC525A51938AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b0:d7:60:34:2d:72:b9:2b:eb:0d:0e:5d:d3: e4:c8:b8:8e:84:a1:4b:27:47:36:80:e7:28:e4:43: 00:6b:b6:c2:a3:66:1f:4a:47:96:ce:e1:51:20:5d: 4e:09:9d:b6:1a:6c:ed:b0:b3:f3:f4:eb:42:de:39: bb:bf:38:73:3b:f0:a6:1c:08:ae:3e:ae:43:71:a5: f6:4e:96:a7:51:cb:5c:53:09:23:b3:c3:88:2b:c1: ec:ff:9d:a3:18:ba:ac:68:a4:c4:88:1f:b3:65:6a: ee:cc:19:aa:45:e9:49:3f:86:a3:df:95:7e:ab:b5: 29:2f:c3:a3:12:ad:0f:4e:68:65:2d:33:a1:d1:32: 60:46:ef:94:92:bb:5f:46:57:a4:9c:71:8e:08:35: ce:b4:2f:7a:5d:99:c6:9f:41:0e:c6:c8:e3:cf:d7: 00:84:4f:de:47:2c:1f:2d:d0:64:4e:a9:9d:0d:ee: ac:4c:b6:47:c2:6f:8b:91:1a:ea:9c:a8:3f:c2:1d: 02:41:29:e7:0d:f0:97:e0:94:39:1f:ac:5f:6b:c4: c6:29:3c:9c:50:86:b8:77:dd:02:ab:27:a6:28:6d: f2:58:37:c2:24:c4:0b:35:d9:fd:d5:d8:03:73:ba: 63:41:05:8e:97:b8:d2:79:70:dc:29:fc:75:7f:50: 15:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E3:D7:9E:81:FB:61:F3:16:77:AD:B7:A8:CF:C5:25:A5:19:38:AC X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.112.0/24 Signature Algorithm: sha256WithRSAEncryption 53:20:f6:ed:1b:b3:d4:1e:eb:2a:f6:84:2f:a3:c1:2b:6b:e2: 02:e3:c4:d9:e0:75:86:17:80:d5:4d:b9:a9:98:c1:56:33:77: 3a:19:b9:df:0b:d1:5f:53:64:2d:c0:bd:f2:14:f8:3e:f6:bd: 0c:d5:0c:33:a4:42:8f:d1:c8:6d:7c:24:72:c1:e8:2c:a9:67: 54:68:06:74:ff:0b:61:43:ac:b2:24:d8:b4:d7:5b:8f:b0:73: c7:5f:88:15:ba:86:53:86:87:03:04:f6:6d:41:26:0a:79:a8: 55:14:97:0c:85:44:fe:74:9f:aa:9c:bf:ab:71:0b:22:c9:34: b1:ef:f3:3b:18:e3:7a:01:b6:e4:5a:1e:fb:0b:60:92:61:6b: db:ef:a8:1a:69:41:49:17:e7:8f:c2:b8:79:f3:49:45:f3:36: 59:e0:e4:72:fc:1b:2b:59:b4:b8:cb:00:4b:94:1f:9e:77:b2: 1b:c2:dc:72:33:77:62:a1:a6:f3:59:83:33:a8:b5:b5:8a:0c: da:ce:8b:b6:5b:b0:37:65:c1:f8:4a:f3:67:49:8a:44:89:0e: 36:07:dd:c3:5a:9e:a6:a4:59:fb:cb:96:e7:fe:2e:8e:26:0e: 0f:45:a1:22:ef:fe:31:38:75:ac:66:d0:66:db:ef:18:f2:6f: 1f:3f:f7:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURTZxoAXF3Tw7eutsTOD7/jv7NrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNDA3MDEwMDU3MjhaFw0yNTA2MzAwMTAyMjhaMDMxMTAvBgNV BAMTKDQ0RTNENzlFODFGQjYxRjMxNjc3QURCN0E4Q0ZDNTI1QTUxOTM4QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOsNdgNC1yuSvrDQ5d0+TIuI6E oUsnRzaA5yjkQwBrtsKjZh9KR5bO4VEgXU4JnbYabO2ws/P060LeObu/OHM78KYc CK4+rkNxpfZOlqdRy1xTCSOzw4grwez/naMYuqxopMSIH7Nlau7MGapF6Uk/hqPf lX6rtSkvw6MSrQ9OaGUtM6HRMmBG75SSu19GV6SccY4INc60L3pdmcafQQ7GyOPP 1wCET95HLB8t0GROqZ0N7qxMtkfCb4uRGuqcqD/CHQJBKecN8JfglDkfrF9rxMYp PJxQhrh33QKrJ6YobfJYN8IkxAs12f3V2ANzumNBBY6XuNJ5cNwp/HV/UBUvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUROPXnoH7YfMWd623qM/FJaUZOKwwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29wMA0GCSqG SIb3DQEBCwUAA4IBAQBTIPbtG7PUHusq9oQvo8Era+IC48TZ4HWGF4DVTbmpmMFW M3c6GbnfC9FfU2QtwL3yFPg+9r0M1QwzpEKP0chtfCRywegsqWdUaAZ0/wthQ6yy JNi011uPsHPHX4gVuoZThocDBPZtQSYKeahVFJcMhUT+dJ+qnL+rcQsiyTSx7/M7 GON6AbbkWh77C2CSYWvb76gaaUFJF+ePwrh580lF8zZZ4ORy/BsrWbS4ywBLlB+e d7IbwtxyM3dioabzWYMzqLW1igzazou2W7A3ZcH4SvNnSYpEiQ42B93DWp6mpFn7 y5bn/i6OJg4PRaEi7/4xOHWsZtBm2+8Y8m8fP/fk -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:56 2025 by rpki-client