$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: 3p/hk5MLyUzRcTjxx6VZclvMzV7vaFx0cjt9/zXwI+E= Subject key identifier: B9:62:65:B1:19:F8:85:B0:CB:1E:A9:44:52:8F:B7:CB:60:63:2D:83 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 549810510FD7EA6AF12F6E5DE08F1C59B0F726E4 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa Signing time: Mon 01 Jul 2024 01:02:28 +0000 ROA not before: Mon 01 Jul 2024 00:57:28 +0000 ROA not after: Mon 30 Jun 2025 01:02:28 +0000 asID: 46026 IP address blocks: 175.111.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:98:10:51:0f:d7:ea:6a:f1:2f:6e:5d:e0:8f:1c:59:b0:f7:26:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 1 00:57:28 2024 GMT Not After : Jun 30 01:02:28 2025 GMT Subject: CN=B96265B119F885B0CB1EA944528FB7CB60632D83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:22:9c:7d:46:1b:ac:29:b8:c9:a4:e9:44:98: 15:2f:7d:29:30:f1:61:e6:77:06:7e:02:0b:76:f9: d6:b3:18:81:a3:86:9e:cb:5c:c3:3c:86:91:8b:59: a4:50:34:98:c8:e7:4f:0c:8f:53:22:76:fa:c7:fc: 1a:f8:3b:81:32:46:00:ad:9e:68:f6:d9:95:85:e9: 60:fa:49:4e:f5:46:e9:1c:e5:08:9e:6a:f6:68:a7: 91:4a:42:d4:77:2d:73:b9:5e:23:3f:0d:95:98:ef: e1:2d:3a:05:2b:f4:b8:b3:85:71:b9:11:43:05:14: 2b:0e:bd:54:f0:7c:f9:87:84:f5:44:36:7c:7d:9f: f9:b0:5d:71:97:b1:59:e8:de:03:95:40:98:8c:67: a2:ee:26:d5:e2:22:33:8e:0a:9d:bf:14:76:7e:a2: bb:e8:a8:f4:c8:73:cc:33:d5:fd:ac:97:72:8b:af: 6b:79:4e:d8:7e:51:71:77:bc:62:15:d8:cb:79:8a: d5:5c:99:5c:aa:61:d9:07:fe:69:2e:8a:9d:bc:0b: 81:58:aa:08:d3:fb:10:0c:55:9a:d0:c1:87:75:fb: ee:cb:8a:66:54:24:c0:49:78:b6:38:1d:35:94:de: 4c:6f:0b:d9:1a:18:af:c9:96:91:e7:c5:90:ca:25: 8a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:62:65:B1:19:F8:85:B0:CB:1E:A9:44:52:8F:B7:CB:60:63:2D:83 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.114.0/24 Signature Algorithm: sha256WithRSAEncryption 34:1e:97:c7:2f:ab:51:83:75:56:bf:cc:61:b3:4a:62:26:0f: 8f:9b:4a:93:9a:1f:1f:85:ac:6f:85:33:81:ba:13:5c:e8:5e: 9c:ac:b8:6e:c6:14:41:09:9c:ef:1a:23:8a:e3:b2:ea:b5:79: 6c:b3:aa:58:2b:99:b9:ac:ef:54:ec:29:b9:4f:dd:5b:80:16: 6a:ec:f4:15:76:5c:50:75:50:a9:e1:3d:50:ee:ce:1c:45:8b: b6:16:26:5a:53:10:c1:6c:80:20:0b:8d:c9:f9:f5:f7:aa:a6: ae:b1:93:4f:34:80:77:af:71:47:70:60:e3:f8:70:d0:ec:ae: b8:4f:fc:53:ac:ff:f0:18:e5:c3:53:b0:aa:09:58:47:28:31: 09:65:9f:e6:5b:f1:62:3c:2e:bf:38:f0:62:87:15:c7:9f:1a: b5:e2:a0:62:37:2a:57:14:2e:22:7c:18:5e:f4:8c:15:4b:a7: d3:f9:64:f3:ab:87:3b:bc:f2:da:05:08:83:a1:79:ba:45:1b: ec:ef:d1:26:3a:bd:b3:ab:26:5c:84:ec:f6:13:6b:28:49:df: 56:67:18:68:32:e9:22:d8:1e:96:0b:35:0d:64:d6:d9:f5:e0: 2c:e5:1e:1b:c4:fc:7b:4f:cb:e1:bd:cc:70:56:b9:d2:a1:9a: 18:3f:a2:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVJgQUQ/X6mrxL25d4I8cWbD3JuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNDA3MDEwMDU3MjhaFw0yNTA2MzAwMTAyMjhaMDMxMTAvBgNV BAMTKEI5NjI2NUIxMTlGODg1QjBDQjFFQTk0NDUyOEZCN0NCNjA2MzJEODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaIpx9RhusKbjJpOlEmBUvfSkw 8WHmdwZ+Agt2+dazGIGjhp7LXMM8hpGLWaRQNJjI508Mj1MidvrH/Br4O4EyRgCt nmj22ZWF6WD6SU71Rukc5QieavZop5FKQtR3LXO5XiM/DZWY7+EtOgUr9LizhXG5 EUMFFCsOvVTwfPmHhPVENnx9n/mwXXGXsVno3gOVQJiMZ6LuJtXiIjOOCp2/FHZ+ orvoqPTIc8wz1f2sl3KLr2t5Tth+UXF3vGIV2Mt5itVcmVyqYdkH/mkuip28C4FY qgjT+xAMVZrQwYd1++7LimZUJMBJeLY4HTWU3kxvC9kaGK/JlpHnxZDKJYrVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuWJlsRn4hbDLHqlEUo+3y2BjLYMwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29yMA0GCSqG SIb3DQEBCwUAA4IBAQA0HpfHL6tRg3VWv8xhs0piJg+Pm0qTmh8fhaxvhTOBuhNc 6F6crLhuxhRBCZzvGiOK47LqtXlss6pYK5m5rO9U7Cm5T91bgBZq7PQVdlxQdVCp 4T1Q7s4cRYu2FiZaUxDBbIAgC43J+fX3qqausZNPNIB3r3FHcGDj+HDQ7K64T/xT rP/wGOXDU7CqCVhHKDEJZZ/mW/FiPC6/OPBihxXHnxq14qBiNypXFC4ifBhe9IwV S6fT+WTzq4c7vPLaBQiDoXm6RRvs79EmOr2zqyZchOz2E2soSd9WZxhoMuki2B6W CzUNZNbZ9eAs5R4bxPx7T8vhvcxwVrnSoZoYP6Ju -----END CERTIFICATE-----Generated at Fri Feb 21 12:56:17 2025 by rpki-client