$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: qPhFyLO5p2XLEIOO0toGgTiGmQ5k4sJq0J9ZvFILUNg= Subject key identifier: 11:9B:49:7B:D4:77:1F:85:54:A0:D5:38:6F:A1:3E:FF:89:C0:51:91 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 18D489D12CA42FC7FD3FDD5EF313A4061649E901 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa Signing time: Mon 01 Jul 2024 01:02:27 +0000 ROA not before: Mon 01 Jul 2024 00:57:27 +0000 ROA not after: Mon 30 Jun 2025 01:02:27 +0000 asID: 46026 IP address blocks: 175.111.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d4:89:d1:2c:a4:2f:c7:fd:3f:dd:5e:f3:13:a4:06:16:49:e9:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 1 00:57:27 2024 GMT Not After : Jun 30 01:02:27 2025 GMT Subject: CN=119B497BD4771F8554A0D5386FA13EFF89C05191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:b5:4f:3f:aa:7d:39:8c:a3:aa:eb:95:e9: e6:fb:92:1c:fd:47:55:19:cc:b4:24:bb:55:34:72: 3b:07:7b:4e:b0:db:47:f1:92:0b:47:8f:68:5b:be: 56:6f:ea:91:1e:5b:ce:1c:ce:df:48:df:0c:f8:88: 7e:4a:ab:b4:b5:ce:60:e6:07:f8:7d:7d:72:f0:cd: 67:3e:12:8b:f1:63:68:1d:49:46:51:b4:18:af:bb: 33:4c:25:e1:2d:73:ad:21:05:b7:dd:5c:25:8a:1f: 0b:8c:45:ff:d6:ef:33:0e:a0:27:5c:50:59:a5:32: 93:5d:92:55:ac:1b:52:c9:cb:58:c2:51:19:95:94: bd:ff:e2:96:02:bb:3e:9f:01:d6:ea:cf:45:51:35: 89:3f:20:52:39:fc:d6:8d:9f:86:d2:11:82:48:27: 7a:6d:97:cb:2f:97:ce:2e:a9:1f:2f:c1:a4:43:9d: 9c:b0:ac:05:15:61:bb:26:19:e6:a1:fd:de:4d:a5: 94:69:e3:92:0b:34:a9:4e:11:2b:41:66:68:94:2e: d8:f4:cf:3f:0a:36:6f:bb:39:2b:c2:fc:40:b4:7c: 83:8e:d1:6e:83:3b:0a:7f:aa:ed:08:ea:79:dc:03: 4e:1d:4f:95:a8:a1:ee:c2:76:12:3f:5a:38:2d:40: b1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9B:49:7B:D4:77:1F:85:54:A0:D5:38:6F:A1:3E:FF:89:C0:51:91 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.117.0/24 Signature Algorithm: sha256WithRSAEncryption b2:22:ae:39:37:5e:3d:55:4c:71:aa:aa:8c:c4:5f:59:0f:d6: 83:7a:20:77:f0:1c:9e:fe:35:22:bd:bc:8b:89:23:26:dc:2c: 3a:2e:6d:bb:3f:55:43:1e:00:5f:f3:ab:0f:a6:eb:33:7c:ec: 21:0c:58:aa:d8:fc:a3:5c:84:6f:b6:1e:4c:3e:ae:7c:1b:a1: 76:3d:1e:be:e5:d8:1c:1c:01:78:bd:6f:eb:5b:8f:07:e6:4b: a1:59:c5:2d:00:c9:8f:ef:24:2b:b8:5b:d4:ef:bc:e0:aa:9d: 52:c0:d9:d3:11:5c:ef:9c:1d:04:63:a2:95:00:19:32:73:cc: 2e:b0:e8:e7:a0:d5:e0:b0:e3:28:9d:ba:f7:e4:d4:e0:0e:44: a7:60:ad:9c:61:6f:61:1c:b3:19:67:34:26:1d:b1:cd:09:44: 9c:ee:1d:58:58:d5:40:5a:6d:ff:ce:14:1b:c1:b5:ed:49:2e: a6:4a:6f:26:5e:2c:61:27:54:78:15:cf:a9:05:e5:88:a7:22: 2f:f6:ed:d5:20:c4:74:4a:a7:05:45:91:ed:d2:21:08:2f:c1: 7c:7b:ad:49:18:60:e4:5d:e1:16:5c:db:7e:5b:29:22:b2:53: 3e:9c:bb:e0:a2:4d:63:b7:dc:ec:96:25:3a:a6:88:83:fd:bd: 25:9b:36:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGNSJ0SykL8f9P91e8xOkBhZJ6QEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNDA3MDEwMDU3MjdaFw0yNTA2MzAwMTAyMjdaMDMxMTAvBgNV BAMTKDExOUI0OTdCRDQ3NzFGODU1NEEwRDUzODZGQTEzRUZGODlDMDUxOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjeLVPP6p9OYyjquuV6eb7khz9 R1UZzLQku1U0cjsHe06w20fxkgtHj2hbvlZv6pEeW84czt9I3wz4iH5Kq7S1zmDm B/h9fXLwzWc+EovxY2gdSUZRtBivuzNMJeEtc60hBbfdXCWKHwuMRf/W7zMOoCdc UFmlMpNdklWsG1LJy1jCURmVlL3/4pYCuz6fAdbqz0VRNYk/IFI5/NaNn4bSEYJI J3ptl8svl84uqR8vwaRDnZywrAUVYbsmGeah/d5NpZRp45ILNKlOEStBZmiULtj0 zz8KNm+7OSvC/EC0fIOO0W6DOwp/qu0I6nncA04dT5Wooe7CdhI/WjgtQLEFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEZtJe9R3H4VUoNU4b6E+/4nAUZEwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr291MA0GCSqG SIb3DQEBCwUAA4IBAQCyIq45N149VUxxqqqMxF9ZD9aDeiB38Bye/jUivbyLiSMm 3Cw6Lm27P1VDHgBf86sPpuszfOwhDFiq2PyjXIRvth5MPq58G6F2PR6+5dgcHAF4 vW/rW48H5kuhWcUtAMmP7yQruFvU77zgqp1SwNnTEVzvnB0EY6KVABkyc8wusOjn oNXgsOMonbr35NTgDkSnYK2cYW9hHLMZZzQmHbHNCUSc7h1YWNVAWm3/zhQbwbXt SS6mSm8mXixhJ1R4Fc+pBeWIpyIv9u3VIMR0SqcFRZHt0iEIL8F8e61JGGDkXeEW XNt+WykislM+nLvgok1jt9zsliU6poiD/b0lmzbo -----END CERTIFICATE-----Generated at Fri Feb 21 11:24:40 2025 by rpki-client