$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131392e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131392e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: Sy6BflqYLR0sZsbRWtHtSQOlWDRu7he2nETil7/zL5w= Subject key identifier: 2F:AA:FB:C8:FC:0F:31:C6:CB:1B:18:C5:2F:04:6F:AA:34:A7:93:93 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 55B020413FB5DB3A10A145BEDD1DFE3C9DCC2DE6 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131392e302f32342d3234203d3e203436303236.roa Signing time: Mon 01 Jul 2024 01:02:27 +0000 ROA not before: Mon 01 Jul 2024 00:57:27 +0000 ROA not after: Mon 30 Jun 2025 01:02:27 +0000 asID: 46026 IP address blocks: 175.111.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b0:20:41:3f:b5:db:3a:10:a1:45:be:dd:1d:fe:3c:9d:cc:2d:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 1 00:57:27 2024 GMT Not After : Jun 30 01:02:27 2025 GMT Subject: CN=2FAAFBC8FC0F31C6CB1B18C52F046FAA34A79393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:01:3d:77:03:44:f0:47:6a:b1:6d:e2:a3:07: ad:0a:d2:5b:69:32:a5:04:5e:59:e4:f6:bd:60:2b: 16:7c:df:fc:ac:67:fb:4f:18:1f:db:c8:cd:ac:1d: f4:b6:ff:ea:e8:db:84:78:3b:e8:9a:90:4d:53:07: e7:09:d9:d5:cf:a3:6b:4e:b0:a0:c1:67:aa:68:08: 5b:7b:5c:53:33:3b:05:6b:4d:0d:5c:5a:3b:33:0b: 64:fb:67:8d:05:7d:2f:5c:04:b3:ca:a4:18:ed:bb: 96:cf:5d:61:8d:bf:ef:12:64:ef:be:45:78:8a:e2: d6:69:60:19:f2:b6:21:ba:6b:69:b0:ea:b0:c6:a9: 33:6d:22:10:7e:e4:a3:10:17:0e:98:1a:ac:83:0f: 19:98:9d:7f:1f:b4:e5:4e:b3:1f:24:f2:d1:65:e5: e5:8e:0a:fd:da:29:8b:0f:3e:aa:69:83:9c:56:5c: 44:17:2c:25:94:ca:df:e4:06:32:21:f6:2d:09:03: c8:64:b0:df:21:2c:89:17:41:07:53:2d:8f:68:22: ed:ae:ae:68:21:af:99:37:df:4e:f4:35:2d:1b:92: 10:14:62:92:38:e8:9b:f7:d5:75:d3:74:26:dd:66: 86:29:fb:e3:60:cb:1e:de:73:ad:38:b0:da:52:b9: 9f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AA:FB:C8:FC:0F:31:C6:CB:1B:18:C5:2F:04:6F:AA:34:A7:93:93 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131392e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.119.0/24 Signature Algorithm: sha256WithRSAEncryption 05:e8:2e:e6:08:af:8a:e2:81:a3:1a:49:5f:50:c7:67:85:f5: 71:1f:9b:e5:10:92:b4:b6:72:99:f9:b7:7f:f3:03:99:43:3f: 14:1f:78:da:d7:6f:f7:6a:cb:69:fb:5c:64:77:1b:e9:08:c9: 13:21:57:b3:cd:fb:8f:ba:89:55:21:71:6f:b5:15:3a:33:5d: e1:ca:f9:d2:75:57:7f:ac:d6:74:69:8e:10:3d:85:76:8d:3f: 30:08:38:37:3e:a2:a6:8c:97:99:0e:4a:cc:20:98:36:1b:b1: 4b:6d:d9:fc:15:76:92:db:0a:3f:a3:7f:3f:04:4a:eb:f5:af: b4:bb:f2:70:05:37:7a:92:78:ef:da:ea:b8:68:5b:f1:03:96: dd:3a:d8:f0:8c:ca:15:1f:85:5a:34:e7:28:fb:eb:f3:97:f4: c0:25:1b:e4:25:9a:71:29:ff:c6:dd:d3:ca:96:ea:7b:5f:cf: 35:49:36:9f:e4:04:42:db:3d:42:5d:13:f7:7b:95:97:27:ae: 76:d2:5f:94:57:42:1f:20:b1:e2:96:43:e8:84:8c:65:e1:b0: 43:66:ed:93:81:54:e1:e9:42:e0:62:a0:f7:95:10:e5:00:e3: 28:ea:92:02:aa:f2:27:b4:6d:c6:54:8e:b9:5c:87:9a:ee:b8: 6b:96:20:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVbAgQT+12zoQoUW+3R3+PJ3MLeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNDA3MDEwMDU3MjdaFw0yNTA2MzAwMTAyMjdaMDMxMTAvBgNV BAMTKDJGQUFGQkM4RkMwRjMxQzZDQjFCMThDNTJGMDQ2RkFBMzRBNzkzOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvAT13A0TwR2qxbeKjB60K0ltp MqUEXlnk9r1gKxZ83/ysZ/tPGB/byM2sHfS2/+ro24R4O+iakE1TB+cJ2dXPo2tO sKDBZ6poCFt7XFMzOwVrTQ1cWjszC2T7Z40FfS9cBLPKpBjtu5bPXWGNv+8SZO++ RXiK4tZpYBnytiG6a2mw6rDGqTNtIhB+5KMQFw6YGqyDDxmYnX8ftOVOsx8k8tFl 5eWOCv3aKYsPPqppg5xWXEQXLCWUyt/kBjIh9i0JA8hksN8hLIkXQQdTLY9oIu2u rmghr5k33070NS0bkhAUYpI46Jv31XXTdCbdZoYp++Ngyx7ec604sNpSuZ/VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL6r7yPwPMcbLGxjFLwRvqjSnk5MwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr293MA0GCSqG SIb3DQEBCwUAA4IBAQAF6C7mCK+K4oGjGklfUMdnhfVxH5vlEJK0tnKZ+bd/8wOZ Qz8UH3ja12/3astp+1xkdxvpCMkTIVezzfuPuolVIXFvtRU6M13hyvnSdVd/rNZ0 aY4QPYV2jT8wCDg3PqKmjJeZDkrMIJg2G7FLbdn8FXaS2wo/o38/BErr9a+0u/Jw BTd6knjv2uq4aFvxA5bdOtjwjMoVH4VaNOco++vzl/TAJRvkJZpxKf/G3dPKlup7 X881STaf5ARC2z1CXRP3e5WXJ6520l+UV0IfILHilkPohIxl4bBDZu2TgVTh6ULg YqD3lRDlAOMo6pICqvIntG3GVI65XIea7rhrliAy -----END CERTIFICATE-----Generated at Fri Feb 21 12:55:18 2025 by rpki-client