$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133312e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133312e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: 286KYuIyb4bfw/6gsV2UX49JI0TQ4UjnfosBxVwHmEU= Subject key identifier: 3A:6C:B9:BB:5F:A1:D4:3E:D9:34:7E:28:76:A7:DB:67:B8:2C:BA:F8 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 1CEB8C4A6A37476A947CA2CD84311B1C9F66D6E1 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133312e302f32342d3234203d3e203435333036.roa Signing time: Sun 16 Jun 2024 06:00:01 +0000 ROA not before: Sun 16 Jun 2024 05:55:01 +0000 ROA not after: Sun 15 Jun 2025 06:00:01 +0000 asID: 45306 IP address blocks: 119.15.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:eb:8c:4a:6a:37:47:6a:94:7c:a2:cd:84:31:1b:1c:9f:66:d6:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 05:55:01 2024 GMT Not After : Jun 15 06:00:01 2025 GMT Subject: CN=3A6CB9BB5FA1D43ED9347E2876A7DB67B82CBAF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f8:de:e2:f2:b8:54:78:5b:31:68:6a:dd:be: 6d:a0:a5:85:04:f6:f0:c5:06:a5:19:6e:e2:6e:4c: 81:8e:5d:12:f9:b1:42:3d:8e:6a:65:ad:47:e1:18: 6d:43:8f:22:83:51:b3:e6:b5:26:e4:50:52:91:4c: 6e:14:65:12:2b:a9:26:aa:15:67:f2:a6:11:81:fa: dc:90:22:c5:2e:35:12:0b:54:c6:c8:f1:7a:64:9c: 62:84:e9:17:a5:30:86:4a:3a:7f:76:18:c2:ce:08: b2:bf:84:db:b8:5f:c7:8e:41:98:04:19:c9:19:61: 26:64:32:15:b3:e3:c5:22:5d:66:0b:b5:a4:e4:8d: 36:c4:b5:11:03:97:1a:61:b5:8d:a1:94:33:ad:bd: ee:04:c4:5c:83:e2:5d:93:7e:3a:5d:4d:98:31:51: f6:a9:50:bd:ae:ad:23:0f:d6:eb:97:fd:b2:98:ae: 97:98:c8:07:02:d5:c2:f8:89:fa:13:5d:02:d0:aa: 49:9d:f3:fa:bd:45:c7:a5:ed:91:e3:05:e7:d2:e0: 84:96:f8:ac:f6:0f:dd:70:a3:f6:f5:d2:44:aa:4c: 04:a6:93:60:e8:46:a5:47:9a:35:0e:e2:6f:33:e8: 1b:05:9c:90:83:e2:04:be:b4:7f:c5:2a:fd:a1:c5: b6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6C:B9:BB:5F:A1:D4:3E:D9:34:7E:28:76:A7:DB:67:B8:2C:BA:F8 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133312e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.131.0/24 Signature Algorithm: sha256WithRSAEncryption a1:d4:1d:e0:73:08:52:be:b9:5f:91:2f:65:25:5d:7c:f9:5c: 69:b2:a7:3b:cf:4d:ae:09:c1:97:bd:a8:bd:0d:6b:73:9e:1e: 4d:46:f1:71:37:16:cb:3a:d2:07:cf:04:75:42:04:bc:ce:37: fa:a5:3f:dc:d5:1a:85:f6:32:d3:34:62:d7:9b:41:57:52:6c: 5d:0f:05:b3:20:2a:ec:82:66:e9:f3:30:68:b5:93:aa:b0:30: fd:eb:fb:ff:6d:38:16:16:7a:b1:74:de:ed:96:ef:ba:1a:a8: d9:5c:44:0c:9c:34:d7:16:d9:eb:17:05:65:ff:73:9b:bc:84: 50:6c:bf:5c:80:0b:d1:65:0f:23:16:ca:3e:07:4c:27:de:b1: 7a:4f:93:d7:ab:dc:75:e6:d2:47:81:82:77:65:a5:f7:9e:5e: 3b:9d:06:24:d6:79:0b:d5:6f:f5:b8:0e:3f:fc:09:fc:a7:47: 14:8b:fc:37:fe:ba:3c:dc:30:01:00:1e:56:e6:ea:6e:50:d1: 08:f5:95:40:33:cf:91:af:ba:61:a7:9c:e9:b1:43:e8:00:89: 13:fc:4e:f5:6c:37:98:4f:ed:bb:9a:02:66:24:3e:05:a7:52: 91:a9:d0:61:ec:d2:38:cc:5e:c3:a9:98:0a:f5:49:37:98:1e: c9:6e:aa:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHOuMSmo3R2qUfKLNhDEbHJ9m1uEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwNTU1MDFaFw0yNTA2MTUwNjAwMDFaMDMxMTAvBgNV BAMTKDNBNkNCOUJCNUZBMUQ0M0VEOTM0N0UyODc2QTdEQjY3QjgyQ0JBRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv+N7i8rhUeFsxaGrdvm2gpYUE 9vDFBqUZbuJuTIGOXRL5sUI9jmplrUfhGG1DjyKDUbPmtSbkUFKRTG4UZRIrqSaq FWfyphGB+tyQIsUuNRILVMbI8XpknGKE6RelMIZKOn92GMLOCLK/hNu4X8eOQZgE GckZYSZkMhWz48UiXWYLtaTkjTbEtREDlxphtY2hlDOtve4ExFyD4l2TfjpdTZgx UfapUL2urSMP1uuX/bKYrpeYyAcC1cL4ifoTXQLQqkmd8/q9Rcel7ZHjBefS4ISW +Kz2D91wo/b10kSqTASmk2DoRqVHmjUO4m8z6BsFnJCD4gS+tH/FKv2hxbb3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOmy5u1+h1D7ZNH4odqfbZ7gsuvgwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPgzANBgkqhkiG 9w0BAQsFAAOCAQEAodQd4HMIUr65X5EvZSVdfPlcabKnO89NrgnBl72ovQ1rc54e TUbxcTcWyzrSB88EdUIEvM43+qU/3NUahfYy0zRi15tBV1JsXQ8FsyAq7IJm6fMw aLWTqrAw/ev7/204FhZ6sXTe7Zbvuhqo2VxEDJw01xbZ6xcFZf9zm7yEUGy/XIAL 0WUPIxbKPgdMJ96xek+T16vcdebSR4GCd2Wl955eO50GJNZ5C9Vv9bgOP/wJ/KdH FIv8N/66PNwwAQAeVubqblDRCPWVQDPPka+6Yaec6bFD6ACJE/xO9Ww3mE/tu5oC ZiQ+BadSkanQYezSOMxew6mYCvVJN5geyW6qtQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org