$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133322e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: cniuIY1LCT7CAFaIMPVwi1Spcg4vtQerVs1WPUcxU2Y= Subject key identifier: 72:98:90:2D:C8:52:63:DE:CF:7C:F0:C7:9E:F4:26:93:CE:17:0B:3D Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 792C325A1BCA0C8EE5E2A8BB6A941B63CB6B618C Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa Signing time: Sun 16 Jun 2024 05:00:00 +0000 ROA not before: Sun 16 Jun 2024 04:55:00 +0000 ROA not after: Sun 15 Jun 2025 05:00:00 +0000 asID: 45306 IP address blocks: 119.15.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2c:32:5a:1b:ca:0c:8e:e5:e2:a8:bb:6a:94:1b:63:cb:6b:61:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 04:55:00 2024 GMT Not After : Jun 15 05:00:00 2025 GMT Subject: CN=7298902DC85263DECF7CF0C79EF42693CE170B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e4:d4:cd:ce:77:07:fc:98:1e:54:b3:37:a5: 09:4d:0d:28:35:63:e8:87:ac:c6:01:3b:86:5d:23: 56:c8:db:1f:6f:b3:66:88:cb:47:a4:64:5b:01:87: 68:27:97:49:34:51:bd:aa:b3:7c:79:de:d3:3f:f1: 7a:7d:00:92:bb:9a:9e:4f:7f:6d:da:16:4d:07:60: 2f:a8:d4:2d:05:4e:66:8e:df:d2:d1:af:a4:bb:de: 24:f4:b4:67:ce:81:6f:7a:cd:1e:09:82:ff:37:9a: da:c5:45:cd:cb:74:2a:9f:1a:8f:19:32:28:b3:7d: 64:a8:b3:de:18:0e:c4:c7:4f:8a:ae:56:dd:6f:18: 2d:7a:e8:b0:62:4a:51:0f:d8:28:6f:7a:b0:d3:d0: 9b:7c:7e:9e:5d:a7:1e:ac:7a:c1:da:c5:5a:d3:47: 7c:0a:1a:c9:8c:2e:10:0a:b5:e1:58:48:60:a8:cb: 43:51:7f:1d:a8:d5:73:1c:38:15:00:16:72:22:b0: 26:18:ec:c0:c0:54:d7:30:8d:84:9e:84:cf:68:c1: 11:9c:7f:87:85:80:24:73:b3:8b:96:cb:2f:44:9f: 74:ff:ef:15:3d:9b:5b:64:52:38:d2:29:b7:81:2f: b1:1e:e7:d8:3b:32:5b:c2:1f:b6:57:d4:f1:25:4e: 7f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:98:90:2D:C8:52:63:DE:CF:7C:F0:C7:9E:F4:26:93:CE:17:0B:3D X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.132.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:02:94:02:52:87:70:90:e7:2d:ca:1a:9f:10:03:79:cc:20: a8:be:4f:52:6b:c0:7d:7f:de:07:ec:f6:5f:89:96:d8:4b:4b: 13:62:2b:64:3e:c3:45:12:13:16:01:67:c1:98:3d:57:43:a4: 5f:9a:e1:76:c9:3f:d7:c6:56:18:7f:57:ad:70:c9:f9:4e:7d: bf:9b:ad:bc:aa:cb:4b:5b:bb:10:8d:b9:b5:b3:ad:c8:96:05: 63:16:0a:9c:68:31:44:1a:ec:13:2f:b5:fb:8e:e1:29:83:cb: 4b:1d:85:77:df:23:4e:23:6c:9c:d1:d5:49:a2:cd:38:6e:b1: 5d:cf:5b:77:ff:cc:1e:4f:5f:16:e0:15:94:f6:7c:55:77:e1: ba:3c:c0:03:30:f3:c9:d2:4d:f5:63:e9:af:f0:dc:70:7e:fb: d8:a7:56:9f:5a:ee:1a:2b:ea:c1:79:60:00:28:bf:61:aa:d1: 46:87:42:c6:ba:c2:fc:59:1f:c9:ca:b0:cc:4b:7b:cb:08:2b: 4b:f8:3b:f7:1f:39:18:cc:a9:c7:41:8c:97:34:d9:ba:8c:ba: af:68:de:44:32:80:73:e1:0a:97:52:fe:cd:8d:5a:09:f4:3a: 76:9b:35:05:ba:cc:e9:ac:40:7a:fc:b7:0c:3a:40:09:27:81: f4:9a:c7:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeSwyWhvKDI7l4qi7apQbY8trYYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwNDU1MDBaFw0yNTA2MTUwNTAwMDBaMDMxMTAvBgNV BAMTKDcyOTg5MDJEQzg1MjYzREVDRjdDRjBDNzlFRjQyNjkzQ0UxNzBCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC5NTNzncH/JgeVLM3pQlNDSg1 Y+iHrMYBO4ZdI1bI2x9vs2aIy0ekZFsBh2gnl0k0Ub2qs3x53tM/8Xp9AJK7mp5P f23aFk0HYC+o1C0FTmaO39LRr6S73iT0tGfOgW96zR4Jgv83mtrFRc3LdCqfGo8Z MiizfWSos94YDsTHT4quVt1vGC166LBiSlEP2ChverDT0Jt8fp5dpx6sesHaxVrT R3wKGsmMLhAKteFYSGCoy0NRfx2o1XMcOBUAFnIisCYY7MDAVNcwjYSehM9owRGc f4eFgCRzs4uWyy9En3T/7xU9m1tkUjjSKbeBL7Ee59g7MlvCH7ZX1PElTn8JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcpiQLchSY97PfPDHnvQmk84XCz0wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPhDANBgkqhkiG 9w0BAQsFAAOCAQEAPAKUAlKHcJDnLcoanxADecwgqL5PUmvAfX/eB+z2X4mW2EtL E2IrZD7DRRITFgFnwZg9V0OkX5rhdsk/18ZWGH9XrXDJ+U59v5utvKrLS1u7EI25 tbOtyJYFYxYKnGgxRBrsEy+1+47hKYPLSx2Fd98jTiNsnNHVSaLNOG6xXc9bd//M Hk9fFuAVlPZ8VXfhujzAAzDzydJN9WPpr/DccH772KdWn1ruGivqwXlgACi/YarR RodCxrrC/FkfycqwzEt7ywgrS/g79x85GMypx0GMlzTZuoy6r2jeRDKAc+EKl1L+ zY1aCfQ6dps1BbrM6axAevy3DDpACSeB9JrHkA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org