$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa File: 3131392e34372e39302e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: 0DnYU2jr7QxjixoSztZEMdXjq3UixntmcvFZ+jIl2KU= Subject key identifier: 89:A1:AB:49:FD:42:4F:48:E2:3C:15:47:5A:17:1A:1C:35:F8:4D:3C Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 7A51F5668BAE74E11AF57F75AF2BD8A8D56475D4 Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa Signing time: Sat 26 Aug 2023 03:32:40 +0000 ROA not before: Sat 26 Aug 2023 03:27:40 +0000 ROA not after: Sat 24 Aug 2024 03:32:40 +0000 asID: 138089 IP address blocks: 119.47.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:51:f5:66:8b:ae:74:e1:1a:f5:7f:75:af:2b:d8:a8:d5:64:75:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Aug 26 03:27:40 2023 GMT Not After : Aug 24 03:32:40 2024 GMT Subject: CN=89A1AB49FD424F48E23C15475A171A1C35F84D3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f5:e8:1d:99:39:76:3b:5f:c8:de:9b:75:89: 19:c9:b0:e4:9d:9d:ee:d2:35:91:49:8b:91:ba:ed: 4e:14:0a:08:5a:0e:c1:c0:5a:45:00:cb:80:0a:a6: d5:af:70:0e:3c:47:e6:3e:d1:74:30:dc:c3:ac:a6: 84:17:7f:57:f1:46:61:f8:61:14:63:b4:68:3f:1b: a7:53:45:4b:16:0f:41:00:b7:30:e7:8f:bf:de:a6: 45:fa:31:b9:c0:74:96:8f:58:c2:69:20:af:55:f5: c8:f4:7b:4f:53:95:3e:b2:61:26:2d:21:81:39:ca: bf:2a:18:63:97:fc:99:3a:a8:d3:45:f0:d0:68:a8: b9:7d:4c:6f:c8:c1:43:00:99:92:c1:98:ef:f7:c8: 9e:06:5a:85:90:a9:f1:5c:d8:b6:29:e1:70:cd:e4: 19:d1:38:0c:9a:c8:23:f2:f8:b6:5c:02:00:bd:8b: 54:18:24:6f:12:d7:69:0e:a6:ba:54:d3:39:5b:57: 94:58:47:2a:41:a0:f3:87:78:42:31:5a:d4:31:d5: 1d:89:51:bf:7d:ff:9c:3f:3e:4c:c7:58:83:ac:b4: 63:de:ec:a3:31:95:2b:fe:4b:01:7f:4f:ad:78:e7: 0d:06:69:ab:9c:4f:48:89:5d:c2:38:1c:9d:aa:c9: 3c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A1:AB:49:FD:42:4F:48:E2:3C:15:47:5A:17:1A:1C:35:F8:4D:3C X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.47.90.0/24 Signature Algorithm: sha256WithRSAEncryption bf:a3:59:e2:72:da:74:81:c8:a2:f4:7c:cd:25:da:2d:19:59: 09:4c:9a:2a:93:e2:90:0d:62:ee:ca:3c:c0:c0:26:ca:b7:d3: 2c:32:b9:c0:f7:a7:81:ff:57:05:2b:12:e0:e8:93:3c:00:34: b8:3c:e7:16:ab:94:40:34:c6:28:84:73:bf:83:6a:5c:72:74: 58:ac:6a:fd:d9:60:ac:f1:19:39:4f:88:75:6b:a5:d5:9e:0c: e7:a9:b4:3c:a2:cb:5c:bb:a1:c5:d4:ab:33:c0:b5:7a:7c:07: d3:bd:18:3b:8a:e9:74:d1:75:5e:bd:ca:3e:cb:e0:8a:5d:78: ee:1d:6c:67:ed:94:6e:81:15:01:ba:f4:bf:48:da:7b:91:64: 75:23:f9:ab:f1:79:fe:f7:ca:53:28:66:61:62:87:8c:b8:38: 3e:9f:e2:f2:aa:b4:66:4b:83:23:1e:2f:c3:99:c0:2a:b8:b0: 8c:f6:9d:cc:b8:ee:b2:c1:87:67:b5:dc:37:dc:e5:67:84:c9: db:48:56:47:40:6e:45:c4:ae:a0:2e:c6:b5:0c:ce:6b:67:6e: eb:9a:a0:94:00:e6:07:0e:7b:24:9f:7f:9a:88:bb:55:f2:7a: 23:8d:03:24:f2:01:b6:e4:1f:4d:16:cd:b1:b3:32:b3:c0:b2: c3:ca:eb:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUelH1ZouudOEa9X91ryvYqNVkddQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yMzA4MjYwMzI3NDBaFw0yNDA4MjQwMzMyNDBaMDMxMTAvBgNV BAMTKDg5QTFBQjQ5RkQ0MjRGNDhFMjNDMTU0NzVBMTcxQTFDMzVGODREM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC29egdmTl2O1/I3pt1iRnJsOSd ne7SNZFJi5G67U4UCghaDsHAWkUAy4AKptWvcA48R+Y+0XQw3MOspoQXf1fxRmH4 YRRjtGg/G6dTRUsWD0EAtzDnj7/epkX6MbnAdJaPWMJpIK9V9cj0e09TlT6yYSYt IYE5yr8qGGOX/Jk6qNNF8NBoqLl9TG/IwUMAmZLBmO/3yJ4GWoWQqfFc2LYp4XDN 5BnROAyayCPy+LZcAgC9i1QYJG8S12kOprpU0zlbV5RYRypBoPOHeEIxWtQx1R2J Ub99/5w/PkzHWIOstGPe7KMxlSv+SwF/T6145w0GaaucT0iJXcI4HJ2qyTwjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiaGrSf1CT0jiPBVHWhcaHDX4TTwwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzEzOTJlMzQzNzJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcvWjANBgkqhkiG 9w0BAQsFAAOCAQEAv6NZ4nLadIHIovR8zSXaLRlZCUyaKpPikA1i7so8wMAmyrfT LDK5wPengf9XBSsS4OiTPAA0uDznFquUQDTGKIRzv4NqXHJ0WKxq/dlgrPEZOU+I dWul1Z4M56m0PKLLXLuhxdSrM8C1enwH070YO4rpdNF1Xr3KPsvgil147h1sZ+2U boEVAbr0v0jae5FkdSP5q/F5/vfKUyhmYWKHjLg4Pp/i8qq0ZkuDIx4vw5nAKriw jPadzLjussGHZ7XcN9zlZ4TJ20hWR0BuRcSuoC7GtQzOa2du65qglADmBw57JJ9/ moi7VfJ6I40DJPIBtuQfTRbNsbMys8Cyw8rrJA== -----END CERTIFICATE-----Generated at Thu May 2 17:16:22 2024 by rpki-client on console-ams.rpki-client.org