$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa File: 3131392e34372e39302e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: 5aw/2xBP6tqiurEQdQQvhEuzVTQaLC2QP/uo4lVPxYg= Subject key identifier: 92:F5:C8:0F:8E:D2:D5:29:B1:9E:DC:13:30:02:9D:C5:44:F7:E4:A8 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 03F52134B03B623291188724AAAD87BAE394C57F Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa Signing time: Sat 27 Jul 2024 04:00:02 +0000 ROA not before: Sat 27 Jul 2024 03:55:02 +0000 ROA not after: Sat 26 Jul 2025 04:00:02 +0000 asID: 138089 IP address blocks: 119.47.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f5:21:34:b0:3b:62:32:91:18:87:24:aa:ad:87:ba:e3:94:c5:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Jul 27 03:55:02 2024 GMT Not After : Jul 26 04:00:02 2025 GMT Subject: CN=92F5C80F8ED2D529B19EDC1330029DC544F7E4A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e9:60:59:65:59:e7:f9:72:e9:d4:2d:20:f0: 86:2b:7e:9b:d2:42:4e:2d:09:8d:db:a1:35:49:8e: 9d:8a:5e:92:7e:a4:7a:0f:ff:ce:f7:a5:21:77:93: f1:e6:20:9b:92:c7:8a:f5:cb:50:f5:bb:01:50:7b: 49:3a:b0:fb:e8:bc:dc:c5:9e:c7:07:77:09:e2:10: 4f:92:0c:d8:08:fd:7e:08:17:76:ca:ec:0b:5d:3a: d5:06:0d:3d:b8:75:99:de:1c:3e:00:11:d7:50:61: 0f:17:39:3b:84:c4:79:94:87:92:2f:78:ca:c0:45: ce:b6:5c:d3:ca:b3:6b:d3:85:03:28:ce:4a:3e:5c: 1c:56:ac:e0:f2:53:44:17:ca:c0:5e:d8:b9:d0:9d: 09:9e:c2:aa:5e:99:c3:4e:af:00:11:41:ad:d3:8a: b7:e6:13:42:28:93:1e:0f:9e:34:40:a4:88:34:50: ac:da:0a:d8:1a:91:2b:fb:30:6d:ef:1c:ad:21:fa: 7d:a0:e1:29:15:c6:2c:87:94:72:13:f7:74:ca:a9: 49:93:43:b7:ca:97:13:16:13:98:7e:c2:d4:e0:b2: e7:6b:6c:f7:8a:60:da:fd:db:ef:73:99:2a:20:ca: f5:3f:04:55:fa:68:27:42:e0:66:91:8e:89:87:50: 74:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F5:C8:0F:8E:D2:D5:29:B1:9E:DC:13:30:02:9D:C5:44:F7:E4:A8 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.47.90.0/24 Signature Algorithm: sha256WithRSAEncryption 74:5d:4d:cf:aa:46:77:73:3f:8d:cf:9b:d3:5d:59:10:ee:28: 37:a7:ed:2b:dd:0a:62:9b:30:9d:47:be:0a:f7:6a:80:52:11: c6:35:45:20:71:b8:22:1f:dd:3e:aa:d7:c9:45:ab:98:9e:6f: 0f:9c:2a:57:b5:4a:c1:6b:0b:af:8f:e3:2b:5b:d1:73:d2:ff: ee:18:ba:21:3e:a7:c5:8c:62:ec:46:95:5f:e3:c2:23:bb:25: bd:dd:f7:ae:cb:0b:98:ef:60:c1:63:ae:98:0a:6d:4a:c3:0b: 79:49:47:ba:38:54:02:05:02:f6:68:96:d0:61:22:3b:7d:3f: 81:f1:ab:16:40:e4:ad:d6:cb:75:39:a8:41:3b:0c:1e:31:8f: 28:7a:58:8c:63:c3:9c:cd:69:bd:27:7d:7a:be:b3:a6:94:00: b8:87:74:70:a7:ac:68:8d:e8:44:e1:2f:04:ef:f9:af:db:3a: ed:02:dc:6b:07:23:03:36:61:04:4d:af:53:f6:ae:aa:c3:4b: 8a:92:f6:0b:b1:9c:df:f3:aa:00:38:47:bb:a3:47:97:cd:c2: d5:0b:5b:b4:19:63:4b:60:bd:21:a0:48:22:40:ba:d1:8d:0c: 4a:20:35:0e:80:a2:65:3e:57:86:25:d3:e2:13:37:e3:47:2e: e0:0a:0c:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA/UhNLA7YjKRGIckqq2HuuOUxX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNDA3MjcwMzU1MDJaFw0yNTA3MjYwNDAwMDJaMDMxMTAvBgNV BAMTKDkyRjVDODBGOEVEMkQ1MjlCMTlFREMxMzMwMDI5REM1NDRGN0U0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD6WBZZVnn+XLp1C0g8IYrfpvS Qk4tCY3boTVJjp2KXpJ+pHoP/873pSF3k/HmIJuSx4r1y1D1uwFQe0k6sPvovNzF nscHdwniEE+SDNgI/X4IF3bK7AtdOtUGDT24dZneHD4AEddQYQ8XOTuExHmUh5Iv eMrARc62XNPKs2vThQMozko+XBxWrODyU0QXysBe2LnQnQmewqpemcNOrwARQa3T irfmE0Iokx4PnjRApIg0UKzaCtgakSv7MG3vHK0h+n2g4SkVxiyHlHIT93TKqUmT Q7fKlxMWE5h+wtTgsudrbPeKYNr92+9zmSogyvU/BFX6aCdC4GaRjomHUHTHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkvXID47S1SmxntwTMAKdxUT35KgwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzEzOTJlMzQzNzJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcvWjANBgkqhkiG 9w0BAQsFAAOCAQEAdF1Nz6pGd3M/jc+b011ZEO4oN6ftK90KYpswnUe+CvdqgFIR xjVFIHG4Ih/dPqrXyUWrmJ5vD5wqV7VKwWsLr4/jK1vRc9L/7hi6IT6nxYxi7EaV X+PCI7slvd33rssLmO9gwWOumAptSsMLeUlHujhUAgUC9miW0GEiO30/gfGrFkDk rdbLdTmoQTsMHjGPKHpYjGPDnM1pvSd9er6zppQAuId0cKesaI3oROEvBO/5r9s6 7QLcawcjAzZhBE2vU/auqsNLipL2C7Gc3/OqADhHu6NHl83C1QtbtBljS2C9IaBI IkC60Y0MSiA1DoCiZT5XhiXT4hM340cu4AoMeA== -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org