$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131332e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131332e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: bOBZGkzqysQJJCz7648wZEJREONFUo+QtRyxjh2BRFw= Subject key identifier: 8F:EC:4B:C8:B2:FF:FF:6A:76:14:AD:6D:10:C0:6F:A9:0D:B8:1E:D9 Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 0AC505070547AA2CAF7A0D4D85D03A1504572369 Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131332e302f32342d3234203d3e203338353233.roa Signing time: Fri 02 Aug 2024 15:00:03 +0000 ROA not before: Fri 02 Aug 2024 14:55:03 +0000 ROA not after: Fri 01 Aug 2025 15:00:03 +0000 asID: 38523 IP address blocks: 117.74.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c5:05:07:05:47:aa:2c:af:7a:0d:4d:85:d0:3a:15:04:57:23:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Aug 2 14:55:03 2024 GMT Not After : Aug 1 15:00:03 2025 GMT Subject: CN=8FEC4BC8B2FFFF6A7614AD6D10C06FA90DB81ED9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c5:ba:47:f2:4e:f0:43:7b:93:6b:92:df:40: 57:ae:05:2e:be:ad:bf:d4:be:90:bc:8e:59:d3:af: e5:ff:d7:06:3f:4e:d0:d8:e2:fe:b9:4f:1f:b7:8f: 86:97:ab:fb:7a:86:9e:1b:ac:cf:42:eb:8c:a8:12: 41:42:f0:d8:c7:5b:9b:64:32:fd:14:49:df:e2:29: ab:dd:09:00:78:47:1c:35:26:8f:7b:e4:a0:34:18: 2a:0d:06:70:4b:ca:56:b9:98:33:3a:28:25:ef:d1: 69:84:3e:cc:f4:2a:4d:ca:95:8c:8f:2a:a6:f7:bc: 45:66:8b:1f:96:0b:2d:36:69:a0:ce:08:14:4d:0f: 47:e5:6c:09:ca:0d:7f:6a:f1:77:bf:12:75:07:9b: d0:5a:ec:2a:3d:1e:14:cf:5e:8b:5e:ba:3e:71:bf: 2e:bb:5c:7d:25:bd:85:e4:27:e8:7f:e5:0f:69:60: 2f:20:9e:56:96:af:52:94:98:13:31:bd:a4:80:02: 4b:af:91:18:1e:b7:50:ae:99:a5:06:da:7d:d7:49: 6c:24:4d:83:1d:d6:7c:05:05:bd:a6:95:45:52:41: 20:5e:62:d2:d9:f5:e3:3f:c2:51:48:b4:a7:d0:b7: 8e:93:6b:b1:f8:85:a8:31:3f:46:e0:82:ce:dc:f7: b6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EC:4B:C8:B2:FF:FF:6A:76:14:AD:6D:10:C0:6F:A9:0D:B8:1E:D9 X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131332e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.113.0/24 Signature Algorithm: sha256WithRSAEncryption 53:12:9f:e3:1d:2b:5d:fa:04:72:4d:12:59:6f:94:7c:2a:84: bf:b1:03:2f:c9:9c:74:79:17:a2:2c:63:1c:d2:e7:e7:3d:32: 2b:a1:a4:5e:e3:cc:05:ef:7e:46:09:8d:f3:53:8c:23:08:9c: 49:0c:e0:6c:aa:bb:ef:42:ef:d7:25:e1:0f:bf:85:be:f9:45: 14:b6:6f:be:db:ed:a1:f8:e7:3e:92:d4:fd:21:56:39:fc:33: 40:9a:81:3e:d9:af:f8:4a:a7:37:b8:91:2b:b7:cc:46:9a:c7: 7b:5f:1c:99:f0:9e:81:a1:7d:b4:f7:99:68:37:26:4f:07:95: 19:46:de:a4:c2:b7:e9:7f:eb:b5:8e:20:57:c4:5f:8e:83:53: 41:83:55:66:b7:63:b0:58:b5:a1:43:75:c9:1a:38:1c:4d:a4: 34:0a:92:eb:09:56:69:21:a2:7e:34:ef:4f:a0:35:5e:3c:a0: 50:4d:5a:23:fa:7a:c8:76:02:eb:ca:79:08:22:a2:e4:92:c3: 0c:ea:20:71:f7:81:91:c9:bf:46:a6:66:91:27:b5:2a:8f:eb: d8:f9:b2:86:61:23:db:dc:3e:7a:ef:1c:7c:86:d4:2c:c7:db: fc:79:ef:cc:c0:d6:d4:f1:2b:8f:ac:34:da:31:c4:d9:16:24: 77:b4:b3:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCsUFBwVHqiyveg1NhdA6FQRXI2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNDA4MDIxNDU1MDNaFw0yNTA4MDExNTAwMDNaMDMxMTAvBgNV BAMTKDhGRUM0QkM4QjJGRkZGNkE3NjE0QUQ2RDEwQzA2RkE5MERCODFFRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKxbpH8k7wQ3uTa5LfQFeuBS6+ rb/UvpC8jlnTr+X/1wY/TtDY4v65Tx+3j4aXq/t6hp4brM9C64yoEkFC8NjHW5tk Mv0USd/iKavdCQB4Rxw1Jo975KA0GCoNBnBLyla5mDM6KCXv0WmEPsz0Kk3KlYyP Kqb3vEVmix+WCy02aaDOCBRND0flbAnKDX9q8Xe/EnUHm9Ba7Co9HhTPXoteuj5x vy67XH0lvYXkJ+h/5Q9pYC8gnlaWr1KUmBMxvaSAAkuvkRget1CumaUG2n3XSWwk TYMd1nwFBb2mlUVSQSBeYtLZ9eM/wlFItKfQt46Ta7H4hagxP0bggs7c97bHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj+xLyLL//2p2FK1tEMBvqQ24HtkwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKcTANBgkqhkiG 9w0BAQsFAAOCAQEAUxKf4x0rXfoEck0SWW+UfCqEv7EDL8mcdHkXoixjHNLn5z0y K6GkXuPMBe9+RgmN81OMIwicSQzgbKq770Lv1yXhD7+FvvlFFLZvvtvtofjnPpLU /SFWOfwzQJqBPtmv+EqnN7iRK7fMRprHe18cmfCegaF9tPeZaDcmTweVGUbepMK3 6X/rtY4gV8RfjoNTQYNVZrdjsFi1oUN1yRo4HE2kNAqS6wlWaSGifjTvT6A1Xjyg UE1aI/p6yHYC68p5CCKi5JLDDOogcfeBkcm/RqZmkSe1Ko/r2PmyhmEj29w+eu8c fIbULMfb/HnvzMDW1PErj6w02jHE2RYkd7SzxA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org