$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131342e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131342e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: BgrpAYav/pUESxArt2NS1teCYs0lWmtbdh6n4DVdjLM= Subject key identifier: E6:EC:EA:CC:28:E1:C6:37:E0:DD:66:7B:0C:00:65:0F:48:7A:EA:49 Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 346CCF8E98FFE491E36900DEDFD293F75F532DD0 Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131342e302f32342d3234203d3e203338353233.roa Signing time: Fri 02 Aug 2024 15:00:02 +0000 ROA not before: Fri 02 Aug 2024 14:55:02 +0000 ROA not after: Fri 01 Aug 2025 15:00:02 +0000 asID: 38523 IP address blocks: 117.74.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6c:cf:8e:98:ff:e4:91:e3:69:00:de:df:d2:93:f7:5f:53:2d:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Aug 2 14:55:02 2024 GMT Not After : Aug 1 15:00:02 2025 GMT Subject: CN=E6ECEACC28E1C637E0DD667B0C00650F487AEA49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c2:f9:8c:49:df:24:b4:f4:51:31:4a:e1:67: bf:ef:f9:da:cc:53:2c:93:24:98:a3:ba:0b:c2:86: 12:7a:97:61:ae:e1:aa:b6:5f:2a:e3:fc:07:1c:99: 8a:91:d7:ef:2f:8c:95:dc:78:49:4e:4c:b7:d5:e5: 34:fc:10:20:27:af:0c:30:e5:21:4d:f1:20:63:de: 94:77:d2:f2:5f:5f:13:80:53:74:53:6c:68:33:4f: ef:d0:36:57:41:b2:95:6b:4e:eb:ce:85:64:4b:b7: d7:7b:f2:e2:39:0c:cb:be:3a:7c:ce:5e:f6:64:f0: 6e:d8:f6:0c:b8:83:70:1a:0f:fa:45:4c:4b:b2:f8: 8f:5b:ce:56:2e:58:24:57:34:66:88:b3:5d:3d:af: 5c:84:74:1e:ff:e7:24:6f:1d:bf:62:2b:10:e1:ea: f6:7b:6b:15:b1:66:8a:47:55:1c:fd:20:8c:64:5e: bd:e0:f2:db:61:46:8a:9d:c3:e5:45:a6:27:ae:d9: ab:06:37:63:46:f4:20:32:aa:95:2c:ac:4e:28:c5: d7:8f:1b:d0:09:05:5c:5c:33:98:8c:f8:61:dd:47: fa:78:a8:f0:61:3f:6d:2f:4b:ec:05:b4:35:ee:11: 9e:12:57:d6:32:0d:84:ab:6f:a8:6f:57:d0:f9:1a: 04:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:EC:EA:CC:28:E1:C6:37:E0:DD:66:7B:0C:00:65:0F:48:7A:EA:49 X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131342e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.114.0/24 Signature Algorithm: sha256WithRSAEncryption 59:7c:bd:26:b8:19:99:cf:ea:76:28:31:61:51:46:4b:87:2c: fe:da:2a:90:a6:66:27:1b:df:ff:ac:5b:1e:3c:c0:ea:57:50: c4:a4:cd:b6:4d:ae:52:a0:a4:d3:b7:5e:e5:02:60:cd:1e:b5: 73:9a:85:ea:05:52:ca:2b:23:93:7e:4d:7b:74:62:a6:8e:70: 68:17:e0:df:cb:88:fc:d2:91:ad:5e:95:6b:6b:6e:2e:36:94: 4d:2b:cc:e5:8b:f2:fe:2a:ff:04:0d:0d:18:e1:6b:76:e2:5f: 2d:aa:72:b1:db:d9:4f:d4:b8:c1:d7:88:cb:7a:b4:e2:c1:da: f0:5b:a8:83:20:99:b9:ea:e2:29:a3:1d:0c:6b:bf:92:8c:dd: a6:24:9d:12:b1:f3:ee:dc:a9:0c:68:3b:6e:5d:86:e2:9a:1e: 61:6a:a0:87:07:a1:44:46:c5:f7:4c:27:d1:95:1b:42:92:06: e9:e7:ba:3c:29:a6:a1:eb:64:ac:6c:7c:44:61:39:e9:cd:12: e2:18:4f:1d:27:17:8f:c0:a0:da:9f:19:90:73:7f:47:cf:f4: 8e:71:7d:fa:24:a9:d4:c4:05:81:dc:24:73:32:8d:73:bd:1f: a4:48:2c:11:9d:c4:0e:84:64:14:8d:81:68:08:0c:fb:c7:47: ce:66:9b:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNGzPjpj/5JHjaQDe39KT919TLdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNDA4MDIxNDU1MDJaFw0yNTA4MDExNTAwMDJaMDMxMTAvBgNV BAMTKEU2RUNFQUNDMjhFMUM2MzdFMERENjY3QjBDMDA2NTBGNDg3QUVBNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEwvmMSd8ktPRRMUrhZ7/v+drM UyyTJJijugvChhJ6l2Gu4aq2Xyrj/AccmYqR1+8vjJXceElOTLfV5TT8ECAnrwww 5SFN8SBj3pR30vJfXxOAU3RTbGgzT+/QNldBspVrTuvOhWRLt9d78uI5DMu+OnzO XvZk8G7Y9gy4g3AaD/pFTEuy+I9bzlYuWCRXNGaIs109r1yEdB7/5yRvHb9iKxDh 6vZ7axWxZopHVRz9IIxkXr3g8tthRoqdw+VFpieu2asGN2NG9CAyqpUsrE4oxdeP G9AJBVxcM5iM+GHdR/p4qPBhP20vS+wFtDXuEZ4SV9YyDYSrb6hvV9D5GgSZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5uzqzCjhxjfg3WZ7DABlD0h66kkwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKcjANBgkqhkiG 9w0BAQsFAAOCAQEAWXy9JrgZmc/qdigxYVFGS4cs/toqkKZmJxvf/6xbHjzA6ldQ xKTNtk2uUqCk07de5QJgzR61c5qF6gVSyisjk35Ne3Ripo5waBfg38uI/NKRrV6V a2tuLjaUTSvM5Yvy/ir/BA0NGOFrduJfLapysdvZT9S4wdeIy3q04sHa8FuogyCZ ueriKaMdDGu/kozdpiSdErHz7typDGg7bl2G4poeYWqghwehREbF90wn0ZUbQpIG 6ee6PCmmoetkrGx8RGE56c0S4hhPHScXj8Cg2p8ZkHN/R8/0jnF9+iSp1MQFgdwk czKNc70fpEgsEZ3EDoRkFI2BaAgM+8dHzmabHg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org