$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131382e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: znSniW+lPXCPGxomzmN2hrx17CR9++zAKICSSEuO9Vw= Subject key identifier: 53:1C:1D:0F:FE:F5:27:9B:1C:41:C6:6F:89:3F:2D:0A:A5:21:30:87 Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 0F3DE340AA2A3860D23F47EBE4A99C8BDBBF1CAF Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa Signing time: Fri 02 Aug 2024 15:00:02 +0000 ROA not before: Fri 02 Aug 2024 14:55:02 +0000 ROA not after: Fri 01 Aug 2025 15:00:02 +0000 asID: 38523 IP address blocks: 117.74.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3d:e3:40:aa:2a:38:60:d2:3f:47:eb:e4:a9:9c:8b:db:bf:1c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Aug 2 14:55:02 2024 GMT Not After : Aug 1 15:00:02 2025 GMT Subject: CN=531C1D0FFEF5279B1C41C66F893F2D0AA5213087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:ef:1e:ec:41:38:ac:b8:88:05:c2:f6:23: 81:c8:ca:6c:cf:cf:f7:f3:27:73:c5:17:b9:a4:2a: 43:4f:59:0e:b5:fb:53:93:59:48:41:6c:25:d2:5e: b8:6d:b7:54:1b:51:f2:a2:0c:cf:ac:58:a4:b3:c2: c3:7c:92:1d:5a:4f:7d:29:d6:a7:ad:e4:f9:77:53: e1:24:44:dc:46:29:40:57:3c:06:78:f3:12:34:3b: 25:4d:60:d3:08:bc:0d:5b:b1:50:01:f7:b2:d8:9b: ad:d4:55:62:5d:ef:ae:28:59:a2:a1:ae:bd:b8:a2: 1e:85:8e:85:66:e4:88:9c:3c:f4:e9:b6:86:7e:7c: c2:60:ec:b1:e1:34:78:bc:2b:ab:e3:3a:8b:91:3a: 96:ed:c3:a2:6d:e9:69:fb:2a:80:1b:8e:f6:5f:1f: 02:23:52:da:f7:e5:57:cc:04:36:82:26:77:3d:98: 08:ce:31:58:1e:cc:dc:12:05:3e:0c:e1:40:92:14: e6:6e:34:40:6a:f2:26:b5:06:08:f4:2c:be:96:86: 3f:59:a5:d6:07:34:db:25:a9:bc:d8:88:2b:69:ec: 67:0a:3c:b4:23:62:16:7b:37:bf:bd:86:d4:97:f1: 45:25:64:fe:22:71:1d:c9:69:bc:ee:18:4c:b6:37: 2a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:1C:1D:0F:FE:F5:27:9B:1C:41:C6:6F:89:3F:2D:0A:A5:21:30:87 X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:5f:9a:90:1f:84:5d:32:9b:63:6a:67:87:c3:6f:ed:dd:76: 85:64:a5:79:df:e4:97:ce:a4:f1:80:50:01:d4:d3:94:13:7d: 9f:4d:05:44:42:2f:9e:44:5b:aa:af:a5:a9:a6:a5:36:2e:89: 5c:b3:8f:75:da:31:a5:97:a4:2f:26:17:49:06:d1:97:0f:ae: 4d:a2:b6:ad:09:17:1b:fc:95:e3:c3:33:76:0e:f0:b7:5a:32: 50:c1:03:fb:52:30:73:3e:f7:57:7a:fd:a0:67:59:c7:4c:a5: 51:80:c9:54:ad:78:d5:00:c5:54:82:3f:bb:a2:aa:3c:93:5e: 5f:a3:12:58:ae:dc:68:4f:56:28:be:e2:2c:32:57:93:ea:9f: dc:31:99:24:c9:64:9f:06:7a:4d:9b:25:9d:67:27:36:90:6c: aa:6f:5a:ba:87:96:4c:33:a8:de:2b:b5:3a:85:d1:fd:99:69: 23:1a:0d:6b:c5:08:fc:99:65:28:44:20:76:0f:83:e5:3c:f8: 91:e5:d1:8b:29:a2:53:fd:b4:30:18:40:e0:86:72:5f:f2:cc: 47:7c:18:65:5c:17:bc:2b:80:bb:ef:de:55:72:88:8e:e5:f6: f7:32:a1:56:54:e7:d6:a5:16:2f:e0:c6:bd:90:38:89:0d:16: 27:15:01:5a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDz3jQKoqOGDSP0fr5Kmci9u/HK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNDA4MDIxNDU1MDJaFw0yNTA4MDExNTAwMDJaMDMxMTAvBgNV BAMTKDUzMUMxRDBGRkVGNTI3OUIxQzQxQzY2Rjg5M0YyRDBBQTUyMTMwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGae8e7EE4rLiIBcL2I4HIymzP z/fzJ3PFF7mkKkNPWQ61+1OTWUhBbCXSXrhtt1QbUfKiDM+sWKSzwsN8kh1aT30p 1qet5Pl3U+EkRNxGKUBXPAZ48xI0OyVNYNMIvA1bsVAB97LYm63UVWJd764oWaKh rr24oh6FjoVm5IicPPTptoZ+fMJg7LHhNHi8K6vjOouROpbtw6Jt6Wn7KoAbjvZf HwIjUtr35VfMBDaCJnc9mAjOMVgezNwSBT4M4UCSFOZuNEBq8ia1Bgj0LL6Whj9Z pdYHNNslqbzYiCtp7GcKPLQjYhZ7N7+9htSX8UUlZP4icR3JabzuGEy2NyotAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUxwdD/71J5scQcZviT8tCqUhMIcwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKdjANBgkqhkiG 9w0BAQsFAAOCAQEAnV+akB+EXTKbY2pnh8Nv7d12hWSled/kl86k8YBQAdTTlBN9 n00FREIvnkRbqq+lqaalNi6JXLOPddoxpZekLyYXSQbRlw+uTaK2rQkXG/yV48Mz dg7wt1oyUMED+1Iwcz73V3r9oGdZx0ylUYDJVK141QDFVII/u6KqPJNeX6MSWK7c aE9WKL7iLDJXk+qf3DGZJMlknwZ6TZslnWcnNpBsqm9auoeWTDOo3iu1OoXR/Zlp IxoNa8UI/JllKEQgdg+D5Tz4keXRiymiU/20MBhA4IZyX/LMR3wYZVwXvCuAu+/e VXKIjuX29zKhVlTn1qUWL+DGvZA4iQ0WJxUBWg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org