$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa File: 3231382e3130302e37342e302f32342d3234203d3e203535363539.roa (raw, json) Hash identifier: f4mlj6WVkyFeaaLH9aybOm9Xb5biRZ9xz41w+irFc4Y= Subject key identifier: 0A:75:C3:0C:68:0A:4B:D2:F5:62:B0:82:C4:42:53:E7:0C:9F:20:44 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 0BDD20C3DC59D1A246BFDBF953614962F36C774C Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa Signing time: Mon 10 Jun 2024 07:45:45 +0000 ROA not before: Mon 10 Jun 2024 07:40:45 +0000 ROA not after: Mon 09 Jun 2025 07:45:45 +0000 asID: 55659 IP address blocks: 218.100.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:dd:20:c3:dc:59:d1:a2:46:bf:db:f9:53:61:49:62:f3:6c:77:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Jun 10 07:40:45 2024 GMT Not After : Jun 9 07:45:45 2025 GMT Subject: CN=0A75C30C680A4BD2F562B082C44253E70C9F2044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:82:e1:ca:20:c1:4a:88:f3:87:ed:c9:b2:26: 46:d9:a3:0b:2e:5f:ef:3e:3d:bf:35:42:13:c9:2b: 56:54:9e:0b:ba:39:a3:73:d2:c6:f9:98:bc:9a:db: a0:48:26:eb:43:a9:c9:c8:ff:02:b5:50:a8:84:0c: 2a:6e:00:9c:ab:dc:22:87:ef:34:97:5d:f7:9e:ae: 8c:45:7b:ee:6e:22:f2:fc:6b:6a:b5:f1:79:96:59: e2:95:24:70:9e:72:ce:88:0d:03:9e:03:01:b4:0f: db:8c:7e:59:5d:da:a3:6a:18:ac:fc:b4:c3:40:54: 82:79:a0:bc:09:e4:79:49:e6:fe:8b:be:c0:46:84: f4:88:58:4b:da:77:e8:3c:45:04:dc:33:d6:da:76: db:9f:08:a8:46:f0:75:86:54:be:70:5a:fc:58:c2: 10:4d:0d:d5:34:8c:43:55:fc:b4:f8:b6:75:72:eb: 14:70:85:02:58:24:71:ff:9d:40:fa:64:40:2c:c3: db:fb:1b:7c:c0:e5:95:90:bd:9f:3f:74:cd:2b:67: a7:8f:d8:93:a7:2b:4b:8f:4b:69:33:22:5b:41:58: 96:73:4e:eb:4f:68:6f:b4:53:3f:d2:0e:3a:80:c3: 68:36:b1:e9:f6:bf:e1:c5:9b:df:3e:85:6e:e8:46: bd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:75:C3:0C:68:0A:4B:D2:F5:62:B0:82:C4:42:53:E7:0C:9F:20:44 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.100.74.0/24 Signature Algorithm: sha256WithRSAEncryption 74:10:cf:37:26:20:26:0d:e8:02:79:cc:38:cc:57:29:ec:f4: 21:a1:4e:e9:a8:32:5f:fc:7d:0d:c4:30:f9:f8:4f:fa:3a:16: 6f:67:b3:2a:40:de:a0:16:89:a4:14:66:12:b8:6a:30:a9:38: 84:f6:7b:f2:c4:a7:bc:c7:a8:85:87:39:09:66:89:e4:f7:c0: ef:df:80:90:7f:30:e6:dc:9d:6d:38:65:e9:9d:9c:5c:91:4d: b5:a6:09:77:de:9b:9d:cd:03:55:78:4f:6a:e7:d9:65:d1:7a: 2b:b3:e0:0e:77:13:81:ea:5d:44:3b:05:cd:f0:ed:5a:3d:5f: d1:33:5c:58:f1:8a:0b:73:38:ae:73:cf:4c:c7:c1:a8:f4:87: 58:22:6e:8a:de:3f:80:41:fb:cd:6e:ea:a1:87:00:83:ca:5c: 3d:26:06:1e:bb:df:a8:ed:a2:b3:d9:19:9b:0b:8d:17:dd:cc: db:dd:5c:2e:75:c6:d5:08:47:91:03:45:66:dd:57:9e:de:07: d3:f6:2a:25:a8:7f:9c:5d:59:20:b4:c6:dc:48:77:b7:cc:9b: 39:a0:38:03:30:e6:1f:04:dd:85:52:ab:45:af:ef:87:4b:08: 3e:a3:80:47:4b:3e:b8:79:e4:ee:8a:bf:1f:74:98:5f:bb:f1: 3f:83:6e:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC90gw9xZ0aJGv9v5U2FJYvNsd0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNDA2MTAwNzQwNDVaFw0yNTA2MDkwNzQ1NDVaMDMxMTAvBgNV BAMTKDBBNzVDMzBDNjgwQTRCRDJGNTYyQjA4MkM0NDI1M0U3MEM5RjIwNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuguHKIMFKiPOH7cmyJkbZowsu X+8+Pb81QhPJK1ZUngu6OaNz0sb5mLya26BIJutDqcnI/wK1UKiEDCpuAJyr3CKH 7zSXXfeeroxFe+5uIvL8a2q18XmWWeKVJHCecs6IDQOeAwG0D9uMflld2qNqGKz8 tMNAVIJ5oLwJ5HlJ5v6LvsBGhPSIWEvad+g8RQTcM9badtufCKhG8HWGVL5wWvxY whBNDdU0jENV/LT4tnVy6xRwhQJYJHH/nUD6ZEAsw9v7G3zA5ZWQvZ8/dM0rZ6eP 2JOnK0uPS2kzIltBWJZzTutPaG+0Uz/SDjqAw2g2sen2v+HFm98+hW7oRr0VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCnXDDGgKS9L1YrCCxEJT5wyfIEQwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzEzODJlMzEzMDMwMmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANpkSjANBgkqhkiG 9w0BAQsFAAOCAQEAdBDPNyYgJg3oAnnMOMxXKez0IaFO6agyX/x9DcQw+fhP+joW b2ezKkDeoBaJpBRmErhqMKk4hPZ78sSnvMeohYc5CWaJ5PfA79+AkH8w5tydbThl 6Z2cXJFNtaYJd96bnc0DVXhPaufZZdF6K7PgDncTgepdRDsFzfDtWj1f0TNcWPGK C3M4rnPPTMfBqPSHWCJuit4/gEH7zW7qoYcAg8pcPSYGHrvfqO2is9kZmwuNF93M 291cLnXG1QhHkQNFZt1Xnt4H0/YqJah/nF1ZILTG3Eh3t8ybOaA4AzDmHwTdhVKr Ra/vh0sIPqOAR0s+uHnk7oq/H3SYX7vxP4Nuaw== -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org