$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37312e302f32342d3234203d3e203536323334.roa File: 3131372e3130332e37312e302f32342d3234203d3e203536323334.roa (raw, json) Hash identifier: viUcie98IVd25MWNuFPhXTYdX+mA062KhTOiByYM0Rc= Subject key identifier: 06:95:3E:1C:0B:1C:AD:79:ED:B6:D4:C3:8A:D0:82:86:15:93:43:AF Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 2623D2F36778B612E54557964EE201D7AEE7E5CB Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37312e302f32342d3234203d3e203536323334.roa Signing time: Thu 14 Nov 2024 10:02:56 +0000 ROA not before: Thu 14 Nov 2024 09:57:56 +0000 ROA not after: Thu 13 Nov 2025 10:02:56 +0000 asID: 56234 IP address blocks: 117.103.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:23:d2:f3:67:78:b6:12:e5:45:57:96:4e:e2:01:d7:ae:e7:e5:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Nov 14 09:57:56 2024 GMT Not After : Nov 13 10:02:56 2025 GMT Subject: CN=06953E1C0B1CAD79EDB6D4C38AD08286159343AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2d:14:f4:f6:a7:92:69:13:40:3f:24:ef:2d: 29:08:57:f3:1b:24:8a:c3:71:08:25:62:07:bb:83: 7d:73:ab:3b:94:89:4c:47:41:01:70:28:36:4b:bb: c1:9b:2c:21:6f:c1:f7:6b:ac:2c:5c:55:7d:03:8a: cb:07:ed:a9:7f:8c:62:d2:25:c7:04:f5:d9:e2:49: e6:fc:6f:bc:e3:81:65:8e:68:ee:58:43:69:22:24: 96:04:ee:7d:eb:db:1e:6e:63:53:ef:91:94:f8:9c: 77:2e:66:04:b9:15:1b:28:f5:07:d0:84:11:63:67: 48:54:d6:df:a2:f0:44:93:5c:d3:84:9d:99:dc:6d: 7f:2a:ad:66:cf:a3:10:62:33:a9:36:fa:0e:a6:98: 7f:fd:4b:1d:4c:0a:9f:ad:ca:00:f3:b5:26:eb:21: 27:e7:10:82:06:86:89:2a:d9:d9:d5:d6:0a:b6:6a: 20:2b:31:48:ce:62:27:13:52:36:2b:c5:aa:e4:54: 4f:c1:d4:93:d0:46:dd:24:56:11:61:ca:8d:53:6c: e0:71:ad:df:4c:93:af:ef:41:d4:93:2a:a0:4f:0f: 4d:35:05:f0:81:72:b1:12:4f:92:2d:4d:58:a4:07: f1:2b:b9:79:28:5a:33:a7:0f:6a:50:3f:9e:5e:22: 80:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:95:3E:1C:0B:1C:AD:79:ED:B6:D4:C3:8A:D0:82:86:15:93:43:AF X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37312e302f32342d3234203d3e203536323334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.71.0/24 Signature Algorithm: sha256WithRSAEncryption 94:92:ba:ba:4b:02:2b:95:ad:e6:a9:70:c0:8c:81:45:f4:d4: da:33:d4:67:6d:ae:92:98:6e:30:32:9b:50:c0:00:c0:fe:3e: 0b:13:ca:0b:d6:09:ed:7f:56:ab:7a:fb:22:ce:9d:db:a2:10: a0:b4:95:2e:19:74:5d:35:fb:61:dc:3d:43:21:c6:b3:c7:de: e2:73:e7:09:a6:11:66:61:6c:9c:81:08:6f:a1:7b:75:da:2a: eb:dd:5a:9a:e7:3a:7a:df:bc:48:af:47:ae:df:97:5a:f1:69: 98:3b:52:8e:17:f3:3e:c6:02:db:ff:67:a5:97:ce:1e:e2:ae: a8:ec:fe:d7:e2:f1:89:44:61:84:f4:1b:2b:f0:8f:44:04:14: 79:72:1e:39:53:75:e2:9a:cb:26:f1:3c:37:d0:3e:ad:50:01: a4:03:e1:2d:44:d7:f1:86:dd:00:96:d3:68:2e:c8:0e:fa:df: 33:91:65:ae:d0:61:31:fc:39:b0:c4:d9:0b:05:6b:67:3d:64: cb:91:54:26:d6:84:f5:97:58:05:6c:f7:29:a2:11:74:f1:68: 0b:9d:98:63:74:22:a0:8d:ae:ee:0c:10:52:ab:9c:2d:0b:36: 93:23:93:3c:89:4f:3a:47:74:88:b5:d7:d0:62:30:ed:4d:79: 01:ba:e6:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJiPS82d4thLlRVeWTuIB167n5cswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNDExMTQwOTU3NTZaFw0yNTExMTMxMDAyNTZaMDMxMTAvBgNV BAMTKDA2OTUzRTFDMEIxQ0FENzlFREI2RDRDMzhBRDA4Mjg2MTU5MzQzQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpLRT09qeSaRNAPyTvLSkIV/Mb JIrDcQglYge7g31zqzuUiUxHQQFwKDZLu8GbLCFvwfdrrCxcVX0DissH7al/jGLS JccE9dniSeb8b7zjgWWOaO5YQ2kiJJYE7n3r2x5uY1PvkZT4nHcuZgS5FRso9QfQ hBFjZ0hU1t+i8ESTXNOEnZncbX8qrWbPoxBiM6k2+g6mmH/9Sx1MCp+tygDztSbr ISfnEIIGhokq2dnV1gq2aiArMUjOYicTUjYrxarkVE/B1JPQRt0kVhFhyo1TbOBx rd9Mk6/vQdSTKqBPD001BfCBcrEST5ItTVikB/EruXkoWjOnD2pQP55eIoD3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBpU+HAscrXntttTDitCChhWTQ68wHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzEzNzJlMzEzMDMzMmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVnRzANBgkqhkiG 9w0BAQsFAAOCAQEAlJK6uksCK5Wt5qlwwIyBRfTU2jPUZ22ukphuMDKbUMAAwP4+ CxPKC9YJ7X9Wq3r7Is6d26IQoLSVLhl0XTX7Ydw9QyHGs8fe4nPnCaYRZmFsnIEI b6F7ddoq691amuc6et+8SK9Hrt+XWvFpmDtSjhfzPsYC2/9npZfOHuKuqOz+1+Lx iURhhPQbK/CPRAQUeXIeOVN14prLJvE8N9A+rVABpAPhLUTX8YbdAJbTaC7IDvrf M5FlrtBhMfw5sMTZCwVrZz1ky5FUJtaE9ZdYBWz3KaIRdPFoC52YY3QioI2u7gwQ UqucLQs2kyOTPIlPOkd0iLXX0GIw7U15AbrmxA== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org