$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa File: 3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa (raw, json) Hash identifier: ckyPU+dOc2DPyymdMy/gds0ZvQT1LlPymVaytADGQCs= Subject key identifier: E7:46:BB:E8:F6:67:96:B3:37:04:46:EF:E0:1D:66:1B:C7:DB:50:BB Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 5B4DEBCE56CCC307A6723E71028A57451DE4CF99 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa Signing time: Sun 02 Jun 2024 03:00:01 +0000 ROA not before: Sun 02 Jun 2024 02:55:01 +0000 ROA not after: Sun 01 Jun 2025 03:00:01 +0000 asID: 18004 IP address blocks: 115.178.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:4d:eb:ce:56:cc:c3:07:a6:72:3e:71:02:8a:57:45:1d:e4:cf:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Jun 2 02:55:01 2024 GMT Not After : Jun 1 03:00:01 2025 GMT Subject: CN=E746BBE8F66796B3370446EFE01D661BC7DB50BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:10:e1:b5:c7:29:47:5a:b2:d4:c6:81:6f:34: 26:dd:65:8d:ec:ff:f3:f7:a1:e2:87:c2:89:39:d5: a7:62:f3:b1:5f:f3:6e:cb:17:fc:58:ee:44:cc:cd: 08:a0:1a:e3:0b:6b:55:c7:33:0d:be:a7:72:3e:cf: 9f:5f:93:40:f9:77:ef:7c:8f:90:78:59:e0:e8:2f: 71:ae:94:8c:2c:30:76:28:a7:0c:e7:3a:e9:80:0d: 20:ca:1b:17:f2:d7:f3:92:d5:67:e8:32:45:84:5a: 99:25:1b:ab:69:9c:d3:02:4a:0d:b3:bf:26:bf:35: d0:e2:2e:9c:56:47:3c:11:4c:b9:25:a9:3a:74:9c: 5a:50:1c:de:ab:3a:93:48:f3:65:21:ba:56:24:60: 01:57:1c:88:4c:19:02:01:60:cc:12:da:56:9a:ed: 9a:59:31:b2:a8:e2:49:78:a4:a0:8f:a5:9f:fc:6f: f2:a1:53:57:1e:dd:6e:00:0a:0e:f4:b2:97:89:6e: c9:97:98:ec:e6:42:c6:12:f2:14:58:a2:a0:7f:ba: 19:42:37:24:99:c9:4c:4a:20:fe:ab:9a:87:6a:8f: 23:b3:2b:ab:17:bf:d1:58:69:ce:9f:53:53:4e:5d: b5:cb:18:c4:15:91:9d:e2:f3:c6:2a:41:0e:27:15: 93:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:46:BB:E8:F6:67:96:B3:37:04:46:EF:E0:1D:66:1B:C7:DB:50:BB X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.192.0/19 Signature Algorithm: sha256WithRSAEncryption 00:6c:32:b7:6b:a3:1d:ac:4e:d9:6e:8a:52:a1:d9:53:e2:ad: 24:d7:7d:5d:4e:56:26:b4:18:f1:ed:0f:10:7b:fe:ea:fd:2c: 21:69:df:e7:8f:6a:22:c9:09:d2:78:89:0f:af:6e:01:1a:74: b1:78:24:9b:d9:60:18:8a:e7:4d:25:07:c0:c5:9e:f5:b7:c8: eb:01:f2:f5:bb:8f:18:55:6d:ed:21:18:65:77:41:42:65:bb: 38:33:e6:dc:36:7b:d6:57:10:b6:16:ff:b0:ff:00:d8:0a:9c: 7f:95:fd:c0:f5:b1:e6:3a:97:07:e7:4a:3e:b9:12:7d:79:56: a8:a9:44:32:ae:da:86:fe:27:db:0c:aa:54:66:f8:a4:8a:a8: 5d:90:11:42:0f:44:45:38:f2:bb:2a:3e:71:20:86:27:7c:2a: a2:49:d0:1a:ed:a8:bf:9e:57:bc:19:8b:d1:ae:06:ca:f6:ce: 1f:39:7c:9c:b3:a0:1e:f1:2f:25:ff:8a:9f:30:00:67:59:03: 56:1f:a5:70:b9:90:c8:c6:5c:9a:3d:50:28:be:0f:2c:60:be: 27:98:22:19:96:53:98:87:6b:d4:97:e1:58:21:f9:eb:27:9d: 5f:85:40:5b:67:c2:8c:31:73:09:6a:15:50:f3:65:db:33:f0: 64:ca:d2:d2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW03rzlbMwwemcj5xAopXRR3kz5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNDA2MDIwMjU1MDFaFw0yNTA2MDEwMzAwMDFaMDMxMTAvBgNV BAMTKEU3NDZCQkU4RjY2Nzk2QjMzNzA0NDZFRkUwMUQ2NjFCQzdEQjUwQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxEOG1xylHWrLUxoFvNCbdZY3s //P3oeKHwok51adi87Ff827LF/xY7kTMzQigGuMLa1XHMw2+p3I+z59fk0D5d+98 j5B4WeDoL3GulIwsMHYopwznOumADSDKGxfy1/OS1WfoMkWEWpklG6tpnNMCSg2z vya/NdDiLpxWRzwRTLklqTp0nFpQHN6rOpNI82UhulYkYAFXHIhMGQIBYMwS2laa 7ZpZMbKo4kl4pKCPpZ/8b/KhU1ce3W4ACg70speJbsmXmOzmQsYS8hRYoqB/uhlC NySZyUxKIP6rmodqjyOzK6sXv9FYac6fU1NOXbXLGMQVkZ3i88YqQQ4nFZOLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU50a76PZnlrM3BEbv4B1mG8fbULswHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzEzNTJlMzEzNzM4MmUzMTM5MzIyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFc7LAMA0GCSqG SIb3DQEBCwUAA4IBAQAAbDK3a6MdrE7ZbopSodlT4q0k131dTlYmtBjx7Q8Qe/7q /Swhad/nj2oiyQnSeIkPr24BGnSxeCSb2WAYiudNJQfAxZ71t8jrAfL1u48YVW3t IRhld0FCZbs4M+bcNnvWVxC2Fv+w/wDYCpx/lf3A9bHmOpcH50o+uRJ9eVaoqUQy rtqG/ifbDKpUZvikiqhdkBFCD0RFOPK7Kj5xIIYnfCqiSdAa7ai/nle8GYvRrgbK 9s4fOXycs6Ae8S8l/4qfMABnWQNWH6VwuZDIxlyaPVAovg8sYL4nmCIZllOYh2vU l+FYIfnrJ51fhUBbZ8KMMXMJahVQ82XbM/BkytLS -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org