$ rpki-client -vvf repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa File: 3131372e35332e3134342e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: yDIVt2Oe51IhyNjITRNsqJhRBffQBwktI1JnUAMjM6o= Subject key identifier: D9:C0:11:E7:92:0B:8E:8A:7C:25:59:9E:12:FF:90:8B:03:B2:CD:33 Certificate issuer: /CN=498B46B789361D2AAA4E5CF9B2A81E223925A89F Certificate serial: 71F2806AC0EFF0C6F665F416E59B205B99844795 Authority key identifier: 49:8B:46:B7:89:36:1D:2A:AA:4E:5C:F9:B2:A8:1E:22:39:25:A8:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa Signing time: Mon 01 Jul 2024 01:05:07 +0000 ROA not before: Mon 01 Jul 2024 01:00:07 +0000 ROA not after: Mon 30 Jun 2025 01:05:07 +0000 asID: 58397 IP address blocks: 117.53.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.crl rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:f2:80:6a:c0:ef:f0:c6:f6:65:f4:16:e5:9b:20:5b:99:84:47:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498B46B789361D2AAA4E5CF9B2A81E223925A89F Validity Not Before: Jul 1 01:00:07 2024 GMT Not After : Jun 30 01:05:07 2025 GMT Subject: CN=D9C011E7920B8E8A7C25599E12FF908B03B2CD33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:58:f7:31:0c:35:d6:3e:a3:42:5b:b9:da: b6:36:b8:e3:67:f5:50:90:7d:47:72:58:8d:86:7a: ee:f5:07:9f:cd:d6:9f:db:54:ea:18:04:32:c1:b8: 00:32:44:44:65:d7:8e:3a:a7:63:cc:12:3c:7e:22: 6f:4b:52:db:d6:8e:74:07:bf:be:f4:1a:ee:d3:c1: 2b:9a:17:fa:76:66:1d:70:9c:35:cc:d6:f4:f3:3d: f3:4d:19:b5:e0:70:9d:ed:eb:8f:35:3f:a8:bf:53: 90:9e:c9:a6:d9:30:40:8c:77:5c:c9:c4:75:b7:7a: a6:6b:d7:f1:00:87:df:7f:c9:06:c1:89:2a:31:c8: 5b:09:66:c9:a3:e9:52:ec:4f:db:80:70:b1:16:54: fe:a6:2f:c6:08:83:0f:dd:1c:7a:24:83:16:e9:da: 1b:7f:6a:96:7b:1e:51:fe:c8:62:d8:2c:b3:f6:02: c0:13:23:66:32:88:2f:b9:7f:d5:54:64:87:f5:24: f1:10:69:4c:03:a6:ed:2c:e2:f4:ab:c7:67:69:13: a0:c0:85:2e:f3:23:de:ed:1b:a5:20:3c:2c:25:e7: 0c:94:7b:10:ae:3f:e1:43:89:34:83:43:83:41:7b: 70:89:16:64:89:9c:d3:9f:21:44:0b:bf:a6:bb:c2: 93:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C0:11:E7:92:0B:8E:8A:7C:25:59:9E:12:FF:90:8B:03:B2:CD:33 X509v3 Authority Key Identifier: keyid:49:8B:46:B7:89:36:1D:2A:AA:4E:5C:F9:B2:A8:1E:22:39:25:A8:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.144.0/22 Signature Algorithm: sha256WithRSAEncryption 54:6b:0b:ba:84:5d:58:50:6b:75:8e:e5:17:9f:d8:fb:01:b4: ed:43:78:0a:24:90:76:c3:e9:2f:42:8e:86:ac:03:5a:60:94: ed:32:b6:b3:79:26:a7:70:5e:9b:eb:fb:20:12:fd:af:08:d6: 2d:47:fd:3e:48:2e:e8:64:9f:e0:3c:28:96:2d:f2:69:ee:5d: 1d:c0:b2:8e:32:cb:13:ae:7c:63:3f:f9:13:08:af:83:5b:0f: 89:f7:c9:48:9a:6d:79:e5:ff:dd:e1:4d:82:4f:67:ba:44:08: 68:47:ee:93:a8:bd:85:c1:0a:c6:6f:6c:3b:ef:20:a4:44:0d: 52:0d:7c:b4:0c:b1:7f:e6:5a:25:63:05:79:43:c7:93:49:76: 35:c4:7a:49:e8:83:8f:09:25:b9:58:91:ee:1f:d5:3c:30:cd: 02:e6:3c:7c:e8:82:57:8e:f6:c2:23:7b:83:7c:ab:04:4d:7c: fa:2f:b7:5a:87:06:d1:29:f0:b1:d1:05:7a:89:da:45:c0:86: a2:45:a5:17:96:b2:8e:fb:59:c5:b7:dc:2f:66:88:7f:2c:6d: ff:14:58:14:28:4a:9c:a0:0b:11:75:26:08:f9:46:12:5e:65: 21:0a:e3:18:4b:41:6b:30:9b:c5:09:ff:40:b2:61:b2:60:35: 75:5d:fa:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcfKAasDv8Mb2ZfQW5ZsgW5mER5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4QjQ2Qjc4OTM2MUQyQUFBNEU1Q0Y5QjJBODFFMjIz OTI1QTg5RjAeFw0yNDA3MDEwMTAwMDdaFw0yNTA2MzAwMTA1MDdaMDMxMTAvBgNV BAMTKEQ5QzAxMUU3OTIwQjhFOEE3QzI1NTk5RTEyRkY5MDhCMDNCMkNEMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN4lj3MQw11j6jQlu52rY2uONn 9VCQfUdyWI2Geu71B5/N1p/bVOoYBDLBuAAyRERl1446p2PMEjx+Im9LUtvWjnQH v770Gu7TwSuaF/p2Zh1wnDXM1vTzPfNNGbXgcJ3t6481P6i/U5CeyabZMECMd1zJ xHW3eqZr1/EAh99/yQbBiSoxyFsJZsmj6VLsT9uAcLEWVP6mL8YIgw/dHHokgxbp 2ht/apZ7HlH+yGLYLLP2AsATI2YyiC+5f9VUZIf1JPEQaUwDpu0s4vSrx2dpE6DA hS7zI97tG6UgPCwl5wyUexCuP+FDiTSDQ4NBe3CJFmSJnNOfIUQLv6a7wpO/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2cAR55ILjop8JVmeEv+QiwOyzTMwHwYDVR0j BBgwFoAUSYtGt4k2HSqqTlz5sqgeIjklqJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTkxNjZhMS0xOGNkLTQ0ZDMtYTZlMC0yZWY4MmY3NjBkMjgvMC80OThCNDZCNzg5 MzYxRDJBQUE0RTVDRjlCMkE4MUUyMjM5MjVBODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDk4QjQ2Qjc4OTM2MUQyQUFBNEU1Q0Y5QjJBODFFMjIzOTI1 QTg5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOTE2NmExLTE4Y2QtNDRkMy1h NmUwLTJlZjgyZjc2MGQyOC8wLzMxMzEzNzJlMzUzMzJlMzEzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnU1kDANBgkqhkiG 9w0BAQsFAAOCAQEAVGsLuoRdWFBrdY7lF5/Y+wG07UN4CiSQdsPpL0KOhqwDWmCU 7TK2s3kmp3Bem+v7IBL9rwjWLUf9Pkgu6GSf4Dwoli3yae5dHcCyjjLLE658Yz/5 Ewivg1sPiffJSJpteeX/3eFNgk9nukQIaEfuk6i9hcEKxm9sO+8gpEQNUg18tAyx f+ZaJWMFeUPHk0l2NcR6SeiDjwkluViR7h/VPDDNAuY8fOiCV472wiN7g3yrBE18 +i+3WocG0SnwsdEFeonaRcCGokWlF5ayjvtZxbfcL2aIfyxt/xRYFChKnKALEXUm CPlGEl5lIQrjGEtBazCbxQn/QLJhsmA1dV36XQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org