$ rpki-client -vvf repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa File: 3131332e32302e3133362e302f32312d3234203d3e203435373136.roa (raw, json) Hash identifier: bAZsID1SQyp+R8Xb9hXOBSkrx6uEDEnPXqOvDSM+TKc= Subject key identifier: 60:C7:B6:79:BF:95:4F:88:B6:B8:9E:98:58:92:04:1F:AA:67:9E:15 Certificate issuer: /CN=37D7265DD2BAA67ECABEEC597D30727F574E8A01 Certificate serial: 09DDA7195914FD07F4BC67559961E90930BE19EC Authority key identifier: 37:D7:26:5D:D2:BA:A6:7E:CA:BE:EC:59:7D:30:72:7F:57:4E:8A:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa Signing time: Mon 01 Jul 2024 01:02:41 +0000 ROA not before: Mon 01 Jul 2024 00:57:41 +0000 ROA not after: Mon 30 Jun 2025 01:02:41 +0000 asID: 45716 IP address blocks: 113.20.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.crl rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:dd:a7:19:59:14:fd:07:f4:bc:67:55:99:61:e9:09:30:be:19:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37D7265DD2BAA67ECABEEC597D30727F574E8A01 Validity Not Before: Jul 1 00:57:41 2024 GMT Not After : Jun 30 01:02:41 2025 GMT Subject: CN=60C7B679BF954F88B6B89E985892041FAA679E15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:7d:78:8f:8a:73:d8:56:b6:c0:21:72:08: b5:d7:6e:3c:f6:d4:4d:8c:00:e7:ad:7b:32:f2:63: 74:a3:26:a8:27:21:43:8f:fb:1e:e6:08:f4:81:b7: fd:ab:40:7f:fd:a4:4b:42:19:3c:54:1b:34:22:60: e1:4d:48:e9:50:8c:e6:22:a3:44:66:dc:56:f8:e2: 6d:b0:dc:f7:7c:1b:4d:42:e9:c3:80:68:bd:7d:54: 0a:20:13:1e:b1:eb:f8:0c:f4:d0:07:94:60:81:36: 12:14:d5:70:32:c1:42:7c:6e:1d:4e:cc:56:a3:e1: 6e:9a:1e:c6:96:88:27:32:ca:1d:a9:6f:85:e5:e2: 36:a7:e7:96:ad:48:a5:86:88:70:f2:23:87:60:0a: 0d:b5:03:05:c7:1c:d5:df:d7:14:d7:7a:50:43:aa: e6:c8:f1:16:76:76:c8:fe:a5:b0:56:72:9f:18:63: 36:43:d9:01:07:3b:27:d8:32:07:66:58:b6:ab:28: 9f:09:25:b3:4f:2b:e3:d6:a8:1d:c1:03:dd:33:e0: 3f:2c:7f:78:f0:df:44:c7:a8:31:6e:f1:c4:fd:40: 34:25:b6:d2:ae:75:21:3c:54:05:2b:5b:12:90:f6: 9a:de:da:c5:dd:f6:b0:ce:fc:02:c4:ec:31:0b:33: 0e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C7:B6:79:BF:95:4F:88:B6:B8:9E:98:58:92:04:1F:AA:67:9E:15 X509v3 Authority Key Identifier: keyid:37:D7:26:5D:D2:BA:A6:7E:CA:BE:EC:59:7D:30:72:7F:57:4E:8A:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.20.136.0/21 Signature Algorithm: sha256WithRSAEncryption 22:36:9c:0e:01:35:e8:5e:c5:15:ab:06:cc:46:50:51:b7:20: db:b0:af:55:d0:64:d7:0c:84:36:f3:ac:1d:9a:b6:16:0a:1d: 4d:cc:c5:a5:e6:cb:5c:1e:1f:3d:30:f7:be:8d:86:d1:54:08: 7b:b3:61:68:a9:d2:72:19:24:ea:73:16:44:7b:6a:9c:27:41: 77:44:fd:92:5d:70:28:74:ae:d0:e4:fe:0b:67:38:bc:48:c0: 46:09:cd:b4:3d:03:e9:8d:f9:2a:40:c9:8b:25:4e:6b:90:6f: 3c:32:1c:21:e9:a2:95:1b:1f:67:c0:f0:63:62:ec:88:0a:b0: 21:39:09:fc:38:af:98:56:e4:ab:4d:5f:fe:ff:e8:db:72:23: 36:bd:86:2d:8e:19:e4:05:da:4d:fd:bd:ba:49:32:80:66:60: cd:f0:8f:69:ce:c3:7f:34:03:e7:5b:86:b6:80:31:cb:42:0d: 08:07:db:7b:98:be:34:59:ba:4b:a6:4a:0d:83:09:b8:ae:39: 6c:d7:7c:e9:42:d7:bd:79:43:79:c9:ae:a9:a7:be:23:a1:75: 1e:59:45:cb:63:fe:65:3d:3d:fe:47:66:d4:a0:97:54:7c:cb: 48:4f:f4:03:7f:a2:e5:42:f0:1b:8e:fe:c7:1f:93:28:fe:e9: 35:3d:72:1f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCd2nGVkU/Qf0vGdVmWHpCTC+GewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdENzI2NUREMkJBQTY3RUNBQkVFQzU5N0QzMDcyN0Y1 NzRFOEEwMTAeFw0yNDA3MDEwMDU3NDFaFw0yNTA2MzAwMTAyNDFaMDMxMTAvBgNV BAMTKDYwQzdCNjc5QkY5NTRGODhCNkI4OUU5ODU4OTIwNDFGQUE2NzlFMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFOH14j4pz2Fa2wCFyCLXXbjz2 1E2MAOetezLyY3SjJqgnIUOP+x7mCPSBt/2rQH/9pEtCGTxUGzQiYOFNSOlQjOYi o0Rm3Fb44m2w3Pd8G01C6cOAaL19VAogEx6x6/gM9NAHlGCBNhIU1XAywUJ8bh1O zFaj4W6aHsaWiCcyyh2pb4Xl4jan55atSKWGiHDyI4dgCg21AwXHHNXf1xTXelBD qubI8RZ2dsj+pbBWcp8YYzZD2QEHOyfYMgdmWLarKJ8JJbNPK+PWqB3BA90z4D8s f3jw30THqDFu8cT9QDQlttKudSE8VAUrWxKQ9pre2sXd9rDO/ALE7DELMw7tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYMe2eb+VT4i2uJ6YWJIEH6pnnhUwHwYDVR0j BBgwFoAUN9cmXdK6pn7KvuxZfTByf1dOigEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWFmMDBlYy1kMDgzLTRhOWYtODIxZi03ZGExOGY4MTU0MTcvMC8zN0Q3MjY1REQy QkFBNjdFQ0FCRUVDNTk3RDMwNzI3RjU3NEU4QTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdENzI2NUREMkJBQTY3RUNBQkVFQzU5N0QzMDcyN0Y1NzRF OEEwMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5YWYwMGVjLWQwODMtNGE5Zi04 MjFmLTdkYTE4ZjgxNTQxNy8wLzMxMzEzMzJlMzIzMDJlMzEzMzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTM3MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3EUiDANBgkqhkiG 9w0BAQsFAAOCAQEAIjacDgE16F7FFasGzEZQUbcg27CvVdBk1wyENvOsHZq2Fgod TczFpebLXB4fPTD3vo2G0VQIe7NhaKnSchkk6nMWRHtqnCdBd0T9kl1wKHSu0OT+ C2c4vEjARgnNtD0D6Y35KkDJiyVOa5BvPDIcIemilRsfZ8DwY2LsiAqwITkJ/Div mFbkq01f/v/o23IjNr2GLY4Z5AXaTf29ukkygGZgzfCPac7DfzQD51uGtoAxy0IN CAfbe5i+NFm6S6ZKDYMJuK45bNd86ULXvXlDecmuqae+I6F1HllFy2P+ZT09/kdm 1KCXVHzLSE/0A3+i5ULwG47+xx+TKP7pNT1yHw== -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:33 2024 by rpki-client on console-ams.rpki-client.org