$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136302e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136302e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: nx9mc2xmnhCY37ada/dK7f2N2+zzu6Fv/LdE2BbMwe4= Subject key identifier: 40:A4:0C:3E:84:7C:73:90:CE:3F:77:A5:9A:6E:E4:C6:B7:C4:D5:13 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 63678EAB29DD72F5F149615B6647A3BB0B7EA227 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136302e302f32342d3234203d3e203536323436.roa Signing time: Mon 01 Jul 2024 01:03:07 +0000 ROA not before: Mon 01 Jul 2024 00:58:07 +0000 ROA not after: Mon 30 Jun 2025 01:03:07 +0000 asID: 56246 IP address blocks: 116.68.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:67:8e:ab:29:dd:72:f5:f1:49:61:5b:66:47:a3:bb:0b:7e:a2:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:07 2024 GMT Not After : Jun 30 01:03:07 2025 GMT Subject: CN=40A40C3E847C7390CE3F77A59A6EE4C6B7C4D513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7d:d5:01:97:5b:21:0d:bb:66:59:93:32:34: 55:a5:6b:3b:ef:7c:a4:d7:c2:7d:07:26:0f:5f:9b: 1b:69:2a:83:99:2d:59:fe:36:5b:b1:fc:d8:f1:53: 53:94:f3:00:a1:17:a0:8b:a1:3b:a4:06:6b:9a:e9: 17:f0:c2:fc:e4:67:88:22:c2:c2:c5:fd:5c:83:2d: 82:22:9d:53:f2:2e:30:26:1d:94:55:4d:cc:b7:34: 5f:67:c8:c4:a5:5e:14:f7:64:20:83:d7:a8:90:da: 83:39:f9:b9:16:da:28:00:5b:cf:68:e7:0e:4e:29: bf:72:91:de:a6:5b:61:df:20:ab:0b:3e:22:9b:45: 3f:f4:8a:59:d9:e5:8e:20:7e:1b:0e:e0:35:56:c1: 22:a8:22:1d:62:eb:be:cd:48:73:24:4c:76:94:5c: 18:38:d1:21:15:04:d3:96:e0:c9:5f:97:b4:ba:8c: ef:66:cf:67:60:44:97:7b:74:dc:4a:5b:1e:1a:0b: a4:54:52:19:c5:96:7a:48:b6:f7:82:13:70:69:4c: 43:50:3f:69:98:19:e5:84:7e:23:09:28:0d:60:08: 3f:f2:9f:1d:95:72:fa:d7:23:cf:98:67:a5:82:9f: 46:0c:e4:c1:d2:bd:8b:1e:61:04:3e:84:13:f1:83: 0f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A4:0C:3E:84:7C:73:90:CE:3F:77:A5:9A:6E:E4:C6:B7:C4:D5:13 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136302e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.160.0/24 Signature Algorithm: sha256WithRSAEncryption 15:62:2e:60:4d:b8:ed:f3:d4:08:1b:af:b6:c4:f4:f8:29:63: 49:eb:66:5a:da:23:84:de:49:17:d1:79:74:af:ca:93:a9:76: 9e:ac:5f:e1:3a:15:21:1e:40:5d:3a:af:5e:e6:44:24:be:84: ae:22:16:da:f2:37:5c:34:fc:66:4a:e6:a2:74:a6:dc:49:d7: f0:f2:d2:e8:24:48:97:7c:67:b8:f8:f1:64:ff:4f:4b:17:2d: 64:28:8e:1b:c2:0c:6f:64:e5:49:36:7e:84:2d:64:95:ee:00: 26:7f:33:61:e2:32:d9:c7:c5:ab:a5:85:23:48:87:1b:15:d9: cd:21:36:3a:61:c8:b5:2d:03:96:bc:d4:46:be:4f:63:18:93: 0e:de:21:20:7c:12:7e:18:aa:4f:82:d7:73:1d:ec:ac:4d:3c: 98:67:51:51:b8:c8:5a:9d:e1:51:2c:ff:23:2e:b4:f9:40:1d: dc:1a:c2:62:4b:b8:57:d8:c8:2d:2c:91:cc:d7:cf:39:8b:55: a7:cd:6f:52:7f:78:64:b8:39:2c:b6:e4:c5:a9:91:c1:f3:e1: 54:39:f5:72:9b:db:81:cc:f3:1f:27:35:9d:e7:2b:0e:93:79: bb:1d:87:f1:65:ba:12:90:68:01:43:93:f7:a8:5e:66:c3:17: d9:aa:ce:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY2eOqyndcvXxSWFbZkejuwt+oicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDdaFw0yNTA2MzAwMTAzMDdaMDMxMTAvBgNV BAMTKDQwQTQwQzNFODQ3QzczOTBDRTNGNzdBNTlBNkVFNEM2QjdDNEQ1MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fdUBl1shDbtmWZMyNFWlazvv fKTXwn0HJg9fmxtpKoOZLVn+Nlux/NjxU1OU8wChF6CLoTukBmua6RfwwvzkZ4gi wsLF/VyDLYIinVPyLjAmHZRVTcy3NF9nyMSlXhT3ZCCD16iQ2oM5+bkW2igAW89o 5w5OKb9ykd6mW2HfIKsLPiKbRT/0ilnZ5Y4gfhsO4DVWwSKoIh1i677NSHMkTHaU XBg40SEVBNOW4Mlfl7S6jO9mz2dgRJd7dNxKWx4aC6RUUhnFlnpItveCE3BpTENQ P2mYGeWEfiMJKA1gCD/ynx2VcvrXI8+YZ6WCn0YM5MHSvYseYQQ+hBPxgw9PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQKQMPoR8c5DOP3elmm7kxrfE1RMwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREoDANBgkqhkiG 9w0BAQsFAAOCAQEAFWIuYE247fPUCBuvtsT0+CljSetmWtojhN5JF9F5dK/Kk6l2 nqxf4ToVIR5AXTqvXuZEJL6EriIW2vI3XDT8ZkrmonSm3EnX8PLS6CRIl3xnuPjx ZP9PSxctZCiOG8IMb2TlSTZ+hC1kle4AJn8zYeIy2cfFq6WFI0iHGxXZzSE2OmHI tS0DlrzURr5PYxiTDt4hIHwSfhiqT4LXcx3srE08mGdRUbjIWp3hUSz/Iy60+UAd 3BrCYku4V9jILSyRzNfPOYtVp81vUn94ZLg5LLbkxamRwfPhVDn1cpvbgczzHyc1 necrDpN5ux2H8WW6EpBoAUOT96heZsMX2arOEA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org