$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136312e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136312e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: VDdbNFzFHNBvEaVT2TBJ5Dxjke4vL7AU1Tm9HHCLKLk= Subject key identifier: CD:F1:9C:40:4D:9D:8D:3B:73:FA:EB:DE:58:09:EE:92:0F:8F:02:9E Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 5086E156FAAD7C1C811F71A4B85E3373E1513C11 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136312e302f32342d3234203d3e203536323436.roa Signing time: Fri 01 Nov 2024 04:00:00 +0000 ROA not before: Fri 01 Nov 2024 03:55:00 +0000 ROA not after: Fri 31 Oct 2025 04:00:00 +0000 asID: 56246 IP address blocks: 116.68.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:86:e1:56:fa:ad:7c:1c:81:1f:71:a4:b8:5e:33:73:e1:51:3c:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 1 03:55:00 2024 GMT Not After : Oct 31 04:00:00 2025 GMT Subject: CN=CDF19C404D9D8D3B73FAEBDE5809EE920F8F029E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ff:f8:e3:cc:c0:b3:7e:58:5f:66:c2:4c:a0: 3b:15:db:47:a3:ad:8d:15:e0:4f:55:34:ae:1f:63: 33:fa:ad:86:22:77:a8:73:71:c8:35:7c:ed:4a:13: fb:9d:18:30:95:9f:0e:5e:99:15:91:78:a9:bc:98: e4:c9:92:2c:da:16:ca:38:a3:bf:0d:ab:de:e8:96: 96:1c:a1:ab:d8:b8:26:3f:03:e5:e3:84:35:2b:83: b2:a1:4d:b0:c9:14:c6:8a:4f:eb:c1:e5:93:00:8b: 9d:75:1f:10:ae:16:35:2b:db:ba:e7:78:5d:f7:a5: c0:fa:1b:20:d5:a9:ab:d2:43:90:20:75:e1:e6:70: 65:ed:be:b2:c0:5c:fc:31:5a:0a:10:80:17:2b:f3: a3:56:62:a7:46:73:64:de:02:3e:21:fa:b4:7b:6b: cf:3c:21:8c:5f:3d:aa:b7:2f:32:7c:fe:2c:15:d0: 97:81:f6:4c:4a:c6:16:19:03:84:e7:dd:ff:48:60: a1:59:fa:f4:eb:31:be:09:35:43:3a:22:79:8a:dc: ce:d0:ff:6d:8e:ca:e9:d7:07:1a:2f:41:de:73:2f: 5f:44:dc:c4:7a:c9:c4:a5:81:f3:7d:4f:b6:8b:28: ae:25:ec:db:c6:e4:e8:4a:92:8d:b8:b9:9f:b9:3c: c7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F1:9C:40:4D:9D:8D:3B:73:FA:EB:DE:58:09:EE:92:0F:8F:02:9E X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136312e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.161.0/24 Signature Algorithm: sha256WithRSAEncryption 52:9b:cc:09:4d:65:61:54:d3:b7:05:67:90:b3:c6:8a:36:e4: 84:66:06:e3:5b:04:8a:c9:22:9b:46:3b:56:e0:cc:ab:df:3d: 5f:6f:30:8c:07:a7:41:39:4f:10:dd:86:6f:8c:49:ab:cd:0d: c8:96:83:d2:8c:67:b6:55:5e:59:1e:4f:33:c4:d7:37:a6:d2: b6:8c:0d:06:58:6a:d8:c3:b1:67:14:c1:58:19:b4:0c:00:d2: 3a:33:a5:3e:0b:ad:ca:c0:ff:95:57:ea:18:a8:1c:8c:9c:19: bc:40:b8:92:f4:14:52:19:eb:57:16:36:af:c4:af:2d:28:5d: e0:a5:ea:ba:44:cb:58:0a:a1:cc:d8:1c:ff:06:b6:c8:f0:23: 9a:52:37:e3:8e:ad:4a:2f:8e:34:b7:f5:c0:b3:01:5f:d2:6e: c7:24:07:2e:49:f7:7c:ff:4f:e5:c2:18:0f:a9:ce:30:95:36: e1:de:08:24:d1:19:e1:dc:8e:20:78:18:71:03:cf:03:5a:48: 46:b6:09:e4:37:91:6e:15:38:58:7c:b0:4f:ef:4a:14:1e:7a: d6:5b:79:f0:1e:b0:a3:72:37:28:2d:b6:be:a6:cc:fa:ae:8b: 15:b1:ff:e2:4b:03:7f:ad:27:30:44:82:e1:14:6b:e9:70:73: c0:29:ea:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUIbhVvqtfByBH3GkuF4zc+FRPBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMDEwMzU1MDBaFw0yNTEwMzEwNDAwMDBaMDMxMTAvBgNV BAMTKENERjE5QzQwNEQ5RDhEM0I3M0ZBRUJERTU4MDlFRTkyMEY4RjAyOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd//jjzMCzflhfZsJMoDsV20ej rY0V4E9VNK4fYzP6rYYid6hzccg1fO1KE/udGDCVnw5emRWReKm8mOTJkizaFso4 o78Nq97olpYcoavYuCY/A+XjhDUrg7KhTbDJFMaKT+vB5ZMAi511HxCuFjUr27rn eF33pcD6GyDVqavSQ5AgdeHmcGXtvrLAXPwxWgoQgBcr86NWYqdGc2TeAj4h+rR7 a888IYxfPaq3LzJ8/iwV0JeB9kxKxhYZA4Tn3f9IYKFZ+vTrMb4JNUM6InmK3M7Q /22OyunXBxovQd5zL19E3MR6ycSlgfN9T7aLKK4l7NvG5OhKko24uZ+5PMfTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzfGcQE2djTtz+uveWAnukg+PAp4wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREoTANBgkqhkiG 9w0BAQsFAAOCAQEAUpvMCU1lYVTTtwVnkLPGijbkhGYG41sEiskim0Y7VuDMq989 X28wjAenQTlPEN2Gb4xJq80NyJaD0oxntlVeWR5PM8TXN6bStowNBlhq2MOxZxTB WBm0DADSOjOlPgutysD/lVfqGKgcjJwZvEC4kvQUUhnrVxY2r8SvLShd4KXqukTL WAqhzNgc/wa2yPAjmlI3446tSi+ONLf1wLMBX9JuxyQHLkn3fP9P5cIYD6nOMJU2 4d4IJNEZ4dyOIHgYcQPPA1pIRrYJ5DeRbhU4WHywT+9KFB561lt58B6wo3I3KC22 vqbM+q6LFbH/4ksDf60nMESC4RRr6XBzwCnqvw== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org