$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136332e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: ekgtrO14u1OZDLyQQfuVbfInYWbsBsWfML58w4Bv9ZU= Subject key identifier: 21:AF:7D:1A:F6:2F:98:09:2C:F0:F6:48:76:C1:37:5F:25:81:70:36 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 66E7D7BF1D7B4DC32493EDC5E9D237D91981D4CF Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa Signing time: Mon 01 Jul 2024 01:03:07 +0000 ROA not before: Mon 01 Jul 2024 00:58:07 +0000 ROA not after: Mon 30 Jun 2025 01:03:07 +0000 asID: 56246 IP address blocks: 116.68.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e7:d7:bf:1d:7b:4d:c3:24:93:ed:c5:e9:d2:37:d9:19:81:d4:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:07 2024 GMT Not After : Jun 30 01:03:07 2025 GMT Subject: CN=21AF7D1AF62F98092CF0F64876C1375F25817036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:25:b7:7f:d5:36:55:db:02:8c:dd:a9:4c:b2: ce:08:9d:13:5e:6c:5f:4c:ef:56:81:d8:3d:a0:e5: 7a:1c:bf:d1:e5:41:fa:df:fd:96:bb:88:d2:44:e6: 43:1c:b7:b6:28:97:7d:f2:78:64:58:c8:7a:b6:e4: 7e:49:b2:24:4f:15:0b:9b:9c:3c:c2:80:0c:65:20: dd:a1:16:b2:88:84:3c:88:99:08:d6:61:72:3c:ff: 3d:af:9b:48:b4:b8:91:94:0c:c0:f5:92:d1:b9:f3: 3d:21:5d:be:5c:39:8d:bf:7f:27:6a:a7:57:91:3d: 5f:73:05:64:50:36:fb:64:ef:82:8e:e1:a2:45:b6: c8:05:ea:2d:ef:0b:ee:73:e8:96:5b:28:6b:c9:41: 09:7b:fd:fd:3f:2a:6b:aa:78:cf:62:b0:4f:69:92: 68:77:86:de:31:9f:07:98:ec:13:f0:cc:c2:34:0a: b9:ca:43:83:cd:53:fa:04:c1:b5:8e:47:73:d6:d1: a2:0b:bd:b5:6b:33:0e:94:05:13:de:94:95:22:2a: ca:73:43:6a:38:ac:e2:44:94:2c:91:9f:29:81:63: 14:68:45:3c:ee:6c:13:04:68:d7:ba:f4:88:26:53: 6e:f4:43:b1:68:ca:37:60:25:df:05:32:af:74:b9: 78:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AF:7D:1A:F6:2F:98:09:2C:F0:F6:48:76:C1:37:5F:25:81:70:36 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.163.0/24 Signature Algorithm: sha256WithRSAEncryption 32:ba:8f:9a:5e:90:1d:69:1e:60:00:f2:11:d4:e9:ed:30:7a: a9:0f:d6:ef:bd:5b:80:84:a1:d5:d5:07:39:73:54:67:e5:30: 55:1c:cb:cc:4e:a7:f9:51:0b:1c:86:47:d7:81:cb:da:ee:64: fb:26:49:21:fc:42:78:af:42:ca:f3:8e:67:eb:0c:f4:4d:0b: 83:66:36:a4:46:2d:88:58:1e:cb:bb:57:f2:9d:1b:88:f9:00: c5:0d:b9:b0:b7:ba:2a:f9:f8:0c:14:a0:4c:ab:01:b0:4d:0e: 40:76:95:7a:0f:e9:b2:99:53:2d:11:72:b3:7b:a5:e8:08:cd: 7e:35:f1:c3:53:36:df:87:c8:44:ae:0b:ca:7b:cc:5e:3e:dd: 1a:d7:8e:79:40:3d:ce:a1:e6:c9:f0:64:35:91:ea:db:87:16: c6:c1:10:2b:60:60:e0:e7:30:60:b3:ff:e9:d9:d3:c5:c3:0e: 45:67:6f:81:1b:d1:31:72:fb:c4:11:63:8f:53:62:c7:d8:db: ba:83:e5:aa:56:c8:93:dc:b0:08:d0:9c:c0:78:d9:69:3e:b6: ad:35:df:5e:16:8d:83:9c:79:a3:eb:bc:d5:63:7f:77:4e:54: 3c:ec:85:9f:b9:8e:15:8b:bc:a0:e2:85:0f:f5:af:82:8b:0a: d5:7f:fb:7f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZufXvx17TcMkk+3F6dI32RmB1M8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDdaFw0yNTA2MzAwMTAzMDdaMDMxMTAvBgNV BAMTKDIxQUY3RDFBRjYyRjk4MDkyQ0YwRjY0ODc2QzEzNzVGMjU4MTcwMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJbd/1TZV2wKM3alMss4InRNe bF9M71aB2D2g5Xocv9HlQfrf/Za7iNJE5kMct7Yol33yeGRYyHq25H5JsiRPFQub nDzCgAxlIN2hFrKIhDyImQjWYXI8/z2vm0i0uJGUDMD1ktG58z0hXb5cOY2/fydq p1eRPV9zBWRQNvtk74KO4aJFtsgF6i3vC+5z6JZbKGvJQQl7/f0/KmuqeM9isE9p kmh3ht4xnweY7BPwzMI0CrnKQ4PNU/oEwbWOR3PW0aILvbVrMw6UBRPelJUiKspz Q2o4rOJElCyRnymBYxRoRTzubBMEaNe69IgmU270Q7FoyjdgJd8FMq90uXgpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIa99GvYvmAks8PZIdsE3XyWBcDYwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREozANBgkqhkiG 9w0BAQsFAAOCAQEAMrqPml6QHWkeYADyEdTp7TB6qQ/W771bgISh1dUHOXNUZ+Uw VRzLzE6n+VELHIZH14HL2u5k+yZJIfxCeK9CyvOOZ+sM9E0Lg2Y2pEYtiFgey7tX 8p0biPkAxQ25sLe6Kvn4DBSgTKsBsE0OQHaVeg/psplTLRFys3ul6AjNfjXxw1M2 34fIRK4LynvMXj7dGteOeUA9zqHmyfBkNZHq24cWxsEQK2Bg4OcwYLP/6dnTxcMO RWdvgRvRMXL7xBFjj1Nix9jbuoPlqlbIk9ywCNCcwHjZaT62rTXfXhaNg5x5o+u8 1WN/d05UPOyFn7mOFYu8oOKFD/WvgosK1X/7fw== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org