$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136392e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136392e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: yW72jmSfFNSjCFvi6WVHXbMs1X2dZiNLHNROnysynJQ= Subject key identifier: 27:D3:E6:C5:30:F7:DC:C6:7F:E3:CB:50:20:BE:FD:09:A5:58:95:17 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 406D114B329B16B4D411776735E8CF671E2F6DEF Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136392e302f32342d3234203d3e203536323436.roa Signing time: Mon 01 Jul 2024 01:03:05 +0000 ROA not before: Mon 01 Jul 2024 00:58:05 +0000 ROA not after: Mon 30 Jun 2025 01:03:05 +0000 asID: 56246 IP address blocks: 116.68.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:6d:11:4b:32:9b:16:b4:d4:11:77:67:35:e8:cf:67:1e:2f:6d:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:05 2024 GMT Not After : Jun 30 01:03:05 2025 GMT Subject: CN=27D3E6C530F7DCC67FE3CB5020BEFD09A5589517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:28:d7:d7:07:90:bf:ac:97:97:08:e6:65: 24:f5:ae:5d:de:87:0e:11:d5:b0:02:fa:4c:4b:0d: 18:79:a4:07:08:02:69:30:60:ef:b8:80:6b:e1:3e: 81:79:a3:97:9a:51:41:8e:fe:df:ae:02:2f:f4:95: 00:db:d6:bd:60:0c:a4:3d:f6:d5:a3:b6:5c:f1:f2: 83:9f:fe:b7:93:5d:5f:60:cd:64:cb:35:f5:06:c5: e2:5a:3f:e3:af:fa:b6:06:6c:17:a7:bc:c1:fb:29: 30:f5:ae:37:f6:4b:dd:05:e4:02:19:28:2d:dd:9d: c2:f2:8c:ed:9d:fc:e0:e9:83:dc:b8:bc:51:2c:1e: 6c:c3:77:3c:a1:75:99:66:42:74:c9:a8:49:20:1b: 79:29:a1:f1:99:7d:36:e0:31:e8:a0:b7:f2:76:07: 27:67:44:c4:1a:2f:e3:81:ac:f6:8c:cb:ad:08:8b: bb:47:03:04:60:4a:6c:31:97:cb:80:be:6a:ee:24: ae:2e:64:de:0a:80:b9:d0:5c:32:3d:4d:db:66:ed: 91:79:76:7b:b4:f0:6d:04:3b:71:2e:5a:6a:ee:ca: 5b:e5:e4:39:d7:66:1c:5f:db:ec:bd:24:ed:48:20: 77:43:f9:c4:a5:25:75:82:21:3a:cf:e4:0a:d4:2c: a0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D3:E6:C5:30:F7:DC:C6:7F:E3:CB:50:20:BE:FD:09:A5:58:95:17 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136392e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.169.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:a5:49:d1:c9:db:43:b3:48:fc:29:28:65:c1:58:d8:ba:87: ba:cd:7d:5d:61:21:14:69:66:c0:18:b2:70:24:72:03:8e:9b: fb:58:38:bc:ef:67:69:6b:77:92:c8:14:6c:e3:06:37:d4:48: 24:1d:1c:32:82:80:42:45:89:21:97:5f:3a:a1:84:37:7c:90: 54:c3:91:08:ba:4b:4d:96:6d:48:8e:b9:50:b7:7c:b9:f7:05: 8f:10:a0:13:0c:b2:6d:68:de:14:93:ec:c0:a6:16:ee:a5:cd: 7e:f8:60:a0:08:c8:5c:75:cd:4f:7a:18:9f:6a:76:55:00:b3: 7f:21:03:32:49:49:2a:78:07:ab:d0:4d:2c:00:fa:ea:bd:e7: 38:fb:53:aa:f8:f1:94:53:e7:e4:f5:ad:b7:f7:92:11:ac:a2: c6:37:0d:6c:58:1b:93:36:33:3e:8c:a7:26:06:e7:2c:12:86: bb:62:04:6d:3b:ef:a3:19:5b:b1:66:2e:69:6c:1d:be:6d:6c: 1a:aa:09:45:01:1a:ba:79:e5:cb:55:f5:ac:f2:60:3f:a7:45: 56:56:2c:c5:ea:9b:df:7b:66:17:85:49:15:bb:05:f2:49:e7: bf:b9:ab:25:43:c7:24:28:8b:50:b8:af:8d:dd:cf:f7:2f:88: 77:88:d6:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQG0RSzKbFrTUEXdnNejPZx4vbe8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDVaFw0yNTA2MzAwMTAzMDVaMDMxMTAvBgNV BAMTKDI3RDNFNkM1MzBGN0RDQzY3RkUzQ0I1MDIwQkVGRDA5QTU1ODk1MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2CjX1weQv6yXlwjmZST1rl3e hw4R1bAC+kxLDRh5pAcIAmkwYO+4gGvhPoF5o5eaUUGO/t+uAi/0lQDb1r1gDKQ9 9tWjtlzx8oOf/reTXV9gzWTLNfUGxeJaP+Ov+rYGbBenvMH7KTD1rjf2S90F5AIZ KC3dncLyjO2d/ODpg9y4vFEsHmzDdzyhdZlmQnTJqEkgG3kpofGZfTbgMeigt/J2 BydnRMQaL+OBrPaMy60Ii7tHAwRgSmwxl8uAvmruJK4uZN4KgLnQXDI9Tdtm7ZF5 dnu08G0EO3EuWmruylvl5DnXZhxf2+y9JO1IIHdD+cSlJXWCITrP5ArULKCRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ9PmxTD33MZ/48tQIL79CaVYlRcwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREqTANBgkqhkiG 9w0BAQsFAAOCAQEAeqVJ0cnbQ7NI/CkoZcFY2LqHus19XWEhFGlmwBiycCRyA46b +1g4vO9naWt3ksgUbOMGN9RIJB0cMoKAQkWJIZdfOqGEN3yQVMORCLpLTZZtSI65 ULd8ufcFjxCgEwyybWjeFJPswKYW7qXNfvhgoAjIXHXNT3oYn2p2VQCzfyEDMklJ KngHq9BNLAD66r3nOPtTqvjxlFPn5PWtt/eSEayixjcNbFgbkzYzPoynJgbnLBKG u2IEbTvvoxlbsWYuaWwdvm1sGqoJRQEaunnly1X1rPJgP6dFVlYsxeqb33tmF4VJ FbsF8knnv7mrJUPHJCiLULivjd3P9y+Id4jWqQ== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org