$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38302e302f32312d3231203d3e203137373237.roa File: 3131302e33352e38302e302f32312d3231203d3e203137373237.roa (raw, json) Hash identifier: hJ67KAQ4KgVjwnMydrqL813yEp/P0zPb9COw+oNlFLw= Subject key identifier: 9C:74:40:08:6D:C1:E9:48:D9:6E:89:E7:A1:8B:97:FE:FA:C2:A8:E4 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 7567A6EE8D3A66D4AD86BD3F1DB4D4E28917501F Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38302e302f32312d3231203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:01 +0000 ROA not before: Sun 29 Sep 2024 08:55:01 +0000 ROA not after: Sun 28 Sep 2025 09:00:01 +0000 asID: 17727 IP address blocks: 110.35.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:67:a6:ee:8d:3a:66:d4:ad:86:bd:3f:1d:b4:d4:e2:89:17:50:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:01 2024 GMT Not After : Sep 28 09:00:01 2025 GMT Subject: CN=9C7440086DC1E948D96E89E7A18B97FEFAC2A8E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:a9:41:14:aa:dc:54:6b:23:3d:e8:d0:8a: bf:fa:c0:a4:92:82:a7:d8:5e:d4:85:bf:27:07:14: 7c:16:cd:3e:83:08:0e:bb:db:a1:65:20:e6:e1:03: 21:70:b9:2d:4a:c3:d8:11:ec:fc:2e:34:4e:32:25: ce:bd:cc:fa:0e:72:37:d3:8b:a9:cd:e6:58:16:5c: 88:75:79:14:9c:03:88:95:eb:69:0a:14:ac:16:c5: aa:38:4e:1d:1a:83:af:e5:60:13:6b:a4:c9:b0:3f: 83:4a:31:01:ec:b2:0e:f4:15:aa:61:58:d9:a8:63: d2:5c:0f:19:55:ab:5c:c7:a1:1a:5e:6c:17:84:f0: df:1f:7c:61:6b:99:fb:2c:87:f7:38:33:da:20:a4: b6:5d:6a:e6:55:33:9a:e7:07:63:9e:42:b2:48:f3: 53:0f:c9:68:b2:92:61:a4:19:58:1a:2c:a0:5d:fe: de:c1:9f:b9:bd:75:44:bb:d1:ec:dd:ce:f8:12:81: 3c:b7:7c:63:ed:7f:ce:d6:07:90:45:17:26:10:16: 43:7c:7a:20:2b:ea:92:ab:c4:4e:9d:21:93:1d:fb: 39:ee:8f:d9:9d:46:b8:ed:43:30:dc:f6:ec:39:57: 8b:cb:07:67:b0:5b:13:77:8d:13:7c:4e:c8:ba:e4: 1c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:74:40:08:6D:C1:E9:48:D9:6E:89:E7:A1:8B:97:FE:FA:C2:A8:E4 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38302e302f32312d3231203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.35.80.0/21 Signature Algorithm: sha256WithRSAEncryption a0:c6:15:b0:ea:31:0b:17:45:52:77:cf:19:56:56:df:b2:c0: ba:3d:8c:7d:ab:cc:68:81:3d:29:10:5c:c0:04:77:2d:ed:ba: dd:51:aa:8d:68:31:eb:57:5c:5f:92:62:7d:44:eb:61:84:f6: 99:59:85:26:d8:ca:4f:cc:17:a8:ba:5d:d1:ed:81:23:8f:9a: 60:52:e7:0b:1f:8f:3c:d1:72:7c:c3:67:31:04:81:7d:18:80: 2f:aa:85:58:d2:4a:86:62:ef:0f:ba:ff:9d:ee:2e:a3:70:f3: 50:32:ce:16:e3:aa:a9:2a:59:ff:59:ca:00:b9:85:3d:de:d4: ef:67:25:84:c7:90:0b:a9:26:9f:2b:62:b0:8c:4a:2a:d9:b4: da:23:ad:2c:0e:a5:8b:84:08:4e:2a:3b:93:ac:61:e3:14:79: a5:3d:09:a0:78:ea:fa:a6:64:c9:b6:9c:21:a8:65:2e:e5:55: 1a:6f:ea:17:4f:ce:38:88:28:d2:cf:30:11:77:a2:0f:38:01: b0:19:a6:4d:6a:b4:8d:a1:c4:64:86:dd:48:44:b8:fb:ec:3f: 7d:ca:c6:7d:f5:6f:ce:94:0e:05:d5:0b:ea:a4:54:f4:21:ae: d6:d1:7d:31:94:06:b3:e9:8d:48:45:01:ca:05:4c:1d:95:09: 5a:4e:92:b1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdWem7o06ZtSthr0/HbTU4okXUB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDFaFw0yNTA5MjgwOTAwMDFaMDMxMTAvBgNV BAMTKDlDNzQ0MDA4NkRDMUU5NDhEOTZFODlFN0ExOEI5N0ZFRkFDMkE4RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr3alBFKrcVGsjPejQir/6wKSS gqfYXtSFvycHFHwWzT6DCA6726FlIObhAyFwuS1Kw9gR7PwuNE4yJc69zPoOcjfT i6nN5lgWXIh1eRScA4iV62kKFKwWxao4Th0ag6/lYBNrpMmwP4NKMQHssg70Faph WNmoY9JcDxlVq1zHoRpebBeE8N8ffGFrmfssh/c4M9ogpLZdauZVM5rnB2OeQrJI 81MPyWiykmGkGVgaLKBd/t7Bn7m9dUS70ezdzvgSgTy3fGPtf87WB5BFFyYQFkN8 eiAr6pKrxE6dIZMd+znuj9mdRrjtQzDc9uw5V4vLB2ewWxN3jRN8Tsi65ByjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnHRACG3B6UjZbonnoYuX/vrCqOQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzMDJlMzMzNTJlMzgzMDJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMxMzczNzMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANuI1AwDQYJKoZIhvcN AQELBQADggEBAKDGFbDqMQsXRVJ3zxlWVt+ywLo9jH2rzGiBPSkQXMAEdy3tut1R qo1oMetXXF+SYn1E62GE9plZhSbYyk/MF6i6XdHtgSOPmmBS5wsfjzzRcnzDZzEE gX0YgC+qhVjSSoZi7w+6/53uLqNw81AyzhbjqqkqWf9ZygC5hT3e1O9nJYTHkAup Jp8rYrCMSirZtNojrSwOpYuECE4qO5OsYeMUeaU9CaB46vqmZMm2nCGoZS7lVRpv 6hdPzjiIKNLPMBF3og84AbAZpk1qtI2hxGSG3UhEuPvsP33Kxn31b86UDgXVC+qk VPQhrtbRfTGUBrPpjUhFAcoFTB2VCVpOkrE= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org