$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38332e302f32342d3234203d3e203137373237.roa File: 3131302e33352e38332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 8F9NBQY/AHsKg4PqGiMTjSZM0dR8DKIKnfLhqxTtXyA= Subject key identifier: 05:F6:EA:6D:22:2B:04:72:37:4D:6D:19:39:B5:14:9F:A4:C6:01:B7 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 11DBB341E8612837B7846FDE6AAD77182A4D8E0C Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38332e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 08:00:00 +0000 ROA not before: Sun 29 Sep 2024 07:55:00 +0000 ROA not after: Sun 28 Sep 2025 08:00:00 +0000 asID: 17727 IP address blocks: 110.35.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:db:b3:41:e8:61:28:37:b7:84:6f:de:6a:ad:77:18:2a:4d:8e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 07:55:00 2024 GMT Not After : Sep 28 08:00:00 2025 GMT Subject: CN=05F6EA6D222B0472374D6D1939B5149FA4C601B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6e:5e:e0:0f:af:b1:4c:af:ad:82:c4:ca:fd: 22:74:f9:1d:3d:85:b1:bd:11:54:57:5f:f5:ec:96: de:4c:12:2e:98:58:05:59:ed:eb:d5:83:35:48:5c: af:32:80:2c:af:b6:16:07:25:2c:27:77:1b:26:c6: 10:3f:07:8c:7e:19:f6:e2:17:43:09:72:67:38:d0: 07:ea:08:17:69:e6:44:98:65:67:1a:f9:e1:d2:3e: 13:12:0b:47:ac:61:aa:ea:26:ba:9c:52:6b:58:ae: 74:36:83:68:fe:3d:9f:7c:0d:ce:f5:a5:9d:37:4a: e1:ce:7d:2e:7c:74:73:ff:41:89:76:3c:8f:3a:35: d7:9a:20:a5:62:12:2f:0a:b1:85:b2:0b:6a:29:b0: 43:65:9b:6f:41:b3:46:fd:18:cc:b3:49:7e:de:8f: b6:dc:b6:0e:c5:28:b7:50:83:a8:d4:b1:de:e3:3c: ca:85:b7:0a:ce:a8:ef:09:0f:9a:df:ed:e0:74:7c: 23:9b:fb:81:0e:68:eb:b4:19:94:e1:97:2a:65:bd: 00:a6:6e:0c:42:34:00:7a:12:0c:a7:34:69:ad:5a: 6e:b6:fb:88:88:f2:2e:88:d2:ae:74:7f:bb:10:4d: 75:24:aa:a4:95:9d:0e:21:12:f1:ed:47:41:dd:7d: 87:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F6:EA:6D:22:2B:04:72:37:4D:6D:19:39:B5:14:9F:A4:C6:01:B7 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.35.83.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:53:91:5d:80:4a:d7:d0:af:2a:ff:1d:dc:95:83:de:4d:a3: b9:62:6d:e7:82:2b:ad:1d:dd:39:34:d2:5b:59:f8:b8:7d:73: 5b:ce:ad:96:f3:a6:b4:4a:13:34:01:80:12:d9:25:4c:9f:2b: 3a:d7:9b:8a:4f:5e:74:01:21:f6:8e:64:e7:2b:fc:ee:3d:6e: 84:85:5c:e8:0b:88:59:9f:c7:02:6b:5e:9d:cc:dc:84:31:29: 40:a1:5b:44:4a:a6:a8:b1:8b:64:73:74:28:ca:85:9a:5a:39: d6:d9:20:83:f4:31:e8:bc:b2:09:bc:61:c4:c9:e2:2d:57:ef: 97:58:39:00:7f:df:47:27:f6:f4:d0:77:c7:db:31:70:82:4c: 1c:77:88:72:bd:d7:d7:37:bb:d1:de:65:cf:63:a6:cd:43:71: 3f:41:69:88:f5:a4:f2:04:69:ae:8f:4d:39:8a:d5:bf:ec:ec: 1e:8c:c4:81:b5:7d:03:0b:fa:a9:2f:b1:74:d2:3e:26:b1:b6: 3d:48:f7:fc:8e:4b:fd:90:90:b8:61:40:93:a1:5c:5e:b4:18: b3:0a:bf:56:d3:02:92:73:e3:4c:70:f0:32:5a:2b:f5:c1:c3: 2e:ad:b2:ea:8a:32:e5:95:57:80:31:81:0d:7e:fa:a8:e0:59: 6b:72:a7:86 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEduzQehhKDe3hG/eaq13GCpNjgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNzU1MDBaFw0yNTA5MjgwODAwMDBaMDMxMTAvBgNV BAMTKDA1RjZFQTZEMjIyQjA0NzIzNzRENkQxOTM5QjUxNDlGQTRDNjAxQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkbl7gD6+xTK+tgsTK/SJ0+R09 hbG9EVRXX/Xslt5MEi6YWAVZ7evVgzVIXK8ygCyvthYHJSwndxsmxhA/B4x+Gfbi F0MJcmc40AfqCBdp5kSYZWca+eHSPhMSC0esYarqJrqcUmtYrnQ2g2j+PZ98Dc71 pZ03SuHOfS58dHP/QYl2PI86NdeaIKViEi8KsYWyC2opsENlm29Bs0b9GMyzSX7e j7bctg7FKLdQg6jUsd7jPMqFtwrOqO8JD5rf7eB0fCOb+4EOaOu0GZThlyplvQCm bgxCNAB6EgynNGmtWm62+4iI8i6I0q50f7sQTXUkqqSVnQ4hEvHtR0HdfYfZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBfbqbSIrBHI3TW0ZObUUn6TGAbcwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzMDJlMzMzNTJlMzgzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNzMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABuI1MwDQYJKoZIhvcN AQELBQADggEBAA9TkV2AStfQryr/HdyVg95No7libeeCK60d3Tk00ltZ+Lh9c1vO rZbzprRKEzQBgBLZJUyfKzrXm4pPXnQBIfaOZOcr/O49boSFXOgLiFmfxwJrXp3M 3IQxKUChW0RKpqixi2RzdCjKhZpaOdbZIIP0Mei8sgm8YcTJ4i1X75dYOQB/30cn 9vTQd8fbMXCCTBx3iHK919c3u9HeZc9jps1DcT9BaYj1pPIEaa6PTTmK1b/s7B6M xIG1fQML+qkvsXTSPiaxtj1I9/yOS/2QkLhhQJOhXF60GLMKv1bTApJz40xw8DJa K/XBwy6tsuqKMuWVV4AxgQ1++qjgWWtyp4Y= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org