$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38362e302f32342d3234203d3e203137373237.roa File: 3131302e33352e38362e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 7x8KcC6hdLRJww5NLjhGkJ5tu0HGdbvvmQgychZ5Nyg= Subject key identifier: 57:80:29:0C:18:E5:5C:9F:BB:C2:CF:FF:88:26:A3:9F:8B:AA:34:E7 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0FF65898BD4E79A98BC6F1142B76CC2BCAE17B6B Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38362e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 07:00:00 +0000 ROA not before: Sun 29 Sep 2024 06:55:00 +0000 ROA not after: Sun 28 Sep 2025 07:00:00 +0000 asID: 17727 IP address blocks: 110.35.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f6:58:98:bd:4e:79:a9:8b:c6:f1:14:2b:76:cc:2b:ca:e1:7b:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:00 2024 GMT Not After : Sep 28 07:00:00 2025 GMT Subject: CN=5780290C18E55C9FBBC2CFFF8826A39F8BAA34E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:01:b0:83:f6:fc:5f:e3:da:6d:ec:a3:44:17: 9f:a1:cf:8e:ad:da:05:f7:20:44:9d:16:72:26:13: ea:71:51:48:25:7a:3f:ef:3f:37:c5:15:81:92:20: 0c:72:17:85:ad:de:aa:f8:09:6c:b9:5a:1e:72:1c: 29:97:7a:e7:c9:48:ff:8d:bc:8e:41:bf:33:06:4c: dc:9a:50:9c:b9:78:c1:ba:34:6c:c8:23:ad:31:68: 01:74:60:0c:6f:d2:e9:44:72:b1:a0:95:46:2d:1b: 02:be:83:3e:52:25:8b:fb:8e:5d:ed:5f:1e:55:de: 81:c6:d8:67:46:52:7a:4c:41:38:d4:0e:46:94:52: f3:d2:d6:3f:40:f8:8a:4c:2a:fb:f2:b7:28:6c:11: 6c:b6:3a:c9:f8:57:b4:ae:7e:43:89:e9:af:fc:7c: 63:a8:c1:f0:5f:02:04:ff:a0:5d:5f:95:9f:bf:3a: 79:13:d6:82:9d:37:92:ea:11:ca:f2:e0:e3:df:b0: 75:bf:21:db:7b:bd:71:12:2e:12:8a:fe:db:0f:44: e1:f7:3a:d1:79:9e:5f:43:ea:8f:f6:3d:80:79:d2: f5:14:c0:37:2f:8c:3c:c2:b9:30:96:0a:0c:6b:3d: b4:50:dd:41:7f:f4:23:50:26:96:ce:91:98:f7:c7: 5b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:80:29:0C:18:E5:5C:9F:BB:C2:CF:FF:88:26:A3:9F:8B:AA:34:E7 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38362e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.35.86.0/24 Signature Algorithm: sha256WithRSAEncryption 60:aa:fe:0f:b8:c5:51:88:a4:dd:18:78:7d:36:e7:a8:4a:4f: 7a:aa:dc:26:90:08:d8:6f:08:d9:7c:b5:82:8c:b8:b6:a2:2b: e7:e3:8f:bb:19:d8:45:57:e1:bc:ef:a3:1b:51:e1:b6:af:7c: e3:a6:ec:08:69:0e:69:7a:96:83:92:e5:19:f2:dc:fc:31:d3: 60:74:4f:ed:11:ff:ba:43:9e:71:b6:9f:85:44:b0:cf:95:b0: d2:42:82:37:c9:ec:83:2c:ac:21:63:6e:e6:35:eb:8c:20:ca: be:3e:9c:75:45:be:2f:b4:32:1e:98:79:41:48:f9:b4:6c:6d: d1:b0:69:31:41:86:b8:7f:7b:42:15:8d:e7:ff:39:0b:8d:ff: 5d:3a:b0:50:d3:87:a5:25:15:ad:1d:b9:06:64:68:57:cb:28: a5:93:a2:e0:98:21:bf:8d:bd:10:0a:b2:52:dc:d4:a7:48:bb: ac:a5:db:8d:0c:4c:27:a7:ba:75:b7:7d:55:fd:f4:28:77:c9: 93:34:fd:f2:a4:0e:39:de:ec:7c:08:f2:1e:06:86:88:d9:3e: df:88:b2:32:fd:2d:97:3a:59:8e:6a:cf:f7:cb:74:06:78:ed: d8:ee:f3:b7:e4:09:ec:f5:15:1b:ba:2b:7e:14:92:cf:e0:ce: 7f:37:b3:6e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUD/ZYmL1OeamLxvEUK3bMK8rhe2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDBaFw0yNTA5MjgwNzAwMDBaMDMxMTAvBgNV BAMTKDU3ODAyOTBDMThFNTVDOUZCQkMyQ0ZGRjg4MjZBMzlGOEJBQTM0RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClAbCD9vxf49pt7KNEF5+hz46t 2gX3IESdFnImE+pxUUglej/vPzfFFYGSIAxyF4Wt3qr4CWy5Wh5yHCmXeufJSP+N vI5BvzMGTNyaUJy5eMG6NGzII60xaAF0YAxv0ulEcrGglUYtGwK+gz5SJYv7jl3t Xx5V3oHG2GdGUnpMQTjUDkaUUvPS1j9A+IpMKvvytyhsEWy2Osn4V7SufkOJ6a/8 fGOowfBfAgT/oF1flZ+/OnkT1oKdN5LqEcry4OPfsHW/Idt7vXESLhKK/tsPROH3 OtF5nl9D6o/2PYB50vUUwDcvjDzCuTCWCgxrPbRQ3UF/9CNQJpbOkZj3x1tlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUV4ApDBjlXJ+7ws//iCajn4uqNOcwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzMDJlMzMzNTJlMzgzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNzMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABuI1YwDQYJKoZIhvcN AQELBQADggEBAGCq/g+4xVGIpN0YeH0256hKT3qq3CaQCNhvCNl8tYKMuLaiK+fj j7sZ2EVX4bzvoxtR4bavfOOm7AhpDml6loOS5Rny3Pwx02B0T+0R/7pDnnG2n4VE sM+VsNJCgjfJ7IMsrCFjbuY164wgyr4+nHVFvi+0Mh6YeUFI+bRsbdGwaTFBhrh/ e0IVjef/OQuN/106sFDTh6UlFa0duQZkaFfLKKWTouCYIb+NvRAKslLc1KdIu6yl 240MTCenunW3fVX99Ch3yZM0/fKkDjne7HwI8h4GhojZPt+IsjL9LZc6WY5qz/fL dAZ47dju87fkCez1FRu6K34Uks/gzn83s24= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org