$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa File: 3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa (raw, json) Hash identifier: ZnH1EWEjGG9HWqB59byfijbN6mkEE9j/NfNz1uzdN9g= Subject key identifier: 14:2D:09:90:79:46:26:BE:0E:16:10:F4:DF:E0:8A:7E:0F:3B:32:B0 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 2474B05D7729EAF321424C1297D2C57450A31895 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa Signing time: Wed 21 Feb 2024 05:14:30 +0000 ROA not before: Wed 21 Feb 2024 05:09:30 +0000 ROA not after: Wed 19 Feb 2025 05:14:30 +0000 asID: 45147 IP address blocks: 119.110.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:74:b0:5d:77:29:ea:f3:21:42:4c:12:97:d2:c5:74:50:a3:18:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Feb 21 05:09:30 2024 GMT Not After : Feb 19 05:14:30 2025 GMT Subject: CN=142D0990794626BE0E1610F4DFE08A7E0F3B32B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ea:de:32:78:34:c6:f1:1c:eb:42:f8:01:8b: 70:ca:95:a8:9e:cf:01:2d:f7:f8:48:46:f6:76:30: 67:33:76:07:d1:7e:35:b5:85:3c:25:2d:27:41:f6: 96:f6:1b:4f:9b:24:4f:e5:61:3f:04:d2:00:ad:01: 0d:36:1b:45:85:91:fb:2e:ed:22:fa:6f:89:c0:df: cc:62:77:09:06:34:3d:74:2b:a4:c0:01:0f:dd:c8: d4:a4:04:39:46:26:04:71:cb:a6:d7:de:a9:cd:56: 97:8e:1b:94:0c:2c:39:2c:8e:b6:b4:17:20:c8:03: 2c:4a:3f:cc:19:26:fc:99:e2:a0:b6:6a:31:63:3f: 7d:7e:b5:6a:16:70:f9:ab:10:e8:c1:cf:a8:be:b5: 86:4a:93:2d:9b:bd:6e:62:9a:7d:91:a1:18:04:95: ab:8b:5b:f7:fa:d0:85:3f:d8:67:55:90:01:49:38: 3f:2f:0d:2b:58:22:26:7d:41:00:57:46:f9:5b:77: ba:82:a1:2e:0d:c1:4f:a6:5e:35:8b:ab:e1:d1:96: 29:a1:d5:47:c4:18:a9:e6:8c:26:5b:34:72:a2:81: 42:6a:39:f9:25:81:8b:25:da:be:5f:f5:6b:38:b6: 28:74:eb:2f:14:73:7b:67:3c:76:c4:8d:95:f8:3d: a8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2D:09:90:79:46:26:BE:0E:16:10:F4:DF:E0:8A:7E:0F:3B:32:B0 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.112.0/20 Signature Algorithm: sha256WithRSAEncryption af:0f:52:67:e6:5e:94:e4:48:25:10:8f:db:53:02:3a:05:4e: 8f:27:60:2e:2b:26:ad:38:e5:f4:b1:34:eb:cd:23:14:e4:0b: d4:b6:c8:0f:b0:8c:1a:b5:64:5c:74:a7:ad:36:11:2c:b4:61: 15:9d:c9:35:2c:45:18:c1:d9:f9:02:47:d4:ea:9f:f9:97:04: b6:d1:5a:51:6f:32:c4:51:60:e0:90:23:8c:d8:45:c1:9e:1f: 30:af:e0:0e:22:eb:ab:ee:71:0d:12:98:29:44:06:8b:26:56: 96:49:1c:8c:1c:f6:1c:46:1f:55:ce:fc:a6:2a:ba:8e:1b:d0: e6:b4:1f:5a:18:6d:3b:21:63:ec:5a:69:03:ab:88:da:22:de: ae:0b:fd:35:7f:55:95:8c:99:20:4f:eb:cf:40:93:e6:ed:df: 2c:75:cd:d6:79:24:c8:fe:11:f1:2b:9f:d0:d8:5e:86:70:3f: d3:81:11:71:70:e6:cc:b7:3b:ac:a4:98:75:90:9c:a8:0b:b0: af:e3:f5:52:7e:c9:15:7f:04:f9:16:9e:3d:6f:c8:11:60:80: b1:c1:c4:d3:8d:1a:67:ea:d6:87:4e:f4:02:0c:8f:14:6e:f3: ef:8a:91:17:f4:b2:86:90:c8:cb:67:1b:3e:de:dd:d0:ce:d1: 69:a8:b6:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJHSwXXcp6vMhQkwSl9LFdFCjGJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDAyMjEwNTA5MzBaFw0yNTAyMTkwNTE0MzBaMDMxMTAvBgNV BAMTKDE0MkQwOTkwNzk0NjI2QkUwRTE2MTBGNERGRTA4QTdFMEYzQjMyQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG6t4yeDTG8RzrQvgBi3DKlaie zwEt9/hIRvZ2MGczdgfRfjW1hTwlLSdB9pb2G0+bJE/lYT8E0gCtAQ02G0WFkfsu 7SL6b4nA38xidwkGND10K6TAAQ/dyNSkBDlGJgRxy6bX3qnNVpeOG5QMLDksjra0 FyDIAyxKP8wZJvyZ4qC2ajFjP31+tWoWcPmrEOjBz6i+tYZKky2bvW5imn2RoRgE lauLW/f60IU/2GdVkAFJOD8vDStYIiZ9QQBXRvlbd7qCoS4NwU+mXjWLq+HRlimh 1UfEGKnmjCZbNHKigUJqOfklgYsl2r5f9Ws4tih06y8Uc3tnPHbEjZX4Pai/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFC0JkHlGJr4OFhD03+CKfg87MrAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzIyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEd25wMA0GCSqG SIb3DQEBCwUAA4IBAQCvD1Jn5l6U5EglEI/bUwI6BU6PJ2AuKyatOOX0sTTrzSMU 5AvUtsgPsIwatWRcdKetNhEstGEVnck1LEUYwdn5AkfU6p/5lwS20VpRbzLEUWDg kCOM2EXBnh8wr+AOIuur7nENEpgpRAaLJlaWSRyMHPYcRh9VzvymKrqOG9DmtB9a GG07IWPsWmkDq4jaIt6uC/01f1WVjJkgT+vPQJPm7d8sdc3WeSTI/hHxK5/Q2F6G cD/TgRFxcObMtzuspJh1kJyoC7Cv4/VSfskVfwT5Fp49b8gRYICxwcTTjRpn6taH TvQCDI8UbvPvipEX9LKGkMjLZxs+3t3QztFpqLbM -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org