$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: 1KfgOACIxGGbQYW9bnTq4Q1ftib/PB114B5G8JQLMFQ= Subject key identifier: 79:6D:2E:90:42:D7:73:0E:00:1D:95:BC:EF:B8:21:F5:53:61:02:EA Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 2E5C879197F0765ED2B69FEFD8844E6EC63C7BB1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 05:00:00 +0000 ROA not before: Sun 29 Sep 2024 04:55:00 +0000 ROA not after: Sun 28 Sep 2025 05:00:00 +0000 asID: 45147 IP address blocks: 119.110.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:5c:87:91:97:f0:76:5e:d2:b6:9f:ef:d8:84:4e:6e:c6:3c:7b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 04:55:00 2024 GMT Not After : Sep 28 05:00:00 2025 GMT Subject: CN=796D2E9042D7730E001D95BCEFB821F5536102EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:18:df:14:25:ed:9d:d9:3d:6a:ec:f6:b9:bd: 6b:fe:96:36:b6:f2:13:9b:d6:a3:26:86:06:50:c4: 0d:5e:9e:cd:30:d7:6e:f4:92:f2:cd:19:81:9b:77: 52:04:78:92:ed:b2:53:03:68:1a:57:4e:de:1a:42: dd:ca:7d:81:4b:93:24:80:92:16:11:49:9b:4e:08: 87:75:2f:0f:84:95:c4:36:2a:58:82:52:af:30:71: 41:65:53:a8:79:63:2b:8a:e8:31:48:24:6c:70:2e: 52:92:9f:bd:9a:51:a8:06:89:18:79:83:c1:1e:5d: fd:2d:52:78:7e:fb:1b:5b:a8:3e:b8:7b:a3:0d:e0: 43:b6:5e:d2:95:ac:40:47:6b:93:c3:b2:20:41:dc: 0f:f2:82:19:94:89:b0:17:4a:9f:a5:82:8a:02:ad: 06:f6:b9:e6:74:32:43:40:ab:45:46:25:94:57:0f: f9:61:80:39:ba:7c:1d:d5:1b:db:15:65:d3:6b:b8: d2:e0:ff:ee:99:3f:b7:15:a3:eb:25:fc:2b:bb:df: b8:cd:f3:29:8e:80:45:7e:f2:3e:d2:d3:fe:ee:a5: b1:c1:e6:f0:23:cd:b8:6c:ea:ac:53:82:db:e7:14: e5:39:01:2b:ca:14:46:e0:be:e9:a1:1c:61:29:0f: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6D:2E:90:42:D7:73:0E:00:1D:95:BC:EF:B8:21:F5:53:61:02:EA X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.112.0/24 Signature Algorithm: sha256WithRSAEncryption 14:01:20:6f:b6:1f:4f:47:2e:ee:dd:89:65:5f:d9:96:2b:e9: e7:8b:08:8d:92:a6:6d:95:fd:e1:fe:43:2b:d4:94:13:e6:88: 33:b7:43:6a:e6:79:8f:4b:f1:52:56:8b:a1:68:f0:97:b1:c2: 4b:7f:9d:df:20:a8:35:bc:a6:a3:c8:d7:13:51:8f:de:d2:01: 90:5c:74:b3:0c:af:e6:c5:de:0b:21:96:4d:a2:f1:83:25:20: 12:6b:ad:7e:48:71:c2:0a:95:ce:e6:98:88:87:93:8a:24:7f: 09:7a:b7:f8:f2:35:ce:03:fd:25:35:94:d1:9c:8e:43:c9:99: d6:33:db:b7:94:48:f3:5f:b6:c2:c6:01:a2:8c:dd:0a:0a:5f: 7d:2a:79:a0:4f:4b:bf:5a:19:cf:b4:09:52:d8:c9:da:fc:77: 64:87:6c:f1:62:96:5c:1c:8c:82:95:2a:5b:06:75:55:49:ae: 11:37:03:45:6f:e6:f1:47:8f:9b:7d:27:ce:25:93:1a:d3:4e: e9:76:63:69:1f:0e:8c:d3:73:05:e6:c7:58:98:89:a6:45:e2: 86:84:b3:5f:12:e2:51:01:9c:6e:20:72:3d:13:2a:65:0c:8a: 21:34:7d:8b:d5:88:1e:03:52:01:00:be:35:f6:02:04:36:32: ff:bb:e5:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULlyHkZfwdl7Stp/v2IRObsY8e7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNDU1MDBaFw0yNTA5MjgwNTAwMDBaMDMxMTAvBgNV BAMTKDc5NkQyRTkwNDJENzczMEUwMDFEOTVCQ0VGQjgyMUY1NTM2MTAyRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1GN8UJe2d2T1q7Pa5vWv+lja2 8hOb1qMmhgZQxA1ens0w1270kvLNGYGbd1IEeJLtslMDaBpXTt4aQt3KfYFLkySA khYRSZtOCId1Lw+ElcQ2KliCUq8wcUFlU6h5YyuK6DFIJGxwLlKSn72aUagGiRh5 g8EeXf0tUnh++xtbqD64e6MN4EO2XtKVrEBHa5PDsiBB3A/yghmUibAXSp+lgooC rQb2ueZ0MkNAq0VGJZRXD/lhgDm6fB3VG9sVZdNruNLg/+6ZP7cVo+sl/Cu737jN 8ymOgEV+8j7S0/7upbHB5vAjzbhs6qxTgtvnFOU5ASvKFEbgvumhHGEpD4JxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeW0ukELXcw4AHZW877gh9VNhAuowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25wMA0GCSqG SIb3DQEBCwUAA4IBAQAUASBvth9PRy7u3YllX9mWK+nniwiNkqZtlf3h/kMr1JQT 5ogzt0Nq5nmPS/FSVouhaPCXscJLf53fIKg1vKajyNcTUY/e0gGQXHSzDK/mxd4L IZZNovGDJSASa61+SHHCCpXO5piIh5OKJH8Jerf48jXOA/0lNZTRnI5DyZnWM9u3 lEjzX7bCxgGijN0KCl99KnmgT0u/WhnPtAlS2Mna/Hdkh2zxYpZcHIyClSpbBnVV Sa4RNwNFb+bxR4+bfSfOJZMa007pdmNpHw6M03MF5sdYmImmReKGhLNfEuJRAZxu IHI9EyplDIohNH2L1YgeA1IBAL419gIENjL/u+WA -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org