$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131332e302f32342d3234203d3e20333937373633.roa File: 3131392e3131302e3131332e302f32342d3234203d3e20333937373633.roa (raw, json) Hash identifier: KwnRGJKQLbNAZ2F6txga77WVjCjaVi4Ch3ajDmYa6GM= Subject key identifier: BD:A0:2C:E4:3B:09:3F:E3:40:DB:8D:D4:B3:65:2C:AD:92:15:42:80 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 03B4B9AFA367BD273F3E60BB06B61ECDFD8EBC40 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131332e302f32342d3234203d3e20333937373633.roa Signing time: Thu 07 Mar 2024 07:57:10 +0000 ROA not before: Thu 07 Mar 2024 07:52:10 +0000 ROA not after: Thu 06 Mar 2025 07:57:10 +0000 asID: 397763 IP address blocks: 119.110.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b4:b9:af:a3:67:bd:27:3f:3e:60:bb:06:b6:1e:cd:fd:8e:bc:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Mar 7 07:52:10 2024 GMT Not After : Mar 6 07:57:10 2025 GMT Subject: CN=BDA02CE43B093FE340DB8DD4B3652CAD92154280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:62:bf:15:c8:ab:76:3c:97:73:eb:dd:66:4b: da:c9:e2:54:8d:a3:8a:25:51:f7:ff:56:f7:90:0f: 0b:71:06:38:ce:98:6e:24:78:b2:b0:a8:11:22:96: 05:ea:ea:35:5b:83:30:e2:6c:a7:f0:2e:fd:c9:40: 5a:2b:fd:50:0d:56:de:28:6b:de:42:d1:d6:7e:52: 3e:40:8d:28:47:9d:0e:6b:97:7c:66:02:4b:f1:18: 92:ab:b5:14:25:c1:04:96:fc:2d:cf:40:99:8d:1d: 86:28:f2:7f:cd:8e:1d:da:2f:55:e1:f8:51:93:d2: 7b:d4:f2:32:f9:4b:5a:95:e4:5f:34:58:c9:09:68: a1:34:49:44:12:84:58:9b:67:95:d0:7e:82:6f:fd: 2e:4a:23:38:b4:c4:b7:3e:2b:3c:28:b1:a2:31:dc: c0:22:3f:59:21:e7:e9:4d:f0:cb:d8:27:24:e5:3a: eb:c0:53:a3:e1:5a:b6:87:06:24:33:96:6f:b0:f3: d2:7a:5f:08:d2:73:0d:cd:e1:5c:c5:1d:3b:b3:ac: c7:97:10:2d:ea:34:1d:c1:99:0a:2f:27:63:59:88: be:2f:42:1c:66:da:37:e7:e5:a7:ef:61:57:dc:a9: 31:05:1d:47:53:18:40:93:2d:b9:6e:0f:be:38:a2: c4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A0:2C:E4:3B:09:3F:E3:40:DB:8D:D4:B3:65:2C:AD:92:15:42:80 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131332e302f32342d3234203d3e20333937373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.113.0/24 Signature Algorithm: sha256WithRSAEncryption 97:e6:72:84:68:6d:d0:f7:b6:23:8c:da:2d:88:2c:1c:a5:63: 76:0d:b6:d5:df:0b:c0:19:51:07:5c:1a:99:2c:b4:18:ee:8a: 59:56:80:37:f5:66:15:f7:2b:83:1b:bb:28:cf:ce:ef:18:6d: 83:3d:aa:15:12:28:0a:1c:cb:32:13:95:0b:20:0e:4b:e5:08: 58:fe:f9:fd:12:a4:b9:61:6d:f6:df:da:d1:92:51:69:a7:c2: 52:88:8f:7f:97:6e:cc:5e:21:02:25:b5:28:8f:4a:1c:d5:01: 87:07:0a:0b:13:4c:70:e5:eb:33:a2:01:17:c0:88:9b:28:ca: 7b:bf:9c:d5:51:40:46:13:2d:98:2f:16:f4:73:63:cd:e5:12: da:94:b6:9f:35:65:f0:49:c3:53:13:ed:75:30:0e:84:30:7f: e5:13:24:98:8e:a9:c9:0a:20:e3:39:d4:e6:29:44:59:c5:d3: fd:24:44:a9:6f:bc:99:f3:62:79:8b:7b:97:a9:72:3f:52:4f: ea:16:ba:2a:e7:d1:22:d9:18:76:27:1b:e2:42:30:13:50:59: 55:58:00:ef:c5:1c:66:86:b7:14:c4:fd:a5:6a:18:bc:cb:6f: cb:e3:5f:b2:b6:58:ab:f5:25:6d:35:2e:a4:3f:41:2e:41:11: d2:ee:39:59 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA7S5r6NnvSc/PmC7BrYezf2OvEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDAzMDcwNzUyMTBaFw0yNTAzMDYwNzU3MTBaMDMxMTAvBgNV BAMTKEJEQTAyQ0U0M0IwOTNGRTM0MERCOERENEIzNjUyQ0FEOTIxNTQyODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDYr8VyKt2PJdz691mS9rJ4lSN o4olUff/VveQDwtxBjjOmG4keLKwqBEilgXq6jVbgzDibKfwLv3JQFor/VANVt4o a95C0dZ+Uj5AjShHnQ5rl3xmAkvxGJKrtRQlwQSW/C3PQJmNHYYo8n/Njh3aL1Xh +FGT0nvU8jL5S1qV5F80WMkJaKE0SUQShFibZ5XQfoJv/S5KIzi0xLc+KzwosaIx 3MAiP1kh5+lN8MvYJyTlOuvAU6PhWraHBiQzlm+w89J6XwjScw3N4VzFHTuzrMeX EC3qNB3BmQovJ2NZiL4vQhxm2jfn5afvYVfcqTEFHUdTGECTLbluD744osRFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvaAs5DsJP+NA243Us2UsrZIVQoAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM5MzczNzM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3bnEwDQYJ KoZIhvcNAQELBQADggEBAJfmcoRobdD3tiOM2i2ILBylY3YNttXfC8AZUQdcGpks tBjuillWgDf1ZhX3K4MbuyjPzu8YbYM9qhUSKAocyzITlQsgDkvlCFj++f0SpLlh bfbf2tGSUWmnwlKIj3+XbsxeIQIltSiPShzVAYcHCgsTTHDl6zOiARfAiJsoynu/ nNVRQEYTLZgvFvRzY83lEtqUtp81ZfBJw1MT7XUwDoQwf+UTJJiOqckKIOM51OYp RFnF0/0kRKlvvJnzYnmLe5epcj9ST+oWuirn0SLZGHYnG+JCMBNQWVVYAO/FHGaG txTE/aVqGLzLb8vjX7K2WKv1JW01LqQ/QS5BEdLuOVk= -----END CERTIFICATE-----Generated at Sun Jun 2 03:38:32 2024 by rpki-client on console-ams.rpki-client.org