$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: Jd+7la3KNkjl2rKcnwOIDQIlffsn1IDlWb7bLHqn3so= Subject key identifier: FF:65:70:38:9B:E0:FD:F4:EC:D6:05:52:C4:F9:D7:8E:ED:2A:B9:06 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 591356677FE7E59BAAF1E6B9D242C4B2908210AA Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:01 +0000 ROA not before: Sun 29 Oct 2023 05:55:01 +0000 ROA not after: Sun 27 Oct 2024 06:00:01 +0000 asID: 45147 IP address blocks: 119.110.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:13:56:67:7f:e7:e5:9b:aa:f1:e6:b9:d2:42:c4:b2:90:82:10:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:01 2023 GMT Not After : Oct 27 06:00:01 2024 GMT Subject: CN=FF6570389BE0FDF4ECD60552C4F9D78EED2AB906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:04:21:5f:91:be:02:08:0a:99:95:0e:63:f9: c9:3f:ad:b6:07:6a:2d:b0:85:a0:3c:07:cd:c6:2d: f4:56:9b:aa:a7:12:b3:14:f7:80:cb:89:4f:0f:71: 2a:1c:5b:3b:c6:a7:eb:11:e7:0c:68:77:79:ae:2c: 66:75:6d:1a:28:21:24:f1:c7:89:e5:ea:b7:84:45: 16:77:cc:64:c5:7f:72:68:21:f4:6e:14:ff:3c:13: b4:09:02:53:4b:07:a1:6b:90:69:d7:44:35:2f:0d: fa:f4:0c:c5:8b:d4:2d:1a:88:d7:c8:90:11:c2:cb: 6a:99:84:48:02:c0:b2:f8:42:3e:f1:f9:ee:55:01: 42:ea:85:21:1b:79:09:f7:04:4e:da:79:f3:3f:76: d1:7e:3c:6c:5f:6c:fb:01:4e:f3:7f:b1:d4:19:7c: 27:c8:4c:da:ea:8b:20:ef:c7:fe:15:b7:3f:b8:0e: 3b:09:cb:e0:6f:84:a7:a1:2a:57:b9:1f:4b:20:92: 0f:81:a5:9c:3a:2c:a0:48:dd:0e:77:da:1d:3a:10: ae:a4:00:cd:42:a6:19:8c:a4:72:1e:08:8a:50:f0: f3:d4:ad:b2:3a:3d:d0:c2:88:68:a2:93:a5:58:9c: a3:2a:8c:e7:14:ad:42:5d:e0:b9:96:99:d0:16:7d: 8e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:65:70:38:9B:E0:FD:F4:EC:D6:05:52:C4:F9:D7:8E:ED:2A:B9:06 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.114.0/24 Signature Algorithm: sha256WithRSAEncryption 59:02:73:e2:4d:0e:bb:f9:dc:21:7b:0c:00:a1:3c:34:f3:ed: d0:56:4c:08:bd:51:84:ba:d7:cd:fb:1b:31:b3:ed:b8:21:aa: 7c:89:fd:db:ba:57:e8:a9:80:ea:e4:f1:d6:bd:8a:6a:7a:a6: 16:27:e0:99:b2:aa:58:b1:02:06:d5:01:32:2a:ff:2a:e1:60: d2:95:cc:65:e2:67:7e:44:8d:37:59:33:9f:54:dc:1a:89:2f: b6:82:2d:91:de:3b:6d:bf:87:90:b0:bf:f5:0d:17:28:2f:af: 55:db:58:9d:2a:d8:1e:8f:10:30:3b:d4:10:2a:06:6d:2c:ba: 53:70:bb:19:9a:e1:45:8c:18:6c:00:96:fa:d8:b3:b6:7b:ea: 1f:52:d3:a2:c7:45:6c:91:6b:bc:3d:10:53:e7:a1:45:b0:29: 65:4c:15:eb:55:75:a4:62:f7:85:ee:81:70:30:9c:12:47:45: c1:77:50:d9:1a:cd:fa:75:97:5b:59:35:1a:f5:5a:cf:89:79: 10:e9:0a:a9:ec:99:c9:80:50:36:10:8a:49:49:f9:bf:57:df: 79:ac:a3:20:43:51:42:d1:f2:bc:aa:96:81:87:71:7e:b6:ca: 66:32:48:7b:5b:ad:1e:23:20:a0:c1:c8:34:32:c2:6f:99:85: ba:52:d6:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWRNWZ3/n5Zuq8ea50kLEspCCEKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDFaFw0yNDEwMjcwNjAwMDFaMDMxMTAvBgNV BAMTKEZGNjU3MDM4OUJFMEZERjRFQ0Q2MDU1MkM0RjlENzhFRUQyQUI5MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwBCFfkb4CCAqZlQ5j+ck/rbYH ai2whaA8B83GLfRWm6qnErMU94DLiU8PcSocWzvGp+sR5wxod3muLGZ1bRooISTx x4nl6reERRZ3zGTFf3JoIfRuFP88E7QJAlNLB6FrkGnXRDUvDfr0DMWL1C0aiNfI kBHCy2qZhEgCwLL4Qj7x+e5VAULqhSEbeQn3BE7aefM/dtF+PGxfbPsBTvN/sdQZ fCfITNrqiyDvx/4Vtz+4DjsJy+BvhKehKle5H0sgkg+BpZw6LKBI3Q532h06EK6k AM1CphmMpHIeCIpQ8PPUrbI6PdDCiGiik6VYnKMqjOcUrUJd4LmWmdAWfY71AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/2VwOJvg/fTs1gVSxPnXju0quQYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25yMA0GCSqG SIb3DQEBCwUAA4IBAQBZAnPiTQ67+dwhewwAoTw08+3QVkwIvVGEutfN+xsxs+24 Iap8if3bulfoqYDq5PHWvYpqeqYWJ+CZsqpYsQIG1QEyKv8q4WDSlcxl4md+RI03 WTOfVNwaiS+2gi2R3jttv4eQsL/1DRcoL69V21idKtgejxAwO9QQKgZtLLpTcLsZ muFFjBhsAJb62LO2e+ofUtOix0VskWu8PRBT56FFsCllTBXrVXWkYveF7oFwMJwS R0XBd1DZGs36dZdbWTUa9VrPiXkQ6Qqp7JnJgFA2EIpJSfm/V995rKMgQ1FC0fK8 qpaBh3F+tspmMkh7W60eIyCgwcg0MsJvmYW6Utaf -----END CERTIFICATE-----Generated at Sun Jun 2 02:06:23 2024 by rpki-client on console-fra.rpki-client.org