$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: bbIQ6BO613HkiYhzkfNG2+O5/1EjYrxorObbpm8AVgg= Subject key identifier: 96:83:9B:43:67:7B:B7:84:7E:F4:31:DA:D4:69:29:2E:34:8B:74:F3 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 7E1934DE8A0A0CC47BAB8D60FAF105012D82F416 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:01 +0000 ROA not before: Sun 29 Sep 2024 06:55:01 +0000 ROA not after: Sun 28 Sep 2025 07:00:01 +0000 asID: 45147 IP address blocks: 119.110.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:19:34:de:8a:0a:0c:c4:7b:ab:8d:60:fa:f1:05:01:2d:82:f4:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:01 2024 GMT Not After : Sep 28 07:00:01 2025 GMT Subject: CN=96839B43677BB7847EF431DAD469292E348B74F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:33:93:4e:f0:71:f1:d9:47:0a:77:44:ab:dd: 66:0e:a2:7b:03:30:6d:20:c6:14:61:fd:2b:f8:26: 8f:ac:18:f9:2a:1a:91:6d:9b:7e:63:20:94:07:86: 1d:95:d2:49:a9:d6:e6:45:1f:c4:6f:41:9e:05:1e: 3d:7a:2d:72:04:12:12:94:f0:29:85:65:9b:b7:2d: 9b:be:07:23:b7:a8:1b:48:80:e3:f2:5a:32:1f:ca: 7c:f6:f2:13:de:60:0a:25:d7:9b:0e:8e:da:e5:3a: d0:a0:02:d6:b7:bf:a7:3a:30:23:e0:c6:8a:01:58: 22:21:b2:be:a7:b2:9d:1a:56:b2:74:6e:39:0c:47: 41:4f:1f:95:bc:79:39:fb:2e:89:cb:01:a9:0c:a5: 99:32:90:cf:2f:9a:aa:10:56:7a:ac:b9:86:7d:bc: c2:4e:a4:50:a2:74:33:30:8a:c1:f6:1c:a5:a2:8d: a8:da:45:f4:bb:de:2a:43:29:74:d6:e6:e6:0c:35: b1:6d:f3:26:2f:84:6f:59:de:7c:06:6f:f6:dd:ab: fc:9c:96:93:d7:3f:80:cb:db:a6:56:e8:b1:2c:26: 6b:2b:46:c9:d5:cc:3e:24:df:3c:1c:65:24:c8:86: fc:d3:22:97:be:f3:4c:c9:a5:c5:4f:8c:f0:d7:8c: 72:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:83:9B:43:67:7B:B7:84:7E:F4:31:DA:D4:69:29:2E:34:8B:74:F3 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.114.0/24 Signature Algorithm: sha256WithRSAEncryption 59:2c:ae:14:24:9b:37:61:40:09:4d:3c:c9:0c:1f:7b:ab:33: 9a:0a:ad:a9:2a:4c:b3:5a:d8:a5:1e:1d:f0:a9:12:f5:74:cd: 2b:37:bf:e0:e7:d4:17:6a:df:db:88:3c:5e:3f:26:60:c9:14: ef:41:cb:d9:7d:6b:91:19:ac:ce:39:38:01:60:9f:0f:3b:1d: 14:33:86:b6:ab:d7:8d:e8:b4:b7:27:ec:25:d9:21:28:73:ff: 53:4a:84:13:54:cd:4b:d9:52:9c:25:35:80:2e:ab:ee:74:0f: c5:b3:62:d5:66:bd:9e:3f:78:b5:2f:68:c7:5c:e7:c3:d7:49: 09:44:e3:c2:82:06:db:ea:59:f3:35:c7:07:f2:3f:c0:d9:b1: ac:1e:38:e2:ad:8e:b6:33:b0:de:81:ae:d5:a8:24:ca:b0:85: 78:bf:1a:c6:20:e2:58:ca:53:af:be:15:87:fe:8e:32:48:4c: 56:5a:72:c5:bc:71:0e:46:9e:a4:a1:c2:f3:5c:6b:a4:a1:06: 43:b6:10:a3:c2:f3:20:91:31:74:b4:45:b9:2a:40:07:03:46: a4:44:b4:1a:22:f0:eb:c8:8a:91:02:d5:12:95:51:93:dd:60: 06:e6:19:8c:c4:54:63:ac:e6:08:9d:9b:b4:33:3d:89:40:49: 05:ab:09:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfhk03ooKDMR7q41g+vEFAS2C9BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDFaFw0yNTA5MjgwNzAwMDFaMDMxMTAvBgNV BAMTKDk2ODM5QjQzNjc3QkI3ODQ3RUY0MzFEQUQ0NjkyOTJFMzQ4Qjc0RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhM5NO8HHx2UcKd0Sr3WYOonsD MG0gxhRh/Sv4Jo+sGPkqGpFtm35jIJQHhh2V0kmp1uZFH8RvQZ4FHj16LXIEEhKU 8CmFZZu3LZu+ByO3qBtIgOPyWjIfynz28hPeYAol15sOjtrlOtCgAta3v6c6MCPg xooBWCIhsr6nsp0aVrJ0bjkMR0FPH5W8eTn7LonLAakMpZkykM8vmqoQVnqsuYZ9 vMJOpFCidDMwisH2HKWijajaRfS73ipDKXTW5uYMNbFt8yYvhG9Z3nwGb/bdq/yc lpPXP4DL26ZW6LEsJmsrRsnVzD4k3zwcZSTIhvzTIpe+80zJpcVPjPDXjHIBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUloObQ2d7t4R+9DHa1GkpLjSLdPMwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25yMA0GCSqG SIb3DQEBCwUAA4IBAQBZLK4UJJs3YUAJTTzJDB97qzOaCq2pKkyzWtilHh3wqRL1 dM0rN7/g59QXat/biDxePyZgyRTvQcvZfWuRGazOOTgBYJ8POx0UM4a2q9eN6LS3 J+wl2SEoc/9TSoQTVM1L2VKcJTWALqvudA/Fs2LVZr2eP3i1L2jHXOfD10kJROPC ggbb6lnzNccH8j/A2bGsHjjirY62M7Dega7VqCTKsIV4vxrGIOJYylOvvhWH/o4y SExWWnLFvHEORp6kocLzXGukoQZDthCjwvMgkTF0tEW5KkAHA0akRLQaIvDryIqR AtUSlVGT3WAG5hmMxFRjrOYInZu0Mz2JQEkFqwn3 -----END CERTIFICATE-----Generated at Sun Apr 6 17:54:04 2025 by rpki-client