$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: fHZzVdUl6DIuAX8Azhh7emlyUkpgTnM6TJe1O4FwIjI= Subject key identifier: 9D:01:27:F4:ED:33:53:17:F9:86:52:5C:6B:92:65:6E:AA:18:CF:25 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 1644E711AB0AD78303CC33A1F941304B815C35D1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa Signing time: Sun 29 Oct 2023 05:00:00 +0000 ROA not before: Sun 29 Oct 2023 04:55:00 +0000 ROA not after: Sun 27 Oct 2024 05:00:00 +0000 asID: 55818 IP address blocks: 119.110.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:44:e7:11:ab:0a:d7:83:03:cc:33:a1:f9:41:30:4b:81:5c:35:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 04:55:00 2023 GMT Not After : Oct 27 05:00:00 2024 GMT Subject: CN=9D0127F4ED335317F986525C6B92656EAA18CF25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:90:80:bf:b9:4b:1c:64:4e:7c:7f:91:dd:e1: 35:85:15:f9:0b:4c:b0:56:ea:85:85:27:e0:d0:48: 59:80:d4:4f:1f:95:a7:c1:05:2e:07:ad:b3:6f:f7: 32:8b:69:07:7a:1d:2d:77:7f:f3:47:13:ed:44:e3: d9:1f:8e:b6:4c:1d:09:76:95:72:23:c9:0b:20:98: 7b:bc:03:36:a3:f0:58:23:32:da:42:ea:21:66:f2: 5e:e6:9a:75:25:67:9b:89:d5:e8:cb:f7:b5:4f:52: 7f:22:0b:ed:48:ce:a4:87:19:e3:69:1d:9e:dd:23: 58:3c:19:85:a3:5b:01:00:9a:78:ee:89:23:89:03: c0:4b:07:2c:c6:bc:02:62:a0:62:ef:3d:21:69:15: 56:6d:3e:6b:27:01:b9:29:ad:d6:e8:56:22:e6:f6: 07:9a:d6:1b:c6:43:1e:84:d5:8e:fb:6b:0d:b5:77: 5f:b3:e7:40:62:cf:be:d6:da:af:d2:79:dc:a4:3a: a0:69:ba:5c:6c:77:a1:a0:0c:20:11:21:c5:b4:7d: bc:16:7f:6c:71:e6:f4:fd:62:03:67:71:70:c2:0f: 65:99:a7:0a:11:04:29:20:ce:64:40:72:cc:e8:fc: e8:f2:9a:f7:f8:fb:a6:a4:d4:5a:66:58:af:35:ae: ec:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:01:27:F4:ED:33:53:17:F9:86:52:5C:6B:92:65:6E:AA:18:CF:25 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.115.0/24 Signature Algorithm: sha256WithRSAEncryption 22:2f:95:a2:5d:b6:be:ae:b6:6f:1f:e7:18:de:0c:cb:ac:b6: 5f:c2:8d:43:3f:76:4b:54:db:e0:63:82:b0:b7:e2:00:68:da: db:d5:70:35:8a:ae:ed:67:03:36:15:7f:6d:d3:e1:1e:74:3e: ce:38:7e:02:2e:ab:a0:23:95:c2:e9:dc:95:69:af:e2:12:1f: 6e:76:80:8f:c2:6f:e4:c1:82:a1:33:cf:ee:89:e9:01:4f:3a: cf:b2:a9:08:fb:9b:41:03:2a:7d:de:1c:18:09:ba:d8:37:bb: 0f:ea:7e:a1:70:18:ca:e4:31:2d:2f:09:d3:00:54:86:f4:ce: e3:b6:b2:45:fc:1d:ba:b3:aa:3f:7b:8a:2e:f2:68:4f:8d:bb: ec:0c:1f:d3:6f:a9:19:5c:cd:31:cc:ce:60:31:8e:ad:62:24: 3c:fc:0b:88:ae:46:34:58:99:34:e8:6f:f9:f1:df:b6:54:4b: 72:23:23:14:97:7c:cb:f9:dd:20:14:53:a5:76:97:ba:b3:af: 9a:c2:1a:d9:f5:ba:b3:52:0a:13:db:a9:d1:31:bd:c7:bd:71: 1d:60:7f:48:2d:e4:66:86:df:5a:d4:29:bc:54:45:c8:e2:12: 45:ea:e9:3d:e1:b0:4c:40:3a:ca:2d:30:9b:02:d6:e2:2d:a3: 01:7c:30:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFkTnEasK14MDzDOh+UEwS4FcNdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNDU1MDBaFw0yNDEwMjcwNTAwMDBaMDMxMTAvBgNV BAMTKDlEMDEyN0Y0RUQzMzUzMTdGOTg2NTI1QzZCOTI2NTZFQUExOENGMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDokIC/uUscZE58f5Hd4TWFFfkL TLBW6oWFJ+DQSFmA1E8flafBBS4HrbNv9zKLaQd6HS13f/NHE+1E49kfjrZMHQl2 lXIjyQsgmHu8Azaj8FgjMtpC6iFm8l7mmnUlZ5uJ1ejL97VPUn8iC+1IzqSHGeNp HZ7dI1g8GYWjWwEAmnjuiSOJA8BLByzGvAJioGLvPSFpFVZtPmsnAbkprdboViLm 9gea1hvGQx6E1Y77aw21d1+z50Biz77W2q/SedykOqBpulxsd6GgDCARIcW0fbwW f2xx5vT9YgNncXDCD2WZpwoRBCkgzmRAcszo/Ojymvf4+6ak1FpmWK81ruybAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnQEn9O0zUxf5hlJca5JlbqoYzyUwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25zMA0GCSqG SIb3DQEBCwUAA4IBAQAiL5WiXba+rrZvH+cY3gzLrLZfwo1DP3ZLVNvgY4Kwt+IA aNrb1XA1iq7tZwM2FX9t0+EedD7OOH4CLqugI5XC6dyVaa/iEh9udoCPwm/kwYKh M8/uiekBTzrPsqkI+5tBAyp93hwYCbrYN7sP6n6hcBjK5DEtLwnTAFSG9M7jtrJF /B26s6o/e4ou8mhPjbvsDB/Tb6kZXM0xzM5gMY6tYiQ8/AuIrkY0WJk06G/58d+2 VEtyIyMUl3zL+d0gFFOldpe6s6+awhrZ9bqzUgoT26nRMb3HvXEdYH9ILeRmht9a 1Cm8VEXI4hJF6uk94bBMQDrKLTCbAtbiLaMBfDAT -----END CERTIFICATE-----Generated at Sun Jun 2 16:36:12 2024 by rpki-client on console-fra.rpki-client.org