$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa File: 3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa (raw, json) Hash identifier: 1UuZaE/fgrwECtGs+/cJ2UEZalgzhQLnUB+vhQ0I2yM= Subject key identifier: 5D:AA:BB:C8:E9:80:FA:93:0D:E4:9B:DD:9B:51:5D:08:8F:E4:71:E0 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 2BD211EAF0FA527075265069321E9BEEF372B39B Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa Signing time: Sun 29 Oct 2023 05:00:01 +0000 ROA not before: Sun 29 Oct 2023 04:55:01 +0000 ROA not after: Sun 27 Oct 2024 05:00:01 +0000 asID: 55818 IP address blocks: 119.110.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 00:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:d2:11:ea:f0:fa:52:70:75:26:50:69:32:1e:9b:ee:f3:72:b3:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 04:55:01 2023 GMT Not After : Oct 27 05:00:01 2024 GMT Subject: CN=5DAABBC8E980FA930DE49BDD9B515D088FE471E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:0a:3a:fb:ce:4c:42:b1:25:ec:0d:7c:7d: d7:ea:e5:ea:57:47:31:3e:21:64:6d:f0:f8:ef:89: 9a:31:57:e4:ab:44:3d:cd:63:40:6b:10:c6:08:07: 1f:0b:85:1c:bf:c0:be:a0:5d:18:a5:84:1b:79:3d: 7b:49:01:2d:8c:16:e9:83:e3:a4:91:10:17:5b:45: 97:d4:39:f5:4b:18:af:dc:9f:55:89:a1:9b:a3:b8: 08:6b:b3:88:da:c6:ee:e2:c4:a3:ae:72:6f:51:08: 42:5b:69:f9:4b:08:ce:ef:27:cd:ff:79:f5:cc:86: 51:fe:70:36:70:aa:df:78:d7:66:c3:9d:fc:d6:57: fd:60:6f:95:83:5a:ae:74:23:60:d0:57:53:f0:c4: 5f:84:94:1d:50:c6:9f:a9:81:14:26:64:7a:67:8b: 4b:87:e8:5c:c5:14:e7:35:fc:cb:aa:96:77:6c:99: 2c:a9:e8:15:6d:5a:7c:28:4a:ac:c8:ea:3c:93:8e: 5f:23:f9:3c:66:f2:6b:e3:07:9f:68:b6:5d:1c:f5: 43:eb:be:2a:b3:83:fa:7e:6e:1d:34:77:b5:df:ea: d1:c1:8e:43:61:6d:b7:14:a1:55:61:10:3f:f8:f2: fc:e1:17:a9:c9:21:0a:6c:04:4d:6e:dc:00:57:cd: 9d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AA:BB:C8:E9:80:FA:93:0D:E4:9B:DD:9B:51:5D:08:8F:E4:71:E0 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/23 Signature Algorithm: sha256WithRSAEncryption 78:aa:54:e4:40:fc:b9:f7:82:12:49:ff:60:2b:56:8c:9c:68: b2:f1:ad:89:21:1f:ea:56:37:2b:f8:02:d4:64:51:ec:6f:4d: b3:77:a3:06:a8:13:cd:3e:3e:61:e8:36:f4:a4:38:40:16:c9: ba:d3:c6:7f:74:99:7b:db:b4:3b:2f:4f:8e:02:32:e2:04:a3: d2:37:f7:5a:f2:f3:62:f7:fa:58:ab:7e:59:39:83:14:26:81: 23:73:8d:f8:29:15:08:47:6a:d8:10:33:1f:66:66:08:88:a7: 79:3a:66:1b:85:a2:7c:a4:4a:9f:d5:9a:00:b2:66:bf:8b:54: e6:8d:14:61:b9:91:e3:6e:ef:d1:88:e3:0b:ef:86:de:0f:fc: c5:62:7e:56:df:d3:3b:4e:57:db:84:74:73:4e:67:f0:1b:90: 83:14:16:b9:01:11:7d:7d:f0:aa:81:55:88:85:1a:f3:ca:a8: 2c:d0:d0:a2:c1:13:40:92:df:73:ac:fb:98:bb:84:cb:45:73: 58:b9:69:9f:55:9f:e1:46:f4:11:b3:ea:b5:cf:f3:31:27:b6: bc:50:ca:8c:e2:f6:7a:8f:7f:b0:97:bf:fd:dc:1a:c2:05:35: 55:5d:b4:ed:b4:88:53:80:fa:9f:3e:1d:71:77:c2:09:c5:15: 20:bd:be:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK9IR6vD6UnB1JlBpMh6b7vNys5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNDU1MDFaFw0yNDEwMjcwNTAwMDFaMDMxMTAvBgNV BAMTKDVEQUFCQkM4RTk4MEZBOTMwREU0OUJERDlCNTE1RDA4OEZFNDcxRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLEAo6+85MQrEl7A18fdfq5epX RzE+IWRt8PjviZoxV+SrRD3NY0BrEMYIBx8LhRy/wL6gXRilhBt5PXtJAS2MFumD 46SREBdbRZfUOfVLGK/cn1WJoZujuAhrs4jaxu7ixKOucm9RCEJbaflLCM7vJ83/ efXMhlH+cDZwqt9412bDnfzWV/1gb5WDWq50I2DQV1PwxF+ElB1Qxp+pgRQmZHpn i0uH6FzFFOc1/MuqlndsmSyp6BVtWnwoSqzI6jyTjl8j+Txm8mvjB59otl0c9UPr viqzg/p+bh00d7Xf6tHBjkNhbbcUoVVhED/48vzhF6nJIQpsBE1u3ABXzZ3zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXaq7yOmA+pMN5Jvdm1FdCI/kceAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBd250MA0GCSqG SIb3DQEBCwUAA4IBAQB4qlTkQPy594ISSf9gK1aMnGiy8a2JIR/qVjcr+ALUZFHs b02zd6MGqBPNPj5h6Db0pDhAFsm608Z/dJl727Q7L0+OAjLiBKPSN/da8vNi9/pY q35ZOYMUJoEjc434KRUIR2rYEDMfZmYIiKd5OmYbhaJ8pEqf1ZoAsma/i1TmjRRh uZHjbu/RiOML74beD/zFYn5W39M7TlfbhHRzTmfwG5CDFBa5ARF9ffCqgVWIhRrz yqgs0NCiwRNAkt9zrPuYu4TLRXNYuWmfVZ/hRvQRs+q1z/MxJ7a8UMqM4vZ6j3+w l7/93BrCBTVVXbTttIhTgPqfPh1xd8IJxRUgvb6W -----END CERTIFICATE-----Generated at Sun Jun 16 18:48:59 2024 by rpki-client on console-fra.rpki-client.org