$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa File: 3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa (raw, json) Hash identifier: FIv+VdD4iYittnN7GLWrygtL0Kwam1L5voCvlMTdU5c= Subject key identifier: F4:0A:2D:11:98:D0:BC:CA:04:BB:2D:92:20:F8:B9:ED:64:1B:68:CE Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 298DDE8823915D7430D428033809CACCA3F3B2BF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa Signing time: Sun 29 Sep 2024 06:00:00 +0000 ROA not before: Sun 29 Sep 2024 05:55:00 +0000 ROA not after: Sun 28 Sep 2025 06:00:00 +0000 asID: 55818 IP address blocks: 119.110.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:8d:de:88:23:91:5d:74:30:d4:28:03:38:09:ca:cc:a3:f3:b2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 05:55:00 2024 GMT Not After : Sep 28 06:00:00 2025 GMT Subject: CN=F40A2D1198D0BCCA04BB2D9220F8B9ED641B68CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:05:f8:3c:54:7b:7c:0f:e2:cb:b0:be:36:db: 37:8a:b6:b2:e3:ea:b2:72:e5:fc:5f:45:76:0a:d1: 40:7b:72:32:95:85:84:a0:70:9a:11:79:41:16:54: 7e:5a:ac:96:59:f7:2e:39:da:26:1d:01:c9:1f:6f: e2:b3:0c:01:b5:55:c5:0a:4d:59:f8:82:07:37:12: 71:87:d4:7a:1b:d2:e8:6c:9c:59:28:1b:28:3d:4a: 67:13:8f:05:f6:b9:ad:b0:e9:bb:1b:4b:4d:80:21: 06:f1:57:a1:6b:c5:4a:2b:48:f6:2b:f1:04:2c:ba: 47:d9:72:42:2e:a2:08:04:62:13:26:4c:79:d7:70: c0:c2:09:7c:8d:e5:41:9e:6b:f6:c8:df:e5:fd:60: 68:9d:f7:2f:ac:c8:59:6f:cf:42:92:c6:d1:12:a1: 52:ab:57:85:64:78:b6:6b:f7:7d:4a:35:c6:ee:c2: 93:f0:db:bd:4d:13:9f:b7:b4:cf:5c:b3:ed:44:33: 10:b9:ee:1f:b0:af:85:ad:79:fe:c3:45:79:30:75: 70:6b:f1:26:a1:15:26:c2:73:c3:0b:9d:ab:fe:d5: d4:ba:8c:03:8d:7a:e8:90:a1:62:23:19:fe:20:05: e7:47:78:fb:00:1e:24:f0:37:48:cb:b6:4a:48:9e: 5c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0A:2D:11:98:D0:BC:CA:04:BB:2D:92:20:F8:B9:ED:64:1B:68:CE X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:8b:5d:78:3e:08:d4:3c:70:9e:b6:67:be:25:d6:a9:c7:8d: 9d:68:4e:6d:3a:05:4f:98:5a:85:59:f9:8b:a8:6c:17:a9:68: 2c:8e:01:a7:3d:ec:26:ef:47:a6:cb:ef:de:a8:aa:eb:bb:dc: ee:95:08:fd:a2:00:22:9b:f6:9a:79:5e:51:3a:82:11:dc:97: 6f:e6:f7:e8:40:47:de:47:20:7b:35:8a:f5:0d:d6:39:8b:9f: f3:dd:0c:c9:be:d5:1c:34:0f:8a:db:09:e2:df:a6:53:98:f8: be:c5:83:03:5e:38:9f:d6:56:73:6c:85:dd:be:cf:ad:8d:52: e4:ab:32:70:2c:28:ab:35:d5:db:66:f2:53:cc:34:91:b1:76: 59:72:aa:e7:f7:87:e2:3f:72:66:ec:66:24:d4:86:f1:7e:f5: a1:85:b2:b1:22:b9:2a:f2:80:a1:0a:ff:a8:37:9c:1c:76:33: 06:d1:6d:a3:94:3d:fd:26:c0:62:80:08:3f:a1:85:60:ab:dd: a6:74:4f:bb:c9:2b:67:20:52:5e:c9:61:44:40:43:aa:af:e2: d0:43:6a:a6:94:75:6a:68:0c:d6:48:fe:35:ab:69:5c:2f:f3: 48:54:2e:27:9d:1e:98:5f:15:f5:a8:fd:d3:ae:3d:64:77:c7: 50:a5:94:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKY3eiCORXXQw1CgDOAnKzKPzsr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNTU1MDBaFw0yNTA5MjgwNjAwMDBaMDMxMTAvBgNV BAMTKEY0MEEyRDExOThEMEJDQ0EwNEJCMkQ5MjIwRjhCOUVENjQxQjY4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnBfg8VHt8D+LLsL422zeKtrLj 6rJy5fxfRXYK0UB7cjKVhYSgcJoReUEWVH5arJZZ9y452iYdAckfb+KzDAG1VcUK TVn4ggc3EnGH1Hob0uhsnFkoGyg9SmcTjwX2ua2w6bsbS02AIQbxV6FrxUorSPYr 8QQsukfZckIuoggEYhMmTHnXcMDCCXyN5UGea/bI3+X9YGid9y+syFlvz0KSxtES oVKrV4VkeLZr931KNcbuwpPw271NE5+3tM9cs+1EMxC57h+wr4Wtef7DRXkwdXBr 8SahFSbCc8MLnav+1dS6jAONeuiQoWIjGf4gBedHePsAHiTwN0jLtkpInlzxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9AotEZjQvMoEuy2SIPi57WQbaM4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBd250MA0GCSqG SIb3DQEBCwUAA4IBAQCci114PgjUPHCetme+Jdapx42daE5tOgVPmFqFWfmLqGwX qWgsjgGnPewm70emy+/eqKrru9zulQj9ogAim/aaeV5ROoIR3Jdv5vfoQEfeRyB7 NYr1DdY5i5/z3QzJvtUcNA+K2wni36ZTmPi+xYMDXjif1lZzbIXdvs+tjVLkqzJw LCirNdXbZvJTzDSRsXZZcqrn94fiP3Jm7GYk1IbxfvWhhbKxIrkq8oChCv+oN5wc djMG0W2jlD39JsBigAg/oYVgq92mdE+7yStnIFJeyWFEQEOqr+LQQ2qmlHVqaAzW SP41q2lcL/NIVC4nnR6YXxX1qP3Trj1kd8dQpZTh -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org