$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: tjB3Dv6AHUAd8v8+QrAXmF7g7VfUKmK118fnnScrHns= Subject key identifier: 32:77:A5:74:65:6F:56:DE:9F:48:93:B5:69:76:7F:E1:C4:57:0F:84 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 5DA728BA0FF79B9F2BFB9ED3FC7038B81A0965FF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa Signing time: Sun 29 Sep 2024 07:00:02 +0000 ROA not before: Sun 29 Sep 2024 06:55:02 +0000 ROA not after: Sun 28 Sep 2025 07:00:02 +0000 asID: 55818 IP address blocks: 119.110.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a7:28:ba:0f:f7:9b:9f:2b:fb:9e:d3:fc:70:38:b8:1a:09:65:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:02 2024 GMT Not After : Sep 28 07:00:02 2025 GMT Subject: CN=3277A574656F56DE9F4893B569767FE1C4570F84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:1a:38:6e:51:9c:10:ab:24:95:b4:e1:07:1b: 13:35:55:ad:8b:1e:9f:a1:50:a3:84:f4:d3:62:60: 9b:4c:f6:d9:7f:de:bd:f5:2d:01:9f:c2:6d:2b:c0: 25:b2:c0:c9:8f:35:ee:a4:00:55:95:e8:c9:b8:f0: b0:5a:bf:20:13:9c:b7:66:84:61:1c:ef:92:1b:ce: 1b:b4:3f:fe:49:6b:07:46:d9:cf:1a:e9:a4:ee:3e: 3b:7a:47:c9:5d:1f:db:d2:6d:b6:23:72:c5:e6:72: cf:97:53:bf:90:78:da:b2:a9:a8:8e:68:41:43:d7: bf:4d:02:aa:3e:93:51:79:56:3b:2f:6d:58:fc:de: 64:6a:78:b1:f7:8e:04:68:6b:21:99:9b:c2:b9:36: b2:2e:d5:b5:da:bd:55:54:80:2c:98:bf:e1:98:14: b8:b5:58:c7:e4:9b:52:b0:08:dd:fd:10:31:94:9e: 3d:6f:65:44:97:0f:5c:a7:95:56:05:f6:9e:80:6e: f9:10:ab:5b:eb:02:09:3a:d9:d5:22:2c:b3:97:5a: 9c:89:84:f9:c6:22:51:0c:86:79:e6:bf:af:b0:ab: 8b:73:b4:fd:9d:17:3e:39:b8:f2:97:c1:60:87:78: a2:be:f0:6b:44:26:df:00:8c:92:14:b2:55:36:14: 16:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:77:A5:74:65:6F:56:DE:9F:48:93:B5:69:76:7F:E1:C4:57:0F:84 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/24 Signature Algorithm: sha256WithRSAEncryption 26:6d:42:bc:86:4d:2c:83:e0:df:2c:c9:75:d2:e2:a2:6f:93: 2b:53:62:48:26:77:1f:3b:7d:ca:19:c1:e8:a3:27:27:12:6b: 75:21:9f:09:ee:92:86:6e:41:3e:10:54:1f:0f:24:1d:f4:37: 5c:2e:b7:7c:40:a6:be:0d:53:41:9b:8f:d5:6e:a7:f8:6f:93: 98:af:e1:81:c2:fb:7d:b9:93:7a:a6:11:3d:20:4f:bb:87:fb: 4e:1e:5e:ff:1f:6e:de:db:9a:40:ce:19:9d:58:31:6c:b3:11: fc:43:8e:d6:c0:0d:53:c1:5c:eb:5d:32:ae:17:56:90:95:41: a7:08:15:b4:b1:7a:0d:71:5a:2b:65:41:50:fa:8e:ff:0e:e6: b2:d3:05:bb:f5:9e:ba:6e:65:a0:b0:be:be:a4:e1:0c:2f:9e: b0:cd:d7:89:09:a7:7f:b6:bc:17:91:23:32:c3:3a:30:e1:8d: d7:be:c1:09:21:e8:f0:55:63:6c:9a:37:8f:af:1c:44:18:7d: cb:74:85:41:83:be:f6:19:53:0a:8d:d4:a7:3d:db:7b:a9:f8: 9d:42:8b:4c:56:91:82:63:7b:fc:97:8c:61:34:dc:a2:88:6e: 82:3b:f5:46:1e:d4:5c:90:08:ce:7a:79:2d:b0:8d:85:e2:06: 75:a9:9d:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXacoug/3m58r+57T/HA4uBoJZf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDJaFw0yNTA5MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDMyNzdBNTc0NjU2RjU2REU5RjQ4OTNCNTY5NzY3RkUxQzQ1NzBGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3GjhuUZwQqySVtOEHGxM1Va2L Hp+hUKOE9NNiYJtM9tl/3r31LQGfwm0rwCWywMmPNe6kAFWV6Mm48LBavyATnLdm hGEc75Ibzhu0P/5JawdG2c8a6aTuPjt6R8ldH9vSbbYjcsXmcs+XU7+QeNqyqaiO aEFD179NAqo+k1F5VjsvbVj83mRqeLH3jgRoayGZm8K5NrIu1bXavVVUgCyYv+GY FLi1WMfkm1KwCN39EDGUnj1vZUSXD1ynlVYF9p6AbvkQq1vrAgk62dUiLLOXWpyJ hPnGIlEMhnnmv6+wq4tztP2dFz45uPKXwWCHeKK+8GtEJt8AjJIUslU2FBY7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMneldGVvVt6fSJO1aXZ/4cRXD4QwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd250MA0GCSqG SIb3DQEBCwUAA4IBAQAmbUK8hk0sg+DfLMl10uKib5MrU2JIJncfO33KGcHooycn Emt1IZ8J7pKGbkE+EFQfDyQd9DdcLrd8QKa+DVNBm4/Vbqf4b5OYr+GBwvt9uZN6 phE9IE+7h/tOHl7/H27e25pAzhmdWDFssxH8Q47WwA1TwVzrXTKuF1aQlUGnCBW0 sXoNcVorZUFQ+o7/Duay0wW79Z66bmWgsL6+pOEML56wzdeJCad/trwXkSMywzow 4Y3XvsEJIejwVWNsmjePrxxEGH3LdIVBg772GVMKjdSnPdt7qfidQotMVpGCY3v8 l4xhNNyiiG6CO/VGHtRckAjOenktsI2F4gZ1qZ18 -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org