$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: GWOvGdlbVTTr1lKHE0+FgHw1F3+LEIUYLCMAK/W0ZQc= Subject key identifier: 11:76:47:71:B9:FA:7D:7B:87:91:88:39:2B:D6:61:37:3B:D6:E5:5B Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 7D24053CC515E35E49CC1294C0C2A62DC70123FB Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa Signing time: Sun 29 Oct 2023 06:00:01 +0000 ROA not before: Sun 29 Oct 2023 05:55:01 +0000 ROA not after: Sun 27 Oct 2024 06:00:01 +0000 asID: 55818 IP address blocks: 119.110.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:24:05:3c:c5:15:e3:5e:49:cc:12:94:c0:c2:a6:2d:c7:01:23:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:01 2023 GMT Not After : Oct 27 06:00:01 2024 GMT Subject: CN=11764771B9FA7D7B879188392BD661373BD6E55B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:b9:b3:93:8d:7b:d0:70:27:2c:3c:66:c2: 4f:9a:03:c2:1f:6f:d9:50:c3:fe:1c:e8:96:fe:a4: 2c:8b:04:d4:59:d7:ce:4e:74:66:4c:62:a6:9c:8f: f4:77:af:82:c3:7c:ea:57:11:80:f0:cc:5f:5f:8a: 4b:07:f2:ed:12:02:a3:a2:bf:31:31:01:66:98:02: 7c:de:bc:6d:09:7f:43:d1:fc:40:2c:86:95:13:eb: a0:ed:ad:93:62:7c:40:7a:b1:0a:9d:4f:d4:00:24: 5b:e6:de:2d:db:a7:50:02:cb:33:0a:80:14:da:87: 79:f3:a2:e6:da:15:50:f9:97:58:8c:af:63:2c:f2: ea:29:10:e2:7a:da:34:b8:b2:b7:a6:1f:0e:9e:fd: cf:fa:81:fa:83:5e:f1:d2:c9:cf:7f:ec:7d:6c:4e: 6b:ca:92:06:8d:6c:0e:21:d8:49:0d:96:df:59:30: 8d:f3:1b:ec:96:ba:5d:83:2b:26:f7:ac:76:bf:52: 00:eb:5a:55:14:82:55:31:1f:40:31:16:b2:07:26: c1:b2:e9:ef:07:bf:6b:37:8d:98:bc:c8:be:89:0b: 99:c0:d1:43:a8:cd:4f:68:9d:1a:0a:df:c5:60:42: a2:87:97:08:a5:31:28:fe:2a:29:96:e7:bd:c9:c8: e5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:76:47:71:B9:FA:7D:7B:87:91:88:39:2B:D6:61:37:3B:D6:E5:5B X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/24 Signature Algorithm: sha256WithRSAEncryption 96:4f:ec:ff:f4:be:9e:4c:c9:0f:ab:a0:ee:45:7d:55:f8:52: 66:9a:52:12:a3:48:c8:59:a4:b5:ff:ae:22:b0:ff:b1:d1:42: c3:7c:9d:06:34:1a:1d:ea:38:7a:b2:4f:a8:ed:7e:31:c8:e6: f0:df:16:ea:9f:32:db:08:9d:0a:5f:c6:59:f1:61:c1:90:e8: bb:ff:3f:6b:75:40:51:15:95:25:63:51:59:79:c3:d8:7f:df: 32:61:63:70:a9:b0:52:9b:f5:23:a6:5a:43:7f:f1:ff:ed:c5: ad:35:52:85:a2:c2:f9:a5:74:56:06:9a:b9:26:07:7c:8f:03: af:3b:e8:15:4b:54:b7:3b:f5:f4:fa:f9:8f:5f:b7:c8:fe:21: ad:1b:69:5d:6e:f3:03:5d:79:c2:56:0a:54:d0:8c:60:f6:e3: 42:e9:08:dc:2e:be:06:b8:d4:85:b0:8a:78:54:34:61:7d:69: 5b:c5:46:12:da:a0:88:16:57:80:54:f4:c4:86:16:d2:ff:5a: 36:df:50:9a:f0:b2:bf:b5:b0:5d:8b:41:a1:62:4b:04:72:c6: 4b:a2:7b:33:ea:c6:d7:08:90:95:8c:2a:12:0f:89:65:ee:31: ed:1e:5d:62:4d:7f:97:5c:63:c5:74:a6:23:41:47:96:8c:e6: d6:04:b2:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfSQFPMUV415JzBKUwMKmLccBI/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDFaFw0yNDEwMjcwNjAwMDFaMDMxMTAvBgNV BAMTKDExNzY0NzcxQjlGQTdEN0I4NzkxODgzOTJCRDY2MTM3M0JENkU1NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/drmzk4170HAnLDxmwk+aA8If b9lQw/4c6Jb+pCyLBNRZ185OdGZMYqacj/R3r4LDfOpXEYDwzF9fiksH8u0SAqOi vzExAWaYAnzevG0Jf0PR/EAshpUT66DtrZNifEB6sQqdT9QAJFvm3i3bp1ACyzMK gBTah3nzoubaFVD5l1iMr2Ms8uopEOJ62jS4sremHw6e/c/6gfqDXvHSyc9/7H1s TmvKkgaNbA4h2EkNlt9ZMI3zG+yWul2DKyb3rHa/UgDrWlUUglUxH0AxFrIHJsGy 6e8Hv2s3jZi8yL6JC5nA0UOozU9onRoK38VgQqKHlwilMSj+KimW573JyOWRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEXZHcbn6fXuHkYg5K9ZhNzvW5VswHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd250MA0GCSqG SIb3DQEBCwUAA4IBAQCWT+z/9L6eTMkPq6DuRX1V+FJmmlISo0jIWaS1/64isP+x 0ULDfJ0GNBod6jh6sk+o7X4xyObw3xbqnzLbCJ0KX8ZZ8WHBkOi7/z9rdUBRFZUl Y1FZecPYf98yYWNwqbBSm/UjplpDf/H/7cWtNVKFosL5pXRWBpq5Jgd8jwOvO+gV S1S3O/X0+vmPX7fI/iGtG2ldbvMDXXnCVgpU0Ixg9uNC6QjcLr4GuNSFsIp4VDRh fWlbxUYS2qCIFleAVPTEhhbS/1o231Ca8LK/tbBdi0GhYksEcsZLonsz6sbXCJCV jCoSD4ll7jHtHl1iTX+XXGPFdKYjQUeWjObWBLLe -----END CERTIFICATE-----Generated at Sun Jun 2 03:38:32 2024 by rpki-client on console-ams.rpki-client.org