$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: /pcYE0CDcOf5FUhkC+XfX4WOVJcK3Oh6BgFnNGtAYwo= Subject key identifier: 5E:50:16:09:DD:D1:EA:5A:D9:D7:42:B7:09:65:2E:C1:3C:16:E6:29 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 549055D7636D24C8A80454EDCC1538C5C7FB4623 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa Signing time: Sun 29 Sep 2024 07:00:01 +0000 ROA not before: Sun 29 Sep 2024 06:55:01 +0000 ROA not after: Sun 28 Sep 2025 07:00:01 +0000 asID: 55818 IP address blocks: 119.110.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:90:55:d7:63:6d:24:c8:a8:04:54:ed:cc:15:38:c5:c7:fb:46:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:01 2024 GMT Not After : Sep 28 07:00:01 2025 GMT Subject: CN=5E501609DDD1EA5AD9D742B709652EC13C16E629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:09:b8:1e:c2:02:f6:2c:e2:c5:ba:73:08: 9c:be:32:be:f5:87:bf:53:1c:52:f4:ca:6a:d7:35: 6c:9c:0e:22:28:bb:67:0c:1c:03:91:ab:15:70:f5: 74:e1:ed:2e:c2:2e:61:d7:f2:75:d4:4a:ac:39:ab: ec:b3:5c:ea:d1:d1:41:3d:b0:29:4a:3c:01:03:c0: 33:2b:1c:c8:73:7f:20:c3:ce:60:53:51:92:28:33: 49:6a:0b:31:00:2d:ca:e4:4c:c7:7c:85:bd:41:d1: 24:5e:d7:be:a0:42:2d:f3:28:41:71:a4:93:78:3a: 08:96:53:46:73:a3:c7:75:d9:ba:ef:94:9d:80:e2: 5b:0f:19:7a:3e:ad:f7:47:32:e4:c5:68:d2:b7:c4: 84:89:cc:ed:16:fc:5f:13:be:5d:7a:a7:c6:95:69: 4f:04:84:1d:f1:03:62:4d:0c:56:36:b2:d9:82:3d: 7e:92:01:8d:91:5d:4c:94:01:66:c5:52:e1:8f:48: f6:d0:f5:a8:b0:ca:2c:c2:1c:16:24:cc:59:18:02: c4:65:48:ae:b8:82:84:59:f0:a0:8b:f1:3e:9f:6d: 14:4b:63:8d:cf:df:df:d3:f5:13:dd:d1:37:d9:06: 33:38:0c:bb:8c:00:c7:f7:e4:9a:49:a7:3c:e2:d9: d2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:50:16:09:DD:D1:EA:5A:D9:D7:42:B7:09:65:2E:C1:3C:16:E6:29 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.118.0/24 Signature Algorithm: sha256WithRSAEncryption 07:66:6b:5b:46:2e:06:6c:c2:ef:57:3a:0b:47:40:10:46:db: 95:93:36:85:a1:d5:ce:72:9b:7d:75:28:2f:ba:eb:29:e3:32: 79:76:45:b1:2c:15:45:04:ba:7a:5a:a5:85:37:b9:77:b5:a3: e0:e2:69:c8:4e:b0:61:c4:8b:3c:a0:0c:c5:57:09:8f:ce:59: 7c:64:28:ab:ab:59:79:c0:c4:92:15:d9:ab:c6:1b:f3:11:4c: 44:b0:59:48:de:59:00:dd:1c:71:fb:75:47:1a:e1:44:1c:48: 15:47:c8:46:81:9d:36:ab:55:14:c2:97:0d:83:94:c7:98:68: b9:1e:38:3d:68:02:ad:61:0e:5b:ff:4e:72:ce:20:81:75:14: f6:86:7e:30:41:3c:c2:cb:5f:ff:4f:e3:cb:49:59:97:ed:52: d6:08:8f:4a:5d:fa:c8:41:4f:4f:8a:98:76:42:8b:f7:09:5e: 7b:ee:2c:94:b2:01:12:dc:f9:e6:70:bc:7f:fc:f1:2f:9f:7a: 40:47:b3:bd:71:39:cc:bf:c6:0d:57:1c:00:63:7e:d2:c0:86: ce:d3:1b:50:d0:9c:60:e3:cf:0e:0e:fc:5f:08:f3:f9:67:94: c0:4d:4e:9a:9a:e9:57:46:b4:e1:ae:71:28:49:de:eb:28:24: 75:97:ce:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVJBV12NtJMioBFTtzBU4xcf7RiMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDFaFw0yNTA5MjgwNzAwMDFaMDMxMTAvBgNV BAMTKDVFNTAxNjA5REREMUVBNUFEOUQ3NDJCNzA5NjUyRUMxM0MxNkU2MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2iQm4HsIC9izixbpzCJy+Mr71 h79THFL0ymrXNWycDiIou2cMHAORqxVw9XTh7S7CLmHX8nXUSqw5q+yzXOrR0UE9 sClKPAEDwDMrHMhzfyDDzmBTUZIoM0lqCzEALcrkTMd8hb1B0SRe176gQi3zKEFx pJN4OgiWU0Zzo8d12brvlJ2A4lsPGXo+rfdHMuTFaNK3xISJzO0W/F8Tvl16p8aV aU8EhB3xA2JNDFY2stmCPX6SAY2RXUyUAWbFUuGPSPbQ9aiwyizCHBYkzFkYAsRl SK64goRZ8KCL8T6fbRRLY43P39/T9RPd0TfZBjM4DLuMAMf35JpJpzzi2dLBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXlAWCd3R6lrZ10K3CWUuwTwW5ikwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd252MA0GCSqG SIb3DQEBCwUAA4IBAQAHZmtbRi4GbMLvVzoLR0AQRtuVkzaFodXOcpt9dSgvuusp 4zJ5dkWxLBVFBLp6WqWFN7l3taPg4mnITrBhxIs8oAzFVwmPzll8ZCirq1l5wMSS FdmrxhvzEUxEsFlI3lkA3Rxx+3VHGuFEHEgVR8hGgZ02q1UUwpcNg5THmGi5Hjg9 aAKtYQ5b/05yziCBdRT2hn4wQTzCy1//T+PLSVmX7VLWCI9KXfrIQU9Piph2Qov3 CV577iyUsgES3PnmcLx//PEvn3pAR7O9cTnMv8YNVxwAY37SwIbO0xtQ0Jxg488O DvxfCPP5Z5TATU6amulXRrThrnEoSd7rKCR1l86R -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org