$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: ZsyuqerqCSl/mv6pQAwz+rnK0w1TOa7XtDW+UwwjBJQ= Subject key identifier: D3:76:71:3F:72:7B:DE:9E:10:50:75:18:96:3A:C8:6E:10:FD:BF:EE Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0CDF091AA8327DFD83A8F75705E8B4A67706F9B1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:01 +0000 ROA not before: Sun 29 Sep 2024 06:55:01 +0000 ROA not after: Sun 28 Sep 2025 07:00:01 +0000 asID: 45147 IP address blocks: 119.110.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:df:09:1a:a8:32:7d:fd:83:a8:f7:57:05:e8:b4:a6:77:06:f9:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:01 2024 GMT Not After : Sep 28 07:00:01 2025 GMT Subject: CN=D376713F727BDE9E10507518963AC86E10FDBFEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a7:3a:44:73:2f:2d:af:4d:ff:09:e4:33:a0: 0f:88:f5:a4:a2:7a:c8:8a:fb:fc:70:15:77:f7:80: 8c:c6:da:02:37:c5:c9:67:0e:e8:37:82:5d:19:6a: e6:4e:12:2f:7e:7b:53:fe:af:dd:f0:a7:bf:f9:e9: 61:6c:1f:b2:c6:f5:ca:c1:f6:1f:90:72:1e:ff:df: 93:7c:8f:76:24:08:d4:62:81:fa:11:d3:55:cb:7f: 58:ac:2d:76:fb:bf:7c:05:6f:2e:ab:be:1d:78:b4: b1:93:af:76:f0:15:36:0e:68:be:c3:50:ac:61:c6: d6:92:d1:43:a0:ba:56:0a:00:5d:b4:83:f5:77:8a: a3:24:2b:48:69:43:79:b2:a7:c9:5d:c6:f9:cc:a0: 2b:f7:3e:1b:2b:1e:fe:d0:bf:02:93:9e:43:78:b4: 10:fd:83:a6:09:07:b3:f8:71:94:39:1d:2f:2c:2a: 1f:eb:ad:57:85:84:06:ac:90:49:aa:69:f1:e8:f9: 53:12:90:8a:ab:4e:e0:35:a2:a2:30:52:71:71:58: d2:63:29:5a:dc:e6:8b:d0:42:4e:f7:01:77:ff:62: fc:a9:6e:fe:be:4e:a0:45:df:0f:2a:5d:88:e2:98: e9:3f:8a:14:54:bb:29:e8:ee:ec:b0:9e:26:d6:35: f0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:76:71:3F:72:7B:DE:9E:10:50:75:18:96:3A:C8:6E:10:FD:BF:EE X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.119.0/24 Signature Algorithm: sha256WithRSAEncryption 69:db:e8:3d:bb:ad:e0:9b:97:5f:c7:01:20:03:6a:33:64:75: 43:24:76:36:76:ca:41:3b:52:f2:24:62:71:78:ee:c2:ca:2b: 86:62:a6:27:28:df:4f:91:b0:27:f2:a0:bd:4f:09:58:97:e6: 3c:5b:6d:27:bb:cd:24:f9:ec:4a:ee:2c:6f:1c:64:85:50:05: 36:41:71:91:d1:4d:77:98:1d:1a:6b:90:fd:f9:52:05:30:db: 16:11:38:0b:75:fb:ee:48:c3:02:fc:00:28:e6:57:c6:03:38: 2a:3e:3e:5f:36:26:69:4b:ad:46:6f:72:a1:53:f3:cf:34:ce: 66:db:1f:83:ea:17:58:ca:49:f1:cc:aa:b5:b9:28:5c:e2:2b: 9c:c1:43:ed:79:0b:5a:b3:ae:25:78:0f:ad:2d:aa:27:59:36: 3b:7b:38:c2:50:39:3c:c1:10:a4:c3:4c:60:fc:f1:fc:05:f8: 6c:c7:dd:1c:ff:bb:07:99:3b:d4:95:09:6f:c0:14:21:33:6b: 0f:02:fe:91:2b:75:12:5b:eb:a5:9a:67:d0:03:6e:b0:a4:b2: 80:04:3e:fd:2b:4c:e7:15:69:6a:73:04:a4:21:1c:77:d1:e8: 93:8e:63:69:f6:9f:e6:28:6b:da:99:89:38:b7:7e:73:1c:11: 1a:cd:b5:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDN8JGqgyff2DqPdXBei0pncG+bEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDFaFw0yNTA5MjgwNzAwMDFaMDMxMTAvBgNV BAMTKEQzNzY3MTNGNzI3QkRFOUUxMDUwNzUxODk2M0FDODZFMTBGREJGRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+pzpEcy8tr03/CeQzoA+I9aSi esiK+/xwFXf3gIzG2gI3xclnDug3gl0ZauZOEi9+e1P+r93wp7/56WFsH7LG9crB 9h+Qch7/35N8j3YkCNRigfoR01XLf1isLXb7v3wFby6rvh14tLGTr3bwFTYOaL7D UKxhxtaS0UOgulYKAF20g/V3iqMkK0hpQ3myp8ldxvnMoCv3PhsrHv7QvwKTnkN4 tBD9g6YJB7P4cZQ5HS8sKh/rrVeFhAaskEmqafHo+VMSkIqrTuA1oqIwUnFxWNJj KVrc5ovQQk73AXf/Yvypbv6+TqBF3w8qXYjimOk/ihRUuyno7uywnibWNfBrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU03ZxP3J73p4QUHUYljrIbhD9v+4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd253MA0GCSqG SIb3DQEBCwUAA4IBAQBp2+g9u63gm5dfxwEgA2ozZHVDJHY2dspBO1LyJGJxeO7C yiuGYqYnKN9PkbAn8qC9TwlYl+Y8W20nu80k+exK7ixvHGSFUAU2QXGR0U13mB0a a5D9+VIFMNsWETgLdfvuSMMC/AAo5lfGAzgqPj5fNiZpS61Gb3KhU/PPNM5m2x+D 6hdYyknxzKq1uShc4iucwUPteQtas64leA+tLaonWTY7ezjCUDk8wRCkw0xg/PH8 Bfhsx90c/7sHmTvUlQlvwBQhM2sPAv6RK3USW+ulmmfQA26wpLKABD79K0znFWlq cwSkIRx30eiTjmNp9p/mKGvamYk4t35zHBEazbWT -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org