$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: ZyzGg+Zgvj8vRzYjgddKAMDpaNruYqWQJhesL9pFzUw= Subject key identifier: 9F:C7:A4:36:4E:30:BC:CE:7B:F9:FD:41:6E:FA:E9:4B:43:B1:3C:6E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 609A29A086838C9B0769CDB255E3E7F73CA0AE7D Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:01 +0000 ROA not before: Sun 29 Oct 2023 05:55:01 +0000 ROA not after: Sun 27 Oct 2024 06:00:01 +0000 asID: 45147 IP address blocks: 119.110.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:9a:29:a0:86:83:8c:9b:07:69:cd:b2:55:e3:e7:f7:3c:a0:ae:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:01 2023 GMT Not After : Oct 27 06:00:01 2024 GMT Subject: CN=9FC7A4364E30BCCE7BF9FD416EFAE94B43B13C6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:71:05:c8:10:3c:ad:40:01:7c:0a:bd:42:52: 9f:cb:d5:64:00:3d:2a:69:b4:b0:db:41:95:88:57: 66:6e:ac:3b:82:c4:16:ef:d3:19:56:33:2f:a8:2b: a2:f6:25:70:f4:0e:a7:cb:45:38:11:cc:a9:20:a9: 58:9d:a2:8b:98:c4:74:38:88:09:a6:ca:fc:3d:57: 93:7a:80:ce:5d:9c:5d:9b:d2:eb:9a:ad:1d:be:6d: 03:cf:da:7b:7b:1e:cd:01:e6:ae:f2:fb:7c:b0:56: 56:9c:59:1c:58:00:d7:97:cb:b3:37:c1:a7:30:1b: 63:39:a9:a6:5c:66:6a:48:19:68:c0:e1:62:e4:bf: 14:b7:04:3f:b1:00:43:27:70:7f:b6:bf:da:59:c2: d4:b8:29:27:40:22:32:e6:fd:92:f0:55:b5:60:ad: 66:c0:85:dc:9f:3a:cb:b3:3c:e5:cf:fd:9c:06:4e: 6b:44:ce:b6:02:32:17:2c:cd:c2:92:ef:29:41:10: 16:df:f7:64:8d:82:4b:c4:d6:13:5e:e1:7b:48:c7: b3:43:b0:02:05:d3:ec:98:7f:fb:87:6c:31:fb:27: 54:42:6c:bc:64:80:13:21:cb:bf:70:80:d4:2b:0b: 2e:2c:2d:35:a3:62:3f:ef:77:97:0b:58:65:60:dd: e3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C7:A4:36:4E:30:BC:CE:7B:F9:FD:41:6E:FA:E9:4B:43:B1:3C:6E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.119.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:c7:3e:cf:6a:a0:74:c2:77:35:0d:61:bd:56:39:ca:eb:7f: 42:e3:d4:7b:2f:3d:2d:be:02:12:8c:26:83:19:d1:72:3c:95: 21:09:51:ef:ef:cb:e9:de:b6:c5:ab:1c:bb:40:c6:7b:44:a8: 11:1c:da:93:ef:9a:68:94:4a:22:a9:01:e1:64:26:12:f8:02: 13:c9:fa:70:85:b8:82:53:f0:80:3e:ee:8f:42:17:fb:2f:ac: 3e:b2:13:9b:4b:e2:6b:32:8a:12:22:87:92:6d:6b:d1:08:64: fa:48:00:0e:3f:6c:21:77:a9:5c:3a:8e:11:3b:87:05:5d:f1: 91:dd:03:93:58:da:a5:4b:d9:4b:d7:d8:15:53:c4:bc:86:89: 88:f7:54:ca:59:00:38:a8:44:92:48:c8:08:3d:25:70:84:15: 56:4a:a2:b4:4e:3e:da:a5:33:3a:86:65:aa:e3:af:26:d9:99: 24:c4:5b:7e:ea:03:f0:f5:de:8e:6c:66:b3:6c:7a:d5:9d:f8: 17:91:9f:a7:56:67:cb:f6:01:17:cd:33:ce:86:96:ad:0f:6e: ea:28:c6:34:90:7a:f5:f7:78:d1:6a:91:b2:40:c3:ac:6d:01: a1:7f:ef:a4:e1:6a:99:26:87:32:84:3a:98:35:21:5c:92:4d: 29:2c:ac:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYJopoIaDjJsHac2yVePn9zygrn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDFaFw0yNDEwMjcwNjAwMDFaMDMxMTAvBgNV BAMTKDlGQzdBNDM2NEUzMEJDQ0U3QkY5RkQ0MTZFRkFFOTRCNDNCMTNDNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3cQXIEDytQAF8Cr1CUp/L1WQA PSpptLDbQZWIV2ZurDuCxBbv0xlWMy+oK6L2JXD0DqfLRTgRzKkgqVidoouYxHQ4 iAmmyvw9V5N6gM5dnF2b0uuarR2+bQPP2nt7Hs0B5q7y+3ywVlacWRxYANeXy7M3 wacwG2M5qaZcZmpIGWjA4WLkvxS3BD+xAEMncH+2v9pZwtS4KSdAIjLm/ZLwVbVg rWbAhdyfOsuzPOXP/ZwGTmtEzrYCMhcszcKS7ylBEBbf92SNgkvE1hNe4XtIx7ND sAIF0+yYf/uHbDH7J1RCbLxkgBMhy79wgNQrCy4sLTWjYj/vd5cLWGVg3ePpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn8ekNk4wvM57+f1BbvrpS0OxPG4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd253MA0GCSqG SIb3DQEBCwUAA4IBAQB7xz7PaqB0wnc1DWG9VjnK639C49R7Lz0tvgISjCaDGdFy PJUhCVHv78vp3rbFqxy7QMZ7RKgRHNqT75polEoiqQHhZCYS+AITyfpwhbiCU/CA Pu6PQhf7L6w+shObS+JrMooSIoeSbWvRCGT6SAAOP2whd6lcOo4RO4cFXfGR3QOT WNqlS9lL19gVU8S8homI91TKWQA4qESSSMgIPSVwhBVWSqK0Tj7apTM6hmWq468m 2ZkkxFt+6gPw9d6ObGazbHrVnfgXkZ+nVmfL9gEXzTPOhpatD27qKMY0kHr193jR apGyQMOsbQGhf++k4WqZJocyhDqYNSFckk0pLKyw -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org