$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: duIv+HWenfDzE5yuaVbpmvODAfBUYGpf6xDtxKFES44= Subject key identifier: B2:37:ED:E2:72:8D:55:83:99:C2:5A:4A:EC:91:1C:98:14:42:6D:5A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 06AD3E1B7D131D86B1EEBE309DFC5D8739CDD116 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:00 +0000 ROA not before: Sun 29 Oct 2023 05:55:00 +0000 ROA not after: Sun 27 Oct 2024 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ad:3e:1b:7d:13:1d:86:b1:ee:be:30:9d:fc:5d:87:39:cd:d1:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:00 2023 GMT Not After : Oct 27 06:00:00 2024 GMT Subject: CN=B237EDE2728D558399C25A4AEC911C9814426D5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:92:0a:3a:5e:d6:ce:03:95:22:70:f3:d8:ae: de:25:81:08:c6:f0:8d:4e:05:75:30:e2:83:e1:df: c9:db:35:a3:50:a3:dd:7a:ab:16:32:96:a7:96:e5: af:aa:03:53:f3:2e:ea:2c:b1:50:f8:73:6f:29:45: 24:89:7a:b8:21:5a:6a:80:12:5d:9d:34:76:fa:57: 7f:57:78:96:8d:bf:c8:af:31:35:ec:a9:b5:9c:fb: 5e:3f:0e:41:08:be:d3:31:2d:2b:5b:e3:4a:e9:3a: a7:71:73:fb:8d:b5:a1:30:09:bd:6c:ac:a2:c2:fd: d9:ec:04:f3:57:a8:84:d8:ab:3b:ef:e0:a2:c2:92: 44:90:46:6c:fa:f5:79:ad:3e:fa:91:55:f7:8c:75: 2c:4b:c8:c9:a1:43:5b:4c:00:e2:d4:12:26:6a:09: 35:24:c1:a1:01:59:a4:df:1b:23:0d:e1:c2:17:32: 24:be:e3:a8:5f:0c:5e:4b:54:f4:af:02:aa:3e:6f: 08:6f:61:48:17:75:7f:64:ca:c3:d6:bc:f9:a5:b8: 53:20:c6:60:a1:96:2d:ed:8f:9c:01:e6:bd:8f:8a: 7a:08:04:e6:c9:33:e9:8a:e2:0f:6b:24:20:17:f3: bc:3b:79:a2:f2:7d:32:de:a5:75:f9:a6:33:79:be: 55:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:37:ED:E2:72:8D:55:83:99:C2:5A:4A:EC:91:1C:98:14:42:6D:5A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.120.0/24 Signature Algorithm: sha256WithRSAEncryption cb:c4:1e:cc:15:ed:e3:b3:6c:c2:32:50:9f:22:0e:d8:d0:43: a5:8b:26:75:2e:29:44:0f:1f:d6:0d:b1:56:c5:73:d4:a1:a0: 3f:4f:1d:42:cf:f3:58:17:29:e4:83:b1:56:94:ea:e8:49:8f: fd:2d:79:32:ec:f6:01:bc:38:5b:4e:29:f4:0c:da:0a:41:8c: 35:cb:ff:5f:16:13:3e:2e:15:c8:ca:50:63:5e:14:0d:dd:04: 9f:97:3f:aa:51:ee:88:38:10:26:da:51:1c:08:3d:2c:17:8d: c8:d4:0f:d2:d8:6a:79:2d:35:02:0d:aa:fc:fd:e3:b2:1e:52: 64:d4:1d:4d:91:87:69:33:92:52:3c:bb:74:49:f1:79:ff:67: 6c:b9:c6:25:93:63:e9:99:ad:c9:65:a8:e3:5e:50:a4:81:2f: 10:d6:b1:b3:d0:3c:45:53:b8:0a:d6:ea:11:c9:d5:e7:47:2c: 8f:9d:88:38:30:8d:62:06:e9:e4:0a:69:ac:f8:7c:9a:c6:19: 27:0b:4a:b2:8f:bb:a1:83:81:31:e2:2b:a0:98:7a:85:8a:cb: cc:d6:b1:de:3e:c7:8b:b1:c4:74:1d:f0:27:1c:82:3a:61:7d: 3e:4b:37:d1:35:9e:69:d4:b3:d0:37:50:72:5b:b7:31:fe:16: d3:01:4a:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBq0+G30THYax7r4wnfxdhznN0RYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDBaFw0yNDEwMjcwNjAwMDBaMDMxMTAvBgNV BAMTKEIyMzdFREUyNzI4RDU1ODM5OUMyNUE0QUVDOTExQzk4MTQ0MjZENUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbkgo6XtbOA5UicPPYrt4lgQjG 8I1OBXUw4oPh38nbNaNQo916qxYylqeW5a+qA1PzLuossVD4c28pRSSJerghWmqA El2dNHb6V39XeJaNv8ivMTXsqbWc+14/DkEIvtMxLStb40rpOqdxc/uNtaEwCb1s rKLC/dnsBPNXqITYqzvv4KLCkkSQRmz69XmtPvqRVfeMdSxLyMmhQ1tMAOLUEiZq CTUkwaEBWaTfGyMN4cIXMiS+46hfDF5LVPSvAqo+bwhvYUgXdX9kysPWvPmluFMg xmChli3tj5wB5r2PinoIBObJM+mK4g9rJCAX87w7eaLyfTLepXX5pjN5vlVdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsjft4nKNVYOZwlpK7JEcmBRCbVowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd254MA0GCSqG SIb3DQEBCwUAA4IBAQDLxB7MFe3js2zCMlCfIg7Y0EOliyZ1LilEDx/WDbFWxXPU oaA/Tx1Cz/NYFynkg7FWlOroSY/9LXky7PYBvDhbTin0DNoKQYw1y/9fFhM+LhXI ylBjXhQN3QSflz+qUe6IOBAm2lEcCD0sF43I1A/S2Gp5LTUCDar8/eOyHlJk1B1N kYdpM5JSPLt0SfF5/2dsucYlk2Ppma3JZajjXlCkgS8Q1rGz0DxFU7gK1uoRydXn RyyPnYg4MI1iBunkCmms+HyaxhknC0qyj7uhg4Ex4iugmHqFisvM1rHePseLscR0 HfAnHII6YX0+SzfRNZ5p1LPQN1ByW7cx/hbTAUoi -----END CERTIFICATE-----Generated at Sun Jun 2 02:06:23 2024 by rpki-client on console-fra.rpki-client.org