$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: I9SurH5PQhxuIapf+E/r4wBjgTIhchd/3ZVNVGsqwSo= Subject key identifier: 98:03:73:D0:11:97:0B:5B:98:2E:AB:1A:1E:5E:08:3D:93:F9:A7:1E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 09859D34782564F2D3722CA4574AC1F2256B16C1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 06:00:00 +0000 ROA not before: Sun 29 Sep 2024 05:55:00 +0000 ROA not after: Sun 28 Sep 2025 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:85:9d:34:78:25:64:f2:d3:72:2c:a4:57:4a:c1:f2:25:6b:16:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 05:55:00 2024 GMT Not After : Sep 28 06:00:00 2025 GMT Subject: CN=980373D011970B5B982EAB1A1E5E083D93F9A71E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ef:98:54:80:cc:7b:6f:25:5c:e2:9c:ff:af: 16:a1:99:70:0a:16:c6:4a:fc:fb:ff:9a:3f:4c:64: 67:4c:74:78:64:20:6a:ec:f6:5e:72:d7:fc:31:21: 78:45:2c:8d:2e:e1:68:b2:00:1f:de:06:23:1f:4f: 6b:30:0c:38:61:d9:68:4e:75:52:2a:86:fc:1f:c1: 8a:39:88:54:ea:ee:71:e2:fc:e8:ad:b5:d2:bb:6a: 4b:30:71:b2:d4:13:66:08:8d:0d:56:b9:fc:df:ea: 6a:05:cb:6f:5a:38:ce:0b:d0:61:00:fc:58:bd:ac: 77:48:4b:75:2e:21:c9:af:e7:3d:e3:cf:49:c7:82: 52:d0:3b:6e:d1:8b:4c:21:35:87:8f:3f:be:97:bd: 4f:b3:65:62:03:61:41:d4:a0:22:aa:95:66:62:e9: 62:b0:53:04:52:7c:76:62:76:8b:06:7b:74:c8:9f: 7b:85:f7:33:13:a7:5f:a4:2e:5f:b3:4b:82:92:09: 0f:ea:d7:bb:0d:64:f9:d6:26:02:e8:da:cc:6a:b8: 02:e9:88:b6:c2:a7:cf:72:e5:77:9e:23:4e:d8:3c: 62:6b:c4:dd:f9:20:21:dc:95:b8:42:94:a6:f7:9e: ec:bf:ef:d0:5c:7e:1d:e3:46:9d:a4:bb:99:ed:7f: 4c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:03:73:D0:11:97:0B:5B:98:2E:AB:1A:1E:5E:08:3D:93:F9:A7:1E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.120.0/24 Signature Algorithm: sha256WithRSAEncryption 98:9f:bf:4f:03:34:dd:c8:49:77:d0:cd:47:de:3f:1d:30:8a: bd:51:ce:32:8a:cf:45:0b:b1:57:4e:e3:fe:14:c3:67:fe:91: 18:e3:1d:ae:1f:0c:26:c0:4c:85:da:57:cd:92:08:84:5c:39: 74:fb:f1:7d:6c:d9:e4:c2:a1:26:e4:03:61:0d:ab:13:a2:b8: d1:4f:3a:9e:7b:37:c4:b5:0e:7c:b2:9c:2a:b1:83:92:4b:a9: 85:21:54:8a:76:b8:1b:e5:33:d2:76:9f:88:ee:9a:11:23:d1: 69:19:d8:90:5e:2f:d7:a1:87:9c:ec:87:ba:0c:e5:cd:28:89: 94:0f:f2:7b:34:b3:ec:ec:87:56:48:11:77:4c:eb:8e:a7:1e: df:7e:36:f9:68:0e:77:ea:13:7a:88:ce:fc:53:4b:93:89:8f: f7:f8:e9:93:16:b5:31:db:cc:2e:4c:a4:d5:05:f9:bd:8b:77: cb:72:4b:11:cb:e5:8f:51:f1:2c:e4:48:09:15:8c:7c:7c:bd: fb:6f:3c:4b:13:5e:08:3a:d4:4a:02:62:c3:d7:14:c8:73:de: be:ce:8f:38:8b:4b:c5:17:94:68:81:1c:2e:f3:73:57:27:1d: 62:c2:41:0a:c2:f2:ce:22:62:ca:e0:52:43:79:dc:08:b2:37: 13:89:e1:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCYWdNHglZPLTciykV0rB8iVrFsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNTU1MDBaFw0yNTA5MjgwNjAwMDBaMDMxMTAvBgNV BAMTKDk4MDM3M0QwMTE5NzBCNUI5ODJFQUIxQTFFNUUwODNEOTNGOUE3MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG75hUgMx7byVc4pz/rxahmXAK FsZK/Pv/mj9MZGdMdHhkIGrs9l5y1/wxIXhFLI0u4WiyAB/eBiMfT2swDDhh2WhO dVIqhvwfwYo5iFTq7nHi/OittdK7akswcbLUE2YIjQ1Wufzf6moFy29aOM4L0GEA /Fi9rHdIS3UuIcmv5z3jz0nHglLQO27Ri0whNYePP76XvU+zZWIDYUHUoCKqlWZi 6WKwUwRSfHZidosGe3TIn3uF9zMTp1+kLl+zS4KSCQ/q17sNZPnWJgLo2sxquALp iLbCp89y5XeeI07YPGJrxN35ICHclbhClKb3nuy/79Bcfh3jRp2ku5ntf0w5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmANz0BGXC1uYLqsaHl4IPZP5px4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd254MA0GCSqG SIb3DQEBCwUAA4IBAQCYn79PAzTdyEl30M1H3j8dMIq9Uc4yis9FC7FXTuP+FMNn /pEY4x2uHwwmwEyF2lfNkgiEXDl0+/F9bNnkwqEm5ANhDasTorjRTzqeezfEtQ58 spwqsYOSS6mFIVSKdrgb5TPSdp+I7poRI9FpGdiQXi/XoYec7Ie6DOXNKImUD/J7 NLPs7IdWSBF3TOuOpx7ffjb5aA536hN6iM78U0uTiY/3+OmTFrUx28wuTKTVBfm9 i3fLcksRy+WPUfEs5EgJFYx8fL37bzxLE14IOtRKAmLD1xTIc96+zo84i0vFF5Ro gRwu83NXJx1iwkEKwvLOImLK4FJDedwIsjcTieHf -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org