$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: bzITOlv3bYwqxh9tljf2IvoU/GUbUqADuIuQMyU6gGE= Subject key identifier: 99:9E:F1:20:2B:B5:2B:AD:73:DC:07:0D:8C:D1:7D:8B:CB:C8:97:04 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0B840387B773FE092159C1A269DE488517EAC51B Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:01 +0000 ROA not before: Sun 29 Sep 2024 06:55:01 +0000 ROA not after: Sun 28 Sep 2025 07:00:01 +0000 asID: 45147 IP address blocks: 119.110.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:84:03:87:b7:73:fe:09:21:59:c1:a2:69:de:48:85:17:ea:c5:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:01 2024 GMT Not After : Sep 28 07:00:01 2025 GMT Subject: CN=999EF1202BB52BAD73DC070D8CD17D8BCBC89704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0b:2f:a0:91:83:c4:33:cb:46:33:86:d9:65: 26:b0:5f:24:8b:20:05:79:35:be:66:70:a2:5c:be: 60:eb:c2:b1:a9:60:2f:4c:c8:be:6f:5b:13:07:6b: 3b:37:a6:39:64:88:aa:75:18:f3:0c:59:ba:b1:a4: ff:e0:1e:79:5b:7d:6d:20:c0:96:5a:c6:5b:f5:1b: bc:b8:fd:77:d0:e6:3e:fb:77:4c:7d:63:46:61:a2: 15:e0:60:e3:7a:a6:e4:ad:59:c9:cc:76:c2:47:5c: ea:b9:49:2c:2b:3a:2f:14:3f:be:25:bf:29:d5:7c: f6:53:92:83:24:3e:b1:98:e7:e8:ed:a8:b3:e2:85: 28:d0:9d:f9:d0:4b:bc:8a:7e:11:ce:93:54:66:83: 52:52:3c:b2:30:25:88:e3:49:4f:a8:bf:94:33:56: 0b:79:f1:0f:77:18:4f:8f:22:23:e3:f1:ef:03:b7: 9f:e0:97:04:cd:c3:b6:c0:28:a0:f5:1c:0b:2d:eb: 57:2e:7a:19:e7:54:08:1a:c5:66:57:5f:fb:d0:a6: 97:a7:f5:af:80:8f:3d:eb:66:2d:71:e7:cc:a3:71: 7b:16:35:06:35:5d:b9:f8:a1:64:4b:18:d4:de:7e: 7a:d0:03:45:c0:83:c0:ad:1f:8a:78:68:9c:1b:58: 7f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9E:F1:20:2B:B5:2B:AD:73:DC:07:0D:8C:D1:7D:8B:CB:C8:97:04 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.121.0/24 Signature Algorithm: sha256WithRSAEncryption 85:18:00:ea:11:9e:06:e1:e5:fe:7f:dd:2a:a3:ea:78:7c:5f: 1b:a3:97:6b:53:1f:4e:5c:12:8a:14:05:69:e2:4d:95:c4:72: 45:b4:11:00:47:9b:4e:e1:ed:bd:68:3e:e6:6e:2e:28:4b:b4: 16:4e:88:46:aa:70:bf:14:92:6c:d6:31:8e:65:fb:64:42:a7: 03:5e:ee:bf:0a:e9:5d:b6:5c:6d:96:cd:54:9f:21:f4:d0:38: 94:2d:2a:d8:c4:de:f4:05:c3:53:f0:7e:a7:ae:0d:c3:5b:5c: 1b:47:7a:9a:81:71:41:fe:d8:a0:a2:80:ca:24:8a:8f:83:42: 9e:d4:96:85:e7:38:90:a2:39:a9:1b:c0:37:bd:21:1c:67:46: f1:79:f9:e6:36:7f:ca:d4:92:d0:1a:72:dd:41:08:24:6b:49: 16:21:e7:8d:99:e0:73:d0:7d:a1:f7:a0:8e:47:0a:16:e1:a5: 87:4b:16:d4:74:bd:76:22:76:ad:e8:10:e9:8a:50:97:67:c9: 3e:cb:d8:5e:c4:24:99:7a:ef:44:6b:73:0e:75:08:b9:a9:e6: 6b:4b:f1:32:17:01:81:e6:03:ed:14:e4:6c:35:7d:eb:59:36: 8f:df:e3:eb:34:09:2c:3a:a7:90:9c:a4:3e:73:b3:57:f4:ac: 66:2c:fd:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC4QDh7dz/gkhWcGiad5IhRfqxRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDFaFw0yNTA5MjgwNzAwMDFaMDMxMTAvBgNV BAMTKDk5OUVGMTIwMkJCNTJCQUQ3M0RDMDcwRDhDRDE3RDhCQ0JDODk3MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrCy+gkYPEM8tGM4bZZSawXySL IAV5Nb5mcKJcvmDrwrGpYC9MyL5vWxMHazs3pjlkiKp1GPMMWbqxpP/gHnlbfW0g wJZaxlv1G7y4/XfQ5j77d0x9Y0ZhohXgYON6puStWcnMdsJHXOq5SSwrOi8UP74l vynVfPZTkoMkPrGY5+jtqLPihSjQnfnQS7yKfhHOk1Rmg1JSPLIwJYjjSU+ov5Qz Vgt58Q93GE+PIiPj8e8Dt5/glwTNw7bAKKD1HAst61cuehnnVAgaxWZXX/vQppen 9a+Ajz3rZi1x58yjcXsWNQY1Xbn4oWRLGNTefnrQA0XAg8CtH4p4aJwbWH+JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmZ7xICu1K61z3AcNjNF9i8vIlwQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd255MA0GCSqG SIb3DQEBCwUAA4IBAQCFGADqEZ4G4eX+f90qo+p4fF8bo5drUx9OXBKKFAVp4k2V xHJFtBEAR5tO4e29aD7mbi4oS7QWTohGqnC/FJJs1jGOZftkQqcDXu6/Culdtlxt ls1UnyH00DiULSrYxN70BcNT8H6nrg3DW1wbR3qagXFB/tigooDKJIqPg0Ke1JaF 5ziQojmpG8A3vSEcZ0bxefnmNn/K1JLQGnLdQQgka0kWIeeNmeBz0H2h96CORwoW 4aWHSxbUdL12Inat6BDpilCXZ8k+y9hexCSZeu9Ea3MOdQi5qeZrS/EyFwGB5gPt FORsNX3rWTaP3+PrNAksOqeQnKQ+c7NX9KxmLP3b -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org