$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: D/eZTy28VdaVvp6QLZ4OW4bLaG4Yst8U05yi9uzUiAA= Subject key identifier: 88:F5:DF:95:E0:B3:1D:CD:58:24:83:06:0C:C9:FE:7D:0E:E5:6F:04 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 76E21784E8C1D22E29AC010A6F025DBD84D6F95E Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:01 +0000 ROA not before: Sun 29 Oct 2023 05:55:01 +0000 ROA not after: Sun 27 Oct 2024 06:00:01 +0000 asID: 45147 IP address blocks: 119.110.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e2:17:84:e8:c1:d2:2e:29:ac:01:0a:6f:02:5d:bd:84:d6:f9:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:01 2023 GMT Not After : Oct 27 06:00:01 2024 GMT Subject: CN=88F5DF95E0B31DCD582483060CC9FE7D0EE56F04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cc:97:b5:6d:91:ae:68:ec:04:b6:a8:3e:e1: b0:0e:25:41:0f:23:8c:6a:b1:88:1a:a2:71:94:fb: 19:c3:71:a2:d9:5d:4d:3c:eb:29:6d:17:cb:70:a1: fe:b2:6e:a2:d2:c6:cb:18:31:cd:c3:b5:97:a2:7c: a4:f6:ea:c6:74:9b:56:7b:b9:4f:c6:f9:a7:c7:07: 55:b9:9b:69:97:ae:56:2a:92:cd:9d:42:8c:88:8a: c8:fc:ce:ab:84:83:6a:d8:fd:96:1d:09:53:b2:55: d4:28:54:9e:a7:25:4b:56:78:43:40:f3:25:45:1d: ec:ba:e7:f7:fb:c3:f4:c6:3f:ae:66:94:b5:f3:6c: 59:ae:98:d6:66:10:7e:42:88:ee:9e:bd:f4:55:3a: e8:d0:d4:11:69:d3:7b:8f:14:16:78:06:23:fa:56: c3:a9:ef:de:c2:9e:b1:6b:1f:42:cd:d5:a3:3c:4a: b4:e1:d9:03:8e:db:08:75:bb:cf:d4:03:cc:c1:aa: b3:b0:ac:29:48:a0:0d:5b:f4:67:f8:ae:7a:b9:3d: d5:19:15:21:85:cc:f9:b3:6e:9b:8f:fc:37:1f:79: 55:e7:de:98:a1:eb:b5:b5:a8:e1:dd:5e:0a:5c:0b: e3:13:4d:fb:93:b9:e5:2a:47:94:34:09:b2:43:34: 1c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F5:DF:95:E0:B3:1D:CD:58:24:83:06:0C:C9:FE:7D:0E:E5:6F:04 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.121.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:65:13:b8:07:51:a7:9c:6a:8e:78:3c:6a:38:8f:cc:46:e2: d1:96:72:a5:72:62:0a:21:97:fe:e6:0e:e4:5f:f2:a0:bc:8a: a8:8e:c6:84:43:35:17:c1:0c:22:79:a5:65:bf:70:c5:a1:68: 7a:a0:2c:1b:ad:6c:7c:e1:82:cf:ae:5d:d4:93:0a:8d:46:0b: 54:44:78:ff:2c:77:14:7a:b9:83:4e:5b:ce:b0:dd:45:d3:8a: 0b:ae:06:24:4c:26:39:bd:85:5d:c8:11:23:09:ec:e6:eb:9d: a5:66:d4:55:ba:ef:2f:a9:c3:f0:5b:f5:4b:5d:5e:12:01:1c: 69:b9:cf:e5:b0:73:e0:ca:1f:f7:bb:4e:c1:f4:a4:59:6d:21: 74:04:14:63:52:6f:72:d4:b0:58:8c:0f:ae:ae:c2:76:7b:34: 50:56:86:e4:38:79:28:cd:b9:d7:b4:35:89:56:ca:21:4e:dd: 0f:68:df:10:9f:7e:01:93:62:ff:b4:0f:93:0b:df:f6:17:b3: 4b:63:8b:1e:5d:44:a1:63:b9:e3:19:04:25:0f:c1:b5:9d:27: 69:34:f3:b6:89:eb:61:4a:21:20:10:e6:00:8f:eb:4d:ab:e7: de:e3:dc:ca:fb:d1:99:bd:fc:47:32:b3:19:f0:63:d9:d9:9b: a3:55:e6:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUduIXhOjB0i4prAEKbwJdvYTW+V4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDFaFw0yNDEwMjcwNjAwMDFaMDMxMTAvBgNV BAMTKDg4RjVERjk1RTBCMzFEQ0Q1ODI0ODMwNjBDQzlGRTdEMEVFNTZGMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzJe1bZGuaOwEtqg+4bAOJUEP I4xqsYgaonGU+xnDcaLZXU086yltF8twof6ybqLSxssYMc3DtZeifKT26sZ0m1Z7 uU/G+afHB1W5m2mXrlYqks2dQoyIisj8zquEg2rY/ZYdCVOyVdQoVJ6nJUtWeENA 8yVFHey65/f7w/TGP65mlLXzbFmumNZmEH5CiO6evfRVOujQ1BFp03uPFBZ4BiP6 VsOp797CnrFrH0LN1aM8SrTh2QOO2wh1u8/UA8zBqrOwrClIoA1b9Gf4rnq5PdUZ FSGFzPmzbpuP/DcfeVXn3pih67W1qOHdXgpcC+MTTfuTueUqR5Q0CbJDNBxrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiPXfleCzHc1YJIMGDMn+fQ7lbwQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd255MA0GCSqG SIb3DQEBCwUAA4IBAQBfZRO4B1GnnGqOeDxqOI/MRuLRlnKlcmIKIZf+5g7kX/Kg vIqojsaEQzUXwQwieaVlv3DFoWh6oCwbrWx84YLPrl3UkwqNRgtURHj/LHcUermD TlvOsN1F04oLrgYkTCY5vYVdyBEjCezm652lZtRVuu8vqcPwW/VLXV4SARxpuc/l sHPgyh/3u07B9KRZbSF0BBRjUm9y1LBYjA+ursJ2ezRQVobkOHkozbnXtDWJVsoh Tt0PaN8Qn34Bk2L/tA+TC9/2F7NLY4seXUShY7njGQQlD8G1nSdpNPO2iethSiEg EOYAj+tNq+fe49zK+9GZvfxHMrMZ8GPZ2ZujVea7 -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org