$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: +Z0Iy48xDk1yBvlgrduBN9oT5J+fsjC7AYrl1nlRNiw= Subject key identifier: C5:28:39:DD:1A:34:15:3F:4A:0B:63:9C:EA:CE:37:3E:82:6E:BA:81 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3E2ECEACDB123C380B0CD8496001923872EC1ED9 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:00 +0000 ROA not before: Sun 29 Sep 2024 06:55:00 +0000 ROA not after: Sun 28 Sep 2025 07:00:00 +0000 asID: 45147 IP address blocks: 119.110.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:2e:ce:ac:db:12:3c:38:0b:0c:d8:49:60:01:92:38:72:ec:1e:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:00 2024 GMT Not After : Sep 28 07:00:00 2025 GMT Subject: CN=C52839DD1A34153F4A0B639CEACE373E826EBA81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fc:8f:06:78:72:ac:4e:72:f3:5c:34:c2:ab: 7d:1a:d2:c9:e0:d2:13:04:bd:93:7f:69:f3:56:a6: 39:57:27:f5:25:4d:7d:bb:35:59:74:ec:cb:9d:6d: 4e:60:79:01:fc:11:33:59:b7:60:b0:f8:72:c1:32: 92:32:1f:fb:46:0e:92:67:46:8e:0f:66:dc:40:e0: a5:11:13:cc:c3:20:c7:60:ea:a9:28:99:a3:df:1f: df:6f:bc:13:ee:56:68:c2:ac:75:ce:c7:73:a1:37: cf:3d:ea:07:f3:d8:f2:c2:83:9b:39:94:7f:53:85: 74:11:a6:cb:4e:fc:ba:53:f5:2c:02:50:f0:2e:1b: 80:40:8a:0a:40:58:2a:59:31:6b:a2:6c:8e:ba:9c: 39:36:28:a8:eb:f3:49:1c:69:f5:f3:57:40:56:32: cf:7f:46:c3:fb:be:13:eb:80:ca:fb:02:04:02:c6: 8c:e0:99:f1:2c:17:76:86:30:8c:b6:7f:eb:6a:d2: 26:88:8a:36:12:02:1e:07:b4:31:c6:b1:6f:30:2e: c6:f8:6a:98:e0:cd:b8:9a:0c:d4:51:d1:e5:8f:e2: 50:8f:30:e7:06:2f:76:6e:6f:ff:78:38:49:4b:e8: 96:34:0d:51:a1:8e:40:86:9f:27:49:6d:43:f9:56: 60:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:28:39:DD:1A:34:15:3F:4A:0B:63:9C:EA:CE:37:3E:82:6E:BA:81 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.122.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:69:b4:a3:9a:c8:15:4c:8c:a3:51:a8:f2:a8:d0:de:35:e8: c3:51:e2:eb:4b:4c:4d:ca:47:1b:7d:21:05:76:ff:53:86:81: 7a:49:e0:d9:83:ff:30:4d:f9:1a:30:b6:9f:d0:13:59:b8:a0: 24:e8:cd:2f:22:0a:8e:a2:23:97:7b:bb:15:a0:7d:f5:67:98: 13:5e:64:85:02:fe:27:9f:f2:4b:82:10:0a:38:09:f7:26:56: 5e:7c:be:06:6a:13:d4:99:cb:0f:c7:cd:a5:23:48:d6:fb:e0: 98:45:c9:00:bd:43:f3:c4:29:20:0a:c3:7f:cc:a2:e6:47:8f: f5:df:be:27:c9:cb:ea:c7:93:59:d6:ee:00:4c:3f:d9:0d:ff: 4e:8f:fa:06:c5:c7:5e:8c:aa:95:8f:31:c4:ac:3e:0a:fc:17: f0:3b:cf:21:fc:55:ee:79:36:51:df:63:a9:a3:62:1a:80:01: 60:9b:a9:5a:42:d0:18:21:7a:d1:d4:cc:0b:76:48:e0:3f:15: 04:d0:2e:a4:0c:20:4d:11:25:f0:98:58:7d:fc:c3:bd:00:81: 54:3c:cd:52:1b:7d:21:8e:50:95:f7:cf:d7:88:bc:fb:59:b7: b2:b2:70:d4:27:da:87:f0:c3:42:63:d9:c6:2a:f8:04:f0:fc: e7:56:52:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPi7OrNsSPDgLDNhJYAGSOHLsHtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDBaFw0yNTA5MjgwNzAwMDBaMDMxMTAvBgNV BAMTKEM1MjgzOUREMUEzNDE1M0Y0QTBCNjM5Q0VBQ0UzNzNFODI2RUJBODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV/I8GeHKsTnLzXDTCq30a0sng 0hMEvZN/afNWpjlXJ/UlTX27NVl07MudbU5geQH8ETNZt2Cw+HLBMpIyH/tGDpJn Ro4PZtxA4KURE8zDIMdg6qkomaPfH99vvBPuVmjCrHXOx3OhN8896gfz2PLCg5s5 lH9ThXQRpstO/LpT9SwCUPAuG4BAigpAWCpZMWuibI66nDk2KKjr80kcafXzV0BW Ms9/RsP7vhPrgMr7AgQCxozgmfEsF3aGMIy2f+tq0iaIijYSAh4HtDHGsW8wLsb4 apjgzbiaDNRR0eWP4lCPMOcGL3Zub/94OElL6JY0DVGhjkCGnydJbUP5VmBhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxSg53Ro0FT9KC2Oc6s43PoJuuoEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd256MA0GCSqG SIb3DQEBCwUAA4IBAQB/abSjmsgVTIyjUajyqNDeNejDUeLrS0xNykcbfSEFdv9T hoF6SeDZg/8wTfkaMLaf0BNZuKAk6M0vIgqOoiOXe7sVoH31Z5gTXmSFAv4nn/JL ghAKOAn3JlZefL4GahPUmcsPx82lI0jW++CYRckAvUPzxCkgCsN/zKLmR4/1374n ycvqx5NZ1u4ATD/ZDf9Oj/oGxcdejKqVjzHErD4K/BfwO88h/FXueTZR32Opo2Ia gAFgm6laQtAYIXrR1MwLdkjgPxUE0C6kDCBNESXwmFh9/MO9AIFUPM1SG30hjlCV 98/XiLz7WbeysnDUJ9qH8MNCY9nGKvgE8PznVlIb -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org