$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: 9u2s4N2Dv2llEi9S1dx7ImAtKmvXFVFuw+gO7K5CUYU= Subject key identifier: 45:6F:64:75:1C:9C:AF:3F:91:5D:6A:F4:A8:B0:16:9E:01:63:43:F6 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 46916B794D15F3DE58C348B2A72249E1EE93E1FE Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:00 +0000 ROA not before: Sun 29 Oct 2023 05:55:00 +0000 ROA not after: Sun 27 Oct 2024 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:91:6b:79:4d:15:f3:de:58:c3:48:b2:a7:22:49:e1:ee:93:e1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:00 2023 GMT Not After : Oct 27 06:00:00 2024 GMT Subject: CN=456F64751C9CAF3F915D6AF4A8B0169E016343F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bd:86:90:dd:6d:3d:d5:1a:5d:0f:e4:41:61: 0a:b2:e8:96:c1:2c:7a:13:e2:68:8d:c6:18:74:24: a1:b0:6b:e8:4c:22:6f:82:c5:af:c8:8e:16:31:ca: 17:ca:11:68:4b:19:98:c8:34:40:47:c7:84:6d:e1: 8b:6e:ea:3a:aa:8c:7c:b3:46:02:fe:16:99:3f:ff: 4e:f3:77:d6:73:51:a4:00:32:6e:aa:71:df:6d:31: 55:db:e4:6f:21:6f:7b:d1:c5:11:25:b1:dd:3d:3c: d7:5a:e9:f7:28:42:35:93:bb:f4:c3:47:86:bb:65: 80:3a:28:24:ef:59:41:dc:b8:7f:3e:7f:b0:50:37: 0c:ed:49:8b:4d:25:ab:98:0e:43:1b:8d:1b:bd:13: 79:73:86:a7:ce:9a:d1:02:a3:76:b2:7e:6c:23:67: 7d:c8:b5:b2:65:2c:5c:87:c6:05:2d:8e:dc:c8:ac: 24:dc:7f:1e:f3:59:09:68:46:2c:98:4a:6f:ff:2d: e9:dd:2c:79:64:79:56:35:c0:d8:1a:0f:25:f1:da: c0:c8:82:22:cd:e6:88:a2:40:34:dd:36:1e:55:a6: 23:88:06:6c:c0:df:0e:35:e1:b1:40:7f:2f:2a:85: 8f:e3:da:d7:0b:78:7c:ae:0f:53:86:e0:35:28:75: 9f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6F:64:75:1C:9C:AF:3F:91:5D:6A:F4:A8:B0:16:9E:01:63:43:F6 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.122.0/24 Signature Algorithm: sha256WithRSAEncryption a1:34:ec:1a:64:97:0d:24:a1:5d:f9:af:f8:21:18:35:d8:6d: 81:bc:f0:46:2b:dd:63:46:60:5d:76:15:36:b5:68:ca:d5:2d: 3b:bf:4d:f6:41:01:97:a9:e8:bb:e8:ce:c9:c1:0c:e2:c3:ea: 88:98:34:39:05:a4:d1:e4:da:cf:90:29:19:16:4a:e3:dc:6e: 62:1d:6b:dc:9f:4b:d8:08:ea:46:d5:f5:0a:5c:2a:18:3e:0c: 1d:33:19:18:67:de:97:39:f0:06:3c:79:18:29:e8:7f:06:fb: 8c:9d:fa:d9:01:bc:b6:56:3d:f9:a1:1e:33:95:5e:15:6f:da: 4a:ae:78:39:f1:f7:6f:c5:a3:7d:e9:a4:66:00:0b:64:f8:58: e7:a2:bb:0e:8d:b6:72:9d:32:15:d0:5e:ca:d9:a6:4a:34:22: 0c:1f:1c:6a:69:c7:10:d8:74:12:3b:d0:39:bf:6c:0c:41:8a: 28:10:d2:22:ec:8e:03:25:40:15:9e:9d:64:4a:52:57:8c:5b: 5d:f2:9c:50:1b:4b:a8:f1:52:41:a7:ad:a0:45:82:7a:d0:97: fb:d6:83:96:e4:27:7b:69:d2:a2:02:72:43:e1:96:b8:ce:cb: 14:30:c6:2f:91:4d:0d:d0:aa:e1:e0:12:9b:80:06:f7:60:88: 4c:04:00:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURpFreU0V895Yw0iypyJJ4e6T4f4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDBaFw0yNDEwMjcwNjAwMDBaMDMxMTAvBgNV BAMTKDQ1NkY2NDc1MUM5Q0FGM0Y5MTVENkFGNEE4QjAxNjlFMDE2MzQzRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBvYaQ3W091RpdD+RBYQqy6JbB LHoT4miNxhh0JKGwa+hMIm+Cxa/IjhYxyhfKEWhLGZjINEBHx4Rt4Ytu6jqqjHyz RgL+Fpk//07zd9ZzUaQAMm6qcd9tMVXb5G8hb3vRxRElsd09PNda6fcoQjWTu/TD R4a7ZYA6KCTvWUHcuH8+f7BQNwztSYtNJauYDkMbjRu9E3lzhqfOmtECo3ayfmwj Z33ItbJlLFyHxgUtjtzIrCTcfx7zWQloRiyYSm//LendLHlkeVY1wNgaDyXx2sDI giLN5oiiQDTdNh5VpiOIBmzA3w414bFAfy8qhY/j2tcLeHyuD1OG4DUodZ9RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURW9kdRycrz+RXWr0qLAWngFjQ/YwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd256MA0GCSqG SIb3DQEBCwUAA4IBAQChNOwaZJcNJKFd+a/4IRg12G2BvPBGK91jRmBddhU2tWjK 1S07v032QQGXqei76M7JwQziw+qImDQ5BaTR5NrPkCkZFkrj3G5iHWvcn0vYCOpG 1fUKXCoYPgwdMxkYZ96XOfAGPHkYKeh/BvuMnfrZAby2Vj35oR4zlV4Vb9pKrng5 8fdvxaN96aRmAAtk+FjnorsOjbZynTIV0F7K2aZKNCIMHxxqaccQ2HQSO9A5v2wM QYooENIi7I4DJUAVnp1kSlJXjFtd8pxQG0uo8VJBp62gRYJ60Jf71oOW5Cd7adKi AnJD4Za4zssUMMYvkU0N0Krh4BKbgAb3YIhMBAAB -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org