$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: eeZDvZl7mlgfSjB5fNF4kNwv2iyUw99hTy6nokCSCzg= Subject key identifier: 8B:EF:DA:5F:75:18:30:59:91:EA:10:F0:56:12:64:38:CF:B3:84:26 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3DF74BDE848A25B73189D7569DDDBBDB351EB52A Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:01 +0000 ROA not before: Sun 29 Oct 2023 05:55:01 +0000 ROA not after: Sun 27 Oct 2024 06:00:01 +0000 asID: 45147 IP address blocks: 119.110.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f7:4b:de:84:8a:25:b7:31:89:d7:56:9d:dd:bb:db:35:1e:b5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:01 2023 GMT Not After : Oct 27 06:00:01 2024 GMT Subject: CN=8BEFDA5F7518305991EA10F056126438CFB38426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7e:5c:75:27:71:f5:5d:76:c8:ff:05:7d:46: d4:e1:c9:25:9b:b2:39:23:ff:4c:ab:17:c0:46:b6: 46:93:c3:d5:9b:e0:0a:c1:7c:09:70:90:61:01:4f: f8:92:04:1e:d1:1f:fb:2c:cc:5c:c9:f9:91:f7:5f: 77:3a:23:7b:7f:a1:64:0c:b3:b2:c6:96:f6:10:03: b0:6c:80:38:0e:23:01:66:d5:6f:ca:ae:fc:30:50: 4d:85:7b:ad:ce:31:b4:c8:36:b0:a6:d8:bf:8e:4a: cb:30:4b:e1:33:86:4b:17:fd:a6:68:de:ac:58:8f: 95:ad:4c:88:c9:b5:b7:b9:d1:1e:dc:73:40:1b:51: 30:19:03:cd:27:f2:13:7b:7c:f0:0e:fd:b4:6f:1b: 62:c2:19:9c:de:ee:e4:a7:79:c4:0c:79:aa:1f:32: 08:e6:37:9f:3d:1e:ed:1d:f2:88:07:5c:80:a9:b7: 7d:5b:f7:fe:0a:97:da:e5:64:79:dc:90:18:48:ab: de:e1:85:64:27:68:1e:0d:25:97:da:f3:27:2e:f9: 5c:aa:ab:71:86:48:09:e5:c8:b3:0f:fb:91:e4:d1: 47:e9:03:59:4e:5e:7e:c3:dc:43:d1:3e:10:5c:b3: e5:a1:fb:b8:cd:18:74:19:a6:39:e8:c8:43:82:4e: a0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:EF:DA:5F:75:18:30:59:91:EA:10:F0:56:12:64:38:CF:B3:84:26 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.123.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e5:c1:45:c1:d5:e6:7e:7f:c2:a6:7e:95:86:31:bd:bf:86: 25:e2:68:ee:f9:72:26:8e:7c:2c:e9:f7:0e:83:22:88:2c:51: 84:ec:89:ff:b1:6e:c5:45:76:31:25:83:50:b2:40:8d:94:50: 61:43:d9:ad:b8:20:48:82:c5:cd:8f:a7:de:57:1b:0c:ea:69: 43:7a:9a:d4:67:8d:a3:75:2f:2c:d7:6f:25:80:fb:4c:5f:8f: cc:92:d3:77:d8:c3:02:31:81:0d:37:12:dd:33:53:35:63:6b: 1b:e1:72:ae:3a:c6:67:2e:bd:c7:ab:37:df:25:72:b5:ab:7b: 6c:08:90:8e:82:ac:6c:f9:67:ee:fc:c0:e8:7e:52:e9:23:b5: b5:bd:cf:3a:8d:a4:1d:c2:ed:69:8c:04:55:dd:bf:38:9e:1e: d5:1b:49:29:5e:28:16:fe:d7:38:1e:86:a2:ce:4a:a7:d0:69: 5a:49:0e:eb:c0:86:aa:17:76:26:0e:c3:ee:e7:2c:c2:ae:19: 0c:1e:b1:38:4f:1d:9d:92:b3:4b:61:8b:f3:59:18:9f:22:15: d3:f1:10:0b:9a:ee:2e:33:f4:bd:1b:5b:29:9c:a5:ec:d2:bc: 31:ac:5b:e6:19:c9:72:8f:25:f0:e8:64:b5:a3:d9:10:d3:76: 8e:3c:e8:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPfdL3oSKJbcxiddWnd272zUetSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDFaFw0yNDEwMjcwNjAwMDFaMDMxMTAvBgNV BAMTKDhCRUZEQTVGNzUxODMwNTk5MUVBMTBGMDU2MTI2NDM4Q0ZCMzg0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdflx1J3H1XXbI/wV9RtThySWb sjkj/0yrF8BGtkaTw9Wb4ArBfAlwkGEBT/iSBB7RH/sszFzJ+ZH3X3c6I3t/oWQM s7LGlvYQA7BsgDgOIwFm1W/KrvwwUE2Fe63OMbTINrCm2L+OSsswS+EzhksX/aZo 3qxYj5WtTIjJtbe50R7cc0AbUTAZA80n8hN7fPAO/bRvG2LCGZze7uSnecQMeaof MgjmN589Hu0d8ogHXICpt31b9/4Kl9rlZHnckBhIq97hhWQnaB4NJZfa8ycu+Vyq q3GGSAnlyLMP+5Hk0UfpA1lOXn7D3EPRPhBcs+Wh+7jNGHQZpjnoyEOCTqDfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi+/aX3UYMFmR6hDwVhJkOM+zhCYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd257MA0GCSqG SIb3DQEBCwUAA4IBAQCb5cFFwdXmfn/Cpn6VhjG9v4Yl4mju+XImjnws6fcOgyKI LFGE7In/sW7FRXYxJYNQskCNlFBhQ9mtuCBIgsXNj6feVxsM6mlDeprUZ42jdS8s 128lgPtMX4/MktN32MMCMYENNxLdM1M1Y2sb4XKuOsZnLr3HqzffJXK1q3tsCJCO gqxs+Wfu/MDoflLpI7W1vc86jaQdwu1pjARV3b84nh7VG0kpXigW/tc4Hoaizkqn 0GlaSQ7rwIaqF3YmDsPu5yzCrhkMHrE4Tx2dkrNLYYvzWRifIhXT8RALmu4uM/S9 G1spnKXs0rwxrFvmGclyjyXw6GS1o9kQ03aOPOj+ -----END CERTIFICATE-----Generated at Fri Jun 21 16:09:57 2024 by rpki-client on console-fra.rpki-client.org