$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: nsUaYrPxGMYMzHhQmgSzHooRCZDNvPRl95xidAgL+1A= Subject key identifier: 0E:0B:46:71:ED:57:C6:2A:0F:20:66:ED:94:66:A0:AA:66:08:C2:B3 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 61392092880128649D7446A2A42D0E70DBB32577 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:02 +0000 ROA not before: Sun 29 Sep 2024 06:55:02 +0000 ROA not after: Sun 28 Sep 2025 07:00:02 +0000 asID: 45147 IP address blocks: 119.110.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:39:20:92:88:01:28:64:9d:74:46:a2:a4:2d:0e:70:db:b3:25:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:02 2024 GMT Not After : Sep 28 07:00:02 2025 GMT Subject: CN=0E0B4671ED57C62A0F2066ED9466A0AA6608C2B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:25:c0:a3:04:90:fe:87:ba:02:1d:a4:d2:c5: 36:4a:b1:4b:32:82:e7:87:ca:f2:da:80:06:79:61: 7e:a1:f4:bc:77:7a:5e:9a:b2:dd:5a:48:51:3a:90: 4e:3b:bd:e6:ee:f6:4e:f9:df:94:6a:b0:05:b2:a5: 36:f5:c1:05:bf:bc:05:4f:30:23:c0:bc:c8:38:1f: b8:63:85:6d:b8:69:36:a5:df:b4:b1:b4:21:3a:02: ab:86:36:d7:89:03:94:cb:79:1f:a6:42:8a:c4:0b: 17:25:cb:a1:75:e7:5e:59:32:27:a9:96:4c:6d:58: 0b:e4:0c:54:49:73:83:b3:03:ad:51:d2:37:c4:55: ab:b9:f5:df:71:af:76:0f:56:27:6d:22:76:4f:4c: 61:58:93:3e:c0:91:40:0e:14:c6:81:a0:3e:0f:04: 09:4a:33:4e:6a:9c:2f:81:46:ec:23:a1:e3:63:8e: a9:b5:25:e4:96:1f:f1:00:17:f3:59:51:38:71:23: 77:7a:5f:9e:dc:ad:9c:d8:0d:32:db:5e:f6:dc:89: f1:0c:83:07:2e:03:9d:fe:38:e7:56:93:5d:0b:96: e8:43:58:ff:d6:5d:75:eb:e5:2f:a0:6d:a2:76:73: bc:76:bc:1c:13:f3:b1:1d:94:e3:cc:e8:07:9d:ee: 7b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:0B:46:71:ED:57:C6:2A:0F:20:66:ED:94:66:A0:AA:66:08:C2:B3 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.123.0/24 Signature Algorithm: sha256WithRSAEncryption 33:79:9d:80:79:ff:2e:dc:43:d3:a1:ce:89:39:03:84:17:bf: 0e:4b:0c:6a:c3:ff:f9:83:86:12:1d:10:8f:d4:d3:bf:bd:62: 29:ec:b1:50:6e:f8:09:1a:db:9a:48:52:7b:3d:d1:75:70:6c: a4:4e:89:8b:77:b5:0c:ff:6d:c9:2b:b1:04:db:a0:5e:7c:7c: 32:02:91:0e:04:1b:c1:58:56:b9:ac:83:4c:32:7d:c0:82:0b: 70:80:27:af:03:4f:56:27:5b:09:b7:56:e1:f3:5f:a1:09:e4: be:0b:31:ea:df:be:39:74:bc:54:ed:b1:a8:7c:96:66:b4:58: bb:05:ea:be:25:42:19:a4:ba:38:c5:74:85:3c:de:94:8d:71: 03:0f:67:d0:73:a9:be:4c:72:ed:78:6a:0d:56:7a:0e:7d:2b: b3:d3:f0:19:c0:eb:aa:0a:e5:06:3c:d6:46:8d:b2:eb:a9:a8: 9e:7e:cc:ac:df:3f:d4:7a:e9:a4:49:08:10:c7:1c:54:a0:8d: 59:98:c9:bb:1c:dc:dc:ec:43:92:8b:ed:b5:c2:05:63:e2:ca: c1:cb:e3:51:98:c5:a7:ff:d1:49:ac:d2:d9:4e:aa:0e:8c:fd: c2:c5:ec:79:0b:e4:f1:3c:69:15:ac:3c:f5:fe:9e:e3:d0:bc: c4:cc:81:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYTkgkogBKGSddEaipC0OcNuzJXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDJaFw0yNTA5MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDBFMEI0NjcxRUQ1N0M2MkEwRjIwNjZFRDk0NjZBMEFBNjYwOEMyQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzJcCjBJD+h7oCHaTSxTZKsUsy gueHyvLagAZ5YX6h9Lx3el6ast1aSFE6kE47vebu9k7535RqsAWypTb1wQW/vAVP MCPAvMg4H7hjhW24aTal37SxtCE6AquGNteJA5TLeR+mQorECxcly6F1515ZMiep lkxtWAvkDFRJc4OzA61R0jfEVau59d9xr3YPVidtInZPTGFYkz7AkUAOFMaBoD4P BAlKM05qnC+BRuwjoeNjjqm1JeSWH/EAF/NZUThxI3d6X57crZzYDTLbXvbcifEM gwcuA53+OOdWk10LluhDWP/WXXXr5S+gbaJ2c7x2vBwT87EdlOPM6Aed7nshAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDgtGce1XxioPIGbtlGagqmYIwrMwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd257MA0GCSqG SIb3DQEBCwUAA4IBAQAzeZ2Aef8u3EPToc6JOQOEF78OSwxqw//5g4YSHRCP1NO/ vWIp7LFQbvgJGtuaSFJ7PdF1cGykTomLd7UM/23JK7EE26BefHwyApEOBBvBWFa5 rINMMn3AggtwgCevA09WJ1sJt1bh81+hCeS+CzHq3745dLxU7bGofJZmtFi7Beq+ JUIZpLo4xXSFPN6UjXEDD2fQc6m+THLteGoNVnoOfSuz0/AZwOuqCuUGPNZGjbLr qaiefsys3z/UeumkSQgQxxxUoI1ZmMm7HNzc7EOSi+21wgVj4srBy+NRmMWn/9FJ rNLZTqoOjP3Cxex5C+TxPGkVrDz1/p7j0LzEzIE6 -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org