$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: 3NYWsNJ4lmEHQWeob10ULWxPKXo6JPpld+yxnfKj3wk= Subject key identifier: B3:6D:A6:BA:39:CA:7A:B9:A0:1C:44:78:4D:D2:41:44:54:2D:3B:0A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 6D232DC164EBA323144C03083C8F5BB1895F81A3 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Oct 2023 06:00:01 +0000 ROA not before: Sun 29 Oct 2023 05:55:01 +0000 ROA not after: Sun 27 Oct 2024 06:00:01 +0000 asID: 45147 IP address blocks: 119.110.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:23:2d:c1:64:eb:a3:23:14:4c:03:08:3c:8f:5b:b1:89:5f:81:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 05:55:01 2023 GMT Not After : Oct 27 06:00:01 2024 GMT Subject: CN=B36DA6BA39CA7AB9A01C44784DD24144542D3B0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6a:56:09:26:59:eb:19:01:89:81:79:dc:fe: 77:e6:1d:0a:c0:2b:c8:d4:ba:bc:ec:82:9c:8c:19: 76:de:e5:fc:62:94:be:4b:fe:0c:4b:91:cf:62:56: 3c:62:7a:b8:fd:35:3f:0a:ee:9a:7e:6a:18:46:a2: 9f:e0:11:1a:67:5c:71:f9:bb:31:c4:2e:e0:a1:14: 8d:1b:58:3c:38:f7:09:7a:8e:9b:65:89:7d:ea:2a: 05:c1:2d:db:7d:a4:d8:01:48:c4:83:94:38:11:0f: 63:ee:82:2a:52:1d:b2:a2:72:a2:22:fb:0c:41:2e: 39:06:32:5c:df:77:62:91:67:ae:3d:82:ed:54:c4: 86:a4:5b:61:43:12:77:2b:e5:54:43:52:30:14:ea: e8:77:3b:6b:0e:01:a6:c5:08:75:09:3a:0e:84:9c: 06:ed:60:02:9c:80:c8:64:56:2e:39:c1:fb:db:2d: ae:5e:4a:7c:36:c5:a8:93:f2:d8:04:7c:c3:05:84: 47:b1:ae:ed:e5:d9:60:19:17:6e:a1:8f:a6:9e:27: 5f:d7:51:3c:7b:7b:e8:ab:fd:d6:b4:57:fb:7f:0a: 19:b4:0a:97:19:eb:64:3e:e1:eb:c2:c1:98:8c:56: 65:f3:43:c0:95:df:df:78:c6:35:97:80:0a:22:8a: 29:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6D:A6:BA:39:CA:7A:B9:A0:1C:44:78:4D:D2:41:44:54:2D:3B:0A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.125.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:ac:de:25:d1:83:f0:75:34:c6:3d:d4:43:a4:e3:63:46:f8: 27:68:d2:a5:9e:6f:a7:91:7b:4c:2b:59:e5:e1:d8:ff:aa:e6: fd:55:da:eb:3c:7e:95:95:7d:b3:41:b0:40:82:62:07:e3:e1: 9a:8a:f0:34:2b:3e:57:a5:bc:19:6c:90:25:e0:0a:87:a2:60: 0d:a1:41:85:b1:47:bc:80:65:9c:9c:02:b3:0c:c6:0b:12:9c: a6:aa:4b:16:88:c7:2c:7e:3b:6a:b8:00:fd:f7:e2:09:48:b0: c5:5c:95:9a:1e:1a:76:cf:bd:36:68:21:78:8b:6c:a5:62:7c: db:eb:9f:32:0e:ac:b9:12:3b:ea:47:46:c4:ce:c9:c6:b2:f9: d7:cd:15:5f:9e:24:0d:c1:b4:d6:13:44:7d:24:35:75:7f:2e: d6:71:80:3b:b1:1f:19:6e:11:ba:81:15:9c:a5:22:ee:c7:50: e7:80:45:de:3a:3d:ef:5b:e8:d1:b7:92:f2:e3:b2:ec:ac:c5: af:ee:81:75:e9:dc:5b:ee:b5:a5:6e:54:78:58:60:4b:09:e6: f6:a3:49:dd:8d:25:04:26:e7:d3:27:91:ba:9f:16:bf:04:95: 45:6c:1e:31:ff:43:e1:55:3d:7b:45:14:81:a8:f0:93:ed:d5: f8:e0:cd:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbSMtwWTroyMUTAMIPI9bsYlfgaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNTU1MDFaFw0yNDEwMjcwNjAwMDFaMDMxMTAvBgNV BAMTKEIzNkRBNkJBMzlDQTdBQjlBMDFDNDQ3ODRERDI0MTQ0NTQyRDNCMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoalYJJlnrGQGJgXnc/nfmHQrA K8jUurzsgpyMGXbe5fxilL5L/gxLkc9iVjxierj9NT8K7pp+ahhGop/gERpnXHH5 uzHELuChFI0bWDw49wl6jptliX3qKgXBLdt9pNgBSMSDlDgRD2PugipSHbKicqIi +wxBLjkGMlzfd2KRZ649gu1UxIakW2FDEncr5VRDUjAU6uh3O2sOAabFCHUJOg6E nAbtYAKcgMhkVi45wfvbLa5eSnw2xaiT8tgEfMMFhEexru3l2WAZF26hj6aeJ1/X UTx7e+ir/da0V/t/Chm0CpcZ62Q+4evCwZiMVmXzQ8CV3994xjWXgAoiiimBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUs22mujnKermgHER4TdJBRFQtOwowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd259MA0GCSqG SIb3DQEBCwUAA4IBAQCfrN4l0YPwdTTGPdRDpONjRvgnaNKlnm+nkXtMK1nl4dj/ qub9VdrrPH6VlX2zQbBAgmIH4+GaivA0Kz5XpbwZbJAl4AqHomANoUGFsUe8gGWc nAKzDMYLEpymqksWiMcsfjtquAD99+IJSLDFXJWaHhp2z702aCF4i2ylYnzb658y Dqy5EjvqR0bEzsnGsvnXzRVfniQNwbTWE0R9JDV1fy7WcYA7sR8ZbhG6gRWcpSLu x1DngEXeOj3vW+jRt5Ly47LsrMWv7oF16dxb7rWlblR4WGBLCeb2o0ndjSUEJufT J5G6nxa/BJVFbB4x/0PhVT17RRSBqPCT7dX44M16 -----END CERTIFICATE-----Generated at Fri Jun 21 15:50:40 2024 by rpki-client on console-ams.rpki-client.org