$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: 5clSb3GJcqgnJkJywmlstAxLsfx6JuQ4ZG+flc8wN2E= Subject key identifier: AC:5B:C4:42:39:65:2D:FD:E0:24:4B:3A:BE:1E:00:61:47:3D:85:A4 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0EE7B1DD873073A0719B062F61DA16D1B44DD460 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:01 +0000 ROA not before: Sun 29 Sep 2024 06:55:01 +0000 ROA not after: Sun 28 Sep 2025 07:00:01 +0000 asID: 45147 IP address blocks: 119.110.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:e7:b1:dd:87:30:73:a0:71:9b:06:2f:61:da:16:d1:b4:4d:d4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:01 2024 GMT Not After : Sep 28 07:00:01 2025 GMT Subject: CN=AC5BC44239652DFDE0244B3ABE1E0061473D85A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2e:8f:6f:ee:73:d1:ea:97:93:75:0a:67:82: b9:10:94:cd:f2:1c:ad:a6:d4:65:30:77:90:81:14: 35:4d:e4:17:8d:00:15:a6:24:68:24:54:ba:ad:86: 9f:9d:87:de:b2:d6:df:06:ee:8a:c6:fe:88:87:08: ca:60:17:f7:83:b6:82:d5:a6:66:0e:52:06:10:d1: 1c:87:96:fe:d7:4d:0d:e2:7f:e0:68:65:bc:05:0e: dc:d0:55:2b:5d:4f:a2:5a:07:65:7d:10:13:3a:d8: da:05:67:fd:d0:c5:e6:cf:d3:07:7f:de:68:8c:81: 83:91:8a:1c:de:41:ff:f8:75:f2:e2:ea:64:86:56: 8b:47:25:ed:73:2b:97:d4:2c:b8:79:f2:c6:36:52: 6c:54:00:e9:dc:eb:b0:23:43:e4:b0:95:85:9a:c8: 83:e0:e2:fb:da:e6:1e:e0:98:c6:1a:29:04:44:17: 45:4d:34:0a:5b:f2:19:b0:4d:5c:3c:ed:c0:a9:da: a9:45:8b:5c:ef:f2:8b:4a:7c:ac:89:4c:97:a4:f0: 14:03:1e:c0:8d:58:11:cb:b0:ef:2e:0c:78:3d:9c: 80:aa:5a:0d:50:21:47:87:bd:40:5d:c6:1d:43:e0: 9c:ae:d1:15:db:e7:ce:99:ee:10:19:dc:8a:97:aa: 55:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5B:C4:42:39:65:2D:FD:E0:24:4B:3A:BE:1E:00:61:47:3D:85:A4 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.125.0/24 Signature Algorithm: sha256WithRSAEncryption 48:d7:e5:28:ff:89:09:e4:75:2a:68:d8:ad:4f:93:09:e3:0b: 2f:b4:20:a5:51:98:29:88:53:b4:9e:50:75:a8:96:23:eb:a5: fc:f2:90:dc:b8:0c:11:53:e7:82:00:02:f0:30:9f:15:ec:1a: a4:8e:04:50:aa:5a:02:17:4e:66:66:1b:4d:8c:ba:f1:c0:b6: eb:fb:f3:9f:02:0f:94:c2:dc:a8:44:0b:fd:18:d5:29:04:98: 57:85:29:d6:e6:43:b7:8e:50:49:dc:10:99:49:47:40:9b:26: 54:ca:7d:f1:f6:3c:51:62:b8:67:88:e1:40:af:5f:88:6c:ed: 21:13:c5:38:d0:aa:5a:de:39:b9:d2:85:75:6b:68:31:13:8b: 04:53:67:6f:03:10:c6:92:b1:5f:72:c7:ef:7f:28:f3:97:dd: 96:55:5a:da:a8:92:93:35:51:3b:31:82:b9:9d:55:48:e8:0c: 3f:e4:f9:70:a9:f1:6c:fd:e1:f5:8d:bd:db:74:5c:46:76:34: e7:01:83:47:00:e7:19:0b:7e:18:e3:79:3d:93:4b:3d:46:bd: 8c:ff:36:6e:26:6a:f8:e4:72:a3:e4:83:b1:b1:16:e9:bb:4d: 99:95:10:95:24:47:02:69:dd:d4:2d:43:76:5d:b1:00:3d:3e: 82:71:09:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDuex3Ycwc6BxmwYvYdoW0bRN1GAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDFaFw0yNTA5MjgwNzAwMDFaMDMxMTAvBgNV BAMTKEFDNUJDNDQyMzk2NTJERkRFMDI0NEIzQUJFMUUwMDYxNDczRDg1QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiLo9v7nPR6peTdQpngrkQlM3y HK2m1GUwd5CBFDVN5BeNABWmJGgkVLqthp+dh96y1t8G7orG/oiHCMpgF/eDtoLV pmYOUgYQ0RyHlv7XTQ3if+BoZbwFDtzQVStdT6JaB2V9EBM62NoFZ/3QxebP0wd/ 3miMgYORihzeQf/4dfLi6mSGVotHJe1zK5fULLh58sY2UmxUAOnc67AjQ+SwlYWa yIPg4vva5h7gmMYaKQREF0VNNApb8hmwTVw87cCp2qlFi1zv8otKfKyJTJek8BQD HsCNWBHLsO8uDHg9nICqWg1QIUeHvUBdxh1D4Jyu0RXb586Z7hAZ3IqXqlVNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrFvEQjllLf3gJEs6vh4AYUc9haQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd259MA0GCSqG SIb3DQEBCwUAA4IBAQBI1+Uo/4kJ5HUqaNitT5MJ4wsvtCClUZgpiFO0nlB1qJYj 66X88pDcuAwRU+eCAALwMJ8V7BqkjgRQqloCF05mZhtNjLrxwLbr+/OfAg+Uwtyo RAv9GNUpBJhXhSnW5kO3jlBJ3BCZSUdAmyZUyn3x9jxRYrhniOFAr1+IbO0hE8U4 0Kpa3jm50oV1a2gxE4sEU2dvAxDGkrFfcsfvfyjzl92WVVraqJKTNVE7MYK5nVVI 6Aw/5PlwqfFs/eH1jb3bdFxGdjTnAYNHAOcZC34Y43k9k0s9Rr2M/zZuJmr45HKj 5IOxsRbpu02ZlRCVJEcCad3ULUN2XbEAPT6CcQly -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org