$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: pFhHMkCWRezt7+9Utv0TXZNCnbb2o9z/eRFqhRUYbL8= Subject key identifier: 63:78:59:87:A8:89:3C:EC:F2:3F:5B:D5:CF:10:5D:4E:B6:5E:3F:66 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 58EA73CE8D0A1B7E7C190928FBA7D5B3B636C7DC Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 06:00:00 +0000 ROA not before: Sun 29 Sep 2024 05:55:00 +0000 ROA not after: Sun 28 Sep 2025 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ea:73:ce:8d:0a:1b:7e:7c:19:09:28:fb:a7:d5:b3:b6:36:c7:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 05:55:00 2024 GMT Not After : Sep 28 06:00:00 2025 GMT Subject: CN=63785987A8893CECF23F5BD5CF105D4EB65E3F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:34:c6:c3:7e:ed:b8:c1:28:06:e3:02:f7:ea: 63:af:bd:07:66:04:e5:f2:a1:03:24:86:f6:ad:d6: 73:03:d3:a5:70:27:3b:53:78:bb:13:b4:f1:3f:6f: e6:2f:b7:32:d1:0e:7f:15:80:45:7d:85:34:28:ec: 36:17:b3:5a:2b:69:19:82:fc:14:b3:49:ad:56:e1: c7:10:5b:a4:f1:0b:a8:b0:42:df:6b:3c:01:32:f9: 1a:58:c2:d7:60:2a:b2:04:d1:61:6b:75:df:b2:13: 8d:5d:82:80:98:93:7e:03:3c:7e:94:a9:7e:55:8d: 91:4b:04:2d:42:1b:09:a4:1d:96:a1:b8:b7:0c:34: 19:54:41:bd:0a:d4:b3:6e:3c:cb:c8:a1:20:35:72: a1:c1:8d:dc:28:89:65:64:76:fb:28:90:fb:7d:03: 06:2c:4d:43:e6:fc:ec:25:9a:90:e2:6d:5c:e3:cf: 4b:f3:57:98:29:8f:4a:07:13:9b:4b:ed:84:b5:b9: 42:65:36:1b:fb:21:d5:fc:9d:47:f6:05:dc:96:c8: ec:34:09:8c:5c:f5:5c:5f:c5:ca:c3:c8:80:91:ef: 59:c1:58:ed:3d:63:f9:c7:6a:19:c1:3c:a7:e1:4c: 14:19:e4:82:5a:89:6f:9e:66:3b:4a:f4:48:2e:27: 44:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:78:59:87:A8:89:3C:EC:F2:3F:5B:D5:CF:10:5D:4E:B6:5E:3F:66 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.126.0/24 Signature Algorithm: sha256WithRSAEncryption 52:5c:a8:c9:70:01:5c:b0:ea:ff:2b:81:53:f9:48:3f:5d:1a: 1c:c5:2b:d8:14:46:b3:4e:8e:8f:8e:82:9b:9f:55:7b:23:4a: 5c:10:33:a0:f1:68:5c:85:6c:e3:fc:35:6c:45:30:d1:03:00: a2:3e:b8:59:14:2b:5b:57:1a:35:d8:0c:8a:37:71:83:e2:d5: 3f:90:0f:1e:02:3c:8b:85:dc:6a:21:1f:0d:8c:fd:52:f5:bc: 9e:b3:a1:2b:25:4b:ab:57:c6:02:26:79:8d:fd:cb:89:fc:a6: d8:f6:88:2d:f0:9a:7c:fb:d3:eb:12:3b:f8:12:b9:8f:f1:99: 41:c6:88:6d:3b:eb:8b:7c:87:ef:96:09:09:c5:b4:64:e7:92: 29:1b:ea:b8:bb:38:a3:e5:a3:20:06:73:51:ac:2f:e1:9e:aa: 7f:01:45:76:21:ff:56:db:2a:ea:87:79:27:7f:68:75:74:58: 4a:2b:28:6c:0e:b4:c3:4a:7c:22:af:a0:ba:82:5b:27:34:fc: 39:76:fc:48:61:9a:2d:15:ad:4d:cb:eb:58:79:72:f6:3b:26: 14:ed:34:1a:19:fe:59:2d:f3:32:14:5c:98:a9:b9:24:2b:91: 46:36:04:ff:95:a2:a3:50:f7:35:0f:24:14:87:3d:ac:a1:5d: 05:cb:38:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWOpzzo0KG358GQko+6fVs7Y2x9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNTU1MDBaFw0yNTA5MjgwNjAwMDBaMDMxMTAvBgNV BAMTKDYzNzg1OTg3QTg4OTNDRUNGMjNGNUJENUNGMTA1RDRFQjY1RTNGNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJNMbDfu24wSgG4wL36mOvvQdm BOXyoQMkhvat1nMD06VwJztTeLsTtPE/b+YvtzLRDn8VgEV9hTQo7DYXs1oraRmC /BSzSa1W4ccQW6TxC6iwQt9rPAEy+RpYwtdgKrIE0WFrdd+yE41dgoCYk34DPH6U qX5VjZFLBC1CGwmkHZahuLcMNBlUQb0K1LNuPMvIoSA1cqHBjdwoiWVkdvsokPt9 AwYsTUPm/OwlmpDibVzjz0vzV5gpj0oHE5tL7YS1uUJlNhv7IdX8nUf2BdyWyOw0 CYxc9VxfxcrDyICR71nBWO09Y/nHahnBPKfhTBQZ5IJaiW+eZjtK9EguJ0S1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUY3hZh6iJPOzyP1vVzxBdTrZeP2YwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25+MA0GCSqG SIb3DQEBCwUAA4IBAQBSXKjJcAFcsOr/K4FT+Ug/XRocxSvYFEazTo6PjoKbn1V7 I0pcEDOg8WhchWzj/DVsRTDRAwCiPrhZFCtbVxo12AyKN3GD4tU/kA8eAjyLhdxq IR8NjP1S9byes6ErJUurV8YCJnmN/cuJ/KbY9ogt8Jp8+9PrEjv4ErmP8ZlBxoht O+uLfIfvlgkJxbRk55IpG+q4uzij5aMgBnNRrC/hnqp/AUV2If9W2yrqh3knf2h1 dFhKKyhsDrTDSnwir6C6glsnNPw5dvxIYZotFa1Ny+tYeXL2OyYU7TQaGf5ZLfMy FFyYqbkkK5FGNgT/laKjUPc1DyQUhz2soV0Fyziz -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org