$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: 4h3B/WtnswGCF3llx/0aOGIXZHDFD9c2HtGz2Xa4MMc= Subject key identifier: F0:FB:0C:7D:13:CF:FE:C5:45:BF:48:38:86:9E:1C:22:1D:91:08:46 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 792FCDDB9C6526E7B0BC39FF2166C04A9A9B7ABF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa Signing time: Sun 29 Sep 2024 07:00:01 +0000 ROA not before: Sun 29 Sep 2024 06:55:01 +0000 ROA not after: Sun 28 Sep 2025 07:00:01 +0000 asID: 45147 IP address blocks: 119.110.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2f:cd:db:9c:65:26:e7:b0:bc:39:ff:21:66:c0:4a:9a:9b:7a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:01 2024 GMT Not After : Sep 28 07:00:01 2025 GMT Subject: CN=F0FB0C7D13CFFEC545BF4838869E1C221D910846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f2:cb:cc:1c:e4:9f:34:ba:2c:90:a0:e5:ad: 41:d2:ec:7c:67:d6:95:7e:e7:0e:1a:fd:e3:5e:3b: 02:8a:96:53:53:24:ca:8e:8e:e5:ad:84:ac:5e:80: 8b:72:4c:8b:47:39:5d:a4:30:d6:63:ac:3f:1c:fe: 6b:92:c2:9d:4b:68:62:af:52:5c:ba:46:a6:f9:27: ad:a9:0e:d5:74:bc:58:4d:75:1f:cf:8f:3c:39:90: e0:a3:c0:5f:37:bd:46:89:e0:3b:81:70:81:c3:55: ec:de:b5:28:fe:68:b1:89:e4:f2:fc:d9:73:d8:cd: 19:56:9c:5b:6d:7b:82:af:dd:87:19:15:f7:32:6c: cc:bd:7f:b6:c5:fe:a7:c3:89:b8:ef:00:78:5a:63: 1f:d2:b1:41:a5:40:2d:ef:49:da:b6:e3:4f:89:51: 22:8e:cf:e2:43:be:57:c5:38:80:ab:d4:7b:bf:e7: 7f:27:51:a8:01:f3:74:92:34:c2:22:e4:41:10:9f: 8c:cd:4a:60:39:ef:ab:6a:65:9e:c6:74:d6:a5:72: 96:9c:7f:43:06:a3:a8:49:d2:8e:09:aa:29:db:9b: 0c:34:a3:c7:25:27:97:b5:a8:80:7e:09:e5:ac:cb: cb:50:31:6b:43:db:bc:e0:e0:17:de:74:7c:5f:39: 90:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FB:0C:7D:13:CF:FE:C5:45:BF:48:38:86:9E:1C:22:1D:91:08:46 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.127.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:b2:99:36:b6:03:91:47:0f:75:c5:52:7f:41:df:a5:6b:3a: f3:2f:5d:55:88:d3:fb:36:be:f2:f3:23:a3:3f:aa:df:96:7b: 54:dc:22:77:48:02:6d:03:08:8b:53:b7:8f:ef:77:7f:b5:01: d5:71:a3:93:99:ea:cc:74:56:6a:15:5f:61:22:89:96:80:1a: 49:d2:e8:57:db:d6:cb:b6:cf:40:fa:06:c5:41:dd:c7:2a:ca: 3f:08:f6:3d:18:b4:75:16:e3:d5:63:0e:06:0f:0e:a7:2d:b4: db:67:bc:a1:4c:e3:9a:84:da:3b:d5:c5:b5:b2:26:4f:4c:12: f8:1a:d9:65:72:6f:77:6c:dc:a0:24:14:e5:62:b7:49:6a:13: 82:de:ac:7a:af:45:63:4d:7f:f5:9c:b2:19:ba:95:48:f6:f3: 84:82:a8:fb:d0:ba:99:78:66:d5:ef:37:e9:0c:cf:d5:8c:15: a3:41:15:c9:61:9a:ff:93:1a:f3:76:ae:fc:6b:0a:ca:94:ab: 9c:94:7a:92:04:aa:83:f8:62:ff:47:a8:44:40:cd:cc:02:e2: 37:d6:37:e1:15:8b:08:35:57:49:fe:e5:5d:9e:14:c9:29:37: 6d:52:45:cc:71:16:ae:73:74:4e:1d:f0:4e:f0:9b:d6:1a:9c: 21:b6:3d:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeS/N25xlJuewvDn/IWbASpqber8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDFaFw0yNTA5MjgwNzAwMDFaMDMxMTAvBgNV BAMTKEYwRkIwQzdEMTNDRkZFQzU0NUJGNDgzODg2OUUxQzIyMUQ5MTA4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/8svMHOSfNLoskKDlrUHS7Hxn 1pV+5w4a/eNeOwKKllNTJMqOjuWthKxegItyTItHOV2kMNZjrD8c/muSwp1LaGKv Uly6Rqb5J62pDtV0vFhNdR/Pjzw5kOCjwF83vUaJ4DuBcIHDVezetSj+aLGJ5PL8 2XPYzRlWnFtte4Kv3YcZFfcybMy9f7bF/qfDibjvAHhaYx/SsUGlQC3vSdq240+J USKOz+JDvlfFOICr1Hu/538nUagB83SSNMIi5EEQn4zNSmA576tqZZ7GdNalcpac f0MGo6hJ0o4Jqinbmww0o8clJ5e1qIB+CeWsy8tQMWtD27zg4BfedHxfOZAPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8PsMfRPP/sVFv0g4hp4cIh2RCEYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25/MA0GCSqG SIb3DQEBCwUAA4IBAQB8spk2tgORRw91xVJ/Qd+lazrzL11ViNP7Nr7y8yOjP6rf lntU3CJ3SAJtAwiLU7eP73d/tQHVcaOTmerMdFZqFV9hIomWgBpJ0uhX29bLts9A +gbFQd3HKso/CPY9GLR1FuPVYw4GDw6nLbTbZ7yhTOOahNo71cW1siZPTBL4Gtll cm93bNygJBTlYrdJahOC3qx6r0VjTX/1nLIZupVI9vOEgqj70LqZeGbV7zfpDM/V jBWjQRXJYZr/kxrzdq78awrKlKuclHqSBKqD+GL/R6hEQM3MAuI31jfhFYsINVdJ /uVdnhTJKTdtUkXMcRauc3ROHfBO8JvWGpwhtj3Q -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org