$ rpki-client -vvf repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa File: 3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa (raw, json) Hash identifier: q0vXEWTv6bPANPzczgqOID0LPJ+XyEYAtwXFM33FLrY= Subject key identifier: 66:B1:B1:82:89:72:08:80:2F:10:98:ED:99:25:39:DD:4B:B4:B1:D5 Certificate issuer: /CN=4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1 Certificate serial: 7DFF4854AB8B4677FDB668FAEA030D8E89A61E2C Authority key identifier: 4D:57:27:02:D7:7E:3A:9A:4A:FA:80:33:A2:A3:DC:59:7B:2C:8D:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa Signing time: Tue 21 May 2024 02:00:01 +0000 ROA not before: Tue 21 May 2024 01:55:01 +0000 ROA not after: Tue 20 May 2025 02:00:01 +0000 asID: 9326 IP address blocks: 118.151.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.crl rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ff:48:54:ab:8b:46:77:fd:b6:68:fa:ea:03:0d:8e:89:a6:1e:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1 Validity Not Before: May 21 01:55:01 2024 GMT Not After : May 20 02:00:01 2025 GMT Subject: CN=66B1B182897208802F1098ED992539DD4BB4B1D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:78:fe:09:d4:a5:6b:8a:30:a2:5a:cc:de:a0: 2c:5d:e9:df:42:1d:11:24:81:22:9f:b9:51:c6:62: 31:bc:37:e1:45:0c:63:36:bf:37:9d:8a:f3:71:40: b0:8b:02:ee:59:c7:25:a8:31:7b:bd:5a:88:96:78: d8:0e:1f:35:bb:5d:24:80:9f:8a:44:ac:b3:19:aa: eb:fe:ff:e9:33:cd:5d:ff:b8:45:b3:4e:f3:97:6a: 1c:e7:22:0c:6d:98:2c:15:ff:6b:d1:ed:c1:ef:24: 5c:0b:f8:0f:de:78:48:ec:02:fb:2a:65:67:e8:77: b9:7b:9d:88:19:41:6d:c4:38:60:78:3b:30:69:a1: 19:eb:a6:c0:50:81:9f:b0:ac:96:49:a5:34:2d:fd: b5:16:ae:25:fb:a0:83:1f:83:88:e5:4e:84:48:93: e3:43:b5:c5:db:e9:cd:86:51:48:b3:63:eb:d9:fe: 99:60:63:29:c6:85:82:c6:84:6b:7a:a0:db:2d:85: 2c:ab:18:01:b8:c8:df:a1:6c:47:91:b5:9d:f0:f5: bc:61:02:87:e5:6b:e1:e5:99:fa:c4:f8:3a:72:16: 79:06:ee:29:f3:2b:fc:b7:d6:51:d6:9e:31:7c:bf: fc:32:aa:50:81:43:df:e2:3a:66:a1:f7:12:d0:80: c0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B1:B1:82:89:72:08:80:2F:10:98:ED:99:25:39:DD:4B:B4:B1:D5 X509v3 Authority Key Identifier: keyid:4D:57:27:02:D7:7E:3A:9A:4A:FA:80:33:A2:A3:DC:59:7B:2C:8D:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.220.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:31:82:cb:ec:13:71:8f:67:0f:b8:b4:de:5d:af:bf:1d:e1: 57:0f:b5:0d:01:13:50:70:60:ab:26:d6:ed:30:cb:62:e0:50: 57:4b:f7:22:27:d6:84:3a:14:87:f8:f5:18:a3:c0:43:2a:3b: 08:0c:73:e4:50:fd:45:7c:16:e6:34:e1:6a:c9:68:a3:3a:38: 92:3e:6f:ba:f1:b6:58:08:41:3f:a6:38:42:91:bd:b7:54:36: 0b:a3:f7:f4:cc:63:ad:18:06:84:d7:ba:3f:ce:47:08:72:c6: f1:3f:bc:fc:46:fc:84:91:00:7f:b1:65:a3:ec:44:6b:7d:13: e9:e3:87:24:13:7d:95:25:e7:51:f7:c9:f6:b5:92:60:c7:c4: 70:09:c0:6a:5b:42:65:c8:41:5e:e0:02:20:87:e1:9c:82:9c: 9e:ab:c5:4a:0c:77:37:b5:1c:36:3a:79:da:f3:2a:83:7a:e5: df:1b:d5:28:08:66:1e:a1:88:ec:83:3c:7f:80:10:1d:4f:d4: 61:8c:f2:67:ec:e6:8a:51:bd:0e:96:6b:78:39:aa:88:1b:26: 14:90:b6:c4:17:d1:7f:11:9a:a8:55:4c:ee:e9:15:81:2f:8a: ff:e3:c4:da:8f:f5:1d:da:c9:13:e8:df:05:f5:ce:88:86:76: d2:0c:19:ef -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUff9IVKuLRnf9tmj66gMNjommHiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ1NzI3MDJENzdFM0E5QTRBRkE4MDMzQTJBM0RDNTk3 QjJDOERBMTAeFw0yNDA1MjEwMTU1MDFaFw0yNTA1MjAwMjAwMDFaMDMxMTAvBgNV BAMTKDY2QjFCMTgyODk3MjA4ODAyRjEwOThFRDk5MjUzOURENEJCNEIxRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDReP4J1KVrijCiWszeoCxd6d9C HREkgSKfuVHGYjG8N+FFDGM2vzedivNxQLCLAu5ZxyWoMXu9WoiWeNgOHzW7XSSA n4pErLMZquv+/+kzzV3/uEWzTvOXahznIgxtmCwV/2vR7cHvJFwL+A/eeEjsAvsq ZWfod7l7nYgZQW3EOGB4OzBpoRnrpsBQgZ+wrJZJpTQt/bUWriX7oIMfg4jlToRI k+NDtcXb6c2GUUizY+vZ/plgYynGhYLGhGt6oNsthSyrGAG4yN+hbEeRtZ3w9bxh Aofla+HlmfrE+DpyFnkG7inzK/y31lHWnjF8v/wyqlCBQ9/iOmah9xLQgMDBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZrGxgolyCIAvEJjtmSU53Uu0sdUwHwYDVR0j BBgwFoAUTVcnAtd+OppK+oAzoqPcWXssjaEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ODE4NGZhYi0wZmE1LTQzYmItODExYy0yZWViMGE1ZmU4ZDcvMC80RDU3MjcwMkQ3 N0UzQTlBNEFGQTgwMzNBMkEzREM1OTdCMkM4REExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEQ1NzI3MDJENzdFM0E5QTRBRkE4MDMzQTJBM0RDNTk3QjJD OERBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY4MTg0ZmFiLTBmYTUtNDNiYi04 MTFjLTJlZWIwYTVmZThkNy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTMzMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnaX3DANBgkqhkiG 9w0BAQsFAAOCAQEATTGCy+wTcY9nD7i03l2vvx3hVw+1DQETUHBgqybW7TDLYuBQ V0v3IifWhDoUh/j1GKPAQyo7CAxz5FD9RXwW5jThasloozo4kj5vuvG2WAhBP6Y4 QpG9t1Q2C6P39MxjrRgGhNe6P85HCHLG8T+8/Eb8hJEAf7Flo+xEa30T6eOHJBN9 lSXnUffJ9rWSYMfEcAnAaltCZchBXuACIIfhnIKcnqvFSgx3N7UcNjp52vMqg3rl 3xvVKAhmHqGI7IM8f4AQHU/UYYzyZ+zmilG9DpZreDmqiBsmFJC2xBfRfxGaqFVM 7ukVgS+K/+PE2o/1HdrJE+jfBfXOiIZ20gwZ7w== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org