$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3131362e3231332e34382e302f32302d3234203d3e2039373835.roa File: 3131362e3231332e34382e302f32302d3234203d3e2039373835.roa (raw, json) Hash identifier: Nk5ck1AseyuNcjCEwHjdfNpidrWP95VM7DoxprfK5Rc= Subject key identifier: 6D:B6:E1:13:37:5D:5F:1E:86:33:70:3A:A9:FF:81:75:01:33:50:33 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 1ED22CDE0E067ADCAA253C16D134EA989C46F4F7 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3131362e3231332e34382e302f32302d3234203d3e2039373835.roa Signing time: Mon 01 Jul 2024 01:05:53 +0000 ROA not before: Mon 01 Jul 2024 01:00:53 +0000 ROA not after: Mon 30 Jun 2025 01:05:53 +0000 asID: 9785 IP address blocks: 116.213.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d2:2c:de:0e:06:7a:dc:aa:25:3c:16:d1:34:ea:98:9c:46:f4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jul 1 01:00:53 2024 GMT Not After : Jun 30 01:05:53 2025 GMT Subject: CN=6DB6E113375D5F1E8633703AA9FF817501335033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0d:0c:60:b5:80:45:ff:b7:95:15:04:12:0b: aa:38:5d:fb:50:fb:4d:71:c5:0f:40:42:e5:42:bb: 67:a8:69:ba:12:b0:60:8c:a5:0f:95:0c:b9:98:59: 9c:4b:a6:3b:f9:57:99:32:d3:03:05:a5:dc:ae:94: e9:ed:aa:0b:ae:5c:8f:18:11:53:54:9f:f5:d7:bf: 88:48:da:0d:d5:fe:5f:9e:c2:0b:7a:20:68:8c:9c: 7d:f6:5b:bb:39:c1:bd:e2:94:53:bb:94:59:f5:cb: a0:d6:5c:af:6a:27:40:a7:7f:2b:e9:2a:1a:81:77: 2f:d9:7a:1f:c4:6c:13:28:3e:66:f7:be:c8:43:a4: 01:e5:be:ba:c5:55:82:a1:72:54:c7:8e:90:79:96: 08:9a:d3:3c:25:1b:3c:c1:ac:79:db:77:01:23:15: be:37:e1:70:de:a6:aa:53:f7:1a:2a:b5:38:83:24: e2:54:5a:14:78:cf:1f:50:34:c7:de:9d:1d:f8:49: 17:6c:7a:85:d1:45:aa:d6:91:b6:9d:b2:82:86:ec: 18:05:87:8e:de:4c:77:67:99:3e:be:93:5f:52:54: 14:31:82:d6:97:a3:bf:7c:97:c5:82:81:2a:4c:25: 4e:26:26:63:9b:22:73:e1:05:fa:0d:89:e0:11:12: 9a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B6:E1:13:37:5D:5F:1E:86:33:70:3A:A9:FF:81:75:01:33:50:33 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3131362e3231332e34382e302f32302d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.213.48.0/20 Signature Algorithm: sha256WithRSAEncryption 6a:f4:de:1f:44:47:c5:f8:8f:46:67:f2:d7:3f:1c:1a:ea:e6: a2:bd:f3:15:63:59:5a:65:8e:45:f7:39:c2:79:c6:a4:b5:a2: 1c:0c:72:b4:f3:84:54:88:3e:2e:0a:97:e2:98:aa:ed:3f:90: 82:50:40:14:3b:1f:80:43:bb:f8:b6:43:03:60:3f:42:07:44: 0d:f5:20:5d:50:01:7a:85:42:b6:13:04:11:ab:2f:5f:56:f9: c1:3b:c8:d8:3e:ce:92:e8:40:5e:84:82:f7:cd:fe:41:ff:da: 71:95:f7:3c:63:78:8c:00:f2:52:04:e4:0b:11:5a:02:6d:5d: ef:3c:45:53:87:de:4c:f8:9d:b5:61:d1:2f:05:0c:12:61:22: 63:7e:43:20:8c:e2:94:37:d0:65:0e:c9:e0:90:6a:0b:08:38: eb:3e:a9:6d:fd:12:54:71:64:f0:a9:d8:d0:a2:fa:bc:e2:99: 5d:4a:d6:d9:f1:81:55:48:ad:89:66:a1:61:51:85:a7:b3:55: 93:cf:fd:35:d3:31:5e:a7:d2:d9:a0:e4:ba:35:5a:65:5f:29: 22:b9:4f:d9:cd:91:18:73:e1:0c:95:66:13:ea:ae:a3:97:fd: 26:46:c1:02:ad:90:0c:19:c6:df:bd:7f:6e:a7:d7:70:ca:bb: d2:2d:9f:b2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHtIs3g4GetyqJTwW0TTqmJxG9PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNDA3MDEwMTAwNTNaFw0yNTA2MzAwMTA1NTNaMDMxMTAvBgNV BAMTKDZEQjZFMTEzMzc1RDVGMUU4NjMzNzAzQUE5RkY4MTc1MDEzMzUwMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtDQxgtYBF/7eVFQQSC6o4XftQ +01xxQ9AQuVCu2eoaboSsGCMpQ+VDLmYWZxLpjv5V5ky0wMFpdyulOntqguuXI8Y EVNUn/XXv4hI2g3V/l+ewgt6IGiMnH32W7s5wb3ilFO7lFn1y6DWXK9qJ0Cnfyvp KhqBdy/Zeh/EbBMoPmb3vshDpAHlvrrFVYKhclTHjpB5lgia0zwlGzzBrHnbdwEj Fb434XDepqpT9xoqtTiDJOJUWhR4zx9QNMfenR34SRdseoXRRarWkbadsoKG7BgF h47eTHdnmT6+k19SVBQxgtaXo798l8WCgSpMJU4mJmObInPhBfoNieAREpqBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbbbhEzddXx6GM3A6qf+BdQEzUDMwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h MTgzLTM0YjM0NTdiZWEwMy8wLzMxMzEzNjJlMzIzMTMzMmUzNDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR01TAwDQYJKoZIhvcN AQELBQADggEBAGr03h9ER8X4j0Zn8tc/HBrq5qK98xVjWVpljkX3OcJ5xqS1ohwM crTzhFSIPi4Kl+KYqu0/kIJQQBQ7H4BDu/i2QwNgP0IHRA31IF1QAXqFQrYTBBGr L19W+cE7yNg+zpLoQF6EgvfN/kH/2nGV9zxjeIwA8lIE5AsRWgJtXe88RVOH3kz4 nbVh0S8FDBJhImN+QyCM4pQ30GUOyeCQagsIOOs+qW39ElRxZPCp2NCi+rzimV1K 1tnxgVVIrYlmoWFRhaezVZPP/TXTMV6n0tmg5Lo1WmVfKSK5T9nNkRhz4QyVZhPq rqOX/SZGwQKtkAwZxt+9f26n13DKu9Itn7I= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org