$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa File: 3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: cAQpPzx+jtEXuf6CU9YrFBOzIgG/efEvNIxnE26HVbk= Subject key identifier: A9:77:8B:F0:CD:0B:F2:0F:61:D5:8F:88:69:9F:F1:A8:76:C0:A4:79 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 795C2283582731FCEFB904048BC94B2085699FF4 Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa Signing time: Tue 11 Jun 2024 08:02:38 +0000 ROA not before: Tue 11 Jun 2024 07:57:38 +0000 ROA not after: Tue 10 Jun 2025 08:02:38 +0000 asID: 137316 IP address blocks: 116.90.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 00:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:5c:22:83:58:27:31:fc:ef:b9:04:04:8b:c9:4b:20:85:69:9f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Jun 11 07:57:38 2024 GMT Not After : Jun 10 08:02:38 2025 GMT Subject: CN=A9778BF0CD0BF20F61D58F88699FF1A876C0A479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:56:f8:1d:b2:e6:52:84:c6:c4:79:7b:4b:fe: 45:87:d6:81:9a:37:a5:7e:96:6b:91:60:06:08:99: fc:58:aa:06:ec:d5:52:d8:40:4f:ad:16:6c:69:ff: 30:e2:65:72:87:20:84:2e:3c:20:78:f0:23:06:5f: 13:b5:d1:d5:88:53:3b:0a:35:41:be:5c:a3:7f:d2: a2:cc:18:db:09:53:b4:24:a9:61:0b:72:69:94:9f: 6f:cd:8e:23:34:80:5e:93:1a:7f:6b:ef:a8:f7:49: 61:be:55:56:f2:21:a3:6f:61:af:64:46:a8:64:30: 53:f6:4e:0e:f5:6e:ee:77:55:e9:b4:e8:e0:9d:ac: 5b:07:5a:fe:16:f8:ed:d5:f1:1b:69:d8:83:f6:cc: e2:20:80:f0:f9:d8:eb:80:a2:79:eb:da:f9:95:61: d4:3a:95:9d:e1:63:76:df:8d:d8:79:0a:84:56:9b: f5:68:e5:62:a1:d6:2f:1e:85:41:69:a1:1d:63:cc: 9e:f5:ed:d9:ce:24:02:1c:ae:b4:97:6a:62:b2:90: b8:5d:fc:db:dc:da:68:6b:f7:80:64:5e:68:18:e2: 92:d2:38:16:91:db:df:2a:19:d9:61:dc:df:e7:7b: 78:8b:04:1d:9c:5c:95:f6:63:66:91:10:79:84:4c: 40:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:77:8B:F0:CD:0B:F2:0F:61:D5:8F:88:69:9F:F1:A8:76:C0:A4:79 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.90.176.0/24 Signature Algorithm: sha256WithRSAEncryption 30:27:eb:34:ce:22:4a:f9:85:95:1a:b7:dd:61:17:02:00:bb: c6:9f:52:8f:7a:5d:2f:93:cc:80:8c:7f:cd:4c:19:36:3e:a7: 22:e2:35:00:02:69:73:31:98:7f:21:23:55:16:b8:cd:98:aa: 17:9c:14:a3:33:2d:46:06:66:97:09:98:cf:b2:55:76:b4:26: 8e:76:3a:39:b6:c8:ef:da:7a:94:2b:1f:9f:ef:9b:50:45:97: ac:0a:90:d8:26:ea:0d:07:e5:e2:d4:dc:30:16:5e:d5:f1:98: b0:67:ad:4f:60:c6:4c:af:e2:c2:67:09:73:cc:b9:88:b0:93: a0:a9:60:45:82:5e:3e:6d:f9:b3:b8:7a:43:09:79:b4:55:c0: 3a:36:75:0d:aa:b8:ae:49:26:7d:7c:36:7e:43:c7:bd:d4:2c: 9c:14:f4:ec:49:b5:c7:69:0c:0d:40:e3:ad:2c:f3:b1:c3:83: 7e:30:5b:8e:48:1e:2a:bf:32:61:7e:5b:94:c4:eb:f3:4f:81: 70:70:75:7a:69:c8:42:16:aa:05:f7:8f:5b:d1:df:5e:42:e2: ad:09:14:21:3b:ce:ef:b5:82:67:38:4b:96:0d:57:9b:d8:cb: 81:30:e1:19:26:d5:37:71:46:7d:2f:83:e1:de:b2:17:59:61: 43:83:83:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeVwig1gnMfzvuQQEi8lLIIVpn/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNDA2MTEwNzU3MzhaFw0yNTA2MTAwODAyMzhaMDMxMTAvBgNV BAMTKEE5Nzc4QkYwQ0QwQkYyMEY2MUQ1OEY4ODY5OUZGMUE4NzZDMEE0NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8VvgdsuZShMbEeXtL/kWH1oGa N6V+lmuRYAYImfxYqgbs1VLYQE+tFmxp/zDiZXKHIIQuPCB48CMGXxO10dWIUzsK NUG+XKN/0qLMGNsJU7QkqWELcmmUn2/NjiM0gF6TGn9r76j3SWG+VVbyIaNvYa9k RqhkMFP2Tg71bu53Vem06OCdrFsHWv4W+O3V8Rtp2IP2zOIggPD52OuAonnr2vmV YdQ6lZ3hY3bfjdh5CoRWm/Vo5WKh1i8ehUFpoR1jzJ717dnOJAIcrrSXamKykLhd /Nvc2mhr94BkXmgY4pLSOBaR298qGdlh3N/ne3iLBB2cXJX2Y2aREHmETEARAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqXeL8M0L8g9h1Y+IaZ/xqHbApHkwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzEzNjJlMzkzMDJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdFqwMA0GCSqG SIb3DQEBCwUAA4IBAQAwJ+s0ziJK+YWVGrfdYRcCALvGn1KPel0vk8yAjH/NTBk2 Pqci4jUAAmlzMZh/ISNVFrjNmKoXnBSjMy1GBmaXCZjPslV2tCaOdjo5tsjv2nqU Kx+f75tQRZesCpDYJuoNB+Xi1NwwFl7V8ZiwZ61PYMZMr+LCZwlzzLmIsJOgqWBF gl4+bfmzuHpDCXm0VcA6NnUNqriuSSZ9fDZ+Q8e91CycFPTsSbXHaQwNQOOtLPOx w4N+MFuOSB4qvzJhfluUxOvzT4FwcHV6achCFqoF949b0d9eQuKtCRQhO87vtYJn OEuWDVeb2MuBMOEZJtU3cUZ9L4Ph3rIXWWFDg4O3 -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:31 2025 by rpki-client