$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: xOqTrcZFORmQ9xocS1BLacEEzLf5VoSOwvWp8hcO9Hg= Subject key identifier: D9:73:8C:46:29:55:D1:88:30:81:F8:B1:FD:09:B4:EE:0F:2F:EC:82 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 4E702C1D34A0BE0D5D588E37E60FE13A3A2B2C1F Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa Signing time: Sun 21 Apr 2024 05:00:02 +0000 ROA not before: Sun 21 Apr 2024 04:55:02 +0000 ROA not after: Sun 20 Apr 2025 05:00:02 +0000 asID: 9341 IP address blocks: 119.252.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:70:2c:1d:34:a0:be:0d:5d:58:8e:37:e6:0f:e1:3a:3a:2b:2c:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Apr 21 04:55:02 2024 GMT Not After : Apr 20 05:00:02 2025 GMT Subject: CN=D9738C462955D1883081F8B1FD09B4EE0F2FEC82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:45:86:b6:c0:d2:e8:57:c9:98:74:54:11:84: 48:4a:90:69:36:9d:ef:2b:86:0b:0f:04:32:9b:ec: 38:c2:16:6a:69:17:b0:1e:2b:b7:cc:c1:bd:c3:41: 8e:01:41:35:c9:7d:46:60:dc:d6:dd:18:8f:93:96: a3:b2:07:e8:98:82:67:3b:bf:47:25:32:fc:85:79: 2f:d1:e1:ee:34:62:98:44:79:bd:54:f3:3d:c9:1f: 0e:08:46:5f:1a:a4:fe:e4:60:3c:92:58:d2:bc:1f: a6:ff:62:90:f4:ef:79:29:34:d4:71:77:15:19:33: e1:67:f0:e2:f7:7e:52:49:a6:ad:58:ba:7d:bc:cd: 14:af:bd:6f:55:35:29:81:df:25:46:e8:fa:93:29: f8:9c:e8:fb:75:15:30:20:ef:f7:6a:6b:6a:ef:6a: a5:fa:03:09:2a:78:dd:98:ee:68:f8:a8:69:33:36: 32:9a:53:d7:dc:ee:9b:d2:ba:88:71:4c:e4:eb:b0: 73:5e:1f:62:b8:94:d7:40:64:5d:98:fe:d5:46:3b: cd:a6:12:24:6a:71:1c:87:9d:7a:d8:82:a9:17:d1: eb:bc:30:b0:d5:d7:61:0c:f1:d5:fc:60:21:a7:37: fb:c2:78:f6:99:5d:27:3d:8a:95:b5:71:a7:03:4e: e3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:73:8C:46:29:55:D1:88:30:81:F8:B1:FD:09:B4:EE:0F:2F:EC:82 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.168.0/24 Signature Algorithm: sha256WithRSAEncryption 06:92:74:ed:4a:55:35:d4:d3:dd:e9:ee:b1:2f:5a:48:b4:b4: eb:29:9c:08:6e:9a:4f:ec:55:a8:a5:b2:3e:eb:19:fa:1e:65: 1c:3c:a5:64:ce:7a:ea:59:30:d9:65:66:7c:7e:6b:7b:f3:69: 56:22:e5:87:55:a1:ab:75:bc:e8:2f:4e:3a:d7:5d:11:40:b9: 2d:fb:3d:1a:f3:0d:9b:32:c8:a2:dc:39:3e:ef:d1:e4:86:c7: c1:68:ef:5b:e5:da:3b:9f:8b:b8:7d:7b:7c:ba:f6:09:15:df: b2:25:b1:19:81:fe:89:fd:68:ed:49:f4:a4:98:a8:9d:bd:d1: 41:64:62:18:7c:60:6d:21:eb:4c:b1:cd:40:af:82:fe:47:6b: ce:c2:8e:75:62:66:48:be:cd:cd:03:4a:43:e9:4d:58:43:1d: 4b:3d:57:fe:06:1b:14:9c:9e:5b:70:14:4a:33:6f:26:2d:53: c5:79:44:1f:25:cf:d2:0d:6e:0d:c5:d1:48:cb:8a:da:78:2d: 26:48:c8:6c:88:ba:54:90:ca:01:df:22:81:ca:d5:d0:4f:ef: de:db:59:8d:e1:86:20:d4:51:b3:cd:ff:a9:4e:f1:ad:b7:a4: 75:e9:72:35:7e:cf:d3:12:af:eb:6e:2e:fb:72:e7:c9:0f:93: 0e:85:dd:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTnAsHTSgvg1dWI435g/hOjorLB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA0MjEwNDU1MDJaFw0yNTA0MjAwNTAwMDJaMDMxMTAvBgNV BAMTKEQ5NzM4QzQ2Mjk1NUQxODgzMDgxRjhCMUZEMDlCNEVFMEYyRkVDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqRYa2wNLoV8mYdFQRhEhKkGk2 ne8rhgsPBDKb7DjCFmppF7AeK7fMwb3DQY4BQTXJfUZg3NbdGI+TlqOyB+iYgmc7 v0clMvyFeS/R4e40YphEeb1U8z3JHw4IRl8apP7kYDySWNK8H6b/YpD073kpNNRx dxUZM+Fn8OL3flJJpq1Yun28zRSvvW9VNSmB3yVG6PqTKfic6Pt1FTAg7/dqa2rv aqX6AwkqeN2Y7mj4qGkzNjKaU9fc7pvSuohxTOTrsHNeH2K4lNdAZF2Y/tVGO82m EiRqcRyHnXrYgqkX0eu8MLDV12EM8dX8YCGnN/vCePaZXSc9ipW1cacDTuOHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2XOMRilV0Ygwgfix/Qm07g8v7IIwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8qDANBgkqhkiG 9w0BAQsFAAOCAQEABpJ07UpVNdTT3enusS9aSLS06ymcCG6aT+xVqKWyPusZ+h5l HDylZM566lkw2WVmfH5re/NpViLlh1Whq3W86C9OOtddEUC5Lfs9GvMNmzLIotw5 Pu/R5IbHwWjvW+XaO5+LuH17fLr2CRXfsiWxGYH+if1o7Un0pJionb3RQWRiGHxg bSHrTLHNQK+C/kdrzsKOdWJmSL7NzQNKQ+lNWEMdSz1X/gYbFJyeW3AUSjNvJi1T xXlEHyXP0g1uDcXRSMuK2ngtJkjIbIi6VJDKAd8igcrV0E/v3ttZjeGGINRRs83/ qU7xrbekdelyNX7P0xKv624u+3LnyQ+TDoXdjg== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org