$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa File: 3131392e322e34302e302f32312d3231203d3e203338353234.roa (raw, json) Hash identifier: IzK8pICplZZLd0ICDq5q3zWwLzTNtr+fBDH+jh/tNHo= Subject key identifier: 83:6D:30:F4:18:4C:05:22:AE:E2:8B:10:7E:4E:6B:EA:96:9A:E7:48 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 54E9CD37ED7AD9A1E9BFD9ACC07DC3E7929517B2 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:43 +0000 ROA not before: Mon 01 Jul 2024 00:58:43 +0000 ROA not after: Mon 30 Jun 2025 01:03:43 +0000 asID: 38524 IP address blocks: 119.2.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e9:cd:37:ed:7a:d9:a1:e9:bf:d9:ac:c0:7d:c3:e7:92:95:17:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:43 2024 GMT Not After : Jun 30 01:03:43 2025 GMT Subject: CN=836D30F4184C0522AEE28B107E4E6BEA969AE748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:39:88:ff:a8:b1:19:2f:0b:c3:9e:c5:96:4b: 04:67:6f:ec:41:e6:7a:3a:c0:00:62:58:0b:2b:64: b0:d0:75:07:0d:bb:c6:81:fa:5c:96:dc:80:ac:21: a9:9d:81:94:5a:36:1d:22:e3:47:72:f4:a9:4a:d3: 16:08:6a:00:d9:68:32:39:3b:9c:70:f7:4d:f5:93: d4:ff:ff:c2:ad:85:79:4d:ec:1d:73:a3:47:e4:03: b9:7f:9f:86:06:10:41:43:14:d6:5a:a0:6a:ad:a0: 80:c8:7f:26:9a:a2:43:30:8c:30:32:41:e8:1b:87: 43:c0:cf:28:d5:ce:48:8a:5e:59:77:38:97:88:84: 9d:de:e2:73:df:a7:90:90:75:d1:33:e8:8f:37:f5: 38:1b:1c:b6:49:38:10:fe:09:aa:4c:ae:6b:cf:5b: fd:05:04:7b:cd:27:40:16:28:da:1a:7c:ce:e4:da: 66:a0:28:c6:52:9a:b3:c4:e4:2f:37:a3:35:5f:5d: 7a:02:9b:bf:2e:af:21:90:56:21:43:e1:b9:34:7f: 29:64:50:e5:6d:bb:57:73:f2:3d:4e:5f:55:a4:50: 12:cb:9d:d6:11:f2:66:2f:28:3f:71:45:e1:41:d5: e9:31:ff:27:0c:ef:1b:b1:d8:49:de:ec:42:e2:5b: 0f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6D:30:F4:18:4C:05:22:AE:E2:8B:10:7E:4E:6B:EA:96:9A:E7:48 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:7a:b3:41:33:a1:db:da:1a:c5:55:47:63:5e:c1:a1:54:8b: 6b:f0:56:1d:08:8e:c3:31:cb:bf:db:59:c4:94:38:49:c4:ce: 67:81:bb:e5:bb:75:73:59:8e:41:2a:ad:38:7f:6f:79:7d:e8: f1:43:0e:0f:a6:6d:e3:0a:18:da:cf:cc:34:7e:72:d3:55:4a: 53:2e:6f:24:cc:a7:1b:88:de:57:14:96:a4:7f:ee:da:46:8f: ee:33:2d:a7:20:15:0a:5f:b5:79:86:3a:44:23:6e:3a:4b:cc: c2:3b:7f:c7:cb:95:e2:9a:13:e3:d2:d1:31:57:83:6d:d9:eb: f1:64:a8:40:e8:f6:55:ab:f7:b8:86:2f:f2:64:5b:d0:42:d1: 43:09:9f:d8:7b:71:52:6a:20:e1:75:aa:76:0f:c1:e2:69:7d: d4:b1:51:76:fa:11:5a:76:86:55:56:dd:c6:92:a4:f3:2f:33: c6:38:e9:5a:56:65:cb:e3:cd:35:f5:1e:c9:9f:29:62:7b:a5: 32:f4:93:73:8d:4e:73:4a:42:a0:92:7c:29:4b:da:b2:65:1b: 9b:7e:20:1e:4f:24:c2:75:67:7b:eb:73:b8:44:d7:07:0c:4e: e5:3b:5f:95:a2:fe:6c:d4:d8:ce:ed:bb:ca:d0:67:a5:f4:78: 25:f9:2a:11 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUVOnNN+162aHpv9mswH3D55KVF7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDNaFw0yNTA2MzAwMTAzNDNaMDMxMTAvBgNV BAMTKDgzNkQzMEY0MTg0QzA1MjJBRUUyOEIxMDdFNEU2QkVBOTY5QUU3NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiOYj/qLEZLwvDnsWWSwRnb+xB 5no6wABiWAsrZLDQdQcNu8aB+lyW3ICsIamdgZRaNh0i40dy9KlK0xYIagDZaDI5 O5xw9031k9T//8KthXlN7B1zo0fkA7l/n4YGEEFDFNZaoGqtoIDIfyaaokMwjDAy Qegbh0PAzyjVzkiKXll3OJeIhJ3e4nPfp5CQddEz6I839TgbHLZJOBD+CapMrmvP W/0FBHvNJ0AWKNoafM7k2magKMZSmrPE5C83ozVfXXoCm78uryGQViFD4bk0fylk UOVtu1dz8j1OX1WkUBLLndYR8mYvKD9xReFB1ekx/ycM7xux2Ene7ELiWw+RAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUg20w9BhMBSKu4osQfk5r6paa50gwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzEyZDMy MzEyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN3AigwDQYJKoZIhvcNAQEL BQADggEBAAt6s0EzodvaGsVVR2NewaFUi2vwVh0IjsMxy7/bWcSUOEnEzmeBu+W7 dXNZjkEqrTh/b3l96PFDDg+mbeMKGNrPzDR+ctNVSlMubyTMpxuI3lcUlqR/7tpG j+4zLacgFQpftXmGOkQjbjpLzMI7f8fLleKaE+PS0TFXg23Z6/FkqEDo9lWr97iG L/JkW9BC0UMJn9h7cVJqIOF1qnYPweJpfdSxUXb6EVp2hlVW3caSpPMvM8Y46VpW ZcvjzTX1HsmfKWJ7pTL0k3ONTnNKQqCSfClL2rJlG5t+IB5PJMJ1Z3vrc7hE1wcM TuU7X5Wi/mzU2M7tu8rQZ6X0eCX5KhE= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org