$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa File: 3131392e322e34302e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: HeWk8LUNSfhvUFQFBPfUffD67xAq3a4ukWOsrqE6Z3E= Subject key identifier: 6C:A6:98:55:EF:35:16:4F:FE:B2:62:77:65:C0:4B:B3:A2:D3:CB:CD Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 53366761E92842BEEEC6C605AAEDB9A8320D2085 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:45 +0000 ROA not before: Mon 01 Jul 2024 00:58:45 +0000 ROA not after: Mon 30 Jun 2025 01:03:45 +0000 asID: 38524 IP address blocks: 119.2.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:36:67:61:e9:28:42:be:ee:c6:c6:05:aa:ed:b9:a8:32:0d:20:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:45 2024 GMT Not After : Jun 30 01:03:45 2025 GMT Subject: CN=6CA69855EF35164FFEB2627765C04BB3A2D3CBCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e5:60:d0:ad:5a:ce:dc:52:e6:96:70:b4:12: f6:6d:58:fd:f4:05:a2:18:9b:da:cf:e6:54:cf:a8: 76:a3:89:d1:8c:4b:2f:a9:95:e8:fd:45:b3:de:f6: 86:f2:30:41:ce:ad:ab:9f:7f:fb:64:7a:a6:83:fe: 75:30:20:b7:d1:65:be:03:e2:62:48:a3:34:c3:72: b9:d0:e0:ef:7a:1c:96:34:7a:bd:96:15:69:d0:ab: fd:70:86:6c:0e:4d:15:b5:67:bb:96:84:55:99:04: 80:fe:3a:43:5c:69:e0:9b:2a:16:21:76:bd:4c:63: 76:3f:23:b5:43:40:9e:3c:02:ca:01:1b:29:1c:e8: 46:be:4d:84:b2:a8:d6:45:e7:b2:44:4a:4e:51:bd: 3c:1e:d4:5b:68:1b:f5:28:8b:96:3f:24:1e:50:3b: 18:2c:63:08:07:76:53:15:0a:17:dd:1a:8f:b9:1b: 11:9c:92:f2:69:a5:0a:33:b4:22:3c:0c:c5:9d:bf: 37:a6:33:6d:89:38:7a:69:a2:44:d3:8c:49:58:cc: 70:44:b8:d9:0f:6f:ce:04:0a:3b:cd:93:50:a5:69: 44:11:b7:49:03:47:a5:bf:44:07:36:33:ca:8f:54: ed:84:11:a3:67:24:1b:4b:41:43:3c:bb:a8:89:18: 63:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A6:98:55:EF:35:16:4F:FE:B2:62:77:65:C0:4B:B3:A2:D3:CB:CD X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f6:83:04:4f:d7:81:76:c2:4b:d6:97:d7:22:d2:ea:f0:c7: f5:aa:bd:dd:ee:a3:7d:d6:60:44:83:3b:ca:9a:b0:49:e6:d3: 13:17:d8:1b:02:a6:a6:3b:a2:3c:5a:a6:0f:10:9f:1a:0b:ee: c3:79:26:b1:92:50:c3:29:2a:16:ef:63:af:7c:88:44:b8:4f: eb:a2:07:54:3d:00:06:a2:a2:74:4d:98:2d:82:a0:0a:70:34: 7f:14:a4:22:2b:bb:4b:df:fb:90:cd:fd:24:c4:b2:d9:d2:5b: d9:a7:01:2e:26:43:05:e8:e4:b8:d0:94:e6:c8:6a:26:5d:73: 02:39:12:90:3f:51:60:f2:14:0d:26:60:f0:56:f3:c7:a2:4a: 5c:e7:93:d1:5b:6b:4c:d8:dc:4d:1e:ab:77:80:3f:5d:62:3a: d0:59:ce:6b:4f:56:41:75:bf:c1:4c:fb:55:d6:5d:ca:b1:d9: 06:52:66:50:da:0e:2e:e2:74:d0:04:c8:3b:2d:83:1f:7e:d9: 84:a8:6b:76:2c:c3:6a:52:16:ad:0d:8e:34:7b:62:85:fb:f5: 3c:e8:f9:65:d9:6d:4c:ee:4b:2a:04:e8:b5:6b:ca:01:dc:47: 5e:59:ce:15:08:6e:bf:11:90:be:48:7c:19:e7:e9:06:18:c4: 9d:ab:74:e4 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUUzZnYekoQr7uxsYFqu25qDINIIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDVaFw0yNTA2MzAwMTAzNDVaMDMxMTAvBgNV BAMTKDZDQTY5ODU1RUYzNTE2NEZGRUIyNjI3NzY1QzA0QkIzQTJEM0NCQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP5WDQrVrO3FLmlnC0EvZtWP30 BaIYm9rP5lTPqHajidGMSy+plej9RbPe9obyMEHOrauff/tkeqaD/nUwILfRZb4D 4mJIozTDcrnQ4O96HJY0er2WFWnQq/1whmwOTRW1Z7uWhFWZBID+OkNcaeCbKhYh dr1MY3Y/I7VDQJ48AsoBGykc6Ea+TYSyqNZF57JESk5RvTwe1FtoG/Uoi5Y/JB5Q OxgsYwgHdlMVChfdGo+5GxGckvJppQoztCI8DMWdvzemM22JOHppokTTjElYzHBE uNkPb84ECjvNk1ClaUQRt0kDR6W/RAc2M8qPVO2EEaNnJBtLQUM8u6iJGGMjAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUbKaYVe81Fk/+smJ3ZcBLs6LTy80wHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AigwDQYJKoZIhvcNAQEL BQADggEBACX2gwRP14F2wkvWl9ci0urwx/Wqvd3uo33WYESDO8qasEnm0xMX2BsC pqY7ojxapg8QnxoL7sN5JrGSUMMpKhbvY698iES4T+uiB1Q9AAaionRNmC2CoApw NH8UpCIru0vf+5DN/STEstnSW9mnAS4mQwXo5LjQlObIaiZdcwI5EpA/UWDyFA0m YPBW88eiSlznk9Fba0zY3E0eq3eAP11iOtBZzmtPVkF1v8FM+1XWXcqx2QZSZlDa Di7idNAEyDstgx9+2YSoa3Ysw2pSFq0NjjR7YoX79Tzo+WXZbUzuSyoE6LVrygHc R15ZzhUIbr8RkL5IfBnn6QYYxJ2rdOQ= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org