$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa File: 3131392e322e34312e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: xtoG4dWjnxtHYkL8sfgE47V+/TFnYA621sLEJAga/H4= Subject key identifier: C5:84:F6:88:02:55:9B:70:EE:E4:38:3E:80:64:DD:3A:94:EB:64:D0 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 56EDBA808479DAEBB4388B03FB68EDD817998277 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:44 +0000 ROA not before: Mon 01 Jul 2024 00:58:44 +0000 ROA not after: Mon 30 Jun 2025 01:03:44 +0000 asID: 38524 IP address blocks: 119.2.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ed:ba:80:84:79:da:eb:b4:38:8b:03:fb:68:ed:d8:17:99:82:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:44 2024 GMT Not After : Jun 30 01:03:44 2025 GMT Subject: CN=C584F68802559B70EEE4383E8064DD3A94EB64D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:cf:aa:9c:2b:94:50:81:49:ba:40:fc:bb: ed:82:92:16:e8:28:8c:e2:6f:5b:37:6b:a0:d5:85: 68:be:09:0c:db:a6:fe:fb:a0:f5:8d:1c:5b:42:2c: 2c:62:d3:e8:6b:8c:4e:1c:a5:43:88:5f:1f:30:b1: e3:12:95:85:7e:2c:04:dd:bf:08:44:73:d0:b5:be: 6a:20:28:2f:1b:33:67:09:77:6e:85:8f:ff:c7:83: e0:73:a0:62:61:06:14:f8:10:3c:d5:63:74:ad:e3: 29:01:3e:c0:34:6a:94:af:15:8a:24:41:db:eb:10: 7a:5a:b7:95:c5:4f:cf:16:dd:75:54:5b:fc:a1:96: 9e:27:ef:95:4c:58:a0:29:c9:47:16:9c:d3:3a:e7: cf:93:0d:b7:4b:c3:86:f6:c4:b5:73:7e:b5:ed:60: 4f:f0:8d:21:22:43:c7:05:89:1d:c0:0b:07:9c:31: 5e:36:8c:2e:51:c6:2c:ea:8c:59:8d:ed:c9:a1:64: 5b:3f:4a:03:ee:14:3c:0d:bf:83:20:9f:b2:72:1f: 21:e7:89:7e:4e:ec:cd:e5:13:29:d1:6c:da:fd:1b: c2:74:78:b5:eb:9e:f1:9f:43:b5:03:e8:2b:1d:98: 68:38:cf:de:b5:92:78:25:98:a1:32:de:12:95:23: 77:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:84:F6:88:02:55:9B:70:EE:E4:38:3E:80:64:DD:3A:94:EB:64:D0 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.41.0/24 Signature Algorithm: sha256WithRSAEncryption 07:3e:a2:d6:e2:40:b1:dc:77:80:e7:e8:2a:0b:8f:33:ff:7a: 50:6f:b1:ca:2d:0d:ec:8d:d9:cf:f0:18:6d:bf:a0:cf:54:ad: 7a:35:74:29:fb:d7:b9:82:7a:fa:4d:6c:9c:65:14:e2:66:31: 0c:ee:b9:0f:ef:6b:74:66:88:87:0e:d7:4f:46:21:6c:2e:0b: 7c:09:6e:f3:e4:0a:ab:23:a6:6e:67:dc:1d:c8:be:f7:9a:76: 71:b0:22:e3:75:6f:bd:c2:df:60:af:b9:62:c3:5e:d0:60:d2: 3d:73:77:0c:6c:88:ca:d3:63:df:28:e2:b7:45:ea:25:2c:a8: 75:08:13:57:8d:57:e8:67:66:bf:ff:74:ad:bd:85:29:09:14: 4d:54:ce:9e:78:ac:3a:fa:7b:3f:a4:4d:33:17:4a:e1:b7:5f: 07:da:c6:06:fd:6e:1e:2d:86:2b:6f:0d:a2:6a:bb:1b:2f:fb: aa:ac:a5:cf:a4:1f:ec:88:8d:18:76:c8:b3:55:2b:ce:d3:b3: 26:3d:7d:51:90:3c:6d:4c:3e:db:df:59:b3:e1:f7:de:06:f6: c6:38:ca:4f:e6:ac:48:5d:b5:55:e0:d1:36:4b:36:b6:1d:01: 2f:5b:85:13:30:54:29:d2:7e:fd:e6:85:da:3f:95:a7:57:d3: a2:8c:74:72 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUVu26gIR52uu0OIsD+2jt2BeZgncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDRaFw0yNTA2MzAwMTAzNDRaMDMxMTAvBgNV BAMTKEM1ODRGNjg4MDI1NTlCNzBFRUU0MzgzRTgwNjRERDNBOTRFQjY0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBns+qnCuUUIFJukD8u+2Ckhbo KIzib1s3a6DVhWi+CQzbpv77oPWNHFtCLCxi0+hrjE4cpUOIXx8wseMSlYV+LATd vwhEc9C1vmogKC8bM2cJd26Fj//Hg+BzoGJhBhT4EDzVY3St4ykBPsA0apSvFYok QdvrEHpat5XFT88W3XVUW/yhlp4n75VMWKApyUcWnNM658+TDbdLw4b2xLVzfrXt YE/wjSEiQ8cFiR3ACwecMV42jC5RxizqjFmN7cmhZFs/SgPuFDwNv4Mgn7JyHyHn iX5O7M3lEynRbNr9G8J0eLXrnvGfQ7UD6CsdmGg4z961knglmKEy3hKVI3edAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUxYT2iAJVm3Du5Dg+gGTdOpTrZNAwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AikwDQYJKoZIhvcNAQEL BQADggEBAAc+otbiQLHcd4Dn6CoLjzP/elBvscotDeyN2c/wGG2/oM9UrXo1dCn7 17mCevpNbJxlFOJmMQzuuQ/va3RmiIcO109GIWwuC3wJbvPkCqsjpm5n3B3Ivvea dnGwIuN1b73C32CvuWLDXtBg0j1zdwxsiMrTY98o4rdF6iUsqHUIE1eNV+hnZr// dK29hSkJFE1Uzp54rDr6ez+kTTMXSuG3Xwfaxgb9bh4thitvDaJquxsv+6qspc+k H+yIjRh2yLNVK87TsyY9fVGQPG1MPtvfWbPh994G9sY4yk/mrEhdtVXg0TZLNrYd AS9bhRMwVCnSfv3mhdo/ladX06KMdHI= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org