$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34322e302f32342d3234203d3e203338353234.roa File: 3131392e322e34322e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: J6B9OuCEDrCm6jfhqzVrK01ZNFZ7G+dNrnjEKrPxi1k= Subject key identifier: AA:39:D5:92:21:63:FE:40:5E:C4:17:C0:46:3E:24:BB:E2:75:32:16 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 5A67B29012572FFE61FDA7CA74AC182D14EFC671 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34322e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:43 +0000 ROA not before: Mon 01 Jul 2024 00:58:43 +0000 ROA not after: Mon 30 Jun 2025 01:03:43 +0000 asID: 38524 IP address blocks: 119.2.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:67:b2:90:12:57:2f:fe:61:fd:a7:ca:74:ac:18:2d:14:ef:c6:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:43 2024 GMT Not After : Jun 30 01:03:43 2025 GMT Subject: CN=AA39D5922163FE405EC417C0463E24BBE2753216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c1:35:17:e9:fa:ec:6c:4d:55:d5:21:0f:9c: c6:94:f9:29:4b:74:49:75:67:14:8c:0a:95:d8:40: b8:78:c2:ed:fe:8d:1d:70:0b:7b:61:14:e8:40:fd: 06:ad:3e:92:81:dd:7c:67:d4:e0:7f:9e:2c:46:7a: 52:a1:33:ce:73:87:33:15:76:c4:ce:7b:46:2c:b2: 93:23:33:86:12:24:22:d8:fe:e3:31:e9:f7:ef:e8: 3a:ac:65:f9:05:63:47:92:08:ae:09:e8:4e:ec:d0: 97:49:f2:03:69:cf:29:7e:ed:f9:45:b0:1c:79:65: fa:9f:d1:df:12:33:c7:3a:84:cf:60:b8:ec:83:2e: cd:36:ab:36:e7:3d:7a:5a:40:b1:ef:64:21:e9:d8: 6a:59:e1:f9:c7:92:20:36:8d:28:13:5e:11:34:1f: 69:51:6b:27:81:32:f4:60:e7:9e:db:a5:59:10:d2: 44:09:8a:bc:9f:4f:3f:53:34:af:ef:4b:e0:0c:11: 16:c6:39:76:e1:cb:74:8f:59:13:29:c8:64:b3:9c: 2a:97:89:87:7f:7a:5c:ed:79:53:a7:0e:cf:dc:52: 25:70:be:84:04:11:83:f2:cf:1a:27:5a:dc:63:0f: 02:32:c8:15:4c:0a:26:c1:0a:e9:73:f1:8d:07:16: 2f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:39:D5:92:21:63:FE:40:5E:C4:17:C0:46:3E:24:BB:E2:75:32:16 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34322e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.42.0/24 Signature Algorithm: sha256WithRSAEncryption 60:13:81:a1:be:21:06:e6:de:ae:b6:e7:f1:30:3b:63:a3:07: 5f:c6:95:3b:ec:15:a9:d7:fe:e0:cb:25:e4:eb:c0:c7:4f:26: e1:4f:b3:5a:e0:57:90:c0:3d:32:c2:56:40:95:01:3d:06:36: 82:f3:f5:8b:f9:2a:f2:03:e1:d1:2c:9e:f9:cf:ff:c2:72:ff: 84:37:d8:ce:f8:7e:92:ee:0e:58:1a:d9:59:4d:0a:bb:61:53: b6:a6:30:2a:25:f2:d0:5d:31:f2:a6:f7:7f:0e:55:f1:69:6a: 65:6f:82:d6:3a:4b:7b:03:43:bb:93:2b:21:e5:29:41:3d:fc: 5d:b2:dc:b8:97:b2:fb:8c:48:ff:c2:f2:6a:ba:a9:f2:d0:30: d6:61:51:04:ad:d7:c6:f1:7b:ae:84:de:5e:be:c6:d4:ac:a3: 50:c5:19:2d:22:ed:44:1b:77:95:33:bc:50:50:0f:60:00:e6: a8:f6:8e:59:f8:09:e4:63:12:98:c3:31:74:59:29:15:c7:5b: 5d:0b:dd:a6:9b:47:74:31:e9:58:f5:71:24:f1:70:f4:46:e6: c9:85:1f:10:f9:e4:71:60:36:a5:d8:4c:04:d9:c4:61:22:b5: 3e:f6:7e:d7:38:26:a1:62:1c:f1:82:eb:4f:cb:f2:5d:77:02: 72:5e:2a:d6 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWmeykBJXL/5h/afKdKwYLRTvxnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDNaFw0yNTA2MzAwMTAzNDNaMDMxMTAvBgNV BAMTKEFBMzlENTkyMjE2M0ZFNDA1RUM0MTdDMDQ2M0UyNEJCRTI3NTMyMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSwTUX6frsbE1V1SEPnMaU+SlL dEl1ZxSMCpXYQLh4wu3+jR1wC3thFOhA/QatPpKB3Xxn1OB/nixGelKhM85zhzMV dsTOe0YsspMjM4YSJCLY/uMx6ffv6DqsZfkFY0eSCK4J6E7s0JdJ8gNpzyl+7flF sBx5Zfqf0d8SM8c6hM9guOyDLs02qzbnPXpaQLHvZCHp2GpZ4fnHkiA2jSgTXhE0 H2lRayeBMvRg557bpVkQ0kQJiryfTz9TNK/vS+AMERbGOXbhy3SPWRMpyGSznCqX iYd/elzteVOnDs/cUiVwvoQEEYPyzxonWtxjDwIyyBVMCibBCulz8Y0HFi9TAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUqjnVkiFj/kBexBfARj4ku+J1MhYwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiowDQYJKoZIhvcNAQEL BQADggEBAGATgaG+IQbm3q625/EwO2OjB1/GlTvsFanX/uDLJeTrwMdPJuFPs1rg V5DAPTLCVkCVAT0GNoLz9Yv5KvID4dEsnvnP/8Jy/4Q32M74fpLuDlga2VlNCrth U7amMCol8tBdMfKm938OVfFpamVvgtY6S3sDQ7uTKyHlKUE9/F2y3LiXsvuMSP/C 8mq6qfLQMNZhUQSt18bxe66E3l6+xtSso1DFGS0i7UQbd5UzvFBQD2AA5qj2jln4 CeRjEpjDMXRZKRXHW10L3aabR3Qx6Vj1cSTxcPRG5smFHxD55HFgNqXYTATZxGEi tT72ftc4JqFiHPGC60/L8l13AnJeKtY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org