$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa File: 3131392e322e34332e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: PNuYwnYaQeFFvThMBkYjTV06D3hBfbKpZLRbXR0vOus= Subject key identifier: 6A:D4:5D:42:E6:18:B9:CD:27:E4:89:C9:D9:00:2B:E5:53:18:4E:D2 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 05CC9FA4A01964AF24B03AAEB871FD177D7AAD27 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:43 +0000 ROA not before: Mon 01 Jul 2024 00:58:43 +0000 ROA not after: Mon 30 Jun 2025 01:03:43 +0000 asID: 38524 IP address blocks: 119.2.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cc:9f:a4:a0:19:64:af:24:b0:3a:ae:b8:71:fd:17:7d:7a:ad:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:43 2024 GMT Not After : Jun 30 01:03:43 2025 GMT Subject: CN=6AD45D42E618B9CD27E489C9D9002BE553184ED2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c6:21:ac:a2:88:8b:4d:00:f5:50:22:6f:e2: 93:00:fc:bd:09:ff:3b:67:c3:98:75:8c:c1:cb:01: 81:c3:be:4a:7c:fe:83:4d:a5:0b:ee:5e:25:cc:71: d5:ee:8d:05:17:a8:b3:c1:86:03:38:db:ad:35:59: 35:b6:d6:8f:7d:54:f6:fe:c2:c0:c8:3f:89:48:12: a4:d5:20:14:3b:b7:a1:d3:e7:37:a4:c2:bb:b6:75: ed:2e:00:24:15:dc:ca:c9:a7:20:49:29:c8:ca:17: 18:a7:25:a6:fa:cf:e2:5d:08:17:ba:1f:e6:b9:fe: 73:60:da:b5:65:a8:ef:54:9a:30:ce:90:ce:c9:49: 32:46:f6:c5:1c:ac:2a:ee:4b:5c:f9:af:39:61:9c: 5d:62:d0:ad:89:0e:b4:40:f7:a0:b1:ba:85:65:36: da:81:52:5a:5d:a3:ef:af:aa:c7:31:93:88:cf:23: 68:83:7b:5b:58:e1:27:6a:6d:7d:df:76:0b:2a:57: ef:3b:8b:c8:d4:8c:69:7d:20:85:ca:4c:6e:f7:ef: 42:cb:7f:a1:2b:6c:4a:e4:57:22:e3:29:fb:7c:1e: de:c3:e6:c0:aa:00:d0:db:a4:c9:21:f8:d3:79:2b: 0e:4d:91:7b:8a:15:8d:4f:a4:5a:49:d1:d6:e1:a2: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D4:5D:42:E6:18:B9:CD:27:E4:89:C9:D9:00:2B:E5:53:18:4E:D2 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.43.0/24 Signature Algorithm: sha256WithRSAEncryption 00:18:ca:ae:f8:c4:e5:89:27:7f:52:4d:6c:b2:d5:1d:4e:d3: ab:f4:58:c5:ee:55:65:f0:46:35:12:19:0b:eb:5b:00:c7:bb: 9e:5c:b3:9c:73:69:f0:63:23:ec:5d:71:20:9d:d7:13:3c:74: ce:ae:8f:bb:8c:9e:00:a2:e2:12:21:a8:0c:eb:9a:81:22:d8: fa:6c:9c:f6:66:46:c9:6c:68:89:0f:0d:a8:7c:f6:ff:f1:bf: b6:54:9b:e1:6d:17:b4:75:73:40:b3:ba:56:24:d1:ec:33:cf: 1c:ac:62:19:b2:6b:9d:18:fb:2d:09:d4:fc:ba:c6:44:94:d7: 62:c1:e0:64:66:25:d3:7b:22:99:78:63:13:6c:1a:33:2d:3b: 71:82:5c:d2:3e:f9:98:5b:cc:12:66:72:7b:fe:0a:e3:c8:28: 68:77:23:cb:73:b0:23:ce:2b:5c:6f:6a:7b:a9:8a:63:1e:f1: 23:74:df:a3:e3:83:00:22:51:94:9d:be:0b:45:ca:7d:ef:3c: b2:25:6a:9d:30:fc:48:4c:dc:d4:71:9e:6b:10:d6:11:b8:a3: 94:f3:fe:4b:63:cb:45:33:90:ab:ed:30:c6:21:7f:07:6e:41: 49:f0:69:b0:03:97:2e:79:85:1d:95:2a:c9:5c:97:cf:83:2f: c1:6c:5b:6e -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUBcyfpKAZZK8ksDquuHH9F316rScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDNaFw0yNTA2MzAwMTAzNDNaMDMxMTAvBgNV BAMTKDZBRDQ1RDQyRTYxOEI5Q0QyN0U0ODlDOUQ5MDAyQkU1NTMxODRFRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJxiGsooiLTQD1UCJv4pMA/L0J /ztnw5h1jMHLAYHDvkp8/oNNpQvuXiXMcdXujQUXqLPBhgM42601WTW21o99VPb+ wsDIP4lIEqTVIBQ7t6HT5zekwru2de0uACQV3MrJpyBJKcjKFxinJab6z+JdCBe6 H+a5/nNg2rVlqO9UmjDOkM7JSTJG9sUcrCruS1z5rzlhnF1i0K2JDrRA96CxuoVl NtqBUlpdo++vqscxk4jPI2iDe1tY4SdqbX3fdgsqV+87i8jUjGl9IIXKTG7370LL f6ErbErkVyLjKft8Ht7D5sCqANDbpMkh+NN5Kw5NkXuKFY1PpFpJ0dbhooXlAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUatRdQuYYuc0n5InJ2QAr5VMYTtIwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiswDQYJKoZIhvcNAQEL BQADggEBAAAYyq74xOWJJ39STWyy1R1O06v0WMXuVWXwRjUSGQvrWwDHu55cs5xz afBjI+xdcSCd1xM8dM6uj7uMngCi4hIhqAzrmoEi2PpsnPZmRslsaIkPDah89v/x v7ZUm+FtF7R1c0CzulYk0ewzzxysYhmya50Y+y0J1Py6xkSU12LB4GRmJdN7Ipl4 YxNsGjMtO3GCXNI++ZhbzBJmcnv+CuPIKGh3I8tzsCPOK1xvanupimMe8SN036Pj gwAiUZSdvgtFyn3vPLIlap0w/EhM3NRxnmsQ1hG4o5Tz/ktjy0UzkKvtMMYhfwdu QUnwabADly55hR2VKslcl8+DL8FsW24= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org