$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa File: 3131392e322e34352e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: sc0rvfYeV/AVHx41rgbr/8SKfnLpvWmcbgSGeZ0tx/A= Subject key identifier: 76:EA:30:89:D0:6A:40:2B:A3:D5:47:DE:90:3B:13:3F:D4:48:DF:46 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 4CDBB4A56D0EAC1374AFB2FF10D1AB9DFC1BF745 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:43 +0000 ROA not before: Mon 01 Jul 2024 00:58:43 +0000 ROA not after: Mon 30 Jun 2025 01:03:43 +0000 asID: 38524 IP address blocks: 119.2.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:db:b4:a5:6d:0e:ac:13:74:af:b2:ff:10:d1:ab:9d:fc:1b:f7:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:43 2024 GMT Not After : Jun 30 01:03:43 2025 GMT Subject: CN=76EA3089D06A402BA3D547DE903B133FD448DF46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f0:2b:1c:3c:26:fc:14:bb:50:69:13:5a:7c: 72:66:26:27:88:e0:7b:0f:48:9a:41:af:30:ec:83: f6:49:5e:e0:0f:ce:7e:ce:1f:41:d9:24:12:b9:fa: 56:39:8f:1a:22:62:60:58:50:b0:db:8c:f7:74:51: 2f:e7:f4:e8:13:7a:98:c2:8e:ae:ec:71:1d:00:c2: a5:ee:2e:e6:e7:2e:54:81:e5:5e:30:f9:d7:ba:ae: fa:30:29:e4:41:57:d2:8e:84:44:74:6f:5b:c2:9b: 21:a7:33:de:be:16:95:f5:1a:6c:a0:62:50:cf:ab: aa:08:0e:48:86:fa:5e:b4:10:77:e3:b1:da:de:d1: a7:7c:51:98:b1:43:7f:c2:57:1d:3c:15:10:04:7c: 4e:81:b2:cb:38:5f:8f:cf:af:76:e8:4c:df:cd:d2: 13:3b:e7:72:10:9b:ed:83:c2:17:df:b4:63:77:e1: 48:49:77:ee:bb:14:95:b7:03:c2:2e:3c:61:44:0c: 7b:8f:37:1b:25:f1:38:55:f7:5d:1b:ed:2b:a4:63: 0d:4c:62:be:29:45:8f:7e:75:60:22:91:7c:5a:5d: b2:3f:9b:1d:ed:93:a6:30:0c:79:b3:c5:35:ce:62: c7:d5:37:5b:94:11:c0:71:d8:ae:13:f4:c8:cc:54: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EA:30:89:D0:6A:40:2B:A3:D5:47:DE:90:3B:13:3F:D4:48:DF:46 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.45.0/24 Signature Algorithm: sha256WithRSAEncryption 16:bb:2f:13:1d:5a:1f:6e:10:f5:ec:15:c1:27:32:4e:f7:99: 58:6d:cf:09:33:2b:2f:3c:b0:2c:41:76:53:1a:36:78:ba:de: 4c:c1:40:de:96:8a:e5:a9:0a:2d:6d:34:bc:4e:bd:ff:73:12: 4f:70:b2:a6:e3:4c:1d:89:63:38:fd:03:51:a9:7e:e5:a9:a0: d9:7e:70:3c:06:10:0f:09:56:94:1e:7f:d2:69:3d:71:f4:f1: 88:dc:9e:8f:65:7a:79:78:06:f3:32:27:da:8c:69:17:5f:f5: ba:56:11:73:31:9b:eb:4b:9e:15:ad:04:f3:36:c1:ff:df:05: 2a:a7:f4:a2:26:75:7e:9b:fb:ac:74:c1:08:b0:3e:71:23:56: 19:9e:22:7c:62:5e:00:7f:ce:e4:e0:29:00:23:60:52:c8:1c: 2c:33:03:c4:ab:62:b0:41:7d:34:7f:ba:37:f3:43:63:7d:cc: 21:e0:4a:04:8f:21:19:74:2f:59:67:56:65:ed:bf:78:ee:4d: 24:3f:cd:ff:7e:16:5d:8a:7d:bc:04:12:dd:0a:e3:f4:42:2a: 9b:ee:55:e3:46:20:41:95:58:eb:82:56:a3:25:14:32:6d:27: 05:2f:2e:7f:6e:82:2d:0c:2f:6d:c5:84:8d:df:da:52:95:5e: 76:98:00:8b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUTNu0pW0OrBN0r7L/ENGrnfwb90UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDNaFw0yNTA2MzAwMTAzNDNaMDMxMTAvBgNV BAMTKDc2RUEzMDg5RDA2QTQwMkJBM0Q1NDdERTkwM0IxMzNGRDQ0OERGNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC88CscPCb8FLtQaRNafHJmJieI 4HsPSJpBrzDsg/ZJXuAPzn7OH0HZJBK5+lY5jxoiYmBYULDbjPd0US/n9OgTepjC jq7scR0AwqXuLubnLlSB5V4w+de6rvowKeRBV9KOhER0b1vCmyGnM96+FpX1Gmyg YlDPq6oIDkiG+l60EHfjsdre0ad8UZixQ3/CVx08FRAEfE6Bsss4X4/Pr3boTN/N 0hM753IQm+2DwhfftGN34UhJd+67FJW3A8IuPGFEDHuPNxsl8ThV910b7SukYw1M Yr4pRY9+dWAikXxaXbI/mx3tk6YwDHmzxTXOYsfVN1uUEcBx2K4T9MjMVLr5AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUduowidBqQCuj1UfekDsTP9RI30YwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3Ai0wDQYJKoZIhvcNAQEL BQADggEBABa7LxMdWh9uEPXsFcEnMk73mVhtzwkzKy88sCxBdlMaNni63kzBQN6W iuWpCi1tNLxOvf9zEk9wsqbjTB2JYzj9A1GpfuWpoNl+cDwGEA8JVpQef9JpPXH0 8Yjcno9lenl4BvMyJ9qMaRdf9bpWEXMxm+tLnhWtBPM2wf/fBSqn9KImdX6b+6x0 wQiwPnEjVhmeInxiXgB/zuTgKQAjYFLIHCwzA8SrYrBBfTR/ujfzQ2N9zCHgSgSP IRl0L1lnVmXtv3juTSQ/zf9+Fl2KfbwEEt0K4/RCKpvuVeNGIEGVWOuCVqMlFDJt JwUvLn9ugi0ML23FhI3f2lKVXnaYAIs= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org