$ rpki-client -vvf repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa File: 3131382e39312e3132382e302f32312d3234203d3e203234313935.roa (raw, json) Hash identifier: KvQlUIt+O8XkzXwyaibxzHplxyBpRPScmdyCJyB/bbo= Subject key identifier: F5:85:64:C1:73:90:FC:1D:08:9D:8C:FF:CF:2D:48:BC:B8:68:30:1E Certificate issuer: /CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Certificate serial: 6D1ED4178106B91310C8770290070FA6D3C01BA9 Authority key identifier: 1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa Signing time: Sat 10 Aug 2024 09:00:00 +0000 ROA not before: Sat 10 Aug 2024 08:55:00 +0000 ROA not after: Sat 09 Aug 2025 09:00:00 +0000 asID: 24195 IP address blocks: 118.91.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1e:d4:17:81:06:b9:13:10:c8:77:02:90:07:0f:a6:d3:c0:1b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Validity Not Before: Aug 10 08:55:00 2024 GMT Not After : Aug 9 09:00:00 2025 GMT Subject: CN=F58564C17390FC1D089D8CFFCF2D48BCB868301E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:bb:a1:f5:94:1a:bf:8d:2c:75:93:a6:8b: 33:a9:ec:17:be:17:69:25:15:27:cd:78:c6:0e:7c: b6:66:e4:69:cf:1b:ff:ea:3c:2b:62:c5:91:90:82: f5:12:a6:b7:b6:2a:7f:64:39:e6:89:1c:42:8c:a5: a8:14:8c:b1:a6:7a:94:b8:d6:6d:c0:29:d0:fd:2a: b3:d9:09:31:07:8e:b4:e2:bf:a7:f9:11:0b:03:aa: e4:1a:09:74:ce:41:36:83:d0:db:f5:3a:23:b6:1d: 42:cd:c8:13:43:db:86:7a:8c:de:78:b8:bd:3c:28: b6:0a:c3:db:40:c1:c8:33:93:5e:83:4e:d1:37:7e: bc:2f:e5:a9:2a:0a:9c:d6:9c:d0:5f:04:cb:a4:e8: e4:11:b6:a5:23:88:e8:88:eb:b3:03:af:5d:0e:42: 8e:55:dc:74:5c:76:87:9f:74:ae:81:aa:37:4b:11: 63:b7:23:81:10:51:ea:82:65:2a:0d:4c:81:87:cf: b7:d6:73:db:34:40:25:96:5c:29:ef:90:6c:5b:ac: 2f:18:82:e2:4c:22:25:3e:cc:4e:a0:cf:ae:ea:fb: 4c:24:aa:25:bc:1b:fc:37:16:15:63:50:e1:eb:3a: ef:a4:6e:21:a2:30:07:f6:5f:a2:40:2b:44:ba:f0: ea:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:85:64:C1:73:90:FC:1D:08:9D:8C:FF:CF:2D:48:BC:B8:68:30:1E X509v3 Authority Key Identifier: keyid:1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.91.128.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:68:a9:6a:5a:69:b5:f6:84:60:5e:89:99:ca:a5:6d:2e:97: 47:c6:a1:36:24:ca:a0:1d:47:97:69:81:2d:f3:db:aa:31:e9: a1:c3:60:6d:2b:c1:c4:6d:ef:19:a5:59:fc:60:3e:ad:26:8b: 0f:41:10:5a:34:09:7f:4a:4b:2e:47:e6:b3:66:e6:c6:f0:75: 85:94:f1:c5:ce:e4:5b:f3:8f:1f:9c:f6:0b:6f:65:12:89:e8: a0:6a:12:4c:f9:06:6c:5c:4c:5a:0b:e7:53:8c:26:66:28:aa: 91:f0:0c:68:47:41:00:a2:39:3a:02:0b:3f:67:0f:ab:34:f3: 95:e4:10:af:0e:02:a6:40:63:dd:86:93:57:15:85:16:eb:2e: a4:e1:73:ae:56:6f:c5:87:0a:77:f6:a9:e6:45:33:76:93:00: d8:5f:b6:6e:1b:60:83:9e:fe:6b:2f:4a:aa:90:2d:e8:86:f6: e1:43:5f:3e:1a:d5:bf:72:d7:b9:b4:32:a1:d2:06:72:eb:a0: 6b:5d:1d:ec:67:1d:18:40:ee:6f:4b:b8:61:30:1e:af:36:cd: 02:b6:1e:25:ef:b8:24:ff:86:dc:89:68:fd:f6:82:65:13:d2: c4:28:a2:1d:db:69:ab:0c:40:5a:71:79:65:f3:fe:6f:57:bf: f8:14:37:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbR7UF4EGuRMQyHcCkAcPptPAG6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUx QzdGRTk0NjAeFw0yNDA4MTAwODU1MDBaFw0yNTA4MDkwOTAwMDBaMDMxMTAvBgNV BAMTKEY1ODU2NEMxNzM5MEZDMUQwODlEOENGRkNGMkQ0OEJDQjg2ODMwMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC15buh9ZQav40sdZOmizOp7Be+ F2klFSfNeMYOfLZm5GnPG//qPCtixZGQgvUSpre2Kn9kOeaJHEKMpagUjLGmepS4 1m3AKdD9KrPZCTEHjrTiv6f5EQsDquQaCXTOQTaD0Nv1OiO2HULNyBND24Z6jN54 uL08KLYKw9tAwcgzk16DTtE3frwv5akqCpzWnNBfBMuk6OQRtqUjiOiI67MDr10O Qo5V3HRcdoefdK6BqjdLEWO3I4EQUeqCZSoNTIGHz7fWc9s0QCWWXCnvkGxbrC8Y guJMIiU+zE6gz67q+0wkqiW8G/w3FhVjUOHrOu+kbiGiMAf2X6JAK0S68OoDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9YVkwXOQ/B0InYz/zy1IvLhoMB4wHwYDVR0j BBgwFoAUH81H+0vXKeIuT+785bYbThx/6UYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzkyYTRjZC1kYmFjLTQzYWMtODA2MC0yZThkNDJlYWU2NTUvMC8xRkNENDdGQjRC RDcyOUUyMkU0RkVFRkNFNUI2MUI0RTFDN0ZFOTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUxQzdG RTk0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3OTJhNGNkLWRiYWMtNDNhYy04 MDYwLTJlOGQ0MmVhZTY1NS8wLzMxMzEzODJlMzkzMTJlMzEzMjM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDMxMzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3ZbgDANBgkqhkiG 9w0BAQsFAAOCAQEAG2ipalpptfaEYF6JmcqlbS6XR8ahNiTKoB1Hl2mBLfPbqjHp ocNgbSvBxG3vGaVZ/GA+rSaLD0EQWjQJf0pLLkfms2bmxvB1hZTxxc7kW/OPH5z2 C29lEonooGoSTPkGbFxMWgvnU4wmZiiqkfAMaEdBAKI5OgILP2cPqzTzleQQrw4C pkBj3YaTVxWFFusupOFzrlZvxYcKd/ap5kUzdpMA2F+2bhtgg57+ay9KqpAt6Ib2 4UNfPhrVv3LXubQyodIGcuuga10d7GcdGEDub0u4YTAerzbNArYeJe+4JP+G3Ilo /faCZRPSxCiiHdtpqwxAWnF5ZfP+b1e/+BQ3RA== -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org