$ rpki-client -vvf repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3134302e302f32322d3234203d3e203633353032.roa File: 3131382e39312e3134302e302f32322d3234203d3e203633353032.roa (raw, json) Hash identifier: eICFPX1ffRHHlODjPDwkCsraQZYn70z4zLEPXC3PC0M= Subject key identifier: 62:B8:B0:CF:38:80:2C:84:7E:BC:F4:0B:33:7B:88:D7:82:EC:D4:36 Certificate issuer: /CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Certificate serial: 7556A3263707EB439CD7344D0DB0E2E8DB31380D Authority key identifier: 1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3134302e302f32322d3234203d3e203633353032.roa Signing time: Sat 10 Aug 2024 09:00:00 +0000 ROA not before: Sat 10 Aug 2024 08:55:00 +0000 ROA not after: Sat 09 Aug 2025 09:00:00 +0000 asID: 63502 IP address blocks: 118.91.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:56:a3:26:37:07:eb:43:9c:d7:34:4d:0d:b0:e2:e8:db:31:38:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Validity Not Before: Aug 10 08:55:00 2024 GMT Not After : Aug 9 09:00:00 2025 GMT Subject: CN=62B8B0CF38802C847EBCF40B337B88D782ECD436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:bf:30:44:4b:00:7d:76:e5:da:75:2f:51: 0f:2d:e2:d5:f0:4b:66:5b:ab:e2:29:16:36:7b:e9: 6f:a8:c2:6d:f3:27:bb:88:d1:5b:44:f3:68:ab:0f: 25:5e:39:69:0a:87:fe:c5:07:ad:de:2a:27:3f:38: 7e:ee:2d:19:34:38:43:5e:6f:f1:33:b7:fd:6a:99: 40:fe:76:7c:56:8a:03:2a:71:be:9a:6c:3f:e9:24: 08:2c:ef:de:04:c5:36:ab:3a:c7:8b:39:b7:46:f1: 20:79:e4:e9:fc:10:87:08:7b:51:85:80:7c:44:94: 7c:6c:c5:2e:d6:c8:a5:0a:28:1e:48:e5:f1:36:28: a0:b1:37:cd:55:2d:08:bd:0d:c5:f1:73:47:61:63: 80:fe:49:da:72:b2:be:26:79:f0:b1:c4:6a:af:ff: f0:57:78:1b:0b:74:ec:85:d3:ea:d5:04:d3:01:91: 17:11:c7:c0:34:3a:6a:c5:b4:1f:9b:4d:e1:6f:13: 9c:01:13:eb:70:79:e2:57:65:0d:6d:39:0d:02:b6: 09:bc:fb:8b:80:25:bb:58:8f:59:75:01:a3:8c:f4: 0a:55:6e:2d:d2:c5:ae:88:17:b9:1d:e7:b9:77:8a: d8:27:35:48:a7:45:12:01:cf:a9:6f:23:11:f4:a9: 59:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B8:B0:CF:38:80:2C:84:7E:BC:F4:0B:33:7B:88:D7:82:EC:D4:36 X509v3 Authority Key Identifier: keyid:1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3134302e302f32322d3234203d3e203633353032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.91.140.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:71:7a:77:b9:41:c1:ec:98:80:c8:2c:01:34:fe:bb:ba:59: a1:5c:68:e6:a4:43:5e:65:bc:00:e6:4b:37:bc:b0:bc:56:56: 05:d5:86:49:43:02:f6:92:a1:3b:f8:06:f8:b7:38:0c:b1:ff: 72:61:b8:2d:53:6a:86:ae:f2:5b:16:57:af:c9:14:c4:b1:37: e8:4e:19:95:af:77:48:a8:27:08:eb:8e:eb:d9:5d:55:d4:9b: b4:43:b3:e4:8d:ec:0c:68:01:d6:6b:4f:0f:f9:d2:02:55:23: a2:8b:6b:9f:27:2e:d9:9f:b1:b8:b7:ee:f0:71:d9:be:f4:b0: 70:15:c4:9a:b1:0e:ca:96:94:dd:01:13:71:2b:28:f0:52:7d: 68:c1:1b:15:5f:a8:33:ac:76:07:c1:c4:62:50:ea:72:f7:fe: 0f:7c:ff:34:64:9b:b6:60:d8:fa:45:43:3f:89:0f:df:4d:02: 6a:3f:d7:68:76:4b:6d:0c:74:34:c4:13:0a:0b:dd:05:98:26: aa:c5:e6:13:ec:f5:12:06:f8:05:2c:98:f8:66:4c:8b:dd:10: a4:fd:9a:20:3c:80:1d:7f:e7:2f:3b:3f:10:2d:0d:91:af:dd: 23:b4:c9:e6:a7:73:7a:15:07:6f:27:91:f8:74:32:21:25:3e: 76:a7:2c:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdVajJjcH60Oc1zRNDbDi6NsxOA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUx QzdGRTk0NjAeFw0yNDA4MTAwODU1MDBaFw0yNTA4MDkwOTAwMDBaMDMxMTAvBgNV BAMTKDYyQjhCMENGMzg4MDJDODQ3RUJDRjQwQjMzN0I4OEQ3ODJFQ0Q0MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDVb8wREsAfXbl2nUvUQ8t4tXw S2Zbq+IpFjZ76W+owm3zJ7uI0VtE82irDyVeOWkKh/7FB63eKic/OH7uLRk0OENe b/Ezt/1qmUD+dnxWigMqcb6abD/pJAgs794ExTarOseLObdG8SB55On8EIcIe1GF gHxElHxsxS7WyKUKKB5I5fE2KKCxN81VLQi9DcXxc0dhY4D+Sdpysr4mefCxxGqv //BXeBsLdOyF0+rVBNMBkRcRx8A0OmrFtB+bTeFvE5wBE+tweeJXZQ1tOQ0Ctgm8 +4uAJbtYj1l1AaOM9ApVbi3Sxa6IF7kd57l3itgnNUinRRIBz6lvIxH0qVnTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYriwzziALIR+vPQLM3uI14Ls1DYwHwYDVR0j BBgwFoAUH81H+0vXKeIuT+785bYbThx/6UYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzkyYTRjZC1kYmFjLTQzYWMtODA2MC0yZThkNDJlYWU2NTUvMC8xRkNENDdGQjRC RDcyOUUyMkU0RkVFRkNFNUI2MUI0RTFDN0ZFOTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUxQzdG RTk0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3OTJhNGNkLWRiYWMtNDNhYy04 MDYwLTJlOGQ0MmVhZTY1NS8wLzMxMzEzODJlMzkzMTJlMzEzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM1MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnZbjDANBgkqhkiG 9w0BAQsFAAOCAQEAf3F6d7lBweyYgMgsATT+u7pZoVxo5qRDXmW8AOZLN7ywvFZW BdWGSUMC9pKhO/gG+Lc4DLH/cmG4LVNqhq7yWxZXr8kUxLE36E4Zla93SKgnCOuO 69ldVdSbtEOz5I3sDGgB1mtPD/nSAlUjootrnycu2Z+xuLfu8HHZvvSwcBXEmrEO ypaU3QETcSso8FJ9aMEbFV+oM6x2B8HEYlDqcvf+D3z/NGSbtmDY+kVDP4kP300C aj/XaHZLbQx0NMQTCgvdBZgmqsXmE+z1Egb4BSyY+GZMi90QpP2aIDyAHX/nLzs/ EC0Nka/dI7TJ5qdzehUHbyeR+HQyISU+dqcshw== -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org