$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa File: AS59281.roa (raw, json) Hash identifier: 3OoTAmlO4zWNGL/bSRhl8jP1S0EccRMZ9zeQlEN9DAw= Subject key identifier: 3B:CA:98:BC:C1:B4:21:5C:1A:35:2D:4F:18:F0:92:F2:2A:A1:C0:DE Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Certificate serial: 632B5A0FDF43A3E2F72D7DFAA97C75E319A0E82A Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa Signing time: Fri 04 Oct 2024 15:47:10 +0000 ROA not before: Fri 04 Oct 2024 15:42:10 +0000 ROA not after: Fri 03 Oct 2025 15:47:10 +0000 asID: 59281 IP address blocks: 101.255.170.0/23 maxlen: 24 115.124.70.0/23 maxlen: 24 202.182.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:2b:5a:0f:df:43:a3:e2:f7:2d:7d:fa:a9:7c:75:e3:19:a0:e8:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Validity Not Before: Oct 4 15:42:10 2024 GMT Not After : Oct 3 15:47:10 2025 GMT Subject: CN=3BCA98BCC1B4215C1A352D4F18F092F22AA1C0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6a:6e:24:ad:f2:54:48:cb:15:29:27:b5:b8: b5:cd:37:b2:76:bd:44:5a:cf:ee:47:bb:95:c6:42: 10:c4:59:44:32:8f:a9:c9:f7:34:c3:8b:58:7a:b5: b4:eb:08:4b:d4:09:2e:e6:33:f2:f7:84:5f:fa:e9: 88:1a:28:26:3b:be:15:c4:f2:e9:58:0a:c7:fe:92: ca:da:23:e1:cc:54:4d:a7:86:76:3b:96:b6:88:3b: 8c:c8:99:6d:38:a8:52:2b:bc:39:d2:e3:b2:5a:d4: e0:56:5c:d5:e4:9b:9d:b2:09:c2:89:66:65:cc:08: d5:1b:5f:66:4c:42:27:85:37:63:7a:a1:53:c3:0c: 19:c2:27:e2:17:e0:da:4b:14:42:27:ab:44:d3:36: 29:7b:38:d4:a9:59:5e:e9:dd:58:bf:48:a9:e3:f5: 65:bd:78:a4:9e:9f:45:0e:35:75:6c:fa:51:46:16: 87:2c:0d:87:e3:5b:7a:f3:3e:05:fd:9e:d4:33:72: c6:6d:8e:e3:f5:e2:2a:f0:cf:d4:93:e1:02:92:00: 87:ef:97:be:17:f1:08:77:58:b1:c0:56:9e:f4:c8: a4:8b:cf:ba:b8:73:0c:4f:2b:52:01:fa:70:3f:b2: f6:75:d2:63:a6:bd:0e:97:7a:79:46:f2:d5:5b:99: 00:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:CA:98:BC:C1:B4:21:5C:1A:35:2D:4F:18:F0:92:F2:2A:A1:C0:DE X509v3 Authority Key Identifier: keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.255.170.0/23 115.124.70.0/23 202.182.49.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:23:e5:23:2f:17:ba:f6:c6:59:ca:b7:94:25:75:51:6f:8a: c1:5f:66:6b:10:4d:aa:43:bc:23:66:da:06:db:11:27:96:9e: db:13:2e:94:37:db:8d:18:c4:e6:e1:22:d8:e1:42:6b:3d:e9: 60:21:30:1e:ae:6c:c9:ca:87:29:b5:3d:0e:d2:b4:6e:b0:8d: 52:57:fe:4f:74:6e:fe:f6:10:d7:33:46:63:a2:90:ea:c1:5f: f9:2b:df:83:8e:12:49:ab:fd:c8:be:1f:85:4a:6e:e6:52:fc: 17:de:2b:dc:2f:9d:c4:df:21:2d:13:a7:23:71:6b:0e:32:f9: 73:f7:9e:8b:27:fe:5e:53:d4:e1:e9:d8:71:ec:30:bc:25:61: 2d:13:5b:be:27:a9:7e:29:7c:58:52:c2:bc:51:c2:65:fb:5d: fb:ed:c0:bf:a4:5b:5c:8f:bd:c0:65:27:b8:08:70:62:ff:93: 49:fe:2c:e2:91:60:eb:50:fb:8e:c0:d3:e2:75:40:bd:38:60: d1:b2:e5:38:82:ce:c4:19:10:b1:29:cf:0c:5a:94:93:4a:ed: 06:1a:d7:41:2b:9a:9c:ab:ae:f6:ac:fe:f9:65:04:16:f0:32: 39:5e:b5:5c:02:38:7b:20:4d:d0:db:fe:a6:e9:bb:13:1b:05: d1:d5:aa:b9 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUYytaD99Do+L3LX36qXx14xmg6CowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZF N0FCQzE3RjAeFw0yNDEwMDQxNTQyMTBaFw0yNTEwMDMxNTQ3MTBaMDMxMTAvBgNV BAMTKDNCQ0E5OEJDQzFCNDIxNUMxQTM1MkQ0RjE4RjA5MkYyMkFBMUMwREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkam4krfJUSMsVKSe1uLXNN7J2 vURaz+5Hu5XGQhDEWUQyj6nJ9zTDi1h6tbTrCEvUCS7mM/L3hF/66YgaKCY7vhXE 8ulYCsf+ksraI+HMVE2nhnY7lraIO4zImW04qFIrvDnS47Ja1OBWXNXkm52yCcKJ ZmXMCNUbX2ZMQieFN2N6oVPDDBnCJ+IX4NpLFEInq0TTNil7ONSpWV7p3Vi/SKnj 9WW9eKSen0UONXVs+lFGFocsDYfjW3rzPgX9ntQzcsZtjuP14irwz9ST4QKSAIfv l74X8Qh3WLHAVp70yKSLz7q4cwxPK1IB+nA/svZ10mOmvQ6XenlG8tVbmQBhAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUO8qYvMG0IVwaNS1PGPCS8iqhwN4wHwYDVR0j BBgwFoAUkWm5tlJs0UmE3eOkLiTdj+erwX8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0yMDc0YzU5ODA4OTgvMC85MTY5QjlCNjUy NkNEMTQ5ODREREUzQTQyRTI0REQ4RkU3QUJDMTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZFN0FC QzE3Ri5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby84OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0y MDc0YzU5ODA4OTgvMC9BUzU5MjgxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBZf+qAwQBc3xGAwQAyrYx MA0GCSqGSIb3DQEBCwUAA4IBAQBLI+UjLxe69sZZyreUJXVRb4rBX2ZrEE2qQ7wj ZtoG2xEnlp7bEy6UN9uNGMTm4SLY4UJrPelgITAermzJyocptT0O0rRusI1SV/5P dG7+9hDXM0ZjopDqwV/5K9+DjhJJq/3Ivh+FSm7mUvwX3ivcL53E3yEtE6cjcWsO Mvlz956LJ/5eU9Th6dhx7DC8JWEtE1u+J6l+KXxYUsK8UcJl+1377cC/pFtcj73A ZSe4CHBi/5NJ/izikWDrUPuOwNPidUC9OGDRsuU4gs7EGRCxKc8MWpSTSu0GGtdB K5qcq672rP75ZQQW8DI5XrVcAjh7IE3Q2/6m6bsTGwXR1aq5 -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org