$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa File: 3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa (raw, json) Hash identifier: UO4n/QPLdiq3w7SZwMWRmHdlhooI5dye/oQUfy543Dw= Subject key identifier: 91:65:26:A1:A1:48:89:72:F0:65:76:26:47:56:90:FC:B0:FD:EF:65 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 03BCA7EB27D5C44B6A6112809A06943F19CFCDCA Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa Signing time: Sat 16 Nov 2024 18:00:00 +0000 ROA not before: Sat 16 Nov 2024 17:55:00 +0000 ROA not after: Sat 15 Nov 2025 18:00:00 +0000 asID: 139962 IP address blocks: 110.76.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:bc:a7:eb:27:d5:c4:4b:6a:61:12:80:9a:06:94:3f:19:cf:cd:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Nov 16 17:55:00 2024 GMT Not After : Nov 15 18:00:00 2025 GMT Subject: CN=916526A1A1488972F0657626475690FCB0FDEF65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a8:f6:12:c1:86:55:a2:eb:a7:55:d4:fe:3a: a9:68:73:59:d2:d0:b6:6f:bc:92:c5:73:d2:36:59: f8:c6:26:45:29:7d:45:8c:38:37:82:66:dc:33:31: 49:5a:6f:b5:98:5e:d9:3d:83:1a:89:e9:d3:b5:a6: da:b3:41:9d:44:87:b7:0f:35:63:ee:9f:7c:c9:6b: 4f:a9:69:ad:83:76:59:75:a1:89:e1:64:8d:ff:0e: 04:27:cf:ce:f9:82:40:79:0c:71:c5:87:67:df:35: ca:82:d6:64:f9:1e:3e:eb:1c:aa:5e:09:58:7c:ae: d3:f3:71:b2:b3:c5:de:62:65:31:0c:33:69:f3:fe: 35:07:43:c6:0b:bb:ca:58:39:7d:35:5f:9a:dc:37: bf:d6:e2:bb:94:d4:27:84:27:d8:97:b3:cf:64:bc: 5e:c4:0c:3d:a8:af:12:14:14:91:a1:a6:8c:22:3a: 14:34:84:ed:ef:7a:7a:67:fb:35:2c:f3:62:2c:3f: 54:a4:c0:ef:cb:43:a7:21:65:d2:ba:4e:5b:98:2a: af:fe:ff:92:5f:ce:f8:2b:0d:5a:d5:99:48:52:ff: 35:9d:a2:61:2d:80:ad:ab:41:9e:40:4c:b9:00:29: 50:97:ca:df:07:6c:fb:b9:90:54:b9:f9:99:d7:1b: 14:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:65:26:A1:A1:48:89:72:F0:65:76:26:47:56:90:FC:B0:FD:EF:65 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.151.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:af:cf:18:2d:85:11:8b:13:5d:ad:c1:08:12:d3:11:31:35: 11:4f:48:4e:88:84:8f:5d:1b:64:8b:7c:63:46:39:b5:7f:32: 3e:dd:f3:04:24:0a:50:64:8d:32:85:db:7a:d7:ed:b7:2e:4e: 53:76:85:f7:ec:8e:b4:fb:44:9b:a6:f7:e6:31:c7:f6:13:6a: 34:19:0a:c3:84:15:47:6f:51:22:dc:41:1d:65:33:e2:df:5b: 0a:b3:82:94:8c:1d:ff:07:ff:69:db:e1:98:bf:ac:ab:dd:39: 1e:a4:61:5c:80:ba:53:3d:df:90:fb:56:3a:27:76:62:70:bf: 01:ab:5d:97:b7:09:db:7f:10:e6:d7:07:08:31:64:b3:02:c2: 10:6c:e5:87:f4:64:f7:66:96:1c:40:bf:23:44:a0:86:c5:d7: 43:97:94:9a:e2:d4:5d:8c:2a:32:a4:ac:88:58:22:b9:33:d9: a6:f4:ff:b2:34:57:86:49:b4:bb:8f:16:90:3a:3f:31:6c:54: 00:55:81:1b:a6:b8:43:e9:6c:72:6a:df:16:1a:0b:c4:d3:0a: 88:af:b6:7d:59:ec:be:c6:60:36:ac:71:c7:9e:db:2c:26:07: c5:94:ce:ad:14:f0:59:50:82:67:96:4d:ba:2d:d4:74:28:0f: 6c:e5:4d:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA7yn6yfVxEtqYRKAmgaUPxnPzcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNDExMTYxNzU1MDBaFw0yNTExMTUxODAwMDBaMDMxMTAvBgNV BAMTKDkxNjUyNkExQTE0ODg5NzJGMDY1NzYyNjQ3NTY5MEZDQjBGREVGNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZqPYSwYZVouunVdT+Oqloc1nS 0LZvvJLFc9I2WfjGJkUpfUWMODeCZtwzMUlab7WYXtk9gxqJ6dO1ptqzQZ1Eh7cP NWPun3zJa0+paa2Ddll1oYnhZI3/DgQnz875gkB5DHHFh2ffNcqC1mT5Hj7rHKpe CVh8rtPzcbKzxd5iZTEMM2nz/jUHQ8YLu8pYOX01X5rcN7/W4ruU1CeEJ9iXs89k vF7EDD2orxIUFJGhpowiOhQ0hO3venpn+zUs82IsP1SkwO/LQ6chZdK6TluYKq/+ /5JfzvgrDVrVmUhS/zWdomEtgK2rQZ5ATLkAKVCXyt8HbPu5kFS5+ZnXGxThAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkWUmoaFIiXLwZXYmR1aQ/LD972UwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyXMA0GCSqG SIb3DQEBCwUAA4IBAQCOr88YLYURixNdrcEIEtMRMTURT0hOiISPXRtki3xjRjm1 fzI+3fMEJApQZI0yhdt61+23Lk5TdoX37I60+0SbpvfmMcf2E2o0GQrDhBVHb1Ei 3EEdZTPi31sKs4KUjB3/B/9p2+GYv6yr3TkepGFcgLpTPd+Q+1Y6J3ZicL8Bq12X twnbfxDm1wcIMWSzAsIQbOWH9GT3ZpYcQL8jRKCGxddDl5Sa4tRdjCoypKyIWCK5 M9mm9P+yNFeGSbS7jxaQOj8xbFQAVYEbprhD6Wxyat8WGgvE0wqIr7Z9Wey+xmA2 rHHHntssJgfFlM6tFPBZUIJnlk26LdR0KA9s5U2Z -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org