$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38302e302f32302d3234203d3e203137363731.roa File: 3131342e3139392e38302e302f32302d3234203d3e203137363731.roa (raw, json) Hash identifier: XGZt+DhqQ5+bbK/GOHn9E7L1tJZRypV1QjMXKiPcr2Y= Subject key identifier: 0C:55:17:73:58:27:5E:00:A4:35:DD:0A:24:90:C6:9A:78:EB:C2:2F Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 6B1936F97E5AE4F3145CA91845338DDAB0FCB8B8 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38302e302f32302d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 11:00:02 +0000 ROA not before: Sat 15 Jun 2024 10:55:02 +0000 ROA not after: Sat 14 Jun 2025 11:00:02 +0000 asID: 17671 IP address blocks: 114.199.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:19:36:f9:7e:5a:e4:f3:14:5c:a9:18:45:33:8d:da:b0:fc:b8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 10:55:02 2024 GMT Not After : Jun 14 11:00:02 2025 GMT Subject: CN=0C55177358275E00A435DD0A2490C69A78EBC22F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:59:7a:92:5e:76:57:d2:6e:0a:66:50:fc:66: 83:b4:ea:dd:f5:66:0f:61:4b:57:e5:13:19:e5:a3: 93:82:87:22:ed:d8:ec:c9:7c:80:f7:6e:e8:f4:3a: b5:c6:f3:b8:b9:bc:19:f9:31:2b:16:95:99:30:1a: b2:bc:37:36:67:05:19:ea:83:00:c7:4d:5c:40:d6: 13:c1:f6:0e:aa:a4:06:4a:f5:f3:f9:55:29:ee:9d: a5:c7:65:6a:f0:64:9f:14:27:ce:dd:04:16:d4:a2: 7f:f6:59:18:b4:24:6d:bb:a1:40:95:39:11:11:81: 80:e8:0f:93:cd:76:6d:8c:68:51:48:99:73:aa:4d: da:09:0e:92:27:75:1c:da:d7:64:69:e3:fd:08:26: 30:63:78:4a:57:b7:15:b4:1c:ef:57:f3:83:dd:4a: f0:a7:27:17:3a:6a:b8:da:8a:9d:88:13:c5:0f:d2: 87:4a:69:74:0d:91:cd:5b:3f:b5:f7:75:fb:ed:95: 95:1d:97:79:49:62:f7:81:04:61:37:47:51:21:b4: ab:be:62:06:41:2f:51:05:1c:a6:b3:59:5e:45:63: e1:a2:36:c7:7b:c7:4c:7c:18:33:5e:10:bc:b3:77: ee:f7:d2:89:b7:fb:5d:ad:14:0e:1e:16:66:d7:9d: cb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:55:17:73:58:27:5E:00:A4:35:DD:0A:24:90:C6:9A:78:EB:C2:2F X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38302e302f32302d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.80.0/20 Signature Algorithm: sha256WithRSAEncryption 68:7c:c4:09:de:c5:39:b6:ad:d9:78:cd:f5:a0:30:91:ee:6b: a7:8e:5f:96:75:e2:db:3d:e5:37:69:71:29:01:2e:0b:77:00: db:3c:9f:2c:82:18:a4:97:16:6a:9e:df:3c:fd:ac:2e:d6:42: 6b:fb:00:76:6e:3d:7c:d1:1f:65:6d:1e:9e:4c:99:2e:7a:8e: ba:b8:07:28:ce:0b:b4:6a:7c:95:43:61:57:09:40:b1:9c:8d: e8:81:e9:10:50:57:7d:19:42:a7:d8:96:d1:9e:1e:67:d2:e8: 7f:45:71:6e:a6:b9:4b:bf:15:bf:65:49:cc:79:7f:c6:0e:03: 7d:1d:49:20:ec:d5:57:92:27:21:75:dd:02:35:c4:ac:15:25: e2:15:4a:b3:80:1d:dd:7f:ec:64:5a:84:dd:b4:4d:78:23:9e: 94:a3:cf:b6:17:3a:30:8c:71:c6:67:eb:d4:28:53:f8:38:01: 7b:26:f7:5b:75:c8:50:0b:03:99:c1:b2:76:47:1b:65:d8:22: 4b:6b:7a:2e:25:76:6b:b9:12:93:fa:0e:be:62:34:19:de:2f: dd:95:98:c2:34:3d:6f:93:c4:eb:7c:d0:f6:6d:a6:16:41:a4: 6d:9c:a8:27:75:42:5f:b4:e0:50:03:73:c5:ec:61:45:c3:18: 1e:12:28:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaxk2+X5a5PMUXKkYRTON2rD8uLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMDU1MDJaFw0yNTA2MTQxMTAwMDJaMDMxMTAvBgNV BAMTKDBDNTUxNzczNTgyNzVFMDBBNDM1REQwQTI0OTBDNjlBNzhFQkMyMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0WXqSXnZX0m4KZlD8ZoO06t31 Zg9hS1flExnlo5OChyLt2OzJfID3buj0OrXG87i5vBn5MSsWlZkwGrK8NzZnBRnq gwDHTVxA1hPB9g6qpAZK9fP5VSnunaXHZWrwZJ8UJ87dBBbUon/2WRi0JG27oUCV ORERgYDoD5PNdm2MaFFImXOqTdoJDpIndRza12Rp4/0IJjBjeEpXtxW0HO9X84Pd SvCnJxc6arjaip2IE8UP0odKaXQNkc1bP7X3dfvtlZUdl3lJYveBBGE3R1EhtKu+ YgZBL1EFHKazWV5FY+GiNsd7x0x8GDNeELyzd+730om3+12tFA4eFmbXncvNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDFUXc1gnXgCkNd0KJJDGmnjrwi8wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODMwMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHLHUDANBgkqhkiG 9w0BAQsFAAOCAQEAaHzECd7FObat2XjN9aAwke5rp45flnXi2z3lN2lxKQEuC3cA 2zyfLIIYpJcWap7fPP2sLtZCa/sAdm49fNEfZW0enkyZLnqOurgHKM4LtGp8lUNh VwlAsZyN6IHpEFBXfRlCp9iW0Z4eZ9Lof0Vxbqa5S78Vv2VJzHl/xg4DfR1JIOzV V5InIXXdAjXErBUl4hVKs4Ad3X/sZFqE3bRNeCOelKPPthc6MIxxxmfr1ChT+DgB eyb3W3XIUAsDmcGydkcbZdgiS2t6LiV2a7kSk/oOvmI0Gd4v3ZWYwjQ9b5PE63zQ 9m2mFkGkbZyoJ3VCX7TgUANzxexhRcMYHhIoqA== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org