$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37342e302f32342d3234203d3e203436303330.roa File: 3131362e3231322e37342e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: 20n03HuyGAQTXshs+DPoPR8amBFYZ3n7onA27ygvSuU= Subject key identifier: DA:C1:A5:2A:A1:62:4A:65:83:0A:48:93:51:B8:EC:E1:E3:FE:08:7E Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 54EB48DBBCC7320D1FA3E138B0A3135EF75BBA5C Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37342e302f32342d3234203d3e203436303330.roa Signing time: Tue 29 Oct 2024 14:00:01 +0000 ROA not before: Tue 29 Oct 2024 13:55:01 +0000 ROA not after: Tue 28 Oct 2025 14:00:01 +0000 asID: 46030 IP address blocks: 116.212.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:eb:48:db:bc:c7:32:0d:1f:a3:e1:38:b0:a3:13:5e:f7:5b:ba:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 29 13:55:01 2024 GMT Not After : Oct 28 14:00:01 2025 GMT Subject: CN=DAC1A52AA1624A65830A489351B8ECE1E3FE087E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:7e:ad:3d:51:7f:98:f0:e9:df:63:bb:ce: b3:6f:52:6b:6b:02:54:8e:37:9a:9a:c7:fa:c6:e1: e9:a6:77:91:99:75:04:20:42:d3:8f:b7:37:fc:10: 58:3f:48:95:68:03:3b:ba:33:34:d8:9e:b1:48:85: 8f:83:9f:44:21:38:82:75:87:40:fe:ed:ff:56:50: 82:59:14:c9:d4:2f:9d:37:ad:3c:c8:23:99:b5:00: 50:e5:f4:90:b9:2d:59:ed:93:fc:52:eb:46:e4:d9: e4:3f:e6:90:f6:22:13:96:dc:b3:1a:78:de:2b:b5: 1f:13:85:ee:05:e2:7c:16:2c:82:6f:46:99:2a:89: 61:30:21:d5:30:32:5b:74:2d:a5:99:1d:67:26:e7: 55:5a:0c:b1:be:12:b1:44:1b:b4:9d:68:a0:8a:23: 59:4e:99:73:e3:34:f9:7d:e4:cd:f8:d7:23:d0:d5: 9f:6e:9b:2a:4c:fb:c3:74:d9:07:08:f4:1f:36:e3: 8e:f0:d8:c6:58:94:0c:47:2a:a0:d8:23:bd:c9:4d: b1:89:df:18:16:58:b4:c5:14:c6:50:d4:ac:81:3f: 0c:fb:0a:d7:dc:1f:63:ef:c7:d7:99:05:a7:c6:50: 5c:54:7f:8a:09:2d:9a:c1:b0:97:42:b0:fc:9f:9d: 56:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C1:A5:2A:A1:62:4A:65:83:0A:48:93:51:B8:EC:E1:E3:FE:08:7E X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37342e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.212.74.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:f8:f8:a0:c2:37:9d:b3:40:07:2f:25:06:d0:4f:dc:8a:aa: 57:f4:6d:f9:c8:91:94:af:89:ae:9c:90:e5:c2:d7:34:4c:1a: d0:42:96:28:a9:2a:ee:6e:11:37:c8:f3:74:e5:c4:e4:98:0c: 2b:17:71:59:c3:73:ef:75:49:ec:1d:dc:95:11:1f:ce:3f:35: 65:87:67:d3:10:4a:79:29:84:8e:22:99:45:1b:a9:91:9b:a5: 91:f1:fb:12:5a:92:1b:fd:35:21:cd:17:11:d1:81:65:f3:5a: 77:3d:84:40:e1:f9:16:4e:c6:f4:3a:96:cf:4e:c5:13:75:09: ad:b1:4d:4b:94:e8:55:00:41:e0:5d:a6:72:7b:98:b7:b0:61: bb:25:73:4c:f6:41:ec:84:56:30:01:b6:a3:83:19:96:cf:3d: a3:a6:e1:02:a7:9f:2c:71:c1:34:f4:0e:b3:34:97:20:aa:7f: 28:7f:6d:31:72:d5:b2:7a:07:c5:ce:62:06:d1:8b:e8:d8:97: cf:74:00:40:c8:e4:6c:26:3f:35:59:3b:02:9e:b8:d3:7a:70: 3a:c5:61:b5:15:b5:22:de:d7:4b:e1:d5:e5:3e:38:05:84:fb: 07:0b:0b:7c:23:97:37:cd:0a:f5:39:7e:19:13:85:d7:4c:fd: f3:c3:ff:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVOtI27zHMg0fo+E4sKMTXvdbulwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMjkxMzU1MDFaFw0yNTEwMjgxNDAwMDFaMDMxMTAvBgNV BAMTKERBQzFBNTJBQTE2MjRBNjU4MzBBNDg5MzUxQjhFQ0UxRTNGRTA4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGYn6tPVF/mPDp32O7zrNvUmtr AlSON5qax/rG4emmd5GZdQQgQtOPtzf8EFg/SJVoAzu6MzTYnrFIhY+Dn0QhOIJ1 h0D+7f9WUIJZFMnUL503rTzII5m1AFDl9JC5LVntk/xS60bk2eQ/5pD2IhOW3LMa eN4rtR8The4F4nwWLIJvRpkqiWEwIdUwMlt0LaWZHWcm51VaDLG+ErFEG7SdaKCK I1lOmXPjNPl95M341yPQ1Z9umypM+8N02QcI9B82447w2MZYlAxHKqDYI73JTbGJ 3xgWWLTFFMZQ1KyBPwz7CtfcH2Pvx9eZBafGUFxUf4oJLZrBsJdCsPyfnVYJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2sGlKqFiSmWDCkiTUbjs4eP+CH4wHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzEzNjJlMzIzMTMyMmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHTUSjANBgkqhkiG 9w0BAQsFAAOCAQEALPj4oMI3nbNABy8lBtBP3IqqV/Rt+ciRlK+JrpyQ5cLXNEwa 0EKWKKkq7m4RN8jzdOXE5JgMKxdxWcNz73VJ7B3clREfzj81ZYdn0xBKeSmEjiKZ RRupkZulkfH7ElqSG/01Ic0XEdGBZfNadz2EQOH5Fk7G9DqWz07FE3UJrbFNS5To VQBB4F2mcnuYt7BhuyVzTPZB7IRWMAG2o4MZls89o6bhAqefLHHBNPQOszSXIKp/ KH9tMXLVsnoHxc5iBtGL6NiXz3QAQMjkbCY/NVk7Ap6403pwOsVhtRW1It7XS+HV 5T44BYT7BwsLfCOXN80K9Tl+GROF10z988P/NA== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org