$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37372e302f32342d3234203d3e203436303330.roa File: 3131362e3231322e37372e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: lfywBJOdb6STCk6FdcuLb1+jI7uTny9uVeOeSeE90ZI= Subject key identifier: 0C:DE:76:5F:6E:C6:3E:9D:35:BD:C0:D5:6B:BF:B1:07:5A:2E:61:12 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 6E7E67E77D4BCC36724296D8F31BF22200AFF27D Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37372e302f32342d3234203d3e203436303330.roa Signing time: Tue 29 Oct 2024 14:00:02 +0000 ROA not before: Tue 29 Oct 2024 13:55:02 +0000 ROA not after: Tue 28 Oct 2025 14:00:02 +0000 asID: 46030 IP address blocks: 116.212.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:7e:67:e7:7d:4b:cc:36:72:42:96:d8:f3:1b:f2:22:00:af:f2:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 29 13:55:02 2024 GMT Not After : Oct 28 14:00:02 2025 GMT Subject: CN=0CDE765F6EC63E9D35BDC0D56BBFB1075A2E6112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:02:b0:a9:20:23:99:46:98:75:bb:85:7e:20: f6:a9:dd:fe:ab:52:20:c8:bd:2d:0e:91:d3:16:ed: 08:cf:b7:f1:8c:4a:11:37:52:3a:b5:35:9e:c1:f1: 85:dc:86:ac:94:56:e5:fc:05:55:2e:10:90:b5:97: 49:33:79:ec:0e:68:8c:69:ad:31:f2:76:e6:da:98: fd:9a:99:f9:0f:a4:ed:ea:4d:13:08:28:1d:01:0b: e7:a2:41:40:33:a2:ff:b9:0f:7e:db:f4:a1:2a:df: 58:3e:18:cc:05:c1:f4:45:12:7b:41:cd:f0:38:2b: 9c:84:1e:86:c1:d5:bb:3f:05:8f:2d:aa:65:a0:17: cb:c2:e4:48:44:45:f3:05:f0:21:db:40:72:6f:ba: 04:1f:84:47:71:d1:bd:be:fa:52:9c:a5:d4:74:fe: 4d:60:3e:7e:d8:ba:65:02:18:5e:24:fa:1b:0b:75: 38:45:4b:9e:bc:70:c3:f1:93:83:2d:59:1e:35:f4: ef:73:e9:17:4b:57:74:f5:76:89:6e:8f:41:ed:49: 01:95:5b:12:e6:5e:d6:1f:6d:4d:04:3b:62:18:d1: 5b:30:fd:7c:d9:9b:97:e1:86:6b:b1:60:7b:46:30: a3:6b:7c:fa:e7:e8:f7:68:f7:f5:26:b7:8d:97:93: 9f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DE:76:5F:6E:C6:3E:9D:35:BD:C0:D5:6B:BF:B1:07:5A:2E:61:12 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37372e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.212.77.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:80:e7:97:f7:7c:20:9d:08:d6:1a:45:57:83:d4:27:9f:80: d3:d7:ac:b8:94:55:63:c9:00:75:57:8b:f3:98:d0:65:36:6e: b5:56:48:ad:5b:77:e2:8a:46:59:f2:e8:74:16:13:eb:41:e1: 3a:af:84:7d:e5:bf:47:ea:c8:e3:5b:4f:38:ca:77:13:35:78: cc:75:97:b7:73:27:5f:b2:37:72:a8:61:11:c5:4c:08:51:c2: 04:91:74:14:b0:35:8c:36:be:9f:14:b7:b1:37:8d:36:69:45: e6:9e:6e:83:17:5f:be:21:28:b1:05:72:af:1f:d4:0d:f5:df: b8:d5:d2:33:79:40:30:fd:77:fc:94:e4:0d:ff:7a:62:09:0b: f9:c4:97:7b:13:f4:43:ff:18:9c:c8:39:d8:e1:4f:4b:c7:b0: 2b:f6:e7:bc:db:f2:17:21:fb:76:e4:0d:36:20:7e:d5:a3:15: 4a:03:6a:f7:e4:bc:97:27:93:5b:18:51:1d:b9:41:41:52:8c: a5:5d:df:06:30:8c:ff:57:05:1d:66:2c:6c:55:25:37:52:55: 70:47:10:23:28:f0:14:f6:31:bd:aa:23:19:c5:1b:3a:53:89: 7b:54:39:fa:e8:f5:91:b7:ac:19:f4:b1:20:6f:ea:f6:17:c0: 66:f5:ce:cb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbn5n531LzDZyQpbY8xvyIgCv8n0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMjkxMzU1MDJaFw0yNTEwMjgxNDAwMDJaMDMxMTAvBgNV BAMTKDBDREU3NjVGNkVDNjNFOUQzNUJEQzBENTZCQkZCMTA3NUEyRTYxMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnArCpICOZRph1u4V+IPap3f6r UiDIvS0OkdMW7QjPt/GMShE3Ujq1NZ7B8YXchqyUVuX8BVUuEJC1l0kzeewOaIxp rTHydubamP2amfkPpO3qTRMIKB0BC+eiQUAzov+5D37b9KEq31g+GMwFwfRFEntB zfA4K5yEHobB1bs/BY8tqmWgF8vC5EhERfMF8CHbQHJvugQfhEdx0b2++lKcpdR0 /k1gPn7YumUCGF4k+hsLdThFS568cMPxk4MtWR419O9z6RdLV3T1doluj0HtSQGV WxLmXtYfbU0EO2IY0Vsw/XzZm5fhhmuxYHtGMKNrfPrn6Pdo9/Umt42Xk58jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDN52X27GPp01vcDVa7+xB1ouYRIwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzEzNjJlMzIzMTMyMmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHTUTTANBgkqhkiG 9w0BAQsFAAOCAQEAC4Dnl/d8IJ0I1hpFV4PUJ5+A09esuJRVY8kAdVeL85jQZTZu tVZIrVt34opGWfLodBYT60HhOq+EfeW/R+rI41tPOMp3EzV4zHWXt3MnX7I3cqhh EcVMCFHCBJF0FLA1jDa+nxS3sTeNNmlF5p5ugxdfviEosQVyrx/UDfXfuNXSM3lA MP13/JTkDf96YgkL+cSXexP0Q/8YnMg52OFPS8ewK/bnvNvyFyH7duQNNiB+1aMV SgNq9+S8lyeTWxhRHblBQVKMpV3fBjCM/1cFHWYsbFUlN1JVcEcQIyjwFPYxvaoj GcUbOlOJe1Q5+uj1kbesGfSxIG/q9hfAZvXOyw== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org