$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37382e302f32342d3234203d3e203436303330.roa File: 3131362e3231322e37382e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: dtV1Q6fEQu7guvWg1pDBwsSUTQpraVOALaMqaYy+cFA= Subject key identifier: BA:74:98:51:8B:1D:1D:82:FC:58:2D:11:59:42:4C:26:7D:28:07:CD Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 2396D36EBAE1D9EFAEDE20085D5DBA44046BE634 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37382e302f32342d3234203d3e203436303330.roa Signing time: Wed 30 Oct 2024 08:00:01 +0000 ROA not before: Wed 30 Oct 2024 07:55:01 +0000 ROA not after: Wed 29 Oct 2025 08:00:01 +0000 asID: 46030 IP address blocks: 116.212.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:96:d3:6e:ba:e1:d9:ef:ae:de:20:08:5d:5d:ba:44:04:6b:e6:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 30 07:55:01 2024 GMT Not After : Oct 29 08:00:01 2025 GMT Subject: CN=BA7498518B1D1D82FC582D1159424C267D2807CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ed:16:01:c2:36:e7:ee:00:98:f1:91:06:30: 1a:55:58:42:77:39:77:3b:25:72:27:03:9c:ba:ef: 07:c4:75:4e:91:89:eb:7f:cd:78:b9:74:f7:29:4f: 36:d4:0b:5c:12:63:b3:9c:5d:a1:f4:fa:54:0d:b7: 96:13:dd:e9:3f:cf:d7:0a:46:66:2f:e7:ca:a9:55: 81:07:47:72:2d:6f:a0:13:1b:2d:83:d0:cf:b6:29: d8:8c:37:33:76:a0:52:2f:fe:a8:88:bf:4e:c9:79: fb:ab:5e:fd:fe:fb:29:cc:c3:3c:71:da:f1:e2:51: ed:21:01:87:f4:4f:b8:6b:aa:41:91:1d:5b:6f:ed: 3b:b9:0a:c8:3d:19:d9:f7:39:3e:58:8f:dd:35:6c: 84:b4:04:47:68:cc:0f:f0:d6:b8:5f:40:59:14:4b: 57:74:cf:3e:f9:82:ab:90:a7:0a:63:48:68:53:e8: 71:fb:85:67:bb:ff:2b:1a:81:82:09:f0:3c:3b:b8: 2f:0d:0a:af:9b:3b:de:30:4c:c4:1d:83:f4:91:36: c1:3c:65:29:66:53:a1:d7:07:18:2c:84:14:7c:54: 8d:21:39:8b:84:eb:02:0d:21:26:c5:7e:39:5f:fc: bc:2d:28:74:44:bc:d1:f9:20:69:33:75:64:f2:ca: 6f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:74:98:51:8B:1D:1D:82:FC:58:2D:11:59:42:4C:26:7D:28:07:CD X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37382e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.212.78.0/24 Signature Algorithm: sha256WithRSAEncryption 96:b5:66:62:f2:30:04:74:04:c5:37:e3:c5:6e:dd:88:38:01: 73:3b:b9:52:fc:6e:88:45:7d:d8:f7:22:01:73:3f:dd:1d:6d: 4e:8f:e6:4a:dd:2d:ee:40:4f:0f:48:b7:12:8f:5c:87:80:e1: 80:02:a6:d3:a3:47:d7:40:55:85:a8:fd:a4:a8:36:ea:8e:a3: c7:d2:48:06:73:f8:f5:af:28:45:0c:a7:00:3d:4f:47:2c:03: 37:e3:43:64:94:49:73:e3:44:a8:b4:21:88:9e:65:df:b4:9e: b8:92:e2:d3:82:a4:93:51:fb:23:56:4a:ae:ab:11:1d:c4:c2: 6e:a6:f8:2e:93:fe:c7:ec:eb:b4:23:87:ad:46:59:4c:24:6a: f3:e2:b0:ac:76:84:41:f0:fd:3d:64:a6:21:81:49:90:19:e3: 7b:ec:d4:4a:4d:53:5e:c1:32:ba:85:6e:7d:4e:98:60:dc:07: 12:d2:c9:b8:1d:00:4a:41:2e:45:c0:f9:e7:4e:d0:2c:b0:47: 2e:88:cb:b2:0c:65:fd:c0:f0:bb:ca:ed:42:ec:51:8a:11:33: ec:a0:65:00:ec:d7:5c:bf:16:01:a9:eb:35:e4:ea:d1:30:d9: cb:04:81:e2:8a:63:31:08:41:75:c4:87:c1:18:19:b7:9a:6a: ce:b4:15:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI5bTbrrh2e+u3iAIXV26RARr5jQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMzAwNzU1MDFaFw0yNTEwMjkwODAwMDFaMDMxMTAvBgNV BAMTKEJBNzQ5ODUxOEIxRDFEODJGQzU4MkQxMTU5NDI0QzI2N0QyODA3Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI7RYBwjbn7gCY8ZEGMBpVWEJ3 OXc7JXInA5y67wfEdU6Riet/zXi5dPcpTzbUC1wSY7OcXaH0+lQNt5YT3ek/z9cK RmYv58qpVYEHR3Itb6ATGy2D0M+2KdiMNzN2oFIv/qiIv07JefurXv3++ynMwzxx 2vHiUe0hAYf0T7hrqkGRHVtv7Tu5Csg9Gdn3OT5Yj901bIS0BEdozA/w1rhfQFkU S1d0zz75gquQpwpjSGhT6HH7hWe7/ysagYIJ8Dw7uC8NCq+bO94wTMQdg/SRNsE8 ZSlmU6HXBxgshBR8VI0hOYuE6wINISbFfjlf/LwtKHREvNH5IGkzdWTyym/TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUunSYUYsdHYL8WC0RWUJMJn0oB80wHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzEzNjJlMzIzMTMyMmUzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHTUTjANBgkqhkiG 9w0BAQsFAAOCAQEAlrVmYvIwBHQExTfjxW7diDgBczu5UvxuiEV92PciAXM/3R1t To/mSt0t7kBPD0i3Eo9ch4DhgAKm06NH10BVhaj9pKg26o6jx9JIBnP49a8oRQyn AD1PRywDN+NDZJRJc+NEqLQhiJ5l37SeuJLi04Kkk1H7I1ZKrqsRHcTCbqb4LpP+ x+zrtCOHrUZZTCRq8+KwrHaEQfD9PWSmIYFJkBnje+zUSk1TXsEyuoVufU6YYNwH EtLJuB0ASkEuRcD5507QLLBHLojLsgxl/cDwu8rtQuxRihEz7KBlAOzXXL8WAanr NeTq0TDZywSB4opjMQhBdcSHwRgZt5pqzrQVcA== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org