$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3131312e36382e3131322e302f32302d3234203d3e203435323837.roa File: 3131312e36382e3131322e302f32302d3234203d3e203435323837.roa (raw, json) Hash identifier: qB5I9SZzbVoPygBuyJA1K93AyAMM3PavIllsE1xXJ8Y= Subject key identifier: BB:A5:6D:32:6D:76:06:C8:76:48:E6:2A:F8:74:4C:F7:60:E7:5B:E7 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 0CE415492638518837EBCCA124731F65740D4FEA Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3131312e36382e3131322e302f32302d3234203d3e203435323837.roa Signing time: Mon 01 Jul 2024 01:02:26 +0000 ROA not before: Mon 01 Jul 2024 00:57:26 +0000 ROA not after: Mon 30 Jun 2025 01:02:26 +0000 asID: 45287 IP address blocks: 111.68.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e4:15:49:26:38:51:88:37:eb:cc:a1:24:73:1f:65:74:0d:4f:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jul 1 00:57:26 2024 GMT Not After : Jun 30 01:02:26 2025 GMT Subject: CN=BBA56D326D7606C87648E62AF8744CF760E75BE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e4:3c:2b:a2:b6:c3:cf:1a:28:a2:8f:62:e4: 95:c7:48:cf:c7:ff:72:ac:73:1c:d3:b2:e8:d1:4a: 59:58:83:95:2f:a1:ff:ea:21:50:d4:2a:ed:e5:dd: 12:fb:1c:f4:55:47:82:7f:9f:a4:d3:21:d8:09:bb: 75:c8:2f:1b:8f:7b:9c:2b:ca:7a:73:20:42:94:63: e2:ea:2a:95:ab:1e:14:84:26:52:f7:0d:f0:52:28: 9a:16:3b:31:08:9c:2c:a8:2f:43:c8:4b:2c:aa:e5: da:eb:88:9e:a4:85:e8:c5:1a:58:03:0d:a0:73:d5: ea:a8:2c:f2:79:b2:e2:fd:21:ae:ce:d5:62:4a:6d: db:31:d2:89:ed:c7:59:f7:e2:c2:a0:ff:f6:d5:aa: 79:fb:3e:51:27:3f:28:71:44:27:8c:c4:78:29:14: 0c:7c:ca:70:82:7f:2f:99:9a:ac:5a:4a:90:c2:64: 91:b1:95:70:f5:48:cf:61:ad:36:58:d8:a8:f5:b0: 38:10:9e:b9:ac:10:3c:05:13:09:50:f7:b7:d2:62: 43:dc:85:85:97:fc:be:52:e3:7a:a4:52:3d:66:8b: 59:bb:50:04:cd:b2:41:27:3b:fb:b9:84:61:03:4c: 14:05:eb:28:65:e5:b3:6b:4e:17:01:47:1c:3f:94: 61:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A5:6D:32:6D:76:06:C8:76:48:E6:2A:F8:74:4C:F7:60:E7:5B:E7 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3131312e36382e3131322e302f32302d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.68.112.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:7a:9d:a3:b6:e3:7c:96:07:8f:be:f4:54:ea:af:53:43:6f: 42:aa:35:0b:75:18:a9:4e:51:93:20:44:8a:a8:db:89:cf:1f: 90:f1:4d:9e:f2:0f:42:91:22:29:0e:8d:28:0c:d9:f3:c1:bf: ac:76:95:9c:5d:8a:d7:da:e4:48:ad:52:07:fc:ee:a1:30:9c: 2d:70:53:29:cb:5b:db:16:24:6c:00:b0:81:88:1c:c7:c7:d4: 1e:2c:6b:1c:8a:3a:51:55:3f:31:d7:20:a2:47:0f:24:1d:f2: 1b:55:b5:9c:dc:b6:a0:67:f6:72:19:af:e2:7a:52:9b:c1:0c: d2:07:58:47:49:f7:00:1d:7c:cb:16:9b:87:08:ca:24:98:0d: 0a:ca:e5:b8:c3:f2:cd:5a:a8:12:fd:83:b4:5b:6f:d0:7b:60: 69:2e:e4:a0:a5:36:0b:1a:95:5c:f4:cf:49:8e:f9:8b:3e:bb: e0:a6:6d:c1:9f:c2:7b:d3:15:53:01:39:fd:03:bc:1c:ba:80: 92:d3:0b:6b:42:3c:c4:0c:8a:21:58:64:45:58:5d:c3:88:ce: d4:40:fd:52:9d:42:84:82:83:83:d6:cb:6f:08:39:3b:0a:1b: 4b:a5:ff:70:a9:7e:42:07:64:cd:52:02:35:a8:41:e0:a0:ae: db:58:71:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDOQVSSY4UYg368yhJHMfZXQNT+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNDA3MDEwMDU3MjZaFw0yNTA2MzAwMTAyMjZaMDMxMTAvBgNV BAMTKEJCQTU2RDMyNkQ3NjA2Qzg3NjQ4RTYyQUY4NzQ0Q0Y3NjBFNzVCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG5DwrorbDzxoooo9i5JXHSM/H /3KscxzTsujRSllYg5Uvof/qIVDUKu3l3RL7HPRVR4J/n6TTIdgJu3XILxuPe5wr ynpzIEKUY+LqKpWrHhSEJlL3DfBSKJoWOzEInCyoL0PISyyq5drriJ6khejFGlgD DaBz1eqoLPJ5suL9Ia7O1WJKbdsx0ontx1n34sKg//bVqnn7PlEnPyhxRCeMxHgp FAx8ynCCfy+ZmqxaSpDCZJGxlXD1SM9hrTZY2Kj1sDgQnrmsEDwFEwlQ97fSYkPc hYWX/L5S43qkUj1mi1m7UATNskEnO/u5hGEDTBQF6yhl5bNrThcBRxw/lGGVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu6VtMm12Bsh2SOYq+HRM92DnW+cwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMxMzEzMTJlMzYzODJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBG9EcDANBgkqhkiG 9w0BAQsFAAOCAQEAenqdo7bjfJYHj770VOqvU0NvQqo1C3UYqU5RkyBEiqjbic8f kPFNnvIPQpEiKQ6NKAzZ88G/rHaVnF2K19rkSK1SB/zuoTCcLXBTKctb2xYkbACw gYgcx8fUHixrHIo6UVU/MdcgokcPJB3yG1W1nNy2oGf2chmv4npSm8EM0gdYR0n3 AB18yxabhwjKJJgNCsrluMPyzVqoEv2DtFtv0HtgaS7koKU2CxqVXPTPSY75iz67 4KZtwZ/Ce9MVUwE5/QO8HLqAktMLa0I8xAyKIVhkRVhdw4jO1ED9Up1ChIKDg9bL bwg5OwobS6X/cKl+QgdkzVICNahB4KCu21hxew== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org