$ rpki-client -vvf repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa File: 3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa (raw, json) Hash identifier: NdovvGz1dVL1KIu5M92M0xpG8X/41M5qiZC/yGsT5QA= Subject key identifier: 44:16:A9:88:36:0D:A7:48:4B:F5:A0:CD:FB:99:FA:6C:FC:63:EF:BB Certificate issuer: /CN=8B266458C7DEFCF6926DCDF453C84A1D42E8D989 Certificate serial: 6218D701A32685452E286B8A38B39F4A0F1C2AEA Authority key identifier: 8B:26:64:58:C7:DE:FC:F6:92:6D:CD:F4:53:C8:4A:1D:42:E8:D9:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa Signing time: Mon 01 Jul 2024 01:02:46 +0000 ROA not before: Mon 01 Jul 2024 00:57:46 +0000 ROA not after: Mon 30 Jun 2025 01:02:46 +0000 asID: 45146 IP address blocks: 119.235.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.crl rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:18:d7:01:a3:26:85:45:2e:28:6b:8a:38:b3:9f:4a:0f:1c:2a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B266458C7DEFCF6926DCDF453C84A1D42E8D989 Validity Not Before: Jul 1 00:57:46 2024 GMT Not After : Jun 30 01:02:46 2025 GMT Subject: CN=4416A988360DA7484BF5A0CDFB99FA6CFC63EFBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:39:72:b6:aa:a1:fb:eb:4f:89:a5:ee:7e:01: e2:df:eb:42:17:74:77:35:10:e3:e1:01:e6:2a:74: 46:fb:b6:9c:f3:c1:aa:eb:af:d3:f8:e6:de:c7:17: b6:f5:f6:90:6d:16:58:46:12:8b:51:59:16:96:aa: 80:88:62:56:02:80:98:b6:a3:f0:0e:90:81:52:59: 0d:3f:6d:af:a7:c9:5b:eb:0e:76:e9:4e:1a:0f:11: 67:6e:66:87:a9:7b:90:09:37:67:83:35:c1:c0:fa: cd:8e:27:33:c5:2c:d5:da:43:93:d5:10:42:96:92: 1f:ba:89:52:77:16:26:d4:08:44:7b:01:78:a3:ce: 5d:ec:09:07:29:eb:82:dd:54:d7:cd:87:82:2f:31: b9:ae:b1:64:aa:3c:56:5f:3d:de:fd:2f:e4:ae:83: ef:07:f7:20:14:00:3e:be:c0:40:a1:99:c9:64:1a: 5e:e5:8c:43:8f:5e:a8:f3:68:77:a9:7b:90:64:f8: ea:f4:8b:29:44:34:cc:50:3d:46:d6:76:06:1d:a0: 43:4b:15:3c:de:b4:17:d4:10:06:50:ef:42:f6:a2: 85:f6:83:e8:f2:e0:d7:bc:e7:5b:f2:8c:ba:69:59: 3b:b5:5f:d5:9c:d3:7c:e9:8a:a4:70:a1:c7:f3:5b: 05:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:16:A9:88:36:0D:A7:48:4B:F5:A0:CD:FB:99:FA:6C:FC:63:EF:BB X509v3 Authority Key Identifier: keyid:8B:26:64:58:C7:DE:FC:F6:92:6D:CD:F4:53:C8:4A:1D:42:E8:D9:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.248.0/21 Signature Algorithm: sha256WithRSAEncryption cf:58:79:73:ce:dc:bb:31:56:8d:be:b1:eb:5a:b4:c9:35:32: d6:9c:0b:02:f7:5e:5a:8b:65:6b:63:5e:ad:fa:3f:44:5b:d4: b8:3f:3d:07:6f:9f:24:29:96:63:da:6b:1e:21:ef:20:7e:0e: 44:43:0c:44:51:b4:57:87:1c:68:e8:99:75:b3:1d:83:29:3f: 80:de:ea:eb:be:1b:14:eb:8e:61:26:a3:4e:09:7e:19:63:c9: f5:69:38:8a:f7:f8:01:05:57:97:fa:42:cc:dc:83:82:b6:8d: ba:b8:ca:50:12:db:ec:b9:19:c2:f8:59:dc:b1:57:90:b7:44: 91:00:4d:1d:c4:9b:79:5d:8d:86:cb:80:23:a1:62:89:ab:5c: 65:49:01:93:fe:4b:67:b1:65:12:ca:dc:98:16:22:2d:1a:d0: 51:8b:bc:40:1a:da:6a:e5:8e:48:54:53:13:5c:a7:09:f9:23: f9:b8:08:7b:7a:4c:f4:c6:31:56:78:5f:aa:60:ce:bb:c4:0e: 54:0a:6a:eb:93:22:7e:0d:42:61:55:df:da:08:bb:01:6c:00: 95:d4:31:06:46:53:91:3e:a6:f2:68:4a:94:79:79:e2:3a:f7: e2:d3:bd:24:41:8b:83:93:e4:18:42:43:d5:c3:1d:14:4e:a7: f2:e1:88:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYhjXAaMmhUUuKGuKOLOfSg8cKuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIyNjY0NThDN0RFRkNGNjkyNkRDREY0NTNDODRBMUQ0 MkU4RDk4OTAeFw0yNDA3MDEwMDU3NDZaFw0yNTA2MzAwMTAyNDZaMDMxMTAvBgNV BAMTKDQ0MTZBOTg4MzYwREE3NDg0QkY1QTBDREZCOTlGQTZDRkM2M0VGQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7OXK2qqH760+Jpe5+AeLf60IX dHc1EOPhAeYqdEb7tpzzwarrr9P45t7HF7b19pBtFlhGEotRWRaWqoCIYlYCgJi2 o/AOkIFSWQ0/ba+nyVvrDnbpThoPEWduZoepe5AJN2eDNcHA+s2OJzPFLNXaQ5PV EEKWkh+6iVJ3FibUCER7AXijzl3sCQcp64LdVNfNh4IvMbmusWSqPFZfPd79L+Su g+8H9yAUAD6+wEChmclkGl7ljEOPXqjzaHepe5Bk+Or0iylENMxQPUbWdgYdoENL FTzetBfUEAZQ70L2ooX2g+jy4Ne851vyjLppWTu1X9Wc03zpiqRwocfzWwWRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURBapiDYNp0hL9aDN+5n6bPxj77swHwYDVR0j BBgwFoAUiyZkWMfe/PaSbc30U8hKHULo2YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWUzYjFkOC1iZjE5LTQ2ZTMtYjYwOS0wZDE2MDk4OGRhYzgvMC84QjI2NjQ1OEM3 REVGQ0Y2OTI2RENERjQ1M0M4NEExRDQyRThEOTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIyNjY0NThDN0RFRkNGNjkyNkRDREY0NTNDODRBMUQ0MkU4 RDk4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZTNiMWQ4LWJmMTktNDZlMy1i NjA5LTBkMTYwOTg4ZGFjOC8wLzMxMzEzOTJlMzIzMzM1MmUzMjM0MzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDd+v4MA0GCSqG SIb3DQEBCwUAA4IBAQDPWHlzzty7MVaNvrHrWrTJNTLWnAsC915ai2VrY16t+j9E W9S4Pz0Hb58kKZZj2mseIe8gfg5EQwxEUbRXhxxo6Jl1sx2DKT+A3urrvhsU645h JqNOCX4ZY8n1aTiK9/gBBVeX+kLM3IOCto26uMpQEtvsuRnC+FncsVeQt0SRAE0d xJt5XY2Gy4AjoWKJq1xlSQGT/ktnsWUSytyYFiItGtBRi7xAGtpq5Y5IVFMTXKcJ +SP5uAh7ekz0xjFWeF+qYM67xA5UCmrrkyJ+DUJhVd/aCLsBbACV1DEGRlORPqby aEqUeXniOvfi070kQYuDk+QYQkPVwx0UTqfy4Ygl -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org