$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38352e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: pBAFJV6Sluc0t8EXEen38uMvPmXafRQlYm31iAGzC2s= Subject key identifier: F2:91:F0:9C:9E:07:56:35:F3:78:2D:22:D6:10:C2:9D:E0:1F:07:48 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 53D5571288C1A49BE70EB61CB17B6E10B5CCABE4 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa Signing time: Fri 07 Jun 2024 04:00:01 +0000 ROA not before: Fri 07 Jun 2024 03:55:01 +0000 ROA not after: Fri 06 Jun 2025 04:00:01 +0000 asID: 38753 IP address blocks: 119.110.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d5:57:12:88:c1:a4:9b:e7:0e:b6:1c:b1:7b:6e:10:b5:cc:ab:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 7 03:55:01 2024 GMT Not After : Jun 6 04:00:01 2025 GMT Subject: CN=F291F09C9E075635F3782D22D610C29DE01F0748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:aa:56:bc:ee:01:4c:0b:56:27:b5:e6:4c:73: c0:c9:29:76:5d:b9:d5:c0:60:3e:97:83:2d:6f:c9: e4:58:9b:64:7e:32:14:ca:4c:6a:6c:e8:21:ea:23: e6:4b:a0:cc:33:ac:b4:14:fe:c5:fa:b5:a1:1e:c6: 4e:0a:1d:14:ee:38:8c:7b:7e:1e:36:17:05:d1:21: c1:9f:ed:5a:19:d5:d2:af:28:f6:ef:cc:40:b9:59: a3:98:6d:6b:af:1f:29:ac:0b:21:31:e8:7e:2d:60: a0:7b:06:2e:c3:80:5b:fa:10:32:6a:2c:50:22:c5: d0:0c:d2:9a:19:e9:fc:ed:39:49:57:e4:f3:3a:3d: f4:82:5d:d1:13:84:a4:b0:2f:13:e4:9f:c4:d6:c8: d8:39:3e:cb:32:28:18:b0:96:4f:48:1b:09:ba:5f: e0:e8:63:4c:8e:ee:69:78:07:7c:d1:78:ea:3f:57: 03:91:a7:aa:c6:e9:cf:d0:83:d4:ee:ed:26:10:37: ac:29:bf:e3:25:b7:1b:0d:ee:93:02:b5:ea:be:83: 88:6b:de:7b:14:d4:12:54:b6:ca:99:6b:5c:8b:aa: eb:0a:62:5f:09:b5:81:bf:91:38:cc:13:c8:3b:6a: 7f:d9:6a:49:fc:fe:d0:c6:03:9e:3a:b8:ea:e4:b5: 28:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:91:F0:9C:9E:07:56:35:F3:78:2D:22:D6:10:C2:9D:E0:1F:07:48 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.85.0/24 Signature Algorithm: sha256WithRSAEncryption ac:05:0a:2f:14:76:45:2e:df:70:90:b3:a5:af:40:73:a1:27: 0c:ee:c7:13:c8:10:46:8c:c4:6b:30:a6:c3:ba:0d:38:70:68: a6:33:69:df:e9:a7:60:b3:99:42:e3:74:5a:39:73:86:86:74: 1a:a4:25:1e:26:43:3d:a6:84:87:30:93:d4:8d:62:f1:8e:08: 3d:79:1d:21:ef:48:d9:71:d1:77:b9:84:fe:88:d7:76:de:f4: 67:53:8f:ad:cf:3b:f0:fd:58:f6:77:f3:29:02:bd:10:5f:1b: d0:03:7a:a8:ce:be:8a:dc:78:bc:ee:87:24:ba:46:3f:80:cf: 87:f1:dc:e7:96:68:a1:7c:59:33:7c:06:43:3a:3c:f6:cb:f0: 9f:2d:8e:51:24:a2:9f:37:ca:dd:1c:5b:a9:39:dd:e6:5e:f8: a9:2a:a2:b7:f8:d8:d4:45:1e:1b:77:70:e2:aa:a9:1a:2c:af: c3:3e:f3:a5:21:17:05:d8:28:bb:0e:c0:54:ce:fa:a4:27:ee: d3:93:7f:20:36:de:42:7d:d6:8d:db:59:37:78:41:fa:ba:d8: a0:d3:77:56:d6:8b:06:95:7b:bd:80:b1:05:51:20:21:0c:1c: 81:23:6c:90:14:11:34:f4:69:81:1d:61:48:1d:9b:46:cf:9c: 43:86:67:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU9VXEojBpJvnDrYcsXtuELXMq+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA2MDcwMzU1MDFaFw0yNTA2MDYwNDAwMDFaMDMxMTAvBgNV BAMTKEYyOTFGMDlDOUUwNzU2MzVGMzc4MkQyMkQ2MTBDMjlERTAxRjA3NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIqla87gFMC1YnteZMc8DJKXZd udXAYD6Xgy1vyeRYm2R+MhTKTGps6CHqI+ZLoMwzrLQU/sX6taEexk4KHRTuOIx7 fh42FwXRIcGf7VoZ1dKvKPbvzEC5WaOYbWuvHymsCyEx6H4tYKB7Bi7DgFv6EDJq LFAixdAM0poZ6fztOUlX5PM6PfSCXdEThKSwLxPkn8TWyNg5PssyKBiwlk9IGwm6 X+DoY0yO7ml4B3zReOo/VwORp6rG6c/Qg9Tu7SYQN6wpv+MltxsN7pMCteq+g4hr 3nsU1BJUtsqZa1yLqusKYl8JtYG/kTjME8g7an/Zakn8/tDGA546uOrktSjJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8pHwnJ4HVjXzeC0i1hDCneAfB0gwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVTANBgkqhkiG 9w0BAQsFAAOCAQEArAUKLxR2RS7fcJCzpa9Ac6EnDO7HE8gQRozEazCmw7oNOHBo pjNp3+mnYLOZQuN0WjlzhoZ0GqQlHiZDPaaEhzCT1I1i8Y4IPXkdIe9I2XHRd7mE /ojXdt70Z1OPrc878P1Y9nfzKQK9EF8b0AN6qM6+itx4vO6HJLpGP4DPh/Hc55Zo oXxZM3wGQzo89svwny2OUSSinzfK3RxbqTnd5l74qSqit/jY1EUeG3dw4qqpGiyv wz7zpSEXBdgouw7AVM76pCfu05N/IDbeQn3WjdtZN3hB+rrYoNN3VtaLBpV7vYCx BVEgIQwcgSNskBQRNPRpgR1hSB2bRs+cQ4ZnyQ== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org