$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38362e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38362e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: M9kpxFc3jLO14xKv2/FFseEFzkBm0dPMLP9oR4/lj8g= Subject key identifier: B7:48:F3:76:30:7B:8D:32:0A:9F:96:E6:B2:E2:23:35:55:FA:68:08 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 59CF1CB7D9C733CDE16F35F0C073ECAE1DB8930A Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38362e302f32342d3234203d3e203338373533.roa Signing time: Tue 03 Sep 2024 03:00:01 +0000 ROA not before: Tue 03 Sep 2024 02:55:01 +0000 ROA not after: Tue 02 Sep 2025 03:00:01 +0000 asID: 38753 IP address blocks: 119.110.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:cf:1c:b7:d9:c7:33:cd:e1:6f:35:f0:c0:73:ec:ae:1d:b8:93:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Sep 3 02:55:01 2024 GMT Not After : Sep 2 03:00:01 2025 GMT Subject: CN=B748F376307B8D320A9F96E6B2E2233555FA6808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b5:c0:f9:d6:e9:68:7e:7c:e7:52:07:ea:97: d2:d0:e1:ca:ff:07:98:0d:c6:45:18:c4:6f:a3:96: 66:54:8d:31:9d:a7:3a:6f:e1:0b:8c:81:e3:d6:d9: 85:25:a9:b5:57:ea:dd:6d:75:3b:8b:2b:33:37:d8: 97:43:3d:90:78:c8:4e:88:6a:42:9c:4e:64:e7:65: e7:94:cf:b4:22:ae:58:80:54:85:85:0a:ce:fc:d6: 28:42:fb:41:51:7c:1b:a4:ea:6e:42:9b:2f:bf:44: d3:51:b5:2b:bf:6e:75:a9:51:6d:e4:3d:e9:5a:08: a0:d4:c1:eb:71:01:7d:5c:bc:e2:d2:a7:2e:72:79: 42:7c:b4:07:51:cf:17:2f:c5:1f:1b:28:e8:15:0f: a8:1c:d6:96:7d:e6:c8:50:6e:58:e1:bb:fc:fb:da: 65:55:c4:47:7b:40:ec:30:9c:4b:17:d5:71:dd:e3: 9a:3c:b6:1e:e1:26:f5:01:6d:e1:02:28:68:b5:c0: 7c:c7:dd:e2:6a:46:d5:fb:12:70:2f:2b:08:64:b3: ed:e8:64:58:9d:05:73:9f:8f:93:24:aa:d7:0f:1f: 90:c4:28:c5:64:24:76:d3:8b:a5:24:15:fb:cd:a1: 8f:61:91:c6:a0:d2:b1:8c:14:5d:a0:d8:46:0a:07: f9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:48:F3:76:30:7B:8D:32:0A:9F:96:E6:B2:E2:23:35:55:FA:68:08 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38362e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.86.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:6f:66:39:5e:b8:99:fa:54:d5:ce:f2:31:76:e0:ad:5d:d4: d0:2d:f7:e9:ea:64:05:88:c6:1e:3d:3b:32:4e:5e:22:6a:ea: be:9d:0e:84:b2:10:c5:fb:57:e8:82:d8:e3:72:cf:9b:3c:08: 99:ef:75:76:18:0c:29:bf:67:d0:1b:96:fa:9f:88:f0:7d:72: f7:d6:09:b2:bf:bc:88:55:74:75:e1:7c:11:70:28:fe:a1:bc: aa:5f:f5:46:7f:39:32:a4:54:da:67:23:b5:b1:d1:21:6c:c7: 89:8d:7b:2d:e6:0e:67:67:6c:55:38:2e:4c:eb:14:b5:07:72: e8:95:52:47:19:b3:c9:cd:fa:87:79:7d:89:7a:03:f3:a7:62: 47:94:be:9e:b8:a0:bd:6c:8a:05:e8:f4:7c:f5:34:57:bf:f5: a6:81:e5:43:d9:b1:79:17:42:91:6a:41:53:68:c2:49:29:02: f0:d3:50:ad:06:23:a8:e3:f4:c5:a8:91:02:a4:b9:79:f0:27: 9e:e0:ca:a2:a8:97:99:2f:32:d3:e7:7e:a4:63:ba:8f:bc:e7: 61:5e:7a:0e:5c:e1:74:11:82:f7:b5:76:ba:9f:9a:3f:71:0d: f7:e7:42:ac:3c:2b:4e:dc:01:80:49:52:0b:56:50:1b:ce:8c: a5:e9:11:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWc8ct9nHM83hbzXwwHPsrh24kwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA5MDMwMjU1MDFaFw0yNTA5MDIwMzAwMDFaMDMxMTAvBgNV BAMTKEI3NDhGMzc2MzA3QjhEMzIwQTlGOTZFNkIyRTIyMzM1NTVGQTY4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbtcD51ulofnznUgfql9LQ4cr/ B5gNxkUYxG+jlmZUjTGdpzpv4QuMgePW2YUlqbVX6t1tdTuLKzM32JdDPZB4yE6I akKcTmTnZeeUz7QirliAVIWFCs781ihC+0FRfBuk6m5Cmy+/RNNRtSu/bnWpUW3k PelaCKDUwetxAX1cvOLSpy5yeUJ8tAdRzxcvxR8bKOgVD6gc1pZ95shQbljhu/z7 2mVVxEd7QOwwnEsX1XHd45o8th7hJvUBbeECKGi1wHzH3eJqRtX7EnAvKwhks+3o ZFidBXOfj5MkqtcPH5DEKMVkJHbTi6UkFfvNoY9hkcag0rGMFF2g2EYKB/n3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUt0jzdjB7jTIKn5bmsuIjNVX6aAgwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVjANBgkqhkiG 9w0BAQsFAAOCAQEAHG9mOV64mfpU1c7yMXbgrV3U0C336epkBYjGHj07Mk5eImrq vp0OhLIQxftX6ILY43LPmzwIme91dhgMKb9n0BuW+p+I8H1y99YJsr+8iFV0deF8 EXAo/qG8ql/1Rn85MqRU2mcjtbHRIWzHiY17LeYOZ2dsVTguTOsUtQdy6JVSRxmz yc36h3l9iXoD86diR5S+nrigvWyKBej0fPU0V7/1poHlQ9mxeRdCkWpBU2jCSSkC 8NNQrQYjqOP0xaiRAqS5efAnnuDKoqiXmS8y0+d+pGO6j7znYV56DlzhdBGC97V2 up+aP3EN9+dCrDwrTtwBgElSC1ZQG86MpekR2w== -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org