$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38372e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38372e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: MB+3GGB0E/W9pW82MRY7gLouu5NrtcVQvMMNVRkZzH4= Subject key identifier: 63:1F:30:07:4D:31:29:F3:8F:CF:F9:DD:45:07:56:58:DB:C6:C6:43 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 56AA5B7D863E40E4631D431481B16730FD4CFD24 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38372e302f32342d3234203d3e203338373533.roa Signing time: Tue 18 Jun 2024 03:00:01 +0000 ROA not before: Tue 18 Jun 2024 02:55:01 +0000 ROA not after: Tue 17 Jun 2025 03:00:01 +0000 asID: 38753 IP address blocks: 119.110.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:aa:5b:7d:86:3e:40:e4:63:1d:43:14:81:b1:67:30:fd:4c:fd:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 18 02:55:01 2024 GMT Not After : Jun 17 03:00:01 2025 GMT Subject: CN=631F30074D3129F38FCFF9DD45075658DBC6C643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2c:ed:47:50:07:81:62:a5:7c:ff:84:04:e9: 03:3b:04:96:24:01:92:01:fe:07:c4:fd:0b:36:11: 9c:38:7d:f3:a4:d7:1a:8d:57:05:ba:65:90:bb:c9: 33:fc:2d:ce:b4:50:c1:11:42:b2:c6:18:1c:ad:b4: ec:3c:b5:c5:50:00:76:cc:9e:e6:68:75:d7:a9:2b: 31:65:52:6b:80:70:6e:19:6a:fa:ab:f4:27:51:9f: 95:82:c8:a0:96:0e:ec:59:da:b2:44:0a:fd:fa:5e: 99:aa:b8:e4:38:aa:c3:49:ba:c3:f3:ea:72:95:ef: 2d:de:58:de:9d:2d:48:52:b9:98:1f:fa:ab:3f:7c: eb:bc:07:17:72:f2:e6:b3:dd:9c:bf:00:03:03:ad: d0:b3:23:3f:22:26:f6:6b:23:bc:8e:4d:15:ce:b5: 16:97:03:18:f0:a7:8e:97:32:7d:61:88:d2:00:17: c7:10:d6:8c:70:c5:96:cd:d3:ed:23:c6:17:f6:83: ef:f1:8c:78:b0:80:30:66:bc:17:41:27:d3:2d:6e: 99:9b:f1:e5:34:91:22:b6:39:41:7c:58:5c:31:aa: 0e:0e:77:2a:d6:e9:bc:cc:d9:9b:32:b1:23:d0:0b: b0:c7:d2:d8:08:75:b1:23:8c:05:72:13:7b:70:14: 46:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1F:30:07:4D:31:29:F3:8F:CF:F9:DD:45:07:56:58:DB:C6:C6:43 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38372e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.87.0/24 Signature Algorithm: sha256WithRSAEncryption bb:fc:41:0d:1d:35:fe:54:02:b6:25:a8:7a:4c:b2:b6:41:b6: 1d:a5:fc:a6:3a:1c:16:3a:c9:ac:e5:0a:4f:d8:7e:ba:47:ae: c1:7e:df:29:06:4f:8f:01:06:61:46:a8:06:46:ba:de:42:6f: 7c:19:f1:1b:5f:e2:d2:5f:0d:bc:d2:cc:b3:e6:00:b9:3b:4b: ca:8c:e4:cb:fb:ba:60:f4:21:6b:f2:a5:d1:3c:2f:72:ce:92: 81:95:9f:a1:89:c2:e1:a8:54:00:35:da:e3:39:cf:28:55:06: d8:3b:b4:aa:0e:3f:e0:c2:40:a3:a4:f3:65:57:42:7f:72:43: 80:1b:14:a5:f0:02:34:e7:d8:26:cc:11:99:47:78:d9:3d:bd: b0:c5:cb:23:e3:63:15:bd:fd:e7:a1:5f:0b:c7:f1:61:06:44: bd:ed:83:0d:cb:b3:1d:2b:5a:d8:b8:5d:1e:78:76:17:c6:d2: 7c:a8:c0:08:4c:7f:db:2b:6a:15:b5:0d:b1:69:d8:5a:9f:ab: 84:e5:cf:d0:15:43:5c:d0:06:26:61:00:47:dc:f8:1f:fb:5a: cc:6f:2b:80:09:ea:78:b3:bf:eb:15:cd:58:46:19:ef:3d:ef: 94:83:a1:e3:68:bb:8f:75:41:25:7c:4b:be:f8:03:01:f0:22: 98:99:12:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVqpbfYY+QORjHUMUgbFnMP1M/SQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA2MTgwMjU1MDFaFw0yNTA2MTcwMzAwMDFaMDMxMTAvBgNV BAMTKDYzMUYzMDA3NEQzMTI5RjM4RkNGRjlERDQ1MDc1NjU4REJDNkM2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeLO1HUAeBYqV8/4QE6QM7BJYk AZIB/gfE/Qs2EZw4ffOk1xqNVwW6ZZC7yTP8Lc60UMERQrLGGByttOw8tcVQAHbM nuZoddepKzFlUmuAcG4Zavqr9CdRn5WCyKCWDuxZ2rJECv36XpmquOQ4qsNJusPz 6nKV7y3eWN6dLUhSuZgf+qs/fOu8Bxdy8uaz3Zy/AAMDrdCzIz8iJvZrI7yOTRXO tRaXAxjwp46XMn1hiNIAF8cQ1oxwxZbN0+0jxhf2g+/xjHiwgDBmvBdBJ9Mtbpmb 8eU0kSK2OUF8WFwxqg4OdyrW6bzM2ZsysSPQC7DH0tgIdbEjjAVyE3twFEYvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYx8wB00xKfOPz/ndRQdWWNvGxkMwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVzANBgkqhkiG 9w0BAQsFAAOCAQEAu/xBDR01/lQCtiWoekyytkG2HaX8pjocFjrJrOUKT9h+ukeu wX7fKQZPjwEGYUaoBka63kJvfBnxG1/i0l8NvNLMs+YAuTtLyozky/u6YPQha/Kl 0Twvcs6SgZWfoYnC4ahUADXa4znPKFUG2Du0qg4/4MJAo6TzZVdCf3JDgBsUpfAC NOfYJswRmUd42T29sMXLI+NjFb3956FfC8fxYQZEve2DDcuzHSta2LhdHnh2F8bS fKjACEx/2ytqFbUNsWnYWp+rhOXP0BVDXNAGJmEAR9z4H/tazG8rgAnqeLO/6xXN WEYZ7z3vlIOh42i7j3VBJXxLvvgDAfAimJkSww== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org