$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32332d3233203d3e203234323036.roa File: 3131302e34342e3137302e302f32332d3233203d3e203234323036.roa (raw, json) Hash identifier: z8UVJBGAPwQv3XroPzOrfU+NNOwdp+zWMM5py40KAew= Subject key identifier: E0:BB:8D:8B:14:DF:74:59:0B:E9:2E:69:A5:86:10:CE:8B:17:1E:51 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 25C0E17C17952CADD8630990348DDDB63234AE12 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32332d3233203d3e203234323036.roa Signing time: Wed 21 Aug 2024 15:19:43 +0000 ROA not before: Wed 21 Aug 2024 15:14:43 +0000 ROA not after: Wed 20 Aug 2025 15:19:43 +0000 asID: 24206 IP address blocks: 110.44.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c0:e1:7c:17:95:2c:ad:d8:63:09:90:34:8d:dd:b6:32:34:ae:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 21 15:14:43 2024 GMT Not After : Aug 20 15:19:43 2025 GMT Subject: CN=E0BB8D8B14DF74590BE92E69A58610CE8B171E51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:36:0a:fe:7f:98:79:9f:2d:99:2e:58:8b:6c: a7:04:18:32:e7:d7:b5:58:76:68:de:83:2b:64:7b: 59:87:4e:fc:7a:b0:b7:ef:70:a6:69:83:a5:32:d5: 61:a4:9c:b4:35:dc:5f:e2:75:43:cc:48:b9:71:69: 6d:d0:52:b7:7e:62:28:a9:b5:ce:ef:ea:3e:1c:a4: c2:f6:10:d8:c4:fc:6a:5e:6b:2b:a2:6b:d6:8a:53: 84:cc:a3:c4:d9:e3:66:d8:dd:52:17:f1:fc:a5:90: fc:32:c0:f8:c6:cd:1c:31:cf:71:11:dd:8f:eb:8d: 0e:ec:7b:b9:6b:6f:4a:1f:c4:84:b8:bb:09:95:ed: 97:17:01:47:5f:28:b7:bc:ed:e9:bb:4d:3e:34:d5: ff:9f:4e:4d:29:57:70:57:d6:1a:28:e8:2e:c2:58: 78:fc:ac:b1:00:39:d7:77:1a:d3:e6:49:2f:d3:52: e0:18:b3:8c:7e:d9:43:b2:cd:a7:74:6e:07:36:9f: a3:9f:e7:a3:b1:16:23:55:b1:cb:6a:7f:a0:7a:cb: 3d:28:46:ab:c6:2f:53:5d:72:49:13:02:fb:90:58: 6c:45:03:b3:df:7f:a0:da:96:a4:00:eb:1d:7d:41: 0f:69:8c:e7:e3:5f:16:95:e8:ee:e8:b0:3d:27:c9: ee:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:BB:8D:8B:14:DF:74:59:0B:E9:2E:69:A5:86:10:CE:8B:17:1E:51 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32332d3233203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.170.0/23 Signature Algorithm: sha256WithRSAEncryption 37:6e:3c:bf:ca:4c:d6:3e:04:fc:58:eb:17:cd:82:38:6e:d9: f9:fd:ff:0c:c0:9a:20:b8:3c:68:cc:3b:e1:88:52:cc:cc:68: c4:62:93:47:20:f7:58:b9:b2:03:a0:18:e4:02:e4:28:a8:dc: 79:2f:31:78:98:5b:52:c2:00:f8:e5:56:ff:1d:1c:a9:9f:e1: 08:e5:bc:98:48:68:03:c0:17:fb:e7:bb:9b:8e:15:15:35:0a: 1f:ad:88:5d:42:c4:68:64:13:27:63:50:ba:2c:b1:e3:38:e0: 0f:49:64:f1:e7:14:d3:04:4a:42:7f:0c:c1:bf:0e:e2:25:98: af:2f:b4:95:74:60:9f:43:17:65:24:30:77:8f:3f:e1:da:40: c2:00:05:c3:f4:f8:f9:b1:01:e1:49:d6:90:24:c8:f3:bb:04: 66:ed:d7:d4:9b:4a:71:fd:4c:78:d2:b8:cf:18:88:67:da:c7: 03:2a:3e:42:9d:eb:7e:63:75:09:40:9d:82:80:15:bf:40:8c: 40:24:99:da:b0:b2:52:a9:38:a6:31:3e:05:7d:7c:fd:1f:82: 8f:67:54:7e:3d:3a:21:a9:d4:7c:a6:e7:97:79:52:61:1e:13: 0c:d2:ac:ec:0a:9a:8d:b5:bb:44:7c:0e:4e:7f:04:92:3e:17: 2e:35:96:ad -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJcDhfBeVLK3YYwmQNI3dtjI0rhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA4MjExNTE0NDNaFw0yNTA4MjAxNTE5NDNaMDMxMTAvBgNV BAMTKEUwQkI4RDhCMTRERjc0NTkwQkU5MkU2OUE1ODYxMENFOEIxNzFFNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQNgr+f5h5ny2ZLliLbKcEGDLn 17VYdmjegytke1mHTvx6sLfvcKZpg6Uy1WGknLQ13F/idUPMSLlxaW3QUrd+Yiip tc7v6j4cpML2ENjE/Gpeayuia9aKU4TMo8TZ42bY3VIX8fylkPwywPjGzRwxz3ER 3Y/rjQ7se7lrb0ofxIS4uwmV7ZcXAUdfKLe87em7TT401f+fTk0pV3BX1hoo6C7C WHj8rLEAOdd3GtPmSS/TUuAYs4x+2UOyzad0bgc2n6Of56OxFiNVsctqf6B6yz0o RqvGL1NdckkTAvuQWGxFA7Pff6DalqQA6x19QQ9pjOfjXxaV6O7osD0nye7fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4LuNixTfdFkL6S5ppYYQzosXHlEwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAW4sqjANBgkqhkiG 9w0BAQsFAAOCAQEAN248v8pM1j4E/FjrF82COG7Z+f3/DMCaILg8aMw74YhSzMxo xGKTRyD3WLmyA6AY5ALkKKjceS8xeJhbUsIA+OVW/x0cqZ/hCOW8mEhoA8AX++e7 m44VFTUKH62IXULEaGQTJ2NQuiyx4zjgD0lk8ecU0wRKQn8Mwb8O4iWYry+0lXRg n0MXZSQwd48/4dpAwgAFw/T4+bEB4UnWkCTI87sEZu3X1JtKcf1MeNK4zxiIZ9rH Ayo+Qp3rfmN1CUCdgoAVv0CMQCSZ2rCyUqk4pjE+BX18/R+Cj2dUfj06IanUfKbn l3lSYR4TDNKs7AqajbW7RHwOTn8Ekj4XLjWWrQ== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org