$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e203234323036.roa File: 3131302e34342e3137302e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: 2+PejgaB22JNtrHJwr+kzI0/pDysIeUI5rDsTI2kaug= Subject key identifier: 76:7F:6F:52:2C:04:25:BA:C6:AC:05:DA:1D:56:99:D3:2C:09:95:0C Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 01816B379BD4EF3FB526CE51EB181225AA358F56 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e203234323036.roa Signing time: Fri 30 Aug 2024 16:00:01 +0000 ROA not before: Fri 30 Aug 2024 15:55:01 +0000 ROA not after: Fri 29 Aug 2025 16:00:01 +0000 asID: 24206 IP address blocks: 110.44.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:81:6b:37:9b:d4:ef:3f:b5:26:ce:51:eb:18:12:25:aa:35:8f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 30 15:55:01 2024 GMT Not After : Aug 29 16:00:01 2025 GMT Subject: CN=767F6F522C0425BAC6AC05DA1D5699D32C09950C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ac:fe:e7:d7:48:d7:03:d1:95:77:60:f4:df: 6f:c2:16:8b:ac:99:b0:40:2a:4b:3a:9c:5e:d4:36: ca:45:d1:97:16:83:1f:e3:0b:4a:ba:67:3d:58:ee: b9:4e:81:0e:49:46:a6:15:16:ef:66:ef:a0:59:9c: 78:d7:13:95:a0:0f:58:3c:de:d6:70:29:e7:a5:db: bb:84:2c:b6:33:54:99:18:72:d4:6d:4b:cb:8c:43: bf:4e:cd:f0:39:cd:09:eb:2f:c2:05:59:c4:1b:99: ca:ff:4e:1d:23:53:8e:b2:bb:03:b4:09:a9:1b:3f: 85:d6:d2:b5:e5:ca:b5:3d:78:dc:ac:e2:92:c5:94: 2b:9d:50:74:82:20:b6:b4:82:21:23:cc:e1:ce:d1: 1a:99:53:ac:84:f9:21:a1:9b:1b:4b:5a:84:6e:12: 24:b3:53:09:09:2a:54:d8:e9:3b:36:46:53:69:12: 34:2b:d5:92:de:4f:bc:28:fb:6f:5a:cd:3a:79:85: 11:c5:60:2b:4a:3b:89:23:15:14:02:40:7a:51:6f: 35:dd:51:a1:a8:8a:09:07:c8:16:9f:5d:87:c0:5d: 1e:36:c3:19:52:30:24:05:3a:aa:94:b6:75:e7:ba: 04:5f:a3:0f:9b:bc:68:b8:f6:84:e4:2f:39:9f:f2: d8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7F:6F:52:2C:04:25:BA:C6:AC:05:DA:1D:56:99:D3:2C:09:95:0C X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137302e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.170.0/24 Signature Algorithm: sha256WithRSAEncryption b5:36:53:71:0c:5e:cc:08:99:66:e1:52:89:ac:88:f2:f0:42: f5:ea:a2:3c:0d:80:9f:aa:c9:16:fb:fa:6d:81:30:33:66:6c: c4:b9:84:d3:dd:7c:d2:b4:0b:a5:6d:e2:83:b9:73:22:84:ce: 28:47:8d:09:89:86:c3:bc:69:2b:77:ca:fc:8e:e4:56:36:02: 7a:7d:4f:d4:9c:6b:8b:2f:78:63:e1:6f:af:78:73:ce:ce:ca: 71:ce:1b:67:77:1a:b2:3a:9b:1b:78:af:73:8c:e5:fa:38:c6: 16:43:09:df:45:33:a3:10:7b:83:0a:20:b5:9a:2b:57:37:b8: b5:62:11:c7:8e:9f:f7:85:ae:c7:35:a1:7e:c3:86:7f:65:40: 15:9b:58:9f:98:db:88:bc:41:23:4d:b5:4c:1a:07:96:89:8f: a3:33:d8:d5:bd:74:b5:24:f6:3b:95:86:b3:2b:3e:b9:a8:48: ac:ba:38:20:8a:ef:9d:01:f8:7a:f2:fa:19:22:20:23:c7:00: 8d:55:8d:11:26:85:4d:93:28:98:10:a4:e3:95:ef:0b:c7:8b: 35:46:7b:9c:d9:44:46:88:3c:6f:7d:5e:c1:6d:24:d8:4c:11: 42:7a:c2:a2:74:31:92:25:b0:30:c3:89:ca:b7:7b:59:26:d2: 48:52:72:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAYFrN5vU7z+1Js5R6xgSJao1j1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA4MzAxNTU1MDFaFw0yNTA4MjkxNjAwMDFaMDMxMTAvBgNV BAMTKDc2N0Y2RjUyMkMwNDI1QkFDNkFDMDVEQTFENTY5OUQzMkMwOTk1MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/rP7n10jXA9GVd2D032/CFous mbBAKks6nF7UNspF0ZcWgx/jC0q6Zz1Y7rlOgQ5JRqYVFu9m76BZnHjXE5WgD1g8 3tZwKeel27uELLYzVJkYctRtS8uMQ79OzfA5zQnrL8IFWcQbmcr/Th0jU46yuwO0 CakbP4XW0rXlyrU9eNys4pLFlCudUHSCILa0giEjzOHO0RqZU6yE+SGhmxtLWoRu EiSzUwkJKlTY6Ts2RlNpEjQr1ZLeT7wo+29azTp5hRHFYCtKO4kjFRQCQHpRbzXd UaGoigkHyBafXYfAXR42wxlSMCQFOqqUtnXnugRfow+bvGi49oTkLzmf8thpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdn9vUiwEJbrGrAXaHVaZ0ywJlQwwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG4sqjANBgkqhkiG 9w0BAQsFAAOCAQEAtTZTcQxezAiZZuFSiayI8vBC9eqiPA2An6rJFvv6bYEwM2Zs xLmE09180rQLpW3ig7lzIoTOKEeNCYmGw7xpK3fK/I7kVjYCen1P1Jxriy94Y+Fv r3hzzs7Kcc4bZ3casjqbG3ivc4zl+jjGFkMJ30UzoxB7gwogtZorVze4tWIRx46f 94WuxzWhfsOGf2VAFZtYn5jbiLxBI021TBoHlomPozPY1b10tST2O5WGsys+uahI rLo4IIrvnQH4evL6GSIgI8cAjVWNESaFTZMomBCk45XvC8eLNUZ7nNlERog8b31e wW0k2EwRQnrConQxkiWwMMOJyrd7WSbSSFJysw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org