$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137312e302f32342d3234203d3e203234323036.roa File: 3131302e34342e3137312e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: NYon6seWVPGfj3szG9Lc+42jdaypbm8ZjYwi9OVBxlE= Subject key identifier: F0:A2:7C:4B:ED:9F:E7:C4:06:7E:93:76:21:31:8D:58:A8:07:B6:6D Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 5443C4E15A9764C972B8F4689974C5E98DEB8BB3 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137312e302f32342d3234203d3e203234323036.roa Signing time: Fri 30 Aug 2024 16:00:01 +0000 ROA not before: Fri 30 Aug 2024 15:55:01 +0000 ROA not after: Fri 29 Aug 2025 16:00:01 +0000 asID: 24206 IP address blocks: 110.44.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:43:c4:e1:5a:97:64:c9:72:b8:f4:68:99:74:c5:e9:8d:eb:8b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 30 15:55:01 2024 GMT Not After : Aug 29 16:00:01 2025 GMT Subject: CN=F0A27C4BED9FE7C4067E937621318D58A807B66D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:bb:df:19:b6:c7:be:a9:a6:77:23:9e:be:f6: dd:7a:ec:27:0e:de:b9:8c:ef:c6:da:0f:5a:e8:d3: 12:c7:a4:4e:43:57:f9:8c:96:9f:8b:84:12:f9:bc: 42:39:c3:5c:43:e7:ee:7b:47:80:f4:d3:01:f6:0a: c1:c4:27:b3:0d:2d:3f:bf:b1:5b:97:41:14:80:79: f0:9c:d9:08:89:20:33:b9:e8:1a:a0:a5:99:18:7d: 4a:a0:f5:4c:65:3d:00:63:e5:c9:f3:c8:e9:0d:a5: ec:19:32:ca:48:bd:71:18:3f:45:8c:f6:77:cb:98: a0:a3:09:ea:0e:d9:83:9b:81:c1:98:33:23:21:f9: f2:10:df:7e:cd:b6:1d:23:c7:3e:9d:1d:02:8a:eb: 45:16:a3:d4:a4:35:4b:2c:d4:33:4f:7f:d0:8a:75: 9d:a7:0c:d4:c5:47:ef:90:7b:ca:a0:a2:35:3f:67: c1:0f:cd:17:d7:bb:1b:54:14:62:f4:56:4f:7e:38: c5:52:7c:af:5a:4a:6c:58:1d:55:e1:f3:71:a7:4b: fa:fa:ce:23:a4:ba:8c:84:4e:59:02:77:1d:23:7d: ab:af:00:b7:39:ea:89:46:ce:a7:b8:7c:d4:01:06: da:47:4a:76:ca:2d:c5:a9:9d:90:18:24:e1:1d:dd: 06:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A2:7C:4B:ED:9F:E7:C4:06:7E:93:76:21:31:8D:58:A8:07:B6:6D X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137312e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.171.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:a8:d7:8e:77:5d:09:b6:69:66:8f:c5:ba:e1:b3:2a:6b:62: 04:bc:7a:70:18:ae:e5:39:11:38:e2:53:51:cc:6b:75:69:63: d6:b6:25:93:dd:87:ff:74:e2:1b:88:a4:63:ba:31:47:fd:da: 14:90:bf:f0:a4:06:37:88:ee:5b:03:1f:0e:84:1d:cb:99:fe: c6:28:6b:90:ac:53:3b:49:dc:b2:ca:66:ee:96:1d:29:2e:82: 69:0d:b7:05:4a:25:d0:ce:09:f1:cd:63:49:b4:4a:c3:08:dd: 5d:d4:f5:14:85:ec:29:f9:1d:30:c0:ea:56:79:f2:76:68:c4: 0c:8c:60:36:59:a6:3c:b8:37:1c:64:3f:1e:94:27:80:fa:5b: 81:8a:51:52:92:d2:dd:d0:95:f1:49:f1:c4:32:0c:57:3d:2f: 2e:02:06:9e:d4:10:c6:f4:3d:15:10:ee:02:55:0e:f8:0b:f6: 2d:9a:f5:ac:d4:47:cb:1b:87:0a:70:79:ae:55:63:7d:bd:ca: cb:28:a6:d5:c7:68:fa:26:73:44:12:8e:da:19:3f:fc:54:8b: cf:e4:b5:00:e2:4e:92:f1:15:48:b9:c3:8f:8a:21:05:b9:76: 6d:e3:43:08:32:94:ac:56:72:7f:ea:4b:b7:1b:f4:fe:9a:c5: 99:33:e3:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVEPE4VqXZMlyuPRomXTF6Y3ri7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA4MzAxNTU1MDFaFw0yNTA4MjkxNjAwMDFaMDMxMTAvBgNV BAMTKEYwQTI3QzRCRUQ5RkU3QzQwNjdFOTM3NjIxMzE4RDU4QTgwN0I2NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbu98Ztse+qaZ3I56+9t167CcO 3rmM78baD1ro0xLHpE5DV/mMlp+LhBL5vEI5w1xD5+57R4D00wH2CsHEJ7MNLT+/ sVuXQRSAefCc2QiJIDO56BqgpZkYfUqg9UxlPQBj5cnzyOkNpewZMspIvXEYP0WM 9nfLmKCjCeoO2YObgcGYMyMh+fIQ337Nth0jxz6dHQKK60UWo9SkNUss1DNPf9CK dZ2nDNTFR++Qe8qgojU/Z8EPzRfXuxtUFGL0Vk9+OMVSfK9aSmxYHVXh83GnS/r6 ziOkuoyETlkCdx0jfauvALc56olGzqe4fNQBBtpHSnbKLcWpnZAYJOEd3Qa7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8KJ8S+2f58QGfpN2ITGNWKgHtm0wHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG4sqzANBgkqhkiG 9w0BAQsFAAOCAQEAfKjXjnddCbZpZo/FuuGzKmtiBLx6cBiu5TkROOJTUcxrdWlj 1rYlk92H/3TiG4ikY7oxR/3aFJC/8KQGN4juWwMfDoQdy5n+xihrkKxTO0ncsspm 7pYdKS6CaQ23BUol0M4J8c1jSbRKwwjdXdT1FIXsKfkdMMDqVnnydmjEDIxgNlmm PLg3HGQ/HpQngPpbgYpRUpLS3dCV8UnxxDIMVz0vLgIGntQQxvQ9FRDuAlUO+Av2 LZr1rNRHyxuHCnB5rlVjfb3Kyyim1cdo+iZzRBKO2hk//FSLz+S1AOJOkvEVSLnD j4ohBbl2beNDCDKUrFZyf+pLtxv0/prFmTPjKw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org