$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa File: 3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa (raw, json) Hash identifier: +ioxMWbzQIk8162X0SpHMt662sECkzs897/VKWy1MDU= Subject key identifier: A8:BD:53:E0:A6:E1:5C:2D:82:A6:15:99:6F:D3:37:3A:0A:88:7F:28 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 5284CA87237628413F8A4E21E8C5C3BD3CCAA4AA Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa Signing time: Wed 06 Nov 2024 09:19:04 +0000 ROA not before: Wed 06 Nov 2024 09:14:04 +0000 ROA not after: Wed 05 Nov 2025 09:19:04 +0000 asID: 138077 IP address blocks: 110.44.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:84:ca:87:23:76:28:41:3f:8a:4e:21:e8:c5:c3:bd:3c:ca:a4:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Nov 6 09:14:04 2024 GMT Not After : Nov 5 09:19:04 2025 GMT Subject: CN=A8BD53E0A6E15C2D82A615996FD3373A0A887F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:35:d6:d0:51:7c:ad:65:13:d5:c2:89:3f:93: 67:c9:03:66:9d:88:b4:fa:c9:65:dd:de:75:2d:6e: e4:54:f4:c1:0f:38:e0:bb:41:e2:d8:03:26:a2:a4: 59:1c:29:62:5d:31:ea:3a:20:04:15:93:00:59:89: a6:63:14:ab:51:7e:f6:1c:d4:03:f9:1c:6e:5e:41: c6:d9:ce:90:ae:46:16:dd:a0:97:ef:fc:82:77:0d: 33:2e:3c:bb:98:ad:90:af:91:fa:cb:cf:a1:84:f0: 0e:44:c0:3f:b8:dd:40:c0:a1:a6:bb:ae:d8:7e:e3: 97:d6:80:c6:f6:90:d9:be:06:51:b8:4f:28:c7:0f: 03:2e:79:65:a1:03:dc:73:46:c6:91:a3:3c:3d:20: ee:55:72:58:8c:31:95:82:15:da:38:1d:81:f4:b4: 30:f5:96:5d:d9:ef:e3:f6:ec:80:a5:ee:51:b9:ca: 3d:bc:53:30:16:33:dd:2c:58:e2:7b:69:70:fa:c4: fd:d7:cd:7b:07:b1:42:09:ca:ba:6f:81:3a:9c:88: 8a:df:5d:0a:39:e1:da:dd:ed:cc:53:85:79:c7:84: 41:0d:b8:ec:46:31:29:83:c9:c1:5b:1b:ef:f9:6e: 71:78:b6:a1:f4:9e:70:84:0b:68:c3:de:3c:eb:b9: b6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BD:53:E0:A6:E1:5C:2D:82:A6:15:99:6F:D3:37:3A:0A:88:7F:28 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.172.0/22 Signature Algorithm: sha256WithRSAEncryption 23:54:60:3c:19:94:d0:09:a6:44:8c:da:33:f1:36:10:45:d8: 25:a4:13:46:f8:98:32:76:6d:a8:6d:30:7c:95:68:7b:60:ac: db:62:2e:94:76:06:63:6f:6f:2c:4b:12:78:fb:b0:0c:3b:c0: 92:02:2b:9e:78:9b:b8:e8:ee:a3:76:df:5b:22:38:26:32:a9: c9:5a:37:19:e7:b5:fb:e5:32:3d:a9:69:3e:09:57:12:93:f8: 81:dd:1d:32:d8:82:89:53:d6:f9:48:53:bd:c3:c3:c6:29:d5: a0:a8:4a:43:95:a2:74:db:b9:58:5c:4d:57:eb:64:86:40:26: 5d:06:5a:cf:32:ee:1c:d7:bc:4c:d4:9f:19:c1:74:8c:d6:0a: fe:5f:7b:57:51:4f:07:78:cd:4c:7c:6e:98:d9:2a:43:d9:52: b9:a9:69:da:67:41:b3:d1:1e:da:02:cd:6d:db:90:32:b9:cc: 1f:08:69:ba:03:dc:00:3a:71:5d:ea:d7:32:73:4a:2f:b2:37: c7:62:95:4f:49:a4:a9:1e:02:37:5b:ca:bb:06:0d:ab:a9:7b: b4:13:8a:fe:6f:5e:77:8b:ea:d7:52:c7:16:82:1c:f0:98:af: 03:70:37:ab:7b:89:13:a1:41:c1:4c:bb:cc:56:a5:2b:dd:f1: ee:18:4a:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUoTKhyN2KEE/ik4h6MXDvTzKpKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDExMDYwOTE0MDRaFw0yNTExMDUwOTE5MDRaMDMxMTAvBgNV BAMTKEE4QkQ1M0UwQTZFMTVDMkQ4MkE2MTU5OTZGRDMzNzNBMEE4ODdGMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPNdbQUXytZRPVwok/k2fJA2ad iLT6yWXd3nUtbuRU9MEPOOC7QeLYAyaipFkcKWJdMeo6IAQVkwBZiaZjFKtRfvYc 1AP5HG5eQcbZzpCuRhbdoJfv/IJ3DTMuPLuYrZCvkfrLz6GE8A5EwD+43UDAoaa7 rth+45fWgMb2kNm+BlG4TyjHDwMueWWhA9xzRsaRozw9IO5VcliMMZWCFdo4HYH0 tDD1ll3Z7+P27ICl7lG5yj28UzAWM90sWOJ7aXD6xP3XzXsHsUIJyrpvgTqciIrf XQo54drd7cxThXnHhEENuOxGMSmDycFbG+/5bnF4tqH0nnCEC2jD3jzrubadAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqL1T4KbhXC2CphWZb9M3OgqIfygwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCbiysMA0GCSqG SIb3DQEBCwUAA4IBAQAjVGA8GZTQCaZEjNoz8TYQRdglpBNG+Jgydm2obTB8lWh7 YKzbYi6UdgZjb28sSxJ4+7AMO8CSAiueeJu46O6jdt9bIjgmMqnJWjcZ57X75TI9 qWk+CVcSk/iB3R0y2IKJU9b5SFO9w8PGKdWgqEpDlaJ027lYXE1X62SGQCZdBlrP Mu4c17xM1J8ZwXSM1gr+X3tXUU8HeM1MfG6Y2SpD2VK5qWnaZ0Gz0R7aAs1t25Ay ucwfCGm6A9wAOnFd6tcyc0ovsjfHYpVPSaSpHgI3W8q7Bg2rqXu0E4r+b153i+rX UscWghzwmK8DcDere4kToUHBTLvMVqUr3fHuGEqp -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org