$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137332e302f32342d3234203d3e203234323036.roa File: 3131302e34342e3137332e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: li3+zt3TmHt/fV4vbkQyS3SnglDc4v0aBgf/GDFQJT4= Subject key identifier: 79:E3:B5:52:BA:09:1F:F4:1F:F6:63:7E:D5:CA:74:C2:F9:FD:7E:9D Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 40091EA10DDEA0B29CE4B6CA0F00D8ADBC0D318E Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137332e302f32342d3234203d3e203234323036.roa Signing time: Fri 23 Aug 2024 09:23:03 +0000 ROA not before: Fri 23 Aug 2024 09:18:03 +0000 ROA not after: Fri 22 Aug 2025 09:23:03 +0000 asID: 24206 IP address blocks: 110.44.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:09:1e:a1:0d:de:a0:b2:9c:e4:b6:ca:0f:00:d8:ad:bc:0d:31:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 23 09:18:03 2024 GMT Not After : Aug 22 09:23:03 2025 GMT Subject: CN=79E3B552BA091FF41FF6637ED5CA74C2F9FD7E9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e6:2d:99:54:df:58:a8:9c:9d:a1:61:41:e1: 27:11:1a:9a:c7:33:e4:8a:22:8c:aa:c7:9b:8e:83: 7e:e9:99:c1:ee:67:81:44:09:0f:7f:6a:a4:50:8b: 76:6d:04:79:85:fb:74:a9:eb:3b:82:51:95:fb:52: 3b:a3:0c:9d:ee:72:ba:a8:0d:cc:95:4b:59:bd:5d: de:4a:0c:13:da:ac:33:39:40:4a:c8:e3:76:7d:d0: 88:2b:b6:2f:4e:1f:e4:47:c7:86:f4:43:9c:ee:a4: 4a:96:14:f9:b3:09:0b:f4:7e:ed:ea:c1:cd:75:20: fb:21:13:13:47:12:fa:b6:14:8c:2b:c5:32:83:99: 19:27:87:e3:53:20:4f:45:9b:e3:3a:55:3f:3b:20: 1f:47:27:25:33:03:0f:df:80:5d:07:da:d5:5d:ee: 2b:cd:4d:5d:ae:26:ca:61:de:92:80:1d:d1:ac:d9: fa:30:69:48:85:bd:02:55:41:d6:39:ef:19:9a:f6: b2:84:7e:dd:54:7f:f1:4b:e3:79:94:ee:49:46:3e: a4:36:57:de:2b:d7:c3:34:a9:dc:b8:be:08:3a:8d: b5:2f:a2:c4:16:5a:a8:5a:35:c2:5d:31:fe:dd:fa: e8:a3:6b:a8:1e:f1:64:86:5e:ed:41:c0:6e:60:a5: bb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E3:B5:52:BA:09:1F:F4:1F:F6:63:7E:D5:CA:74:C2:F9:FD:7E:9D X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137332e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.173.0/24 Signature Algorithm: sha256WithRSAEncryption a6:7f:9b:c8:e4:1c:1f:31:79:f0:de:1b:31:d4:cb:32:fb:e9: 9c:10:2b:12:14:22:2a:8b:5d:84:c8:08:37:f9:16:c7:74:68: 3a:52:09:8a:e7:79:15:16:ee:38:cf:5e:58:73:9e:85:2b:1c: 50:b2:e5:37:03:b9:9a:bd:c8:c0:ae:ef:3e:6a:66:93:85:4a: 9f:14:6d:d8:74:93:4a:76:a1:c3:8b:27:bf:ed:1a:48:10:5f: 76:5d:0a:71:eb:5c:85:7c:6e:e8:e3:1f:a3:6e:84:46:f1:3b: 1a:dc:09:6b:f9:90:a7:8d:28:70:8b:95:47:30:b6:90:fd:dd: 1f:12:30:42:69:2d:7b:82:b9:78:09:71:10:c8:37:e9:bd:00: 25:f0:2b:46:6a:7b:b1:1c:2b:94:d3:ca:e4:41:53:ed:22:37: d7:65:cb:87:6b:c1:2e:49:0e:ba:ff:1a:42:d4:d0:2a:1d:8a: e0:d5:88:a1:20:22:8c:68:99:78:e5:ea:c2:de:0d:2f:70:11: 37:80:99:69:56:b2:45:a5:ab:da:90:bd:69:fb:e2:51:ed:9b: 2a:50:4f:49:16:a7:bd:6f:52:89:d3:11:59:96:b2:64:77:df: bb:27:8d:80:18:59:79:75:cb:03:6e:2d:18:b3:a4:5d:55:3e: 08:d8:98:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQAkeoQ3eoLKc5LbKDwDYrbwNMY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA4MjMwOTE4MDNaFw0yNTA4MjIwOTIzMDNaMDMxMTAvBgNV BAMTKDc5RTNCNTUyQkEwOTFGRjQxRkY2NjM3RUQ1Q0E3NEMyRjlGRDdFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe5i2ZVN9YqJydoWFB4ScRGprH M+SKIoyqx5uOg37pmcHuZ4FECQ9/aqRQi3ZtBHmF+3Sp6zuCUZX7UjujDJ3ucrqo DcyVS1m9Xd5KDBParDM5QErI43Z90Igrti9OH+RHx4b0Q5zupEqWFPmzCQv0fu3q wc11IPshExNHEvq2FIwrxTKDmRknh+NTIE9Fm+M6VT87IB9HJyUzAw/fgF0H2tVd 7ivNTV2uJsph3pKAHdGs2fowaUiFvQJVQdY57xma9rKEft1Uf/FL43mU7klGPqQ2 V94r18M0qdy4vgg6jbUvosQWWqhaNcJdMf7d+uija6ge8WSGXu1BwG5gpbvjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeeO1UroJH/Qf9mN+1cp0wvn9fp0wHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG4srTANBgkqhkiG 9w0BAQsFAAOCAQEApn+byOQcHzF58N4bMdTLMvvpnBArEhQiKotdhMgIN/kWx3Ro OlIJiud5FRbuOM9eWHOehSscULLlNwO5mr3IwK7vPmpmk4VKnxRt2HSTSnahw4sn v+0aSBBfdl0KcetchXxu6OMfo26ERvE7GtwJa/mQp40ocIuVRzC2kP3dHxIwQmkt e4K5eAlxEMg36b0AJfArRmp7sRwrlNPK5EFT7SI312XLh2vBLkkOuv8aQtTQKh2K 4NWIoSAijGiZeOXqwt4NL3ARN4CZaVayRaWr2pC9afviUe2bKlBPSRanvW9SidMR WZayZHffuyeNgBhZeXXLA24tGLOkXVU+CNiYqQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org