$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137352e302f32342d3234203d3e203234323036.roa File: 3131302e34342e3137352e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: cH7v8G2r60zH8sGcnj5VLe2SvPpJeovz57VEG8qukmM= Subject key identifier: F7:8F:08:DF:C3:BE:FD:9C:21:AA:2C:A7:72:F9:B6:F2:D5:78:24:B3 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 176B21D482513B7929F3EB4DA00FB49DF7B12425 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137352e302f32342d3234203d3e203234323036.roa Signing time: Fri 23 Aug 2024 09:23:53 +0000 ROA not before: Fri 23 Aug 2024 09:18:53 +0000 ROA not after: Fri 22 Aug 2025 09:23:53 +0000 asID: 24206 IP address blocks: 110.44.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6b:21:d4:82:51:3b:79:29:f3:eb:4d:a0:0f:b4:9d:f7:b1:24:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 23 09:18:53 2024 GMT Not After : Aug 22 09:23:53 2025 GMT Subject: CN=F78F08DFC3BEFD9C21AA2CA772F9B6F2D57824B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9f:3c:f9:80:9a:08:f8:c5:bd:45:f2:0e:cc: d2:21:ca:81:ec:75:3c:02:bf:ee:52:ac:f7:b6:2f: f1:f7:ce:09:03:42:b3:8b:f4:ee:38:54:1a:f3:8d: db:63:2c:9d:eb:de:0f:2c:4b:5e:27:77:43:5c:19: bc:47:b8:c2:5e:29:b7:00:ee:3b:c6:f6:19:c9:78: 6a:2e:2f:d4:c2:fe:ea:6a:37:39:77:0e:f7:e4:e0: 3c:7d:c3:49:70:c4:30:ca:67:a4:b2:5d:4b:53:1d: e8:8b:06:d5:99:50:d3:f6:6d:a3:e9:af:2f:a2:34: f4:05:5d:56:ef:bf:f6:61:f6:0f:87:32:2e:2d:3e: 66:43:94:76:91:5c:43:24:88:b1:6e:bc:62:dd:5f: 24:65:6e:80:54:4e:9d:cd:c8:e0:58:b3:5c:0f:ee: aa:3c:71:da:46:a7:06:8d:77:f9:13:f6:93:39:e9: 0e:99:3c:a2:db:e3:b1:87:d4:a2:bf:fc:6c:8b:93: 26:a2:77:01:f2:0c:c9:1c:a5:b2:22:ba:1a:e9:08: 66:b0:04:15:98:ff:a7:7f:bf:5d:30:73:23:86:12: 16:a0:d7:30:02:0f:6c:6a:ac:cc:20:18:1c:a2:4b: 03:43:bf:5c:b2:44:4b:75:50:57:9b:9c:b4:7d:d0: 9f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8F:08:DF:C3:BE:FD:9C:21:AA:2C:A7:72:F9:B6:F2:D5:78:24:B3 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137352e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.175.0/24 Signature Algorithm: sha256WithRSAEncryption 07:29:dd:54:2a:bd:e5:65:74:52:0c:59:b8:2c:be:40:cf:c8: de:5d:81:54:be:ee:93:e4:07:56:65:63:9d:4a:30:fe:9a:4a: 81:1b:50:48:08:b9:ef:f2:5a:ef:de:4a:7b:eb:c6:0c:84:b1: 29:c9:25:87:61:60:2c:e2:6b:ae:c4:30:6a:2a:02:4c:94:16: 09:94:9b:7c:ea:fb:b9:85:2e:1a:38:c3:2a:c4:cd:80:1e:93: 38:fe:9d:7c:f9:cc:ac:ec:11:27:ca:77:55:89:99:d4:d2:e6: 2c:67:d3:e5:2d:2a:c7:7d:38:28:d8:b8:4b:d1:d3:32:7f:53: 63:97:24:59:98:c8:bb:8e:96:7d:97:ab:3a:c8:f5:32:91:bd: 81:b2:9f:fa:ce:81:00:27:62:bb:94:6a:2a:18:f2:27:cd:76: 36:b5:ca:74:36:13:8c:36:4d:7d:44:c1:50:e4:8f:49:b2:82: 05:7a:5c:92:27:83:56:08:dc:2d:95:df:63:a5:95:a1:4a:9c: 11:ed:02:00:cf:13:38:fb:62:88:e4:0d:7e:bd:29:40:ed:87: ad:92:d9:c1:af:49:e0:dd:e7:a6:86:af:1d:62:27:85:15:2a: 3b:58:67:04:3b:61:4b:1a:7f:8c:22:bc:8a:d9:e1:35:bb:1b: 90:f9:a0:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF2sh1IJRO3kp8+tNoA+0nfexJCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA4MjMwOTE4NTNaFw0yNTA4MjIwOTIzNTNaMDMxMTAvBgNV BAMTKEY3OEYwOERGQzNCRUZEOUMyMUFBMkNBNzcyRjlCNkYyRDU3ODI0QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmnzz5gJoI+MW9RfIOzNIhyoHs dTwCv+5SrPe2L/H3zgkDQrOL9O44VBrzjdtjLJ3r3g8sS14nd0NcGbxHuMJeKbcA 7jvG9hnJeGouL9TC/upqNzl3Dvfk4Dx9w0lwxDDKZ6SyXUtTHeiLBtWZUNP2baPp ry+iNPQFXVbvv/Zh9g+HMi4tPmZDlHaRXEMkiLFuvGLdXyRlboBUTp3NyOBYs1wP 7qo8cdpGpwaNd/kT9pM56Q6ZPKLb47GH1KK//GyLkyaidwHyDMkcpbIiuhrpCGaw BBWY/6d/v10wcyOGEhag1zACD2xqrMwgGByiSwNDv1yyREt1UFebnLR90J/tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU948I38O+/Zwhqiyncvm28tV4JLMwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG4srzANBgkqhkiG 9w0BAQsFAAOCAQEAByndVCq95WV0UgxZuCy+QM/I3l2BVL7uk+QHVmVjnUow/ppK gRtQSAi57/Ja795Ke+vGDISxKcklh2FgLOJrrsQwaioCTJQWCZSbfOr7uYUuGjjD KsTNgB6TOP6dfPnMrOwRJ8p3VYmZ1NLmLGfT5S0qx304KNi4S9HTMn9TY5ckWZjI u46WfZerOsj1MpG9gbKf+s6BACdiu5RqKhjyJ812NrXKdDYTjDZNfUTBUOSPSbKC BXpckieDVgjcLZXfY6WVoUqcEe0CAM8TOPtiiOQNfr0pQO2HrZLZwa9J4N3npoav HWInhRUqO1hnBDthSxp/jCK8itnhNbsbkPmgSQ== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org