$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa File: 3132302e38392e39302e302f32332d3234203d3e20313335343737.roa (raw, json) Hash identifier: dK7eIqeYPbIOw6nXsyQPzgXcTaUh+WVDmTdqwqkNOyk= Subject key identifier: DA:C4:4E:A9:9B:F6:84:C0:DB:03:35:5D:CB:8E:25:FE:7B:0B:6E:1A Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 1CC9E94DF7B5A09387820FA5687E7EC55956F8C0 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa Signing time: Thu 05 Sep 2024 17:00:01 +0000 ROA not before: Thu 05 Sep 2024 16:55:01 +0000 ROA not after: Thu 04 Sep 2025 17:00:01 +0000 asID: 135477 IP address blocks: 120.89.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:c9:e9:4d:f7:b5:a0:93:87:82:0f:a5:68:7e:7e:c5:59:56:f8:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Sep 5 16:55:01 2024 GMT Not After : Sep 4 17:00:01 2025 GMT Subject: CN=DAC44EA99BF684C0DB03355DCB8E25FE7B0B6E1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9f:db:4d:56:51:5c:ce:b0:9a:bf:ff:e5:68: 94:5e:79:49:97:f0:92:95:fd:b5:6f:3e:70:23:dc: bf:4a:d3:20:11:64:1e:dd:6e:50:c7:dd:b4:52:55: f6:98:94:50:e4:79:72:da:ca:3f:5f:02:7e:7f:51: 12:7f:0e:6f:90:d2:05:48:a7:e8:51:e7:9f:2b:dc: bc:c1:22:e4:ad:fa:b9:6d:61:0d:66:80:a1:ed:00: ae:cc:95:e0:0e:a6:2a:b7:bd:0e:34:79:26:fd:1d: 0b:4f:8a:43:42:0b:c8:38:b5:0d:f7:86:96:79:dd: a0:f5:22:bd:3b:a3:ba:d6:88:6e:6c:a6:c3:47:3d: ee:13:57:03:f3:46:4e:49:23:2d:98:f9:18:47:5b: 78:4b:57:ec:f1:5a:3e:40:36:3a:7e:59:2a:73:c1: 30:f6:62:6c:9a:32:d6:06:02:f4:c1:52:8b:0a:3d: 39:d7:1c:0b:15:6d:ff:1d:d6:f6:f2:00:77:99:1f: 83:92:26:49:0a:d7:61:d6:d6:18:e7:21:66:64:d7: a4:2f:63:c8:1d:bd:a2:7f:3b:03:0c:5a:d7:43:a9: 8a:47:c5:cc:6d:27:7f:d8:10:a7:26:c7:60:77:fb: 9d:a1:d3:69:0e:c3:b8:85:a3:82:d6:df:82:bf:6c: 3e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C4:4E:A9:9B:F6:84:C0:DB:03:35:5D:CB:8E:25:FE:7B:0B:6E:1A X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.89.90.0/23 Signature Algorithm: sha256WithRSAEncryption 39:8f:22:9c:d8:53:a3:4e:91:43:2c:e2:b2:13:e3:b9:58:87: 95:d0:55:b5:25:44:69:be:c8:1b:c8:e6:e4:7d:26:c7:ec:29: 83:8d:c4:c6:68:64:91:d6:1c:ec:45:cf:47:13:78:38:67:a0: 1f:a3:43:96:1b:9c:55:38:1f:1d:7c:dd:7c:46:fc:2e:cb:af: 66:9f:40:36:73:e8:4e:5c:40:1e:38:4c:47:1b:ac:8a:53:6e: e4:06:5c:59:0a:77:4d:49:05:bf:55:06:3c:ea:39:7f:d3:3f: 75:92:99:ca:b9:b9:f9:21:76:ad:e2:97:eb:7c:81:b8:9c:9d: 31:f4:c3:f1:28:95:fb:01:96:69:29:85:11:d5:1d:75:0c:9a: 62:f5:75:59:37:2d:6c:dc:d2:be:be:51:ab:a1:39:d0:80:06: ad:74:8f:ee:b8:51:e3:fc:95:c1:84:e9:61:e3:78:7f:47:e0: 8c:fe:83:60:bb:54:e9:a1:d4:60:28:48:44:b1:16:4e:c9:5a: e7:6f:cc:ac:0e:55:54:ad:ca:73:ad:31:ba:88:3f:38:a2:4f: ef:d0:37:98:ce:ac:6d:3e:da:e2:a7:25:8f:5f:65:71:82:a3: 74:eb:eb:d6:90:f2:40:a0:28:96:6b:84:f0:81:bc:d7:e2:2b: 1c:a3:fe:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHMnpTfe1oJOHgg+laH5+xVlW+MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNDA5MDUxNjU1MDFaFw0yNTA5MDQxNzAwMDFaMDMxMTAvBgNV BAMTKERBQzQ0RUE5OUJGNjg0QzBEQjAzMzU1RENCOEUyNUZFN0IwQjZFMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvn9tNVlFczrCav//laJReeUmX 8JKV/bVvPnAj3L9K0yARZB7dblDH3bRSVfaYlFDkeXLayj9fAn5/URJ/Dm+Q0gVI p+hR558r3LzBIuSt+rltYQ1mgKHtAK7MleAOpiq3vQ40eSb9HQtPikNCC8g4tQ33 hpZ53aD1Ir07o7rWiG5spsNHPe4TVwPzRk5JIy2Y+RhHW3hLV+zxWj5ANjp+WSpz wTD2YmyaMtYGAvTBUosKPTnXHAsVbf8d1vbyAHeZH4OSJkkK12HW1hjnIWZk16Qv Y8gdvaJ/OwMMWtdDqYpHxcxtJ3/YEKcmx2B3+52h02kOw7iFo4LW34K/bD5bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2sROqZv2hMDbAzVdy44l/nsLbhowHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzIzMDJlMzgzOTJlMzkzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXhZWjANBgkqhkiG 9w0BAQsFAAOCAQEAOY8inNhTo06RQyzishPjuViHldBVtSVEab7IG8jm5H0mx+wp g43ExmhkkdYc7EXPRxN4OGegH6NDlhucVTgfHXzdfEb8LsuvZp9ANnPoTlxAHjhM RxusilNu5AZcWQp3TUkFv1UGPOo5f9M/dZKZyrm5+SF2reKX63yBuJydMfTD8SiV +wGWaSmFEdUddQyaYvV1WTctbNzSvr5Rq6E50IAGrXSP7rhR4/yVwYTpYeN4f0fg jP6DYLtU6aHUYChIRLEWTsla52/MrA5VVK3Kc60xuog/OKJP79A3mM6sbT7a4qcl j19lcYKjdOvr1pDyQKAolmuE8IG81+IrHKP+SA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org