$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3131392e3131302e36382e302f32322d3234203d3e203338333230.roa File: 3131392e3131302e36382e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: 3PrOJddLmRUntaJFO81dC5M5d7S+uJDQaFI1IOLs8ac= Subject key identifier: F4:D5:26:79:F6:ED:DB:DE:D3:16:CD:1B:E7:5A:95:B2:96:32:CA:9F Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 056A853604661C5A83EA14B35B5C634CC4826998 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3131392e3131302e36382e302f32322d3234203d3e203338333230.roa Signing time: Tue 26 Mar 2024 04:00:00 +0000 ROA not before: Tue 26 Mar 2024 03:55:00 +0000 ROA not after: Tue 25 Mar 2025 04:00:00 +0000 asID: 38320 IP address blocks: 119.110.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:6a:85:36:04:66:1c:5a:83:ea:14:b3:5b:5c:63:4c:c4:82:69:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Mar 26 03:55:00 2024 GMT Not After : Mar 25 04:00:00 2025 GMT Subject: CN=F4D52679F6EDDBDED316CD1BE75A95B29632CA9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:41:f1:53:18:28:08:93:b2:51:cc:cc:07:bd: be:06:13:b2:2c:a9:79:3c:a5:1f:79:07:12:1a:77: 0a:7d:28:b7:dd:de:ed:d7:2d:83:16:ce:cf:ca:41: 35:01:ac:d6:2a:ae:62:62:d0:05:b3:72:b8:b5:ee: 44:fa:28:5f:f2:94:10:e0:90:2d:e4:d0:7d:17:0f: 25:65:16:54:49:64:fa:bd:0f:d1:24:01:8e:ce:ab: a0:ce:57:e0:04:19:16:56:7e:4a:a5:4c:97:8c:18: 35:da:9f:73:af:58:0d:24:b5:42:06:2e:73:05:4f: c3:47:3e:99:79:47:a8:b6:f8:37:ae:4b:b7:42:fb: d8:a0:cf:96:88:f3:53:d0:af:73:e4:c3:16:f0:1f: 95:5d:be:18:6a:7a:16:48:86:0e:bc:1b:02:fd:20: 4d:28:be:61:d7:aa:92:25:b7:7e:6b:34:08:89:d6: d9:d9:b8:27:46:32:f5:ca:15:ae:1c:41:77:1a:b7: fa:48:76:0e:e4:4f:c4:ce:7d:40:c3:aa:64:c5:3f: d9:2d:8b:56:19:9d:d1:7d:85:82:a8:52:ac:6b:6c: 4b:8e:d1:79:a4:29:c3:27:bd:d2:70:88:18:91:66: 44:aa:1b:c9:32:17:86:55:01:2e:39:0d:f4:59:e5: de:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D5:26:79:F6:ED:DB:DE:D3:16:CD:1B:E7:5A:95:B2:96:32:CA:9F X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3131392e3131302e36382e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.68.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:4f:29:1a:6e:7e:12:e6:51:e5:4b:4c:74:bb:1e:d3:32:f1: f1:e6:f6:4c:f7:80:a3:1a:05:3a:04:45:af:3e:1e:00:d5:45: 26:4f:e3:38:df:58:be:d6:6a:96:0d:9f:d3:52:23:db:8f:b0: bb:10:64:4b:14:1a:12:c5:fc:d5:a5:9f:96:89:b0:30:b8:40: 47:79:38:7a:00:ad:72:e0:f6:31:0a:1e:cb:5e:87:2b:d5:39: 92:4b:6e:76:5b:52:0d:a3:e5:2b:c1:29:a3:54:99:cd:15:89: 71:c0:7a:2c:a1:c2:ee:c2:81:2d:64:b0:ae:b9:9a:b9:7d:bb: f6:39:12:14:66:4e:dc:ba:39:ea:3a:20:94:b4:1e:c5:35:1a: 4b:91:8a:1b:21:1a:8e:96:aa:4f:23:08:68:77:93:9c:74:29: d4:90:0a:b7:4b:d0:66:0a:f7:46:66:81:d5:61:1a:ae:c2:1a: 0a:16:39:f8:74:6b:5c:9c:b5:2f:88:93:99:ed:6e:bc:e2:eb: 63:38:65:82:16:a6:55:d9:43:cb:4e:bd:10:71:60:24:d2:58: c6:cc:7e:6b:54:f3:c0:ba:2b:2d:3d:02:eb:1c:ed:74:5f:df: d0:05:8e:f3:20:2c:14:51:f7:a8:f3:42:35:7c:e3:8d:ac:ff: bd:e9:57:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBWqFNgRmHFqD6hSzW1xjTMSCaZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDAzMjYwMzU1MDBaFw0yNTAzMjUwNDAwMDBaMDMxMTAvBgNV BAMTKEY0RDUyNjc5RjZFRERCREVEMzE2Q0QxQkU3NUE5NUIyOTYzMkNBOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWQfFTGCgIk7JRzMwHvb4GE7Is qXk8pR95BxIadwp9KLfd3u3XLYMWzs/KQTUBrNYqrmJi0AWzcri17kT6KF/ylBDg kC3k0H0XDyVlFlRJZPq9D9EkAY7Oq6DOV+AEGRZWfkqlTJeMGDXan3OvWA0ktUIG LnMFT8NHPpl5R6i2+DeuS7dC+9igz5aI81PQr3PkwxbwH5VdvhhqehZIhg68GwL9 IE0ovmHXqpIlt35rNAiJ1tnZuCdGMvXKFa4cQXcat/pIdg7kT8TOfUDDqmTFP9kt i1YZndF9hYKoUqxrbEuO0XmkKcMnvdJwiBiRZkSqG8kyF4ZVAS45DfRZ5d6FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9NUmefbt297TFs0b51qVspYyyp8wHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMxMzEzOTJlMzEzMTMwMmUzNjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnduRDANBgkqhkiG 9w0BAQsFAAOCAQEAGk8pGm5+EuZR5UtMdLse0zLx8eb2TPeAoxoFOgRFrz4eANVF Jk/jON9YvtZqlg2f01Ij24+wuxBkSxQaEsX81aWflomwMLhAR3k4egCtcuD2MQoe y16HK9U5kktudltSDaPlK8Epo1SZzRWJccB6LKHC7sKBLWSwrrmauX279jkSFGZO 3Lo56joglLQexTUaS5GKGyEajpaqTyMIaHeTnHQp1JAKt0vQZgr3RmaB1WEarsIa ChY5+HRrXJy1L4iTme1uvOLrYzhlghamVdlDy069EHFgJNJYxsx+a1TzwLorLT0C 6xztdF/f0AWO8yAsFFH3qPNCNXzjjaz/velXXQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org