$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3131392e3131302e37322e302f32322d3234203d3e203338333230.roa File: 3131392e3131302e37322e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: jarKnfgwRfvBqVxJczyKuqTWS0OarFCufpieQVfl/8s= Subject key identifier: 5B:5D:CB:43:30:74:24:B2:AC:C4:BF:3D:7D:5E:57:06:8E:6D:AB:05 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 5FCDE516DE3D3F08E8AB63803E29CB5110891B28 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3131392e3131302e37322e302f32322d3234203d3e203338333230.roa Signing time: Mon 26 Feb 2024 05:37:43 +0000 ROA not before: Mon 26 Feb 2024 05:32:43 +0000 ROA not after: Mon 24 Feb 2025 05:37:43 +0000 asID: 38320 IP address blocks: 119.110.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:cd:e5:16:de:3d:3f:08:e8:ab:63:80:3e:29:cb:51:10:89:1b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Feb 26 05:32:43 2024 GMT Not After : Feb 24 05:37:43 2025 GMT Subject: CN=5B5DCB43307424B2ACC4BF3D7D5E57068E6DAB05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:24:2a:61:4b:0e:1b:78:a0:e2:e2:1b:73:ac: 9d:9f:96:05:6d:c9:63:e4:2b:e0:b4:42:66:a9:ac: e4:ce:3a:41:3f:53:d2:65:87:c4:06:ae:26:30:19: c8:55:9d:6e:df:4d:09:9a:9d:a8:d2:0a:5c:34:0b: 7b:86:da:7c:5b:55:8e:8d:6b:09:4f:e3:52:ef:21: 6e:81:b5:38:48:8f:52:bd:4e:f8:e0:d7:16:f6:dd: d2:aa:43:29:8c:ca:65:bf:01:ab:c6:9c:95:61:46: ef:f8:e8:7c:95:4c:cf:e9:ae:69:cc:55:bb:7e:3b: 49:36:86:32:84:b2:d9:05:85:b8:d2:c2:92:2c:8a: 77:7d:e9:0b:03:80:27:43:51:d5:65:af:50:0a:7f: e4:fc:ca:9a:32:1e:75:8e:ae:b6:7a:fa:3a:96:50: cf:7c:c8:1f:60:d0:10:29:f0:f2:80:1f:d6:a3:44: 4f:e9:e2:c1:5d:71:6e:ea:db:49:2c:93:01:05:9e: 28:d7:fe:64:80:fc:0b:22:c5:a4:b7:26:cb:53:f5: b3:cc:c7:df:fc:95:4a:6a:17:26:e7:fe:4c:f7:04: 75:a9:1d:fa:fe:c3:e5:f8:44:cd:66:0b:87:c2:4f: 0a:5d:bb:11:5d:09:b9:eb:49:1e:33:ea:cf:f8:d3: 9e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:5D:CB:43:30:74:24:B2:AC:C4:BF:3D:7D:5E:57:06:8E:6D:AB:05 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3131392e3131302e37322e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.72.0/22 Signature Algorithm: sha256WithRSAEncryption 47:3e:f8:6a:c1:da:bf:42:fd:e8:d9:d6:19:c9:9c:d1:a3:a8: 0d:b1:ad:3e:0d:fd:88:f4:5f:45:28:a2:f1:4f:52:1f:c3:72: f0:8a:95:2e:ea:de:a6:7b:e0:92:7d:aa:e3:c6:ac:ea:3f:e9: ff:88:77:e8:05:11:35:89:4a:4c:6a:8d:7e:3c:c8:dc:30:e6: 8d:0d:9b:28:fe:d2:13:ae:5f:9c:2a:b9:73:ce:69:bd:68:e5: f4:6e:e5:ab:92:37:e1:5f:52:c6:52:fe:8a:14:6e:b1:68:0b: 6f:89:2f:5a:e7:70:99:74:ca:e4:12:e9:ca:0a:1e:71:55:00: 8d:3a:a1:02:dc:b9:47:ea:a6:e4:54:07:06:f8:ac:d5:6a:ab: 29:37:83:32:0f:d8:d4:d3:97:f2:81:15:ee:c5:2c:83:a4:da: c6:58:2a:9e:55:7b:68:96:55:91:25:0a:39:c3:b2:4d:02:df: 2e:1e:59:a7:63:17:4e:5e:f1:28:e0:28:c8:bc:41:da:d3:4c: 53:b4:68:92:4f:6b:c2:c8:ef:cf:9f:2c:0e:41:57:15:51:a7: 9b:69:75:b5:4f:d6:e5:8e:c8:a1:de:ac:d7:fa:5f:94:8b:43: c3:8b:51:1b:b6:5e:73:1a:34:8f:d3:d1:4d:a3:2a:46:bb:35: 70:7d:a7:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX83lFt49Pwjoq2OAPinLURCJGygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDAyMjYwNTMyNDNaFw0yNTAyMjQwNTM3NDNaMDMxMTAvBgNV BAMTKDVCNURDQjQzMzA3NDI0QjJBQ0M0QkYzRDdENUU1NzA2OEU2REFCMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWJCphSw4beKDi4htzrJ2flgVt yWPkK+C0QmaprOTOOkE/U9Jlh8QGriYwGchVnW7fTQmanajSClw0C3uG2nxbVY6N awlP41LvIW6BtThIj1K9Tvjg1xb23dKqQymMymW/AavGnJVhRu/46HyVTM/prmnM Vbt+O0k2hjKEstkFhbjSwpIsind96QsDgCdDUdVlr1AKf+T8ypoyHnWOrrZ6+jqW UM98yB9g0BAp8PKAH9ajRE/p4sFdcW7q20kskwEFnijX/mSA/AsixaS3JstT9bPM x9/8lUpqFybn/kz3BHWpHfr+w+X4RM1mC4fCTwpduxFdCbnrSR4z6s/4056rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUW13LQzB0JLKsxL89fV5XBo5tqwUwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMxMzEzOTJlMzEzMTMwMmUzNzMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnduSDANBgkqhkiG 9w0BAQsFAAOCAQEARz74asHav0L96NnWGcmc0aOoDbGtPg39iPRfRSii8U9SH8Ny 8IqVLurepnvgkn2q48as6j/p/4h36AURNYlKTGqNfjzI3DDmjQ2bKP7SE65fnCq5 c85pvWjl9G7lq5I34V9SxlL+ihRusWgLb4kvWudwmXTK5BLpygoecVUAjTqhAty5 R+qm5FQHBvis1WqrKTeDMg/Y1NOX8oEV7sUsg6TaxlgqnlV7aJZVkSUKOcOyTQLf Lh5Zp2MXTl7xKOAoyLxB2tNMU7Rokk9rwsjvz58sDkFXFVGnm2l1tU/W5Y7Iod6s 1/pflItDw4tRG7Zecxo0j9PRTaMqRrs1cH2nZg== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org