$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32382e302f32342d3234203d3e20313439373436.roa File: 3131312e36382e32382e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: vT7uiKIYhyvmNGLqWyoP+PTV4q1863lGm0ht8O6eyH0= Subject key identifier: EE:D2:5E:88:9E:15:7F:88:11:3E:8C:A0:C1:F7:50:70:59:1B:D0:E3 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 79BE83B3A863388703916487967474C7BFC475F5 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32382e302f32342d3234203d3e20313439373436.roa Signing time: Sat 20 Jan 2024 17:02:53 +0000 ROA not before: Sat 20 Jan 2024 16:57:53 +0000 ROA not after: Sat 18 Jan 2025 17:02:53 +0000 asID: 149746 IP address blocks: 111.68.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:be:83:b3:a8:63:38:87:03:91:64:87:96:74:74:c7:bf:c4:75:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jan 20 16:57:53 2024 GMT Not After : Jan 18 17:02:53 2025 GMT Subject: CN=EED25E889E157F88113E8CA0C1F75070591BD0E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1f:76:51:d2:1d:f5:bb:a7:33:a7:be:b8:68: ad:a8:d3:d0:57:f4:d2:ce:37:31:9a:31:3a:ef:a4: 1f:c0:99:b0:16:2b:fa:81:23:dc:9a:95:d2:53:b0: 8a:76:88:0a:78:9b:fd:c6:d1:0c:73:b3:d4:3b:20: 9b:8f:fe:03:3b:44:db:05:4c:d1:c7:6e:b8:24:fc: d6:b8:47:a8:39:88:4f:98:b3:55:6d:c1:da:24:50: ff:c4:68:9f:e2:79:44:4b:4d:2d:33:78:04:39:9a: 70:b4:6d:04:2f:75:f2:f5:6e:0e:44:a8:1b:23:94: 38:85:50:68:36:04:76:c9:ac:7d:b9:8b:c4:15:30: d9:ce:35:45:ff:50:3a:a4:00:b4:72:1a:c8:34:a4: 73:55:07:15:e9:c3:33:5b:bd:27:ef:66:6c:32:80: b0:41:9d:03:1c:b9:cd:53:b7:71:26:9c:39:9b:18: 38:fe:ff:ab:ae:06:ae:57:a3:65:93:96:02:d8:90: 9f:ba:e8:f9:0f:c0:e6:08:b4:42:d8:02:e3:4d:c2: 9d:ef:9f:ea:84:ef:cd:af:80:23:c6:d4:0a:4d:dc: 83:e2:3d:e5:6e:0f:7d:44:be:05:a5:80:8b:e9:cd: 97:73:1d:ca:6b:46:58:67:89:ff:d4:67:b0:dc:6a: cc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D2:5E:88:9E:15:7F:88:11:3E:8C:A0:C1:F7:50:70:59:1B:D0:E3 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32382e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.68.28.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:01:5f:2e:65:63:93:09:8b:19:4f:2e:f1:53:1d:21:45:b7: 06:f9:67:b4:ef:22:24:35:36:56:0c:e8:2d:19:ca:9a:bc:89: 5b:8c:4c:ec:37:ec:1d:ba:0a:e6:e4:ba:ea:85:7b:56:2b:44: 88:12:b2:a1:24:72:6f:aa:a4:82:d6:ae:c2:70:75:06:a6:d6: a2:06:5c:67:17:74:4f:17:d4:48:d6:0e:e5:55:07:df:bf:5b: 54:42:8b:19:ec:e0:6a:33:3e:2b:f9:3c:47:c1:7d:1c:61:87: d5:cd:4c:8d:13:09:57:87:22:94:a8:13:7c:99:46:3a:4f:55: 5e:47:c5:17:23:23:9d:d4:49:2f:3a:9e:36:57:a4:ed:54:9a: 60:2c:b0:ef:81:0e:45:3f:72:b6:ff:4c:b5:ae:70:98:4b:a6: 2f:a8:fc:f6:31:4a:e7:dd:71:87:62:b5:c2:5a:d6:e7:c7:f4: c6:66:ea:ed:38:13:8d:8f:76:41:96:25:e8:a3:67:c5:b1:cf: 1f:77:34:59:1a:55:c0:57:b8:e7:b9:48:ca:5a:fa:3a:6f:60: 3f:bc:bc:a7:59:51:83:d4:06:b3:8f:df:a8:fb:f3:c4:15:9b: a3:8a:47:24:4d:af:47:8a:eb:d4:df:9f:30:9e:8b:76:fa:3e: 56:02:0c:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeb6Ds6hjOIcDkWSHlnR0x7/EdfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDAxMjAxNjU3NTNaFw0yNTAxMTgxNzAyNTNaMDMxMTAvBgNV BAMTKEVFRDI1RTg4OUUxNTdGODgxMTNFOENBMEMxRjc1MDcwNTkxQkQwRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFH3ZR0h31u6czp764aK2o09BX 9NLONzGaMTrvpB/AmbAWK/qBI9yaldJTsIp2iAp4m/3G0Qxzs9Q7IJuP/gM7RNsF TNHHbrgk/Na4R6g5iE+Ys1VtwdokUP/EaJ/ieURLTS0zeAQ5mnC0bQQvdfL1bg5E qBsjlDiFUGg2BHbJrH25i8QVMNnONUX/UDqkALRyGsg0pHNVBxXpwzNbvSfvZmwy gLBBnQMcuc1Tt3EmnDmbGDj+/6uuBq5Xo2WTlgLYkJ+66PkPwOYItELYAuNNwp3v n+qE782vgCPG1ApN3IPiPeVuD31EvgWlgIvpzZdzHcprRlhnif/UZ7Dcasx1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7tJeiJ4Vf4gRPoygwfdQcFkb0OMwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzMTJlMzYzODJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM3MzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9EHDANBgkqhkiG 9w0BAQsFAAOCAQEAbwFfLmVjkwmLGU8u8VMdIUW3BvlntO8iJDU2VgzoLRnKmryJ W4xM7DfsHboK5uS66oV7VitEiBKyoSRyb6qkgtauwnB1BqbWogZcZxd0TxfUSNYO 5VUH379bVEKLGezgajM+K/k8R8F9HGGH1c1MjRMJV4cilKgTfJlGOk9VXkfFFyMj ndRJLzqeNlek7VSaYCyw74EORT9ytv9Mta5wmEumL6j89jFK591xh2K1wlrW58f0 xmbq7TgTjY92QZYl6KNnxbHPH3c0WRpVwFe457lIylr6Om9gP7y8p1lRg9QGs4/f qPvzxBWbo4pHJE2vR4rr1N+fMJ6Ldvo+VgIM0A== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:29 2024 by rpki-client on console-fra.rpki-client.org