$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e35312e302f32342d3234203d3e20313439373436.roa File: 3131392e322e35312e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: 8Pbf5fsxv/JzP6C1MTXqHphtIKSudWZyH6TaxId01SE= Subject key identifier: CA:5A:FC:4C:D9:76:86:00:55:FE:E6:9A:1C:0C:1B:3A:92:23:CE:B2 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 0A5B639D534C1793708751BF7246EB24007EA2BD Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e35312e302f32342d3234203d3e20313439373436.roa Signing time: Sat 21 Dec 2024 18:00:46 +0000 ROA not before: Sat 21 Dec 2024 17:55:46 +0000 ROA not after: Sat 20 Dec 2025 18:00:46 +0000 asID: 149746 IP address blocks: 119.2.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:5b:63:9d:53:4c:17:93:70:87:51:bf:72:46:eb:24:00:7e:a2:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Dec 21 17:55:46 2024 GMT Not After : Dec 20 18:00:46 2025 GMT Subject: CN=CA5AFC4CD976860055FEE69A1C0C1B3A9223CEB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:57:75:2e:00:d8:2e:cb:8a:d3:47:3c:dc:fa: c0:6d:bb:44:c5:4f:95:0f:94:6a:9f:33:1a:ea:b9: 7a:fb:de:cb:5e:0d:df:c0:3b:a6:90:d0:40:70:cb: d0:68:9e:35:1a:b5:58:92:1b:44:06:d4:95:ad:e2: 42:74:18:f8:a0:99:35:bd:2f:17:14:89:c9:3a:b3: 18:17:7a:53:e6:d9:f0:cd:0d:73:ef:7b:bf:9b:1a: 77:cc:72:3f:93:77:76:e8:b9:be:b2:9b:14:78:e3: bb:55:8a:96:83:50:e6:c9:90:98:9b:2b:ee:a6:fd: a8:9d:82:85:a8:ad:87:48:33:e4:8d:4c:2d:ec:f4: b6:a5:ec:82:fc:05:ea:e5:0c:00:d1:17:da:29:e1: 94:57:cc:cd:45:e3:5b:83:fa:6b:32:47:8a:a4:80: 27:5c:cd:02:f9:f6:c5:e9:ea:42:23:51:1b:f2:6d: ae:ef:46:cd:b1:89:25:3a:9d:07:92:88:d9:33:2d: 59:08:6a:b2:37:3d:5b:b5:8a:0a:0c:2d:f5:92:02: 47:98:31:7a:5d:cf:1f:46:31:6f:0e:66:95:fb:28: fd:73:6f:e6:e7:bf:62:28:a4:85:3d:39:4b:7b:74: f5:6b:da:e2:73:36:8e:17:8c:47:13:99:89:1b:01: 3f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5A:FC:4C:D9:76:86:00:55:FE:E6:9A:1C:0C:1B:3A:92:23:CE:B2 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e35312e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.51.0/24 Signature Algorithm: sha256WithRSAEncryption 07:59:71:b2:35:27:e9:04:89:3e:17:88:31:00:a0:9d:0e:ff: c1:6f:59:f0:29:f3:1f:cf:90:4a:11:a9:59:42:8a:c8:62:71: a9:35:c7:09:5e:18:68:ed:eb:da:3e:d3:8f:d0:00:f8:42:66: 27:41:fa:78:62:c3:f5:cb:a5:c6:6d:ed:b5:8e:00:5d:a3:3b: 60:88:a0:3a:b3:7b:e7:2a:67:62:84:11:ed:5a:72:05:22:2b: 56:22:5f:f9:97:42:90:e4:f2:37:10:e1:81:03:d8:99:9b:e2: c2:14:b6:d7:b4:89:2c:52:f4:43:f5:77:9b:55:54:e2:f2:ef: eb:47:b4:b6:ea:f1:25:2c:40:9c:7f:32:a4:c7:fb:0f:49:3a: 50:04:11:9e:88:e7:2b:40:78:97:df:dc:2e:50:67:a3:6b:08: 8d:7b:a7:06:51:be:0b:fb:e6:7f:fe:dc:55:71:b2:f8:31:dc: c1:b2:86:3f:30:79:99:a7:03:97:f0:9c:0a:1e:90:0a:8a:b2: 5d:e7:1f:7c:3d:91:e9:fb:1c:4c:d6:1a:89:c6:be:39:4e:fb: 62:90:61:64:74:83:60:9d:39:26:c7:ab:02:15:2f:32:55:75: 1b:54:42:d1:c7:de:05:ef:2c:c1:ec:66:90:f2:40:22:07:1e: 0e:12:d9:ef -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCltjnVNMF5Nwh1G/ckbrJAB+or0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDEyMjExNzU1NDZaFw0yNTEyMjAxODAwNDZaMDMxMTAvBgNV BAMTKENBNUFGQzRDRDk3Njg2MDA1NUZFRTY5QTFDMEMxQjNBOTIyM0NFQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsV3UuANguy4rTRzzc+sBtu0TF T5UPlGqfMxrquXr73steDd/AO6aQ0EBwy9BonjUatViSG0QG1JWt4kJ0GPigmTW9 LxcUick6sxgXelPm2fDNDXPve7+bGnfMcj+Td3boub6ymxR447tVipaDUObJkJib K+6m/aidgoWorYdIM+SNTC3s9Lal7IL8BerlDADRF9op4ZRXzM1F41uD+msyR4qk gCdczQL59sXp6kIjURvyba7vRs2xiSU6nQeSiNkzLVkIarI3PVu1igoMLfWSAkeY MXpdzx9GMW8OZpX7KP1zb+bnv2IopIU9OUt7dPVr2uJzNo4XjEcTmYkbAT/BAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUylr8TNl2hgBV/uaaHAwbOpIjzrIwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzOTJlMzIyZTM1MzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AjMwDQYJKoZIhvcN AQELBQADggEBAAdZcbI1J+kEiT4XiDEAoJ0O/8FvWfAp8x/PkEoRqVlCishicak1 xwleGGjt69o+04/QAPhCZidB+nhiw/XLpcZt7bWOAF2jO2CIoDqze+cqZ2KEEe1a cgUiK1YiX/mXQpDk8jcQ4YED2Jmb4sIUtte0iSxS9EP1d5tVVOLy7+tHtLbq8SUs QJx/MqTH+w9JOlAEEZ6I5ytAeJff3C5QZ6NrCI17pwZRvgv75n/+3FVxsvgx3MGy hj8weZmnA5fwnAoekAqKsl3nH3w9ken7HEzWGonGvjlO+2KQYWR0g2CdOSbHqwIV LzJVdRtUQtHH3gXvLMHsZpDyQCIHHg4S2e8= -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:33 2025 by rpki-client