$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa File: 3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: H9eeehtNfYq2eQRo0UGNUxy74IGcCXrtR3divR09wd8= Subject key identifier: 95:82:C6:6B:4D:CD:32:1C:44:15:8E:2A:C6:68:27:6F:2C:70:8C:4B Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Certificate serial: 1AFDF258A2E26285D5416135876DDA35D3FBD4EB Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa Signing time: Sat 16 Dec 2023 03:41:04 +0000 ROA not before: Sat 16 Dec 2023 03:36:04 +0000 ROA not after: Sat 14 Dec 2024 03:41:04 +0000 asID: 138077 IP address blocks: 117.103.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:fd:f2:58:a2:e2:62:85:d5:41:61:35:87:6d:da:35:d3:fb:d4:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Validity Not Before: Dec 16 03:36:04 2023 GMT Not After : Dec 14 03:41:04 2024 GMT Subject: CN=9582C66B4DCD321C44158E2AC668276F2C708C4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:1e:88:b0:fd:8f:37:77:db:c0:9c:61:0f: 31:97:94:a1:18:29:27:2d:8d:51:92:93:68:bd:f7: 45:e6:20:3b:df:24:97:c1:9a:6e:f0:20:e4:4b:72: 59:ce:9c:46:1e:92:08:31:f9:7f:ee:24:b8:d6:e2: 46:b3:7f:2d:0b:cc:b9:98:42:23:89:8a:37:86:df: 14:27:ff:51:a2:bd:1f:ed:41:66:09:e0:e8:d9:f6: 1a:a6:2a:4e:6d:a9:6b:16:78:01:73:18:9a:7d:f8: b3:78:ec:7b:ad:fb:99:b6:8c:ff:bf:cb:70:ec:20: 98:c1:b3:1d:85:a8:3b:0b:42:67:16:1a:dd:17:a3: 52:c8:97:03:de:ce:94:b0:df:c3:c4:ae:6b:81:e9: be:e8:28:48:8e:e9:1e:bc:d0:49:91:0f:06:93:9e: 18:27:88:ed:42:63:11:8f:fe:cc:8a:fa:0d:1b:d7: d4:2e:b1:b5:05:60:32:87:be:01:fa:80:5e:4b:8c: b6:89:96:a0:1f:64:f9:81:81:5b:09:79:20:16:17: 2a:d0:12:0c:32:35:df:f1:b2:83:a6:31:fc:6a:76: a5:f7:48:da:b7:9c:ed:82:67:8e:89:3b:1d:52:99: 12:ff:c0:5b:0b:0f:22:fd:92:8e:8e:49:72:e9:dd: ff:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:82:C6:6B:4D:CD:32:1C:44:15:8E:2A:C6:68:27:6F:2C:70:8C:4B X509v3 Authority Key Identifier: keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.116.0/24 Signature Algorithm: sha256WithRSAEncryption 44:41:db:07:48:e4:99:04:ad:fc:ef:02:3b:3b:d7:b7:e0:bb: 74:ef:52:93:59:ce:80:c4:c4:f3:33:ed:22:bf:6e:9f:cd:fe: 01:f1:91:81:b8:35:e8:56:02:87:48:75:3d:0f:f2:7a:78:85: c2:c9:fb:13:b4:cc:4a:61:12:27:0e:c2:c2:9b:c7:54:3a:eb: 27:66:9c:27:7b:30:3b:8b:23:ab:75:e7:3c:d4:14:b9:d5:9e: b5:fd:46:ee:1d:44:f5:90:61:9e:e3:8b:f4:21:17:81:5a:1b: b3:1b:f1:0c:59:a5:ed:5c:2d:c0:23:29:0f:46:a7:40:7e:13: b8:f0:61:cb:a4:d5:f4:84:a1:f1:a0:7a:7f:df:c9:32:23:db: 03:2a:15:a7:0f:b2:fe:c3:9e:8a:b9:a4:3c:ff:c9:9e:67:f2: ec:98:eb:10:e9:5d:de:e7:f2:e2:d3:05:5c:d7:42:d6:10:26: 4f:e4:90:60:bb:6e:40:9b:09:df:e1:e7:61:11:0d:82:b9:1c: 67:61:8c:77:c4:b7:d3:5e:fc:56:b0:cd:72:e6:21:86:96:92: 81:d9:70:1c:dd:d1:2b:7b:a8:fe:1c:c5:53:24:0e:db:bf:36: d3:f7:36:e8:5f:29:98:0a:1f:fd:98:95:f1:c6:54:38:19:42: b7:18:97:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGv3yWKLiYoXVQWE1h23aNdP71OswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3 RTkzNzZFNDAeFw0yMzEyMTYwMzM2MDRaFw0yNDEyMTQwMzQxMDRaMDMxMTAvBgNV BAMTKDk1ODJDNjZCNERDRDMyMUM0NDE1OEUyQUM2NjgyNzZGMkM3MDhDNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN1B6IsP2PN3fbwJxhDzGXlKEY KSctjVGSk2i990XmIDvfJJfBmm7wIORLclnOnEYekggx+X/uJLjW4kazfy0LzLmY QiOJijeG3xQn/1GivR/tQWYJ4OjZ9hqmKk5tqWsWeAFzGJp9+LN47Hut+5m2jP+/ y3DsIJjBsx2FqDsLQmcWGt0Xo1LIlwPezpSw38PErmuB6b7oKEiO6R680EmRDwaT nhgniO1CYxGP/syK+g0b19QusbUFYDKHvgH6gF5LjLaJlqAfZPmBgVsJeSAWFyrQ EgwyNd/xsoOmMfxqdqX3SNq3nO2CZ46JOx1SmRL/wFsLDyL9ko6OSXLp3f+DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlYLGa03NMhxEFY4qxmgnbyxwjEswHwYDVR0j BBgwFoAUuHfNHFQsPeLLuO8VHxebhX6TduQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjZkMTg1ZS1kNGY0LTQ4MjAtYjRiNi03OThjMzA3YWQ3ZTUvMC9CODc3Q0QxQzU0 MkMzREUyQ0JCOEVGMTUxRjE3OUI4NTdFOTM3NkU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3RTkz NzZFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNmQxODVlLWQ0ZjQtNDgyMC1i NGI2LTc5OGMzMDdhZDdlNS8wLzMxMzEzNzJlMzEzMDMzMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB1Z3QwDQYJ KoZIhvcNAQELBQADggEBAERB2wdI5JkErfzvAjs717fgu3TvUpNZzoDExPMz7SK/ bp/N/gHxkYG4NehWAodIdT0P8np4hcLJ+xO0zEphEicOwsKbx1Q66ydmnCd7MDuL I6t15zzUFLnVnrX9Ru4dRPWQYZ7ji/QhF4FaG7Mb8QxZpe1cLcAjKQ9Gp0B+E7jw Ycuk1fSEofGgen/fyTIj2wMqFacPsv7Dnoq5pDz/yZ5n8uyY6xDpXd7n8uLTBVzX QtYQJk/kkGC7bkCbCd/h52ERDYK5HGdhjHfEt9Ne/FawzXLmIYaWkoHZcBzd0St7 qP4cxVMkDtu/NtP3NuhfKZgKH/2YlfHGVDgZQrcYl+I= -----END CERTIFICATE-----Generated at Thu May 2 14:31:46 2024 by rpki-client on console-fra.rpki-client.org