$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235302e302f32342d3234203d3e203338353030.roa File: 3131362e36382e3235302e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: S+6wOKwDjLjR3m73Q2xPhHCvBxjESU5/XpZqq8itLKc= Subject key identifier: 09:42:16:89:F6:7B:AC:19:28:72:D9:A6:28:D7:68:01:2F:B0:A9:83 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 7CA27319A2A5F99B53758B568FD7F27E9DEA6C35 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235302e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 116.68.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a2:73:19:a2:a5:f9:9b:53:75:8b:56:8f:d7:f2:7e:9d:ea:6c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=09421689F67BAC192872D9A628D768012FB0A983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9a:89:c4:c4:6b:76:7b:82:c4:dc:15:4d:7f: 38:49:f1:13:9e:fb:49:fb:7e:4b:60:25:f2:ec:f5: 1a:6e:db:23:16:c2:11:70:11:e7:86:a9:97:4a:ae: 43:93:85:ac:b4:22:e1:ab:66:97:98:b5:23:90:55: 53:a9:4f:ea:3b:95:b6:d0:eb:a0:4b:83:13:c5:91: 4c:65:62:4d:07:e3:52:c5:ee:53:5d:cd:de:9e:59: 41:02:2b:91:bd:62:7a:97:28:62:ba:01:44:8a:98: 60:79:48:a4:6a:7e:05:f7:60:0a:ee:6e:87:a8:73: e0:58:ab:c6:d1:a7:c7:2f:34:e7:2c:2a:88:06:f5: d7:ac:8d:52:5e:f5:f0:64:9c:92:d5:0f:0c:22:66: 45:ad:0b:19:a1:56:f8:1b:72:97:97:7c:38:e7:62: 01:bb:0b:29:56:ef:9b:0d:23:63:91:3e:62:21:c9: 83:b8:35:e9:18:47:41:68:bc:f1:cf:ad:b5:78:84: 64:bd:ee:c8:ab:c4:6d:e2:b6:e9:00:c1:9b:4d:98: 54:a5:a9:4c:6c:9d:58:1d:73:3e:a0:2d:f5:aa:94: 22:25:e6:ea:97:17:6c:85:16:13:a7:76:f3:36:15: 4e:2e:0b:5f:73:75:6d:e6:9d:6c:3d:bb:b7:e2:8e: b5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:42:16:89:F6:7B:AC:19:28:72:D9:A6:28:D7:68:01:2F:B0:A9:83 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235302e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.250.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:ce:e9:7c:54:f2:7f:b8:74:f3:6a:24:cb:b3:1f:97:ab:90: 07:7e:94:7d:9a:04:12:92:50:e9:e3:f3:05:4c:e5:44:7a:ad: f3:e7:b4:a7:a4:f9:ce:c4:7f:2a:e4:a2:97:09:d7:ee:ed:aa: 96:f7:82:bf:98:4a:63:da:db:2b:07:e4:fd:38:34:36:d5:55: 3f:29:7d:51:be:de:f0:f8:2b:12:ac:17:3a:8e:70:da:2d:a4: 93:dd:6c:13:4b:66:8d:ed:5d:0f:72:90:6f:23:e7:fc:c5:2a: 0f:c6:4b:fd:05:84:64:1e:b7:6c:64:06:03:08:8d:47:93:14: a9:5c:a5:75:7c:f1:b7:33:ac:aa:02:c8:53:6c:c1:04:e0:96: 88:28:ed:16:cf:85:1d:84:a6:68:e6:c0:c4:f6:50:40:d6:29: fb:47:03:0e:42:0e:eb:8b:49:83:0e:d0:dd:e6:40:b9:d3:3d: 1a:d2:7c:ea:71:ea:c5:1c:29:88:91:85:2d:90:a1:48:7a:1c: 5f:0e:ee:3c:5a:5a:b4:11:2d:11:ce:8a:60:e8:da:e7:0e:bb: 11:16:49:c1:45:62:dc:c8:e1:a5:60:1e:5f:ce:70:7a:5d:b2: a4:f7:e8:ba:eb:9c:c0:57:ae:76:50:ec:d4:a3:8f:65:a4:a8: c0:ed:87:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfKJzGaKl+ZtTdYtWj9fyfp3qbDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKDA5NDIxNjg5RjY3QkFDMTkyODcyRDlBNjI4RDc2ODAxMkZCMEE5ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOmonExGt2e4LE3BVNfzhJ8ROe +0n7fktgJfLs9Rpu2yMWwhFwEeeGqZdKrkOThay0IuGrZpeYtSOQVVOpT+o7lbbQ 66BLgxPFkUxlYk0H41LF7lNdzd6eWUECK5G9YnqXKGK6AUSKmGB5SKRqfgX3YAru boeoc+BYq8bRp8cvNOcsKogG9desjVJe9fBknJLVDwwiZkWtCxmhVvgbcpeXfDjn YgG7CylW75sNI2ORPmIhyYO4NekYR0FovPHPrbV4hGS97sirxG3itukAwZtNmFSl qUxsnVgdcz6gLfWqlCIl5uqXF2yFFhOndvM2FU4uC19zdW3mnWw9u7fijrWvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCUIWifZ7rBkoctmmKNdoAS+wqYMwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzEzNjJlMzYzODJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRE+jANBgkqhkiG 9w0BAQsFAAOCAQEAas7pfFTyf7h082oky7Mfl6uQB36UfZoEEpJQ6ePzBUzlRHqt 8+e0p6T5zsR/KuSilwnX7u2qlveCv5hKY9rbKwfk/Tg0NtVVPyl9Ub7e8PgrEqwX Oo5w2i2kk91sE0tmje1dD3KQbyPn/MUqD8ZL/QWEZB63bGQGAwiNR5MUqVyldXzx tzOsqgLIU2zBBOCWiCjtFs+FHYSmaObAxPZQQNYp+0cDDkIO64tJgw7Q3eZAudM9 GtJ86nHqxRwpiJGFLZChSHocXw7uPFpatBEtEc6KYOja5w67ERZJwUVi3MjhpWAe X85wel2ypPfouuucwFeudlDs1KOPZaSowO2Hlw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org