$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235312e302f32342d3234203d3e203338353030.roa File: 3131362e36382e3235312e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: oNldCdNwmQKeuv55YdfbzMLeVu7HtQ0SBVdOcMyELnQ= Subject key identifier: F9:C6:BF:0D:86:87:2D:57:94:74:40:6B:D5:2B:6C:46:55:5A:28:EA Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 2086182D902BECB779A3B23030D72C8EE38AABFD Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235312e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:42 +0000 ROA not before: Mon 01 Jul 2024 00:59:42 +0000 ROA not after: Mon 30 Jun 2025 01:04:42 +0000 asID: 38500 IP address blocks: 116.68.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:86:18:2d:90:2b:ec:b7:79:a3:b2:30:30:d7:2c:8e:e3:8a:ab:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:42 2024 GMT Not After : Jun 30 01:04:42 2025 GMT Subject: CN=F9C6BF0D86872D579474406BD52B6C46555A28EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cb:03:1f:28:4c:4a:b5:d1:b4:71:8a:34:2a: 2e:82:eb:00:51:23:c6:92:22:b3:16:41:90:08:f9: ca:1c:53:6c:9e:70:35:f7:b9:65:cb:af:e0:7e:bc: 91:59:71:77:fc:a3:41:5f:2b:42:1a:89:f3:bc:e3: 73:2e:b5:b1:c0:d8:ef:16:e6:b9:3c:10:c0:ff:b6: 12:51:46:25:ae:a1:9b:ca:2e:da:21:c9:0b:5c:19: 6a:ea:d8:e4:d3:f5:22:ff:3d:9b:16:73:cf:37:af: a6:41:d1:e6:8e:be:d6:b2:f9:ef:74:04:ea:38:0e: 1b:5f:d8:44:16:81:02:3c:33:8b:cb:0b:7c:da:f5: f7:9b:54:0c:b7:20:ed:0c:55:67:0d:d7:47:0f:fb: aa:dc:a9:f5:f2:a1:0c:99:7d:65:3a:be:a9:42:95: 3d:2f:d6:ca:1d:d0:0b:51:d7:8c:0c:16:5a:6a:1f: d3:30:f1:8a:6f:07:0d:af:72:ac:3e:4d:95:9e:6e: c9:66:05:6d:5d:45:9a:95:a9:0a:f1:c3:d9:b4:9b: 9e:34:76:b9:47:e8:bb:12:4e:2a:1a:3b:9c:af:27: 58:35:24:3b:8d:06:d9:04:44:7f:ae:89:dd:88:cc: 0b:3b:88:2f:30:6a:f6:a4:ce:81:7f:28:04:b9:26: 00:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C6:BF:0D:86:87:2D:57:94:74:40:6B:D5:2B:6C:46:55:5A:28:EA X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235312e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.251.0/24 Signature Algorithm: sha256WithRSAEncryption 32:9b:4c:e6:e6:e4:ad:67:fa:d3:34:ab:08:e8:f2:63:77:d1: e3:e4:99:d1:c4:d8:51:3b:28:ec:f7:20:c5:94:ca:cb:f9:a9: b4:bb:d9:f6:43:42:e6:e5:b1:b1:94:22:dd:1d:26:a3:53:de: d2:98:cb:ba:66:23:b0:04:71:b7:ae:e4:ed:5a:fb:a4:2d:52: 67:ac:65:9c:62:d4:a6:6a:7d:11:e3:e7:0c:9d:bf:31:f7:3f: b1:f6:6a:b5:3c:0f:49:81:09:55:6a:97:33:ce:90:53:99:7c: 03:1b:20:d5:36:cc:ea:fe:ed:9e:b2:96:94:62:e1:d0:10:90: 1b:06:59:f7:63:bd:bd:8e:3f:a7:46:ab:5b:d6:c4:ab:69:b1: 57:eb:c3:0d:a9:aa:3f:9b:4d:ca:32:25:50:69:05:74:5e:61: 66:5d:e0:3f:df:c4:8c:85:56:f8:62:29:9e:ea:df:06:c7:f3: d6:76:f5:17:c1:73:f5:4b:bf:0a:3a:7d:44:fc:52:59:ab:86: c9:8d:9f:c8:72:88:88:dc:fa:28:15:21:1c:c9:8e:2d:4d:3b: 17:80:d8:93:32:6f:35:ec:2e:14:58:3b:e8:f3:0a:e9:60:3c: ad:62:9d:4b:88:a3:8e:58:ab:fb:7e:74:7b:ed:07:16:6f:25: 99:6a:ed:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIIYYLZAr7Ld5o7IwMNcsjuOKq/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDJaFw0yNTA2MzAwMTA0NDJaMDMxMTAvBgNV BAMTKEY5QzZCRjBEODY4NzJENTc5NDc0NDA2QkQ1MkI2QzQ2NTU1QTI4RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcywMfKExKtdG0cYo0Ki6C6wBR I8aSIrMWQZAI+cocU2yecDX3uWXLr+B+vJFZcXf8o0FfK0IaifO843MutbHA2O8W 5rk8EMD/thJRRiWuoZvKLtohyQtcGWrq2OTT9SL/PZsWc883r6ZB0eaOvtay+e90 BOo4Dhtf2EQWgQI8M4vLC3za9febVAy3IO0MVWcN10cP+6rcqfXyoQyZfWU6vqlC lT0v1sod0AtR14wMFlpqH9Mw8YpvBw2vcqw+TZWebslmBW1dRZqVqQrxw9m0m540 drlH6LsSTioaO5yvJ1g1JDuNBtkERH+uid2IzAs7iC8wavakzoF/KAS5JgAvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+ca/DYaHLVeUdEBr1StsRlVaKOowHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzEzNjJlMzYzODJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRE+zANBgkqhkiG 9w0BAQsFAAOCAQEAMptM5ubkrWf60zSrCOjyY3fR4+SZ0cTYUTso7PcgxZTKy/mp tLvZ9kNC5uWxsZQi3R0mo1Pe0pjLumYjsARxt67k7Vr7pC1SZ6xlnGLUpmp9EePn DJ2/Mfc/sfZqtTwPSYEJVWqXM86QU5l8Axsg1TbM6v7tnrKWlGLh0BCQGwZZ92O9 vY4/p0arW9bEq2mxV+vDDamqP5tNyjIlUGkFdF5hZl3gP9/EjIVW+GIpnurfBsfz 1nb1F8Fz9Uu/Cjp9RPxSWauGyY2fyHKIiNz6KBUhHMmOLU07F4DYkzJvNewuFFg7 6PMK6WA8rWKdS4ijjlir+350e+0HFm8lmWrtww== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org