$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235322e302f32342d3234203d3e203338353030.roa File: 3131362e36382e3235322e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: WCsuTYDgM8V1XJPLJZrw+K1YiriuEzFnSizfvsZ4QnM= Subject key identifier: 31:AC:36:E6:E8:1B:E6:68:65:CB:02:61:8A:9E:82:59:94:D0:C6:DB Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 236B1ECA72401A638C7B928C8E006893F9EFA538 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235322e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:46 +0000 ROA not before: Mon 01 Jul 2024 00:59:46 +0000 ROA not after: Mon 30 Jun 2025 01:04:46 +0000 asID: 38500 IP address blocks: 116.68.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:6b:1e:ca:72:40:1a:63:8c:7b:92:8c:8e:00:68:93:f9:ef:a5:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:46 2024 GMT Not After : Jun 30 01:04:46 2025 GMT Subject: CN=31AC36E6E81BE66865CB02618A9E825994D0C6DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:07:b8:82:6e:a7:5c:4b:75:46:a9:fd:5f:31: aa:b9:cd:ce:ae:d6:32:e5:8f:18:be:14:50:11:c0: 69:73:26:da:71:0c:cc:e2:ea:4b:46:49:66:03:b8: 6f:2f:32:17:df:48:b3:ff:ab:27:c1:89:7e:92:11: cd:83:e9:a4:2e:33:04:db:06:cb:31:8a:58:93:11: c5:ee:ce:85:f7:e4:d6:22:36:6c:de:b1:a1:92:b1: be:33:70:ab:56:29:6c:d4:e6:06:2e:4b:d6:f6:34: 55:6f:fa:ce:b3:b1:6b:63:36:39:fd:e5:41:25:cb: e7:89:c9:a3:65:2a:fe:cf:44:1c:b2:32:5e:b9:8e: 37:e3:55:40:1d:b7:c4:99:fd:58:43:f8:d4:15:e1: f6:09:73:4b:83:a4:95:fe:a2:86:9b:c0:6a:ee:95: f3:cd:f3:28:ab:6b:5a:fe:b9:9e:e9:2b:10:48:06: 8b:c0:8d:29:e7:aa:c6:91:ec:04:83:9d:1c:9b:cf: 38:45:4f:67:7e:fa:5a:6a:aa:14:d7:8a:a0:e6:fe: 08:55:c7:47:d5:46:15:4b:d3:3f:b0:46:a7:c1:7d: 3e:11:4c:37:b6:b4:3c:fa:d6:ca:bb:b8:f8:15:46: 3c:f6:02:97:b5:39:0f:18:8a:c5:53:c7:4f:8f:c9: ec:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AC:36:E6:E8:1B:E6:68:65:CB:02:61:8A:9E:82:59:94:D0:C6:DB X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235322e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.252.0/24 Signature Algorithm: sha256WithRSAEncryption 92:05:e9:94:14:a0:20:18:82:ee:2e:40:ed:8f:57:50:d0:22: da:ad:40:45:12:96:eb:56:c3:b8:ce:fc:2e:66:cd:c6:ce:e9: 32:1f:f5:21:74:37:b4:64:99:23:5b:ca:56:3c:8f:70:53:6a: b1:7e:3e:98:aa:87:d2:5e:cc:4f:f8:d9:59:4d:e5:5b:9f:d7: 36:73:b4:f8:27:aa:02:22:47:4c:f5:ce:4d:75:1d:0c:5b:80: 56:8e:74:36:3c:7f:92:aa:1c:d6:fd:e1:26:a8:6d:e7:e5:64: 95:f5:26:74:3c:34:3c:d5:5c:3f:48:e7:66:9a:38:b7:54:e7: 3e:a8:55:85:94:9b:91:05:22:80:e9:10:e9:47:e5:c7:bc:04: 5c:04:a3:aa:da:ae:c0:34:4b:67:dd:54:9e:54:6e:da:e3:32: 9f:5b:0d:0f:eb:16:1a:f0:03:00:f1:2f:5e:0f:6f:2b:d2:55: 9a:78:0c:f4:d9:bc:38:ae:d8:36:ca:4a:6f:05:8e:b3:13:56: eb:af:3c:cf:4b:f4:b9:aa:b6:91:1b:cc:6c:73:8b:b5:71:59: 87:94:e2:cb:0e:a2:e9:44:5c:55:c6:7c:17:9f:92:68:8a:ab: 6c:89:38:da:77:1c:6f:4a:c6:e6:93:bd:b4:09:c8:ad:25:76: 97:cf:44:ba -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI2seynJAGmOMe5KMjgBok/nvpTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDZaFw0yNTA2MzAwMTA0NDZaMDMxMTAvBgNV BAMTKDMxQUMzNkU2RTgxQkU2Njg2NUNCMDI2MThBOUU4MjU5OTREMEM2REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWB7iCbqdcS3VGqf1fMaq5zc6u 1jLljxi+FFARwGlzJtpxDMzi6ktGSWYDuG8vMhffSLP/qyfBiX6SEc2D6aQuMwTb BssxiliTEcXuzoX35NYiNmzesaGSsb4zcKtWKWzU5gYuS9b2NFVv+s6zsWtjNjn9 5UEly+eJyaNlKv7PRByyMl65jjfjVUAdt8SZ/VhD+NQV4fYJc0uDpJX+ooabwGru lfPN8yira1r+uZ7pKxBIBovAjSnnqsaR7ASDnRybzzhFT2d++lpqqhTXiqDm/ghV x0fVRhVL0z+wRqfBfT4RTDe2tDz61sq7uPgVRjz2Ape1OQ8YisVTx0+PyexHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMaw25ugb5mhlywJhip6CWZTQxtswHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzEzNjJlMzYzODJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRE/DANBgkqhkiG 9w0BAQsFAAOCAQEAkgXplBSgIBiC7i5A7Y9XUNAi2q1ARRKW61bDuM78LmbNxs7p Mh/1IXQ3tGSZI1vKVjyPcFNqsX4+mKqH0l7MT/jZWU3lW5/XNnO0+CeqAiJHTPXO TXUdDFuAVo50Njx/kqoc1v3hJqht5+VklfUmdDw0PNVcP0jnZpo4t1TnPqhVhZSb kQUigOkQ6Uflx7wEXASjqtquwDRLZ91UnlRu2uMyn1sND+sWGvADAPEvXg9vK9JV mngM9Nm8OK7YNspKbwWOsxNW6688z0v0uaq2kRvMbHOLtXFZh5Tiyw6i6URcVcZ8 F5+SaIqrbIk42nccb0rG5pO9tAnIrSV2l89Eug== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org