$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235352e302f32342d3234203d3e203338353030.roa File: 3131362e36382e3235352e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: LDzgPO5EmJpkOf/0ZWdnOJ6z/tacGIM96iSoqG1ikwA= Subject key identifier: AE:A8:AB:7F:67:E7:5A:0F:A9:D3:AE:9B:23:66:38:77:9B:C8:6C:C0 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 5D2C357779B0D51925577B6094E64478C92F7D90 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235352e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:43 +0000 ROA not before: Mon 01 Jul 2024 00:59:43 +0000 ROA not after: Mon 30 Jun 2025 01:04:43 +0000 asID: 38500 IP address blocks: 116.68.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:2c:35:77:79:b0:d5:19:25:57:7b:60:94:e6:44:78:c9:2f:7d:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:43 2024 GMT Not After : Jun 30 01:04:43 2025 GMT Subject: CN=AEA8AB7F67E75A0FA9D3AE9B236638779BC86CC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:77:cb:2a:2c:27:81:f9:3b:04:e6:50:1a:5f: 2d:90:6a:bb:c3:f3:62:eb:a0:7c:50:e7:92:8d:10: d2:98:37:5f:95:44:40:9e:11:13:e0:0a:6b:2e:ec: 01:f9:8c:2a:d2:20:70:89:8d:2b:df:39:a2:b9:c1: 12:80:9c:4e:de:27:d2:e0:2c:95:d7:35:af:84:3d: 06:9e:14:8a:46:2a:44:32:ee:55:b0:ae:04:1d:9b: c6:d7:15:15:3d:ef:50:1a:2f:3e:0f:ac:39:44:15: f6:e9:c4:a7:37:a9:25:4d:3c:26:06:d4:c9:93:ee: 33:ef:cc:9f:72:7e:73:34:66:b0:3e:e3:cb:31:b2: f6:9a:eb:89:ff:99:fc:1e:83:c2:92:8e:9b:d1:ae: 13:c3:67:da:d9:d7:c9:ae:0b:0d:10:5a:e0:5f:ca: e3:b8:2b:2b:a7:4a:a8:b5:f5:3a:78:01:25:9e:85: 60:88:5c:be:32:67:1f:63:e7:12:8f:a7:d3:2e:a2: a3:56:24:49:b2:49:7f:12:40:33:ac:a9:35:46:6b: 2a:c6:a1:40:57:fe:aa:33:05:e4:23:6f:68:67:98: b6:aa:e0:73:c3:f2:9f:9d:20:c4:7c:dc:3a:f6:7f: 12:7d:0a:ea:3f:d4:2f:57:e4:db:89:48:e6:8d:94: 92:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A8:AB:7F:67:E7:5A:0F:A9:D3:AE:9B:23:66:38:77:9B:C8:6C:C0 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235352e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.255.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:e7:d4:8e:d9:53:bb:04:fd:3e:72:e5:a6:ad:8f:63:4b:1c: 4d:03:16:84:15:06:ba:a7:40:9e:54:44:af:22:09:b4:3b:81: 64:1a:8b:ea:bc:82:63:4d:46:73:00:ca:c3:66:e1:e7:2b:3b: d5:ef:b9:8e:c7:9d:8f:2b:23:7f:66:4c:f5:19:95:16:33:f5: 39:f5:f4:4c:4f:be:9b:2c:e6:9a:34:3a:24:5a:87:dc:f6:c8: 8e:ef:b0:3f:b6:6b:c6:06:35:8b:e2:ed:32:e2:a4:6a:72:3d: 61:27:60:70:cb:8f:0b:dc:ad:29:86:5b:de:bd:0a:f5:c4:74: 71:9c:af:e2:e4:07:20:98:7a:e7:1f:d6:80:2d:db:96:f5:89: 76:87:72:0b:bf:c1:21:f8:17:de:0a:03:d5:ad:02:7d:c4:05: 4f:7f:be:ad:7b:2c:cb:f0:d9:8e:a3:d1:e1:8a:e0:b1:a0:d7: 1a:86:15:f6:37:2b:96:b7:a8:77:b7:70:02:cb:8b:db:ac:4c: 9e:82:9e:47:4a:35:7e:82:22:8f:b6:36:85:bc:28:9f:b8:05: 21:d2:ec:09:64:6e:42:97:5b:ba:2d:89:df:87:2d:70:8b:b8: 07:e5:74:a9:6b:f2:2b:ff:be:31:cc:22:3a:ca:3b:b7:8b:ab: 83:50:c6:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXSw1d3mw1RklV3tglOZEeMkvfZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDNaFw0yNTA2MzAwMTA0NDNaMDMxMTAvBgNV BAMTKEFFQThBQjdGNjdFNzVBMEZBOUQzQUU5QjIzNjYzODc3OUJDODZDQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvd8sqLCeB+TsE5lAaXy2QarvD 82LroHxQ55KNENKYN1+VRECeERPgCmsu7AH5jCrSIHCJjSvfOaK5wRKAnE7eJ9Lg LJXXNa+EPQaeFIpGKkQy7lWwrgQdm8bXFRU971AaLz4PrDlEFfbpxKc3qSVNPCYG 1MmT7jPvzJ9yfnM0ZrA+48sxsvaa64n/mfweg8KSjpvRrhPDZ9rZ18muCw0QWuBf yuO4KyunSqi19Tp4ASWehWCIXL4yZx9j5xKPp9MuoqNWJEmySX8SQDOsqTVGayrG oUBX/qozBeQjb2hnmLaq4HPD8p+dIMR83Dr2fxJ9Cuo/1C9X5NuJSOaNlJLpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrqirf2fnWg+p066bI2Y4d5vIbMAwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzEzNjJlMzYzODJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRE/zANBgkqhkiG 9w0BAQsFAAOCAQEAG+fUjtlTuwT9PnLlpq2PY0scTQMWhBUGuqdAnlREryIJtDuB ZBqL6ryCY01GcwDKw2bh5ys71e+5jsedjysjf2ZM9RmVFjP1OfX0TE++myzmmjQ6 JFqH3PbIju+wP7ZrxgY1i+LtMuKkanI9YSdgcMuPC9ytKYZb3r0K9cR0cZyv4uQH IJh65x/WgC3blvWJdodyC7/BIfgX3goD1a0CfcQFT3++rXssy/DZjqPR4YrgsaDX GoYV9jcrlreod7dwAsuL26xMnoKeR0o1foIij7Y2hbwon7gFIdLsCWRuQpdbui2J 34ctcIu4B+V0qWvyK/++McwiOso7t4urg1DGkw== -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org