$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131332e3139372e3130382e302f32322d3232203d3e203535363939.roa File: 3131332e3139372e3130382e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: AkhktkyJIyCLLreKUWD/ZxrgDzrbrWRbyI+iKLWwlw0= Subject key identifier: 25:BD:3C:9F:F8:30:34:57:BD:CB:AC:75:29:65:C9:43:5F:86:72:46 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 76718156229D561687D2774751F1BE587F044418 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131332e3139372e3130382e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:05 +0000 ROA not before: Mon 01 Jul 2024 00:59:05 +0000 ROA not after: Mon 30 Jun 2025 01:04:05 +0000 asID: 55699 IP address blocks: 113.197.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:71:81:56:22:9d:56:16:87:d2:77:47:51:f1:be:58:7f:04:44:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:05 2024 GMT Not After : Jun 30 01:04:05 2025 GMT Subject: CN=25BD3C9FF8303457BDCBAC752965C9435F867246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:ad:08:5e:ca:66:45:e6:0e:f0:85:d2:68: e4:f7:ca:5e:5d:30:0d:bb:12:45:35:4d:58:d8:24: e3:59:7f:00:de:cc:ae:7a:36:dc:04:57:a2:09:4b: d1:78:1f:f3:1d:16:a5:d3:b7:a4:73:8c:b1:83:5d: 05:5e:6b:5a:ca:e5:bf:d4:80:cc:2c:d7:2a:e6:be: 04:22:bf:8c:71:c6:88:8c:32:af:fb:87:a3:85:e5: f7:98:d9:c9:33:58:f0:94:d6:24:26:f3:c9:11:b9: f5:a0:6f:ce:58:cc:88:d0:f8:f2:ee:ba:9d:f3:2a: 16:a9:76:0a:3c:47:2d:9a:09:4a:d4:19:0f:8e:2a: 17:5f:35:46:da:28:36:e0:a0:b9:bb:58:1b:7e:d3: 23:13:17:22:ff:34:99:4f:c3:56:6b:94:19:3e:5c: 85:b8:04:38:00:0d:7a:b9:1f:b9:5a:a3:e3:f6:25: 86:b5:c9:0f:c3:c7:d7:05:87:78:2a:fc:fe:60:ea: fe:c7:b2:c1:4f:df:a8:a6:97:54:e1:98:08:ef:ec: a0:36:69:0a:e7:75:21:99:6c:d3:98:38:54:34:63: 21:ae:9f:c2:40:44:80:ff:d0:23:18:4e:0a:30:b3: 15:31:58:27:ca:4a:44:e6:af:74:20:66:90:80:81: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BD:3C:9F:F8:30:34:57:BD:CB:AC:75:29:65:C9:43:5F:86:72:46 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131332e3139372e3130382e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.197.108.0/22 Signature Algorithm: sha256WithRSAEncryption 04:56:85:80:88:a9:9c:fb:19:60:01:c2:9d:22:3e:77:ba:1c: fa:df:d5:20:c5:47:28:ce:78:7d:17:a5:d3:d5:4f:85:2c:44: 1e:38:fa:cf:50:28:80:39:88:11:5d:5e:39:99:03:65:64:17: 2a:84:58:5a:8b:9b:d8:38:ed:4f:1f:ce:ab:0b:1c:9c:ac:d0: 57:59:e8:64:67:db:1f:6c:be:ed:a2:d4:34:4f:a2:e7:fb:c2: 3b:64:26:43:78:0a:d0:b8:26:9b:87:13:40:83:fe:bd:fa:11: 32:41:cf:1e:60:1e:99:28:90:0d:aa:93:cf:77:21:ab:7e:df: 2a:88:84:ce:71:48:a9:7b:a7:28:b2:07:0c:8a:f1:f2:0a:a3: 58:04:07:1f:ce:b6:41:b0:84:e4:76:9d:da:0f:1d:d3:46:f5: e4:38:02:bb:be:0b:59:f7:e4:3a:82:18:b3:62:f8:e6:ed:aa: 54:5e:e8:cc:5b:26:72:18:df:ba:f9:27:e0:e4:4c:ce:7c:bd: 32:c8:63:3d:57:5b:bf:ff:4d:4e:a8:e5:a2:c1:29:52:c9:a8: 7b:a9:04:bd:60:39:a3:5c:44:b0:1e:f1:ef:2d:19:0a:45:de: 69:5e:37:c3:20:dd:2f:17:ac:50:d9:83:5a:e1:5a:a2:79:17: 4f:bd:e0:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdnGBViKdVhaH0ndHUfG+WH8ERBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDVaFw0yNTA2MzAwMTA0MDVaMDMxMTAvBgNV BAMTKDI1QkQzQzlGRjgzMDM0NTdCRENCQUM3NTI5NjVDOTQzNUY4NjcyNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2ba0IXspmReYO8IXSaOT3yl5d MA27EkU1TVjYJONZfwDezK56NtwEV6IJS9F4H/MdFqXTt6RzjLGDXQVea1rK5b/U gMws1yrmvgQiv4xxxoiMMq/7h6OF5feY2ckzWPCU1iQm88kRufWgb85YzIjQ+PLu up3zKhapdgo8Ry2aCUrUGQ+OKhdfNUbaKDbgoLm7WBt+0yMTFyL/NJlPw1ZrlBk+ XIW4BDgADXq5H7lao+P2JYa1yQ/Dx9cFh3gq/P5g6v7HssFP36iml1ThmAjv7KA2 aQrndSGZbNOYOFQ0YyGun8JARID/0CMYTgowsxUxWCfKSkTmr3QgZpCAgelvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJb08n/gwNFe9y6x1KWXJQ1+GckYwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzEzMzJlMzEzOTM3MmUzMTMwMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCccVsMA0GCSqG SIb3DQEBCwUAA4IBAQAEVoWAiKmc+xlgAcKdIj53uhz639UgxUcoznh9F6XT1U+F LEQeOPrPUCiAOYgRXV45mQNlZBcqhFhai5vYOO1PH86rCxycrNBXWehkZ9sfbL7t otQ0T6Ln+8I7ZCZDeArQuCabhxNAg/69+hEyQc8eYB6ZKJANqpPPdyGrft8qiITO cUipe6cosgcMivHyCqNYBAcfzrZBsITkdp3aDx3TRvXkOAK7vgtZ9+Q6ghizYvjm 7apUXujMWyZyGN+6+Sfg5EzOfL0yyGM9V1u//01OqOWiwSlSyah7qQS9YDmjXESw HvHvLRkKRd5pXjfDIN0vF6xQ2YNa4VqieRdPveCR -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org