$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32332d3234203d3e203435323936.roa File: 3131332e35392e3233322e302f32332d3234203d3e203435323936.roa (raw, json) Hash identifier: DDhB1UWaDE6P24QJZxUdnx+M6AZP5VTGOQm7w6ZXYXs= Subject key identifier: AB:65:50:5C:F5:92:6A:5F:C6:78:9F:59:63:9A:A5:A8:84:87:AD:16 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 7A5BADFDEB04DB48FA96A305926CFD81DB649379 Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32332d3234203d3e203435323936.roa Signing time: Mon 27 May 2024 09:00:00 +0000 ROA not before: Mon 27 May 2024 08:55:00 +0000 ROA not after: Mon 26 May 2025 09:00:00 +0000 asID: 45296 IP address blocks: 113.59.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5b:ad:fd:eb:04:db:48:fa:96:a3:05:92:6c:fd:81:db:64:93:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: May 27 08:55:00 2024 GMT Not After : May 26 09:00:00 2025 GMT Subject: CN=AB65505CF5926A5FC6789F59639AA5A88487AD16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:44:9b:86:d7:4e:f7:9b:df:35:b8:43:4b:aa: ec:8c:22:4c:cc:ad:db:b4:ea:b3:cb:e9:a3:13:49: 38:01:83:05:82:7f:d1:b4:bb:b3:98:74:88:e2:9e: 89:24:f8:35:65:0b:aa:14:72:2e:1a:48:69:70:7b: ba:9d:b9:a5:bd:0e:b3:50:82:7e:ad:cb:e2:d9:d6: b0:38:ad:00:7a:6f:3b:49:f2:51:ba:a9:9f:27:09: 7c:2f:86:44:9c:9d:ee:84:09:e6:d7:43:35:ab:45: 3c:67:4a:3b:ba:12:fa:cf:17:ad:f6:42:1a:6a:ff: ac:55:e0:ff:4a:f1:e1:0b:c7:72:b0:03:20:e7:99: f6:da:dd:ac:85:e1:ee:49:b7:7c:3b:a1:ae:1f:6e: 64:16:8a:9a:0c:71:36:a4:01:db:cd:ce:f1:f1:1c: 06:a5:d1:fe:e9:6d:dd:9d:14:cc:91:5d:28:f7:4c: 7e:7c:1e:d6:d5:fa:1c:54:a9:ac:1a:a6:cb:e5:d9: 20:77:6b:82:67:7c:09:b5:f6:e4:c5:cf:c9:cc:69: 8f:b6:e2:f4:77:98:04:9c:6c:c6:e6:5e:23:85:e5: 3e:60:89:61:f9:0c:5b:38:dc:52:56:40:f1:a9:76: 95:ee:ef:1e:cb:cb:c7:00:9f:eb:9a:8e:8c:b5:51: a8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:65:50:5C:F5:92:6A:5F:C6:78:9F:59:63:9A:A5:A8:84:87:AD:16 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32332d3234203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.59.232.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:da:0f:04:1a:53:33:99:b4:c9:7d:93:83:46:92:dc:35:14: 7c:47:89:61:76:99:45:72:df:d8:34:ef:5f:9a:81:be:35:07: 8c:92:b8:31:70:17:12:47:0d:d2:67:b9:80:a9:5c:c8:23:3a: ef:b2:41:31:e8:e9:84:47:5e:5f:b7:f9:f3:74:ec:72:11:96: 3a:64:44:3d:8d:a7:1b:bb:06:ed:d9:b1:aa:31:d0:a4:cd:b9: 86:5d:be:ac:1c:ae:18:65:ec:d3:88:c5:b6:57:67:26:df:06: 6e:50:c2:b0:58:e3:68:b5:0c:1f:12:90:d5:7b:ee:23:d7:81: 14:f3:28:91:c6:f2:5e:77:8c:b4:88:f4:ad:f9:8d:8e:39:11: 8e:be:8e:8c:12:17:df:ff:a9:f8:49:2a:a6:d2:09:f3:fa:9c: 03:96:0d:c1:23:80:c0:27:51:49:85:ed:e3:bc:82:89:37:5e: 25:49:49:c2:be:1a:d3:41:3a:72:cf:26:9d:1c:e1:a8:b4:07: b1:9f:f7:a5:c2:4c:74:fc:19:ad:b7:b8:f3:48:1f:2f:da:42: 85:dc:63:6e:23:24:40:02:58:3a:03:4b:f6:8f:04:2e:73:3c: fc:3d:72:f4:aa:1d:fd:6e:33:5d:95:53:f6:57:f4:a3:7c:9c: e9:e3:9b:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUelut/esE20j6lqMFkmz9gdtkk3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNDA1MjcwODU1MDBaFw0yNTA1MjYwOTAwMDBaMDMxMTAvBgNV BAMTKEFCNjU1MDVDRjU5MjZBNUZDNjc4OUY1OTYzOUFBNUE4ODQ4N0FEMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBRJuG1073m981uENLquyMIkzM rdu06rPL6aMTSTgBgwWCf9G0u7OYdIjinokk+DVlC6oUci4aSGlwe7qduaW9DrNQ gn6ty+LZ1rA4rQB6bztJ8lG6qZ8nCXwvhkScne6ECebXQzWrRTxnSju6EvrPF632 Qhpq/6xV4P9K8eELx3KwAyDnmfba3ayF4e5Jt3w7oa4fbmQWipoMcTakAdvNzvHx HAal0f7pbd2dFMyRXSj3TH58HtbV+hxUqawapsvl2SB3a4JnfAm19uTFz8nMaY+2 4vR3mAScbMbmXiOF5T5giWH5DFs43FJWQPGpdpXu7x7Ly8cAn+uajoy1UagbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUq2VQXPWSal/GeJ9ZY5qlqISHrRYwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMxMzEzMzJlMzUzOTJlMzIzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXE76DANBgkqhkiG 9w0BAQsFAAOCAQEALtoPBBpTM5m0yX2Tg0aS3DUUfEeJYXaZRXLf2DTvX5qBvjUH jJK4MXAXEkcN0me5gKlcyCM677JBMejphEdeX7f583TschGWOmREPY2nG7sG7dmx qjHQpM25hl2+rByuGGXs04jFtldnJt8GblDCsFjjaLUMHxKQ1XvuI9eBFPMokcby XneMtIj0rfmNjjkRjr6OjBIX3/+p+EkqptIJ8/qcA5YNwSOAwCdRSYXt47yCiTde JUlJwr4a00E6cs8mnRzhqLQHsZ/3pcJMdPwZrbe480gfL9pChdxjbiMkQAJYOgNL 9o8ELnM8/D1y9Kod/W4zXZVT9lf0o3yc6eObOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org