$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233352e302f32342d3234203d3e203435323936.roa File: 3131332e35392e3233352e302f32342d3234203d3e203435323936.roa (raw, json) Hash identifier: 76HgHjTj2qx3bKF+rx+QL1oKIpW6ZcXUIoHYdoNTV+U= Subject key identifier: 60:99:E6:F3:75:FF:31:8A:7E:03:EF:45:21:89:69:2B:0A:A7:90:52 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 2BCC980083A0D8D466553465CA05A8B70A2B0AFC Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233352e302f32342d3234203d3e203435323936.roa Signing time: Mon 27 May 2024 09:00:01 +0000 ROA not before: Mon 27 May 2024 08:55:01 +0000 ROA not after: Mon 26 May 2025 09:00:01 +0000 asID: 45296 IP address blocks: 113.59.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:cc:98:00:83:a0:d8:d4:66:55:34:65:ca:05:a8:b7:0a:2b:0a:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: May 27 08:55:01 2024 GMT Not After : May 26 09:00:01 2025 GMT Subject: CN=6099E6F375FF318A7E03EF452189692B0AA79052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:58:76:2c:70:c5:08:10:ec:1f:3b:d5:d7:77: 5f:ef:e1:9c:0a:cd:ad:0c:b0:3b:57:f2:47:81:84: 8e:59:9e:5b:80:99:56:21:59:42:e6:4d:38:48:5b: 0e:18:f5:9f:2b:e2:ac:b3:85:5c:71:50:22:22:15: 0e:7a:a4:12:36:59:3c:cb:6b:f3:b0:93:ea:07:02: 0c:fc:4f:e4:89:e5:b9:f4:72:df:d4:7a:90:fd:63: 86:26:c4:57:6b:d5:74:8a:d0:82:4e:a5:3a:13:e8: 8c:3b:bf:3e:65:cb:9a:08:95:ca:dd:fe:c7:44:4f: 5b:06:52:24:6d:94:fa:05:26:fc:1e:a3:aa:b9:32: 47:32:b8:1e:3c:a7:c5:d9:2a:60:6d:a0:01:f0:64: 8d:b3:4e:7a:11:4d:1d:0c:e5:a4:81:54:9a:54:6e: 78:8a:e1:63:04:3b:03:d9:52:61:c6:53:51:cc:7a: 52:58:09:2e:95:0f:e6:d1:78:d2:44:83:9e:b2:b7: 72:70:85:7d:19:6b:2e:c2:9a:00:1f:df:4c:22:4b: 1f:5f:e5:c1:de:23:c6:b0:72:68:54:3d:72:b9:60: 9f:43:78:33:69:47:c0:96:b4:ce:e8:03:a4:56:95: 6e:65:ce:26:2b:a1:a7:b2:bb:7a:6b:d7:d1:40:64: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:99:E6:F3:75:FF:31:8A:7E:03:EF:45:21:89:69:2B:0A:A7:90:52 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233352e302f32342d3234203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.59.235.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:0d:56:c2:de:f0:8e:e3:60:2b:f5:6c:b5:5d:20:84:73:01: 09:a1:9a:bb:73:99:30:62:2e:8b:d1:30:b7:25:9a:6f:cb:c6: ca:3e:cc:66:61:29:36:86:d2:00:5f:64:8d:47:1a:57:b5:0e: 7e:f5:5e:36:05:e8:b5:cc:3e:3a:2f:22:0a:c4:20:f6:fd:52: ba:84:ff:5d:0d:15:02:f3:73:22:7f:91:7e:16:6b:82:86:46: ab:df:3d:43:eb:28:2b:99:09:1b:48:2b:52:c7:99:8f:6c:5c: d6:5a:88:d4:1f:1f:68:7c:74:cd:cd:fd:82:29:c8:e6:a4:3c: 0e:01:c9:32:21:c1:c1:9c:a0:3d:73:4c:bc:73:30:f1:1a:79: 3a:4e:e8:9c:7b:56:f4:b7:2e:eb:9f:64:92:44:29:5f:43:e9: e4:f0:a3:7e:ae:ce:53:69:28:be:7a:f8:04:84:34:bd:ea:60: cf:99:cd:45:e8:99:02:54:bf:45:9b:83:c1:68:d0:a9:eb:0d: 83:51:b6:c1:cd:be:d1:aa:10:9f:ac:14:57:76:4d:ea:d4:79: 88:2c:29:08:51:07:c0:c8:b6:76:a7:db:d4:91:40:e3:b3:61: 4d:05:bb:ac:86:0e:c2:b5:90:38:ec:d9:e9:9e:60:d2:d6:5e: 99:4b:c6:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK8yYAIOg2NRmVTRlygWotworCvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNDA1MjcwODU1MDFaFw0yNTA1MjYwOTAwMDFaMDMxMTAvBgNV BAMTKDYwOTlFNkYzNzVGRjMxOEE3RTAzRUY0NTIxODk2OTJCMEFBNzkwNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/WHYscMUIEOwfO9XXd1/v4ZwK za0MsDtX8keBhI5ZnluAmVYhWULmTThIWw4Y9Z8r4qyzhVxxUCIiFQ56pBI2WTzL a/Owk+oHAgz8T+SJ5bn0ct/UepD9Y4YmxFdr1XSK0IJOpToT6Iw7vz5ly5oIlcrd /sdET1sGUiRtlPoFJvweo6q5MkcyuB48p8XZKmBtoAHwZI2zTnoRTR0M5aSBVJpU bniK4WMEOwPZUmHGU1HMelJYCS6VD+bReNJEg56yt3JwhX0Zay7CmgAf30wiSx9f 5cHeI8awcmhUPXK5YJ9DeDNpR8CWtM7oA6RWlW5lziYroaeyu3pr19FAZOZTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYJnm83X/MYp+A+9FIYlpKwqnkFIwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMxMzEzMzJlMzUzOTJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE76zANBgkqhkiG 9w0BAQsFAAOCAQEAGw1Wwt7wjuNgK/VstV0ghHMBCaGau3OZMGIui9EwtyWab8vG yj7MZmEpNobSAF9kjUcaV7UOfvVeNgXotcw+Oi8iCsQg9v1SuoT/XQ0VAvNzIn+R fhZrgoZGq989Q+soK5kJG0grUseZj2xc1lqI1B8faHx0zc39ginI5qQ8DgHJMiHB wZygPXNMvHMw8Rp5Ok7onHtW9Lcu659kkkQpX0Pp5PCjfq7OU2kovnr4BIQ0vepg z5nNReiZAlS/RZuDwWjQqesNg1G2wc2+0aoQn6wUV3ZN6tR5iCwpCFEHwMi2dqfb 1JFA47NhTQW7rIYOwrWQOOzZ6Z5g0tZemUvGRQ== -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org