$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: xnVqMNDw8RnJA74jU6fV2VQmkA1mltf/2nKj9MJxvXY= Subject key identifier: 0C:06:03:90:56:83:BE:E7:49:1E:75:27:E5:3D:E9:A1:E8:DC:01:29 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 10EF8DEEFA0A27918A4DFBE76D7C615656028F47 Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa Signing time: Mon 01 Jul 2024 01:03:35 +0000 ROA not before: Mon 01 Jul 2024 00:58:35 +0000 ROA not after: Mon 30 Jun 2025 01:03:35 +0000 asID: 46032 IP address blocks: 118.151.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ef:8d:ee:fa:0a:27:91:8a:4d:fb:e7:6d:7c:61:56:56:02:8f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jul 1 00:58:35 2024 GMT Not After : Jun 30 01:03:35 2025 GMT Subject: CN=0C0603905683BEE7491E7527E53DE9A1E8DC0129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:f3:3f:e5:37:b9:92:f2:24:66:7d:dd:ac: 62:c2:22:e0:5e:71:db:a5:43:61:4d:6d:09:4e:e2: 4d:cc:ad:02:92:72:d9:fb:b7:25:65:e0:a7:7f:a4: 5f:df:d9:3a:b9:93:ee:09:84:96:e7:a5:bc:51:60: 16:fe:88:0f:d9:07:63:4c:24:d0:d8:25:8e:41:ea: 50:50:4b:e7:ad:e4:a6:00:91:c3:5a:4d:00:9e:34: 97:65:e1:08:ea:9a:ec:eb:9c:d9:46:db:4f:c8:0f: 91:c4:d3:9f:cf:cf:92:52:96:c1:d1:b0:9d:1f:e4: 5d:42:c4:bc:79:aa:25:e4:33:9c:e8:6d:92:b8:25: 27:cd:59:7b:e7:89:2d:93:ca:04:20:17:d8:ba:db: 1d:63:84:03:dc:86:08:4c:4c:77:9b:73:22:42:ac: ad:4b:15:c7:69:b6:c5:78:ce:69:34:8b:4d:08:44: 12:05:39:7d:a7:19:db:1d:4f:f5:cf:a1:0c:21:5d: ba:c7:55:40:b4:19:23:34:f1:fc:57:f2:5f:5f:e6: a5:53:08:dc:19:77:62:fb:e6:3f:07:55:42:41:fa: a5:52:7c:68:bc:1c:34:bf:9c:fc:06:c8:7b:ef:d1: 8a:10:2f:76:e5:1e:3b:da:a8:2a:8d:ed:ef:c1:60: 28:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:06:03:90:56:83:BE:E7:49:1E:75:27:E5:3D:E9:A1:E8:DC:01:29 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.220.0/24 Signature Algorithm: sha256WithRSAEncryption 05:cc:4c:6c:75:41:f9:fc:32:76:99:72:28:19:76:52:e9:63: 41:23:5a:f2:a6:68:6f:7e:20:82:36:1a:c0:51:91:1f:b3:b0: d0:0f:71:70:e9:29:c8:2f:ac:df:7f:b7:f6:ea:30:11:d9:2f: a7:ca:d6:a8:cc:88:c7:cb:36:2f:5c:6b:99:32:a5:27:31:90: b6:25:31:fd:32:50:e3:3b:e7:88:c5:70:a6:08:28:d0:ad:a4: 14:1a:64:d1:ed:5a:7f:6c:ba:5d:6d:80:f2:78:85:a1:ff:5b: a7:33:4b:fc:93:97:f5:53:96:77:2d:db:2e:4b:a1:0b:ec:75: be:62:b5:40:8f:d5:78:19:6b:11:ad:98:34:d9:b2:fe:c4:8b: 5b:11:7f:9b:20:0e:fe:a3:7b:ab:f1:4a:dc:32:03:82:fe:2d: 06:eb:de:8d:7a:ea:ab:b6:64:26:a9:c2:2a:69:39:38:9a:78: 83:5c:ab:7e:39:20:3b:d6:c6:aa:e3:33:48:47:aa:d3:4a:4c: 16:22:07:04:45:66:12:bd:79:13:8d:72:00:8d:57:9f:49:29: 7d:3f:fc:be:44:be:c4:85:90:81:8b:b8:c6:4a:02:d0:e7:80: 98:c2:5b:4e:42:83:be:59:6d:5c:f3:a5:0a:92:63:02:5e:f6: 39:0f:47:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEO+N7voKJ5GKTfvnbXxhVlYCj0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yNDA3MDEwMDU4MzVaFw0yNTA2MzAwMTAzMzVaMDMxMTAvBgNV BAMTKDBDMDYwMzkwNTY4M0JFRTc0OTFFNzUyN0U1M0RFOUExRThEQzAxMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIGvM/5Te5kvIkZn3drGLCIuBe cdulQ2FNbQlO4k3MrQKSctn7tyVl4Kd/pF/f2Tq5k+4JhJbnpbxRYBb+iA/ZB2NM JNDYJY5B6lBQS+et5KYAkcNaTQCeNJdl4QjqmuzrnNlG20/ID5HE05/Pz5JSlsHR sJ0f5F1CxLx5qiXkM5zobZK4JSfNWXvniS2TygQgF9i62x1jhAPchghMTHebcyJC rK1LFcdptsV4zmk0i00IRBIFOX2nGdsdT/XPoQwhXbrHVUC0GSM08fxX8l9f5qVT CNwZd2L75j8HVUJB+qVSfGi8HDS/nPwGyHvv0YoQL3blHjvaqCqN7e/BYCh3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDAYDkFaDvudJHnUn5T3poejcASkwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfcMA0GCSqG SIb3DQEBCwUAA4IBAQAFzExsdUH5/DJ2mXIoGXZS6WNBI1rypmhvfiCCNhrAUZEf s7DQD3Fw6SnIL6zff7f26jAR2S+nytaozIjHyzYvXGuZMqUnMZC2JTH9MlDjO+eI xXCmCCjQraQUGmTR7Vp/bLpdbYDyeIWh/1unM0v8k5f1U5Z3LdsuS6EL7HW+YrVA j9V4GWsRrZg02bL+xItbEX+bIA7+o3ur8UrcMgOC/i0G696NeuqrtmQmqcIqaTk4 mniDXKt+OSA71saq4zNIR6rTSkwWIgcERWYSvXkTjXIAjVefSSl9P/y+RL7EhZCB i7jGSgLQ54CYwltOQoO+WW1c86UKkmMCXvY5D0ci -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org