$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: KWSgHgZClp8YjegeNRSLmwVyqVb/8xYr5v7+Yrd/Vpo= Subject key identifier: 44:23:18:CC:F4:CB:5D:9F:6F:A1:3F:10:46:4B:B3:6E:75:7E:1D:F2 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 6C7DA1CE30E8DDF1CBF760B74C14EEE9AA57EBB5 Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa Signing time: Mon 01 Jul 2024 01:03:34 +0000 ROA not before: Mon 01 Jul 2024 00:58:34 +0000 ROA not after: Mon 30 Jun 2025 01:03:34 +0000 asID: 46032 IP address blocks: 118.151.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7d:a1:ce:30:e8:dd:f1:cb:f7:60:b7:4c:14:ee:e9:aa:57:eb:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jul 1 00:58:34 2024 GMT Not After : Jun 30 01:03:34 2025 GMT Subject: CN=442318CCF4CB5D9F6FA13F10464BB36E757E1DF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ca:8a:49:61:85:b7:d8:73:98:ec:34:75:b0: e2:ab:61:3c:16:ff:a7:48:30:96:9e:e4:34:bd:12: dc:e9:63:7a:2d:81:57:f7:36:bb:ea:fc:98:a7:02: 30:59:03:75:56:c9:79:1e:72:4f:9d:e8:c7:3f:07: 90:da:21:ab:2a:60:2f:7e:96:97:a6:bb:b5:67:6b: bb:04:c8:54:e9:da:e0:97:b0:e2:be:65:5b:ce:99: 08:bd:34:86:bf:86:8a:45:3e:c4:2f:2a:69:94:86: de:9c:6d:45:dc:57:c6:64:c4:4a:92:0f:61:27:80: aa:f9:eb:72:88:8c:e4:9e:7b:17:ef:6d:e4:66:0b: 42:70:45:4a:5d:62:cf:9b:29:64:c3:87:4c:26:ae: 2c:65:fe:0c:df:a9:0c:44:33:0c:9d:12:fc:10:6d: 4c:e6:75:80:07:cd:d4:87:ee:f4:e7:f0:1b:c2:88: bd:83:48:9a:0a:86:39:cd:d8:ff:05:53:31:2f:4c: 82:c0:88:0f:d2:bf:c9:51:60:90:7e:e5:30:d5:9e: bb:ff:6c:86:18:78:45:e3:c4:18:6a:0d:bd:77:cb: 0d:a8:3e:12:4f:86:f4:ef:11:19:29:54:36:af:58: f2:07:51:c7:42:e7:1e:95:df:06:3a:84:66:4e:ee: 62:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:23:18:CC:F4:CB:5D:9F:6F:A1:3F:10:46:4B:B3:6E:75:7E:1D:F2 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.222.0/24 Signature Algorithm: sha256WithRSAEncryption 04:04:5e:90:f2:8b:5d:36:0c:d4:3a:ab:f4:59:27:67:05:4d: 08:b2:cf:59:69:5a:a8:c2:2b:0a:ee:81:fd:6c:1f:f4:10:d8: b5:b3:60:25:f0:43:fb:53:42:11:74:95:69:c0:db:eb:05:8f: 85:b2:5f:f9:5b:db:f7:67:67:bf:f3:59:72:b7:a6:63:48:02: 4f:44:c9:cf:0d:ec:70:89:a9:5b:83:d7:02:6d:58:87:f6:f5: 01:56:8d:43:ec:ad:c0:99:5d:ea:95:d7:fc:61:cc:e6:69:29: 12:f7:3d:16:03:11:5d:be:0c:e4:3a:34:c5:4c:24:ab:3d:3d: 4f:cb:7c:21:54:ab:5a:49:de:f7:96:7c:9b:87:f1:22:0a:27: d0:22:dd:1f:45:19:03:85:4f:ab:1f:6c:38:95:eb:f8:3d:b1: 8f:16:59:29:6d:15:a5:83:24:6a:dc:f3:99:fd:94:95:75:00: a2:39:40:c7:39:c5:5c:c0:39:d4:6b:d7:7a:73:2a:bf:69:61: f9:79:ae:0b:d6:70:e4:4f:f2:10:52:98:39:34:e3:fc:3a:fd: 68:4b:4d:3a:f5:8c:bc:af:5b:b5:ee:6f:a1:62:7d:34:c2:fd: fa:5d:46:a8:08:b3:5e:90:f2:df:dc:89:7b:c0:89:28:1f:47: af:d8:65:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbH2hzjDo3fHL92C3TBTu6apX67UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yNDA3MDEwMDU4MzRaFw0yNTA2MzAwMTAzMzRaMDMxMTAvBgNV BAMTKDQ0MjMxOENDRjRDQjVEOUY2RkExM0YxMDQ2NEJCMzZFNzU3RTFERjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDayopJYYW32HOY7DR1sOKrYTwW /6dIMJae5DS9EtzpY3otgVf3Nrvq/JinAjBZA3VWyXkeck+d6Mc/B5DaIasqYC9+ lpemu7Vna7sEyFTp2uCXsOK+ZVvOmQi9NIa/hopFPsQvKmmUht6cbUXcV8ZkxEqS D2EngKr563KIjOSeexfvbeRmC0JwRUpdYs+bKWTDh0wmrixl/gzfqQxEMwydEvwQ bUzmdYAHzdSH7vTn8BvCiL2DSJoKhjnN2P8FUzEvTILAiA/Sv8lRYJB+5TDVnrv/ bIYYeEXjxBhqDb13yw2oPhJPhvTvERkpVDavWPIHUcdC5x6V3wY6hGZO7mKBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURCMYzPTLXZ9voT8QRkuzbnV+HfIwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfeMA0GCSqG SIb3DQEBCwUAA4IBAQAEBF6Q8otdNgzUOqv0WSdnBU0Iss9ZaVqowisK7oH9bB/0 ENi1s2Al8EP7U0IRdJVpwNvrBY+Fsl/5W9v3Z2e/81lyt6ZjSAJPRMnPDexwialb g9cCbViH9vUBVo1D7K3AmV3qldf8YczmaSkS9z0WAxFdvgzkOjTFTCSrPT1Py3wh VKtaSd73lnybh/EiCifQIt0fRRkDhU+rH2w4lev4PbGPFlkpbRWlgyRq3POZ/ZSV dQCiOUDHOcVcwDnUa9d6cyq/aWH5ea4L1nDkT/IQUpg5NOP8Ov1oS0069Yy8r1u1 7m+hYn00wv36XUaoCLNekPLf3Il7wIkoH0ev2GXP -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org