$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: EPr1m1oc2Rzl9xcRxX22+vQEOjWBX+SbMde4cfWhYjU= Subject key identifier: CC:CA:91:F0:BF:D6:3C:40:64:CA:7D:9A:23:E7:82:0A:5B:11:8E:97 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 5B0FFB52BE4665586C54DEF827EBC4CD85FDA596 Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa Signing time: Wed 08 May 2024 11:00:00 +0000 ROA not before: Wed 08 May 2024 10:55:00 +0000 ROA not after: Wed 07 May 2025 11:00:00 +0000 asID: 46032 IP address blocks: 118.151.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:0f:fb:52:be:46:65:58:6c:54:de:f8:27:eb:c4:cd:85:fd:a5:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: May 8 10:55:00 2024 GMT Not After : May 7 11:00:00 2025 GMT Subject: CN=CCCA91F0BFD63C4064CA7D9A23E7820A5B118E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:65:fe:b2:3a:e9:3a:bc:e7:32:09:5d:97: e4:e1:71:31:40:43:61:de:b4:d4:cc:2d:57:ae:64: a8:d3:0d:b8:30:39:a7:ad:5b:ae:ab:f6:d8:36:96: 3d:0a:70:c0:6e:5d:70:25:92:0e:c1:5a:38:d7:47: 57:66:7b:1b:0f:4f:52:49:96:f7:40:76:ce:db:1f: 34:9f:b5:35:68:bc:4c:13:8d:31:fd:43:de:e1:a0: 64:22:89:eb:00:32:6d:c6:10:a4:c2:82:01:4d:34: df:34:ac:b0:ba:5b:ca:fa:36:a0:40:d8:93:6e:cb: 32:d0:b6:8e:c0:2d:01:b0:df:6a:66:b1:75:07:d2: 05:33:7f:95:47:77:1e:4f:4b:6c:df:ed:70:6a:d3: 31:bb:31:bf:44:08:6e:73:2e:44:2e:81:09:74:54: 32:cf:7b:c4:b2:c6:74:42:0b:ff:08:21:44:4e:e0: 51:67:62:c1:32:a4:96:1d:cf:3e:6b:f7:16:a6:7a: 1c:04:93:67:36:13:2c:14:6d:48:27:ac:2c:91:fd: 17:aa:ca:96:11:7a:a3:2b:b2:c1:60:d3:a8:3f:3f: a6:f4:d1:1b:d5:6b:72:23:09:ed:8e:a9:ba:08:2b: 40:42:94:a1:3c:5b:45:6a:d8:a3:df:9d:3b:a9:22: 44:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CA:91:F0:BF:D6:3C:40:64:CA:7D:9A:23:E7:82:0A:5B:11:8E:97 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.223.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ca:45:2f:f2:2c:41:4b:a9:5b:ab:14:bd:d5:e6:56:96:18: e2:8c:6c:4e:23:5b:3f:18:df:5d:8e:d0:62:3b:dd:b9:6d:27: 6b:eb:94:c9:4c:26:9b:d5:01:9e:14:ca:d1:46:6b:27:bc:9a: 08:18:41:b5:fb:14:82:42:65:1e:9f:89:0d:70:9e:a0:84:ec: b1:17:86:d8:ae:8d:91:fc:96:f8:e0:9b:ff:0a:33:af:ad:de: 56:98:0b:da:38:8f:7e:0d:2b:59:c7:a0:1d:31:7b:7f:dc:6d: 9c:fa:ad:20:63:38:ae:cf:c0:82:1a:67:88:b1:5d:c9:61:35: 9c:af:6d:de:d2:61:43:a4:61:1d:5b:72:e6:62:04:b0:8a:f0: d4:07:df:36:12:78:cc:8c:7e:bb:1b:10:e9:53:47:df:6e:0a: 18:d4:2d:95:d4:5c:89:c8:b6:91:4c:30:e1:e3:b4:2f:b6:ea: 0a:73:f4:24:91:8c:53:2f:b6:a0:2f:e7:9e:eb:76:c7:42:df: 76:b8:76:8f:07:b9:c0:d7:d4:5d:8b:97:11:f6:54:32:ec:56: 14:f1:a7:86:c2:ed:53:07:09:d0:b8:39:1d:cb:f4:c8:df:0d: 81:b3:2e:1e:9d:0f:5b:78:03:e3:5c:9d:21:51:f8:c0:fd:77: 87:3f:6a:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWw/7Ur5GZVhsVN74J+vEzYX9pZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yNDA1MDgxMDU1MDBaFw0yNTA1MDcxMTAwMDBaMDMxMTAvBgNV BAMTKENDQ0E5MUYwQkZENjNDNDA2NENBN0Q5QTIzRTc4MjBBNUIxMThFOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH4GX+sjrpOrznMgldl+ThcTFA Q2HetNTMLVeuZKjTDbgwOaetW66r9tg2lj0KcMBuXXAlkg7BWjjXR1dmexsPT1JJ lvdAds7bHzSftTVovEwTjTH9Q97hoGQiiesAMm3GEKTCggFNNN80rLC6W8r6NqBA 2JNuyzLQto7ALQGw32pmsXUH0gUzf5VHdx5PS2zf7XBq0zG7Mb9ECG5zLkQugQl0 VDLPe8SyxnRCC/8IIURO4FFnYsEypJYdzz5r9xamehwEk2c2EywUbUgnrCyR/Req ypYReqMrssFg06g/P6b00RvVa3IjCe2OqboIK0BClKE8W0Vq2KPfnTupIkTTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzMqR8L/WPEBkyn2aI+eCClsRjpcwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpffMA0GCSqG SIb3DQEBCwUAA4IBAQAeykUv8ixBS6lbqxS91eZWlhjijGxOI1s/GN9djtBiO925 bSdr65TJTCab1QGeFMrRRmsnvJoIGEG1+xSCQmUen4kNcJ6ghOyxF4bYro2R/Jb4 4Jv/CjOvrd5WmAvaOI9+DStZx6AdMXt/3G2c+q0gYziuz8CCGmeIsV3JYTWcr23e 0mFDpGEdW3LmYgSwivDUB982EnjMjH67GxDpU0ffbgoY1C2V1FyJyLaRTDDh47Qv tuoKc/QkkYxTL7agL+ee63bHQt92uHaPB7nA19Rdi5cR9lQy7FYU8aeGwu1TBwnQ uDkdy/TI3w2Bsy4enQ9beAPjXJ0hUfjA/XeHP2ry -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org