$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa File: 35392e3135332e32342e302f32332d3233203d3e203539323835.roa (raw, json) Hash identifier: Xz6SlFll/6iO1NEW4d3L0Zbxfk3HKgTbGTZOaZmaxK0= Subject key identifier: D3:A1:F9:4D:FE:6E:77:81:2D:3E:8D:D3:C2:60:8E:73:EE:BD:15:22 Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42 Certificate serial: 724C4DBA0F5AB4BF808518E7D1B6C7146CCAF698 Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa Signing time: Mon 01 Jul 2024 01:05:10 +0000 ROA not before: Mon 01 Jul 2024 01:00:10 +0000 ROA not after: Mon 30 Jun 2025 01:05:10 +0000 asID: 59285 IP address blocks: 59.153.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:4c:4d:ba:0f:5a:b4:bf:80:85:18:e7:d1:b6:c7:14:6c:ca:f6:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42 Validity Not Before: Jul 1 01:00:10 2024 GMT Not After : Jun 30 01:05:10 2025 GMT Subject: CN=D3A1F94DFE6E77812D3E8DD3C2608E73EEBD1522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:45:4a:b5:05:28:03:1f:cd:cb:7d:e5:76: d1:b8:41:51:73:0f:0c:da:bd:65:c3:38:32:2d:5e: 7f:e2:56:d7:ae:7e:6a:12:23:f8:8f:e3:a0:de:b8: 45:9b:93:03:1a:f5:60:ed:43:9b:12:df:24:57:65: 3b:4d:a5:cc:15:6e:37:bf:8f:1a:26:31:87:f1:27: 36:14:c3:6c:9f:fb:6c:d2:0f:db:c2:23:e7:7b:8f: ca:38:67:63:74:ba:f0:66:ad:d5:0a:c3:6b:d4:e9: e2:0e:0f:56:42:93:76:88:32:6c:d8:ea:3c:31:0f: 84:f6:d6:69:9e:f4:42:54:1b:57:ec:b4:6e:17:00: 1f:5a:cb:c2:8a:86:5a:26:29:42:14:89:83:72:5d: 9f:5a:f3:19:10:47:16:7c:e1:d4:dc:4c:f7:82:d9: 6f:fa:3e:f0:74:76:ab:eb:fb:09:7e:bb:f3:68:f4: 91:27:f1:e7:61:f1:e2:cc:3a:36:d5:7a:ee:79:88: 75:f0:f0:65:35:08:ef:51:cc:13:0b:dd:38:b4:ad: 76:f8:01:0c:20:f8:80:8a:2a:8b:5c:90:1a:76:ea: 00:e2:a7:da:00:8b:08:49:e8:78:a2:1b:04:e3:f1: 10:26:76:4c:93:15:ac:3d:b4:5b:f9:9a:4d:c6:7b: 17:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A1:F9:4D:FE:6E:77:81:2D:3E:8D:D3:C2:60:8E:73:EE:BD:15:22 X509v3 Authority Key Identifier: keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.24.0/23 Signature Algorithm: sha256WithRSAEncryption 35:45:35:df:e1:f0:35:46:7a:ba:fb:87:ed:6c:cb:0b:b6:85: e9:af:b0:f7:35:45:39:0f:01:d3:c4:e2:d8:f3:23:d3:36:e3: 29:af:1c:4c:8e:7c:2c:27:e6:fa:24:f9:26:da:1a:9e:ea:ee: 8e:b4:19:ad:a6:56:f9:4f:27:24:25:4e:09:50:13:85:39:20: 68:23:d1:f4:03:e0:35:58:8f:89:e4:26:16:a8:7a:05:7c:2b: 00:62:83:9b:88:d0:68:73:31:0b:1e:f1:82:b1:15:60:b0:82: dc:28:ec:66:c7:61:ae:52:8f:46:ad:97:5d:ac:b4:eb:38:37: 72:97:2d:1c:3a:c5:4f:71:20:49:a5:d6:c3:47:da:ea:43:bf: 8c:ff:4c:38:ee:8b:00:a7:bd:ea:b7:a8:65:2b:4a:f2:ba:80: d3:88:c4:cc:c5:31:d9:8d:23:84:ff:50:95:08:f6:b7:68:e2: 6c:d3:e5:7f:92:0c:aa:62:16:a8:56:cd:77:60:b0:38:85:4a: 11:94:85:12:e6:cd:f6:ec:28:04:88:0b:9c:97:d6:f7:de:1f: 50:08:d9:38:66:33:b4:9d:37:d1:de:eb:e6:bb:01:75:0e:93: 07:ee:b0:fc:ee:6c:ac:0c:64:85:b1:46:38:c5:2f:61:5e:d8: 09:ea:f2:54 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUckxNug9atL+AhRjn0bbHFGzK9pgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBGQkEwM0Q2QjY4OTVDRUI1MzcyMkNFRkRCOTRDNTYw MUJERUE0MjAeFw0yNDA3MDEwMTAwMTBaFw0yNTA2MzAwMTA1MTBaMDMxMTAvBgNV BAMTKEQzQTFGOTRERkU2RTc3ODEyRDNFOEREM0MyNjA4RTczRUVCRDE1MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGwUVKtQUoAx/Ny33ldtG4QVFz DwzavWXDODItXn/iVteufmoSI/iP46DeuEWbkwMa9WDtQ5sS3yRXZTtNpcwVbje/ jxomMYfxJzYUw2yf+2zSD9vCI+d7j8o4Z2N0uvBmrdUKw2vU6eIOD1ZCk3aIMmzY 6jwxD4T21mme9EJUG1fstG4XAB9ay8KKhlomKUIUiYNyXZ9a8xkQRxZ84dTcTPeC 2W/6PvB0dqvr+wl+u/No9JEn8edh8eLMOjbVeu55iHXw8GU1CO9RzBML3Ti0rXb4 AQwg+ICKKotckBp26gDip9oAiwhJ6HiiGwTj8RAmdkyTFaw9tFv5mk3GexfhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU06H5Tf5ud4EtPo3TwmCOc+69FSIwHwYDVR0j BBgwFoAU4PugPWtolc61NyLO/blMVgG96kIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTFmM2IzNy1iZDU0LTQ5MTEtOTA1Yi0zNjU0OTY2ODdjOGQvMC9FMEZCQTAzRDZC Njg5NUNFQjUzNzIyQ0VGREI5NEM1NjAxQkRFQTQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBGQkEwM0Q2QjY4OTVDRUI1MzcyMkNFRkRCOTRDNTYwMUJE RUE0Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMWYzYjM3LWJkNTQtNDkxMS05 MDViLTM2NTQ5NjY4N2M4ZC8wLzM1MzkyZTMxMzUzMzJlMzIzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzkzMjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE7mRgwDQYJKoZIhvcN AQELBQADggEBADVFNd/h8DVGerr7h+1sywu2hemvsPc1RTkPAdPE4tjzI9M24ymv HEyOfCwn5vok+SbaGp7q7o60Ga2mVvlPJyQlTglQE4U5IGgj0fQD4DVYj4nkJhao egV8KwBig5uI0GhzMQse8YKxFWCwgtwo7GbHYa5Sj0atl12stOs4N3KXLRw6xU9x IEml1sNH2upDv4z/TDjuiwCnveq3qGUrSvK6gNOIxMzFMdmNI4T/UJUI9rdo4mzT 5X+SDKpiFqhWzXdgsDiFShGUhRLmzfbsKASIC5yX1vfeH1AI2ThmM7SdN9He6+a7 AXUOkwfusPzubKwMZIWxRjjFL2Fe2Anq8lQ= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org