$ rpki-client -vvf repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa File: 3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa (raw, json) Hash identifier: deuwaG7mQV3WigL7u2AYxi8J4Q7QOGG4WxOsWxSJZyY= Subject key identifier: AF:3D:CB:20:7A:BB:B2:3A:A0:70:94:D0:D8:AD:1B:AB:90:B8:C2:41 Certificate issuer: /CN=0BB3D1874063172B5374865233070332233FB7B3 Certificate serial: 1D103426487D515B77D9B7AEC52962065F12387D Authority key identifier: 0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa Signing time: Mon 01 Jul 2024 01:05:36 +0000 ROA not before: Mon 01 Jul 2024 01:00:36 +0000 ROA not after: Mon 30 Jun 2025 01:05:36 +0000 asID: 23666 IP address blocks: 117.104.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:10:34:26:48:7d:51:5b:77:d9:b7:ae:c5:29:62:06:5f:12:38:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB3D1874063172B5374865233070332233FB7B3 Validity Not Before: Jul 1 01:00:36 2024 GMT Not After : Jun 30 01:05:36 2025 GMT Subject: CN=AF3DCB207ABBB23AA07094D0D8AD1BAB90B8C241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:72:5b:a4:09:1e:02:bf:3b:c6:86:40:4d:ae: f6:dc:69:b0:94:0f:af:e8:45:ee:6b:92:cc:7d:25: 67:89:c6:11:9c:75:b0:d8:ea:77:c5:34:56:4e:94: eb:7b:97:79:f9:d7:6f:d7:c2:a7:0d:6a:0a:6d:4e: 59:11:b4:c7:a2:5b:e2:1a:23:75:2c:b1:ba:f9:9f: 03:7e:0d:e6:4d:ed:e5:71:e7:58:e6:f2:11:f2:ea: e7:a0:87:92:b2:1a:02:8c:45:79:b6:7d:bb:3c:9e: 1f:fc:e1:34:bc:47:38:59:75:8f:db:73:96:19:32: 6e:60:19:6c:67:dc:fc:0e:22:80:6d:63:46:d7:ab: 16:a2:d8:e2:85:82:af:8c:2b:d6:f0:fd:33:34:41: 2c:5f:16:b3:b1:1d:3c:ab:0d:c2:d7:65:c0:99:24: 25:3c:32:5b:4f:38:46:3a:93:96:47:31:99:65:7b: 71:5a:9a:b4:17:22:c0:88:a3:87:81:d4:81:a9:0e: c3:6a:94:56:55:46:2a:59:3a:a6:4d:df:e9:80:31: 29:23:8a:72:c6:9c:a7:9e:6c:41:90:07:7a:b8:32: f9:17:9c:c1:45:d2:db:c6:1a:d5:4d:8e:7c:cf:f6: e7:bb:6c:c0:29:a7:51:17:22:a7:80:3c:77:81:55: 26:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3D:CB:20:7A:BB:B2:3A:A0:70:94:D0:D8:AD:1B:AB:90:B8:C2:41 X509v3 Authority Key Identifier: keyid:0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.104.192.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:fd:95:bd:d4:f3:b8:d8:74:1c:25:28:fc:5e:0b:78:09:b9: 82:1e:d1:b0:cc:e2:ad:16:5c:65:5a:09:87:a9:a8:2f:48:3d: 2f:b4:2b:89:46:e3:e9:ed:a7:2f:26:42:0d:37:f7:78:80:3c: 0d:ab:a3:ca:60:a4:ec:24:93:5b:f0:93:b6:5c:8b:c3:57:54: 0c:61:25:86:16:5a:fb:47:46:b4:76:b7:a3:03:5d:0a:8c:c4: af:3a:e9:4a:61:d5:04:06:a3:f8:0e:5d:e4:01:ba:2e:25:ae: 0b:2b:e7:1b:ac:87:3d:3f:ea:c8:e9:2b:ab:23:2c:4f:9a:c8: c8:e0:ea:23:67:c4:ca:6d:a8:7d:c6:15:f5:e8:a1:f5:45:41: 22:fa:4b:ba:97:64:94:f1:34:00:f3:dc:4e:d9:b8:65:ce:a6: 50:a3:ee:dc:92:ed:47:9a:46:0a:d2:d1:41:77:02:aa:b8:38: d4:3c:b4:8a:58:cc:7a:cb:3b:4d:6c:1b:ba:1d:a4:44:f3:d4: c5:9d:a8:b3:fc:d8:4d:78:77:b2:03:9a:7d:db:34:b7:45:83: f6:2d:b5:1c:38:88:7b:a9:74:52:87:66:49:6d:26:9e:38:03: 7c:d0:e9:87:28:6a:60:1f:97:e7:ee:39:08:d2:16:fa:9c:54: b0:f3:6e:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHRA0Jkh9UVt32beuxSliBl8SOH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIy MzNGQjdCMzAeFw0yNDA3MDEwMTAwMzZaFw0yNTA2MzAwMTA1MzZaMDMxMTAvBgNV BAMTKEFGM0RDQjIwN0FCQkIyM0FBMDcwOTREMEQ4QUQxQkFCOTBCOEMyNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJclukCR4CvzvGhkBNrvbcabCU D6/oRe5rksx9JWeJxhGcdbDY6nfFNFZOlOt7l3n512/XwqcNagptTlkRtMeiW+Ia I3Ussbr5nwN+DeZN7eVx51jm8hHy6uegh5KyGgKMRXm2fbs8nh/84TS8RzhZdY/b c5YZMm5gGWxn3PwOIoBtY0bXqxai2OKFgq+MK9bw/TM0QSxfFrOxHTyrDcLXZcCZ JCU8MltPOEY6k5ZHMZlle3FamrQXIsCIo4eB1IGpDsNqlFZVRipZOqZN3+mAMSkj inLGnKeebEGQB3q4MvkXnMFF0tvGGtVNjnzP9ue7bMApp1EXIqeAPHeBVSY3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrz3LIHq7sjqgcJTQ2K0bq5C4wkEwHwYDVR0j BBgwFoAUC7PRh0BjFytTdIZSMwcDMiM/t7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTkwOGI4My03ZjQ0LTQ2ZTAtODUzNS02ZmI4NGI1OWQ1OGEvMC8wQkIzRDE4NzQw NjMxNzJCNTM3NDg2NTIzMzA3MDMzMjIzM0ZCN0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIyMzNG QjdCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1OTA4YjgzLTdmNDQtNDZlMC04 NTM1LTZmYjg0YjU5ZDU4YS8wLzMxMzEzNzJlMzEzMDM0MmUzMTM5MzIyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMjMzMzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFdWjAMA0GCSqG SIb3DQEBCwUAA4IBAQA7/ZW91PO42HQcJSj8Xgt4CbmCHtGwzOKtFlxlWgmHqagv SD0vtCuJRuPp7acvJkINN/d4gDwNq6PKYKTsJJNb8JO2XIvDV1QMYSWGFlr7R0a0 drejA10KjMSvOulKYdUEBqP4Dl3kAbouJa4LK+cbrIc9P+rI6SurIyxPmsjI4Ooj Z8TKbah9xhX16KH1RUEi+ku6l2SU8TQA89xO2bhlzqZQo+7cku1HmkYK0tFBdwKq uDjUPLSKWMx6yztNbBu6HaRE89TFnaiz/NhNeHeyA5p92zS3RYP2LbUcOIh7qXRS h2ZJbSaeOAN80OmHKGpgH5fn7jkI0hb6nFSw827O -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org