$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3134382e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: k/aYVCZ7zSJn6ub8iCRapvgrJ3pAIO9tMzVZVUMMhfY= Subject key identifier: 99:3D:EE:09:49:10:12:53:EC:F1:9C:3B:5D:FF:36:86:69:84:C9:F0 Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 30DDD009BC2FF01EC3A6393506576443BC0A2B24 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Dec 2023 21:00:01 +0000 ROA not before: Fri 08 Dec 2023 20:55:01 +0000 ROA not after: Fri 06 Dec 2024 21:00:01 +0000 asID: 58397 IP address blocks: 117.53.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 23:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:dd:d0:09:bc:2f:f0:1e:c3:a6:39:35:06:57:64:43:bc:0a:2b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Dec 8 20:55:01 2023 GMT Not After : Dec 6 21:00:01 2024 GMT Subject: CN=993DEE0949101253ECF19C3B5DFF36866984C9F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dd:7f:e8:ac:3e:68:7f:e6:49:7c:71:d5:61: 1d:94:f3:54:53:30:dc:37:3a:b8:29:84:fa:c3:b5: 88:7c:b1:0e:a5:77:e2:ea:1e:d0:8c:a7:fe:dd:08: 96:3b:08:6f:22:54:2f:75:86:57:05:13:1a:cd:7c: 94:12:1e:cb:33:31:c3:b2:9f:c4:a4:d5:96:5d:2b: 30:74:a2:92:11:15:4c:9b:dc:82:c7:8c:30:2c:19: 4c:0d:ff:71:cd:af:bf:4e:4d:22:fa:63:eb:b0:e3: 2e:34:39:ab:99:d2:c5:59:22:e9:c6:c6:2d:8a:f1: 4e:a6:cd:98:ea:23:1d:ef:c2:3e:7c:6d:ef:79:d5: 39:2d:fe:f2:fc:93:6f:70:d8:1d:7e:7a:db:8f:b9: 71:63:69:d8:cb:d3:a4:a2:18:0c:65:7f:73:e7:d5: d3:74:5e:b3:42:96:76:7b:48:a1:48:b2:0a:a4:a6: 2b:b8:3a:93:4a:34:8e:a5:e2:38:9d:b3:16:ab:1b: ed:89:a9:fe:a2:5c:80:d3:12:4f:b9:9f:d4:24:05: 07:12:46:9b:d2:0a:4b:5b:0b:a8:ca:7c:b4:48:0e: fa:ca:4b:b8:67:70:78:9b:b6:39:b7:72:26:31:e7: 68:a1:03:15:bb:38:bd:fe:06:a9:8a:92:a6:5f:91: 6e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:3D:EE:09:49:10:12:53:EC:F1:9C:3B:5D:FF:36:86:69:84:C9:F0 X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.148.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:49:69:69:65:1f:74:96:01:9c:dd:eb:1a:98:cc:fb:8c:e4: 19:b0:ce:6d:af:07:40:93:4b:97:02:3e:41:f1:37:ef:40:69: ca:af:df:df:69:46:46:05:0b:59:f1:e6:26:ae:5d:39:e0:bd: b8:36:19:4f:17:70:b7:48:94:8c:1c:b7:25:82:82:2d:8f:85: cf:99:09:cb:15:16:95:cc:d8:47:b6:4f:da:7f:d9:de:10:2f: 00:7a:f9:41:92:24:cd:60:b1:a0:c6:b0:cf:80:17:89:c7:cb: 2d:cc:f8:c7:a9:54:a2:94:49:7e:ce:67:38:5d:14:2c:83:ad: 7e:38:66:d4:d3:86:26:c9:61:60:52:3b:a1:2d:6a:a1:46:78: 23:b4:a9:4a:1c:3e:77:68:76:d8:e1:f9:b3:4b:92:c8:27:a7: c3:29:9c:47:35:31:ba:b4:b9:8a:5d:e4:66:b7:8f:cc:93:95: 11:0c:50:bf:87:fe:7a:33:ad:ad:8c:be:a8:14:04:98:33:b9: 89:78:03:44:b2:de:bf:ef:85:60:92:fa:89:82:3f:bf:31:89: ff:f4:d3:4d:f9:ab:cf:3f:22:77:e3:91:80:65:28:c1:d8:0f: ee:5d:53:5c:be:b0:bd:5a:e1:54:ec:a1:14:54:c7:af:3b:e5: 8e:db:44:d3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMN3QCbwv8B7Dpjk1BldkQ7wKKyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yMzEyMDgyMDU1MDFaFw0yNDEyMDYyMTAwMDFaMDMxMTAvBgNV BAMTKDk5M0RFRTA5NDkxMDEyNTNFQ0YxOUMzQjVERkYzNjg2Njk4NEM5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC03X/orD5of+ZJfHHVYR2U81RT MNw3OrgphPrDtYh8sQ6ld+LqHtCMp/7dCJY7CG8iVC91hlcFExrNfJQSHsszMcOy n8Sk1ZZdKzB0opIRFUyb3ILHjDAsGUwN/3HNr79OTSL6Y+uw4y40OauZ0sVZIunG xi2K8U6mzZjqIx3vwj58be951Tkt/vL8k29w2B1+etuPuXFjadjL06SiGAxlf3Pn 1dN0XrNClnZ7SKFIsgqkpiu4OpNKNI6l4jidsxarG+2Jqf6iXIDTEk+5n9QkBQcS RpvSCktbC6jKfLRIDvrKS7hncHibtjm3ciYx52ihAxW7OL3+BqmKkqZfkW75AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmT3uCUkQElPs8Zw7Xf82hmmEyfAwHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lDANBgkqhkiG 9w0BAQsFAAOCAQEAS0lpaWUfdJYBnN3rGpjM+4zkGbDOba8HQJNLlwI+QfE370Bp yq/f32lGRgULWfHmJq5dOeC9uDYZTxdwt0iUjBy3JYKCLY+Fz5kJyxUWlczYR7ZP 2n/Z3hAvAHr5QZIkzWCxoMawz4AXicfLLcz4x6lUopRJfs5nOF0ULIOtfjhm1NOG JslhYFI7oS1qoUZ4I7SpShw+d2h22OH5s0uSyCenwymcRzUxurS5il3kZrePzJOV EQxQv4f+ejOtrYy+qBQEmDO5iXgDRLLev++FYJL6iYI/vzGJ//TTTfmrzz8id+OR gGUowdgP7l1TXL6wvVrhVOyhFFTHrzvljttE0w== -----END CERTIFICATE-----Generated at Thu May 2 17:40:14 2024 by rpki-client on console-fra.rpki-client.org