$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3134382e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: s/yj35IxEbWgMmRyngcwwQ2XYvpHuhez/PCo0jx4Hk4= Subject key identifier: 47:EA:E7:DE:9B:28:FE:5E:00:E0:88:75:06:7E:2A:FB:F1:1E:2A:76 Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 0A9CEF613450125C423F813ABABFD260BB561653 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Nov 2024 22:00:01 +0000 ROA not before: Fri 08 Nov 2024 21:55:01 +0000 ROA not after: Fri 07 Nov 2025 22:00:01 +0000 asID: 58397 IP address blocks: 117.53.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:9c:ef:61:34:50:12:5c:42:3f:81:3a:ba:bf:d2:60:bb:56:16:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Nov 8 21:55:01 2024 GMT Not After : Nov 7 22:00:01 2025 GMT Subject: CN=47EAE7DE9B28FE5E00E08875067E2AFBF11E2A76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:eb:47:1e:3f:02:5c:55:00:46:da:20:69:d4: 03:9a:95:c9:11:5c:30:39:7f:a6:7c:ef:34:1e:e3: 7e:5b:5e:95:9b:ba:4e:fd:fb:9c:de:5c:97:a2:f8: c5:f9:94:55:ff:bd:a8:1b:9e:c4:49:98:28:72:c7: 0f:45:49:d0:99:b3:3f:70:e2:4e:55:3a:2d:59:37: 0e:8b:1d:c6:01:a4:28:2a:0b:4e:03:bd:48:24:69: 2e:d0:34:25:52:43:e1:fb:de:5a:c3:c8:85:18:be: be:0a:ac:51:2a:6b:be:cd:75:40:9f:69:53:8d:a2: 87:23:46:b7:ba:27:0d:96:5d:05:3a:92:75:41:cc: ff:4d:66:61:e5:95:9d:6b:fc:9c:82:b5:75:74:9b: 2e:9e:86:07:77:7c:ad:25:99:35:1a:aa:9a:51:df: ce:ce:e7:97:83:2a:d9:23:68:d2:09:b3:5c:3c:82: 31:2d:81:98:51:94:3f:d7:79:90:46:17:bb:10:66: 46:7b:fb:e4:3f:62:87:d0:58:d2:f4:e4:3a:4b:2e: a3:8d:38:42:ad:93:ab:92:6e:69:17:21:76:be:dc: 20:62:2b:a0:32:e4:8e:53:1f:29:22:5e:39:4e:37: 01:1b:98:0e:a4:29:d6:85:77:ff:46:9b:da:25:e4: 73:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EA:E7:DE:9B:28:FE:5E:00:E0:88:75:06:7E:2A:FB:F1:1E:2A:76 X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.148.0/24 Signature Algorithm: sha256WithRSAEncryption 52:7f:7c:78:2c:04:db:ae:35:26:e9:b7:f3:ad:30:a9:1b:27: a4:ce:8a:20:df:dc:44:94:8b:d6:9f:a9:b5:6c:40:4f:66:54: b7:2e:5a:ef:52:94:7b:31:ca:cb:fc:3f:c4:b3:e0:ab:55:5d: 22:72:13:ca:82:75:0e:49:f2:cf:3e:a5:7f:00:57:8d:5f:fe: f4:f1:8e:f6:fd:43:e5:71:b3:3c:76:3d:15:f2:69:2d:74:2a: 13:8b:8e:a9:84:e2:9d:7d:00:97:98:4c:c9:ba:4d:dd:bb:0b: 9c:4e:c0:e2:f5:05:79:ed:a4:78:59:c2:02:85:cc:bf:a2:7e: e4:ff:e7:d4:f6:f9:f5:f4:04:48:02:d5:57:6b:00:af:a9:f8: b8:71:34:94:f7:0b:68:17:f0:7a:dd:32:68:3b:12:7b:b6:55: 76:dc:69:8d:c9:72:d1:26:cd:10:5d:ec:82:45:63:7b:80:d4: ab:56:93:4f:be:85:2e:73:70:8f:0f:59:b4:ca:f2:6b:e6:65: 9e:b7:2c:7a:e0:b1:97:bb:0e:ff:89:f3:ac:a5:53:9f:4d:81: 98:2d:02:d3:c8:2a:49:99:8b:80:4f:d0:91:54:f5:4a:5d:00: 52:40:c1:26:45:63:25:77:c8:b7:ec:44:58:e3:6c:43:63:59: 62:59:51:42 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCpzvYTRQElxCP4E6ur/SYLtWFlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yNDExMDgyMTU1MDFaFw0yNTExMDcyMjAwMDFaMDMxMTAvBgNV BAMTKDQ3RUFFN0RFOUIyOEZFNUUwMEUwODg3NTA2N0UyQUZCRjExRTJBNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg60cePwJcVQBG2iBp1AOalckR XDA5f6Z87zQe435bXpWbuk79+5zeXJei+MX5lFX/vagbnsRJmChyxw9FSdCZsz9w 4k5VOi1ZNw6LHcYBpCgqC04DvUgkaS7QNCVSQ+H73lrDyIUYvr4KrFEqa77NdUCf aVONoocjRre6Jw2WXQU6knVBzP9NZmHllZ1r/JyCtXV0my6ehgd3fK0lmTUaqppR 387O55eDKtkjaNIJs1w8gjEtgZhRlD/XeZBGF7sQZkZ7++Q/YofQWNL05DpLLqON OEKtk6uSbmkXIXa+3CBiK6Ay5I5THykiXjlONwEbmA6kKdaFd/9Gm9ol5HNbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR+rn3pso/l4A4Ih1Bn4q+/EeKnYwHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lDANBgkqhkiG 9w0BAQsFAAOCAQEAUn98eCwE2641Jum3860wqRsnpM6KIN/cRJSL1p+ptWxAT2ZU ty5a71KUezHKy/w/xLPgq1VdInITyoJ1Dknyzz6lfwBXjV/+9PGO9v1D5XGzPHY9 FfJpLXQqE4uOqYTinX0Al5hMybpN3bsLnE7A4vUFee2keFnCAoXMv6J+5P/n1Pb5 9fQESALVV2sAr6n4uHE0lPcLaBfwet0yaDsSe7ZVdtxpjcly0SbNEF3sgkVje4DU q1aTT76FLnNwjw9ZtMrya+ZlnrcseuCxl7sO/4nzrKVTn02BmC0C08gqSZmLgE/Q kVT1Sl0AUkDBJkVjJXfIt+xEWONsQ2NZYllRQg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org