$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134392e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3134392e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: 0q8NrmjjcxoNrx7WtkZa7JKjlra7drxIR2Rkv2uH0qU= Subject key identifier: 3F:2C:3D:D1:40:CD:B8:AE:FC:F4:B2:7D:65:49:19:62:B3:C5:25:B1 Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 3C8014B4BD5E4499291626091B660FB954E2E100 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134392e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Nov 2024 22:00:02 +0000 ROA not before: Fri 08 Nov 2024 21:55:02 +0000 ROA not after: Fri 07 Nov 2025 22:00:02 +0000 asID: 58397 IP address blocks: 117.53.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:80:14:b4:bd:5e:44:99:29:16:26:09:1b:66:0f:b9:54:e2:e1:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Nov 8 21:55:02 2024 GMT Not After : Nov 7 22:00:02 2025 GMT Subject: CN=3F2C3DD140CDB8AEFCF4B27D65491962B3C525B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:ab:6f:3d:4c:66:bd:ff:9b:2c:2c:64:09: de:01:ec:e7:d1:4e:da:25:b3:2c:48:41:a2:d4:db: 72:5e:d6:15:ef:08:aa:92:7c:42:04:90:c8:22:08: 27:eb:01:0d:88:0d:80:be:48:5c:03:ea:4a:22:d2: 0d:ec:19:d9:99:20:5c:32:bd:98:17:27:23:2d:d6: d3:01:c6:95:38:f5:d1:0a:3e:26:56:2e:54:1a:b8: 2a:be:2f:ae:16:47:bd:e7:4a:d5:a9:1a:47:78:96: 16:7c:e6:97:f3:71:61:c3:a6:95:95:f2:3d:6a:aa: 34:e3:a6:1c:85:37:d2:e9:47:f9:f6:d1:a2:c6:66: 85:9d:74:40:4b:c9:27:3b:c3:52:71:64:8d:e2:75: 5d:bb:24:d6:d2:0c:43:da:c4:53:4c:c4:c0:db:17: 9d:40:c8:78:7e:34:67:bb:d5:2c:69:13:31:73:89: bb:11:4d:d6:d4:bd:6f:7a:87:b8:ab:87:09:10:76: a4:4a:50:6b:39:54:0e:70:9e:19:d4:16:13:69:e5: a4:69:b4:41:e4:94:d1:ef:87:15:2b:3b:7e:80:fd: 82:c0:3f:f8:39:82:8b:0b:fa:a9:90:4c:91:c4:b7: c4:cc:19:ff:4c:33:ea:14:59:d0:c6:c4:e5:b3:a7: d1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2C:3D:D1:40:CD:B8:AE:FC:F4:B2:7D:65:49:19:62:B3:C5:25:B1 X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134392e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.149.0/24 Signature Algorithm: sha256WithRSAEncryption 71:aa:4b:f4:08:09:d5:b3:be:ee:a9:f3:94:36:7a:94:40:d4: 63:8b:3b:27:e9:33:6b:de:67:b7:82:64:d8:33:9e:6b:c6:7e: 6d:a1:1a:bb:02:75:50:4d:56:83:66:79:ec:49:01:28:6d:ef: b2:89:ea:d5:1a:67:ba:a7:13:5a:9c:0e:f7:f5:f1:c7:8b:89: fb:a4:e2:49:37:bf:29:0a:ce:e4:6e:41:df:d6:66:42:91:f8: df:28:65:61:0b:d4:77:0e:78:04:59:1e:a8:d1:00:86:2a:96: 12:58:5a:11:15:8a:71:c5:89:32:41:cf:0b:4b:79:cf:e3:fb: c0:13:0b:1b:9a:50:5a:40:de:21:2c:aa:f4:c8:55:0d:ab:0e: 54:f2:46:72:4e:f8:d5:6e:fb:6d:ab:12:12:fa:31:67:3b:8f: 10:23:78:4d:f2:14:33:28:97:fd:7a:69:dc:cc:77:16:46:1f: b8:ec:7b:52:7a:0d:54:ba:e2:63:79:b6:3e:bf:fd:7e:19:0f: 37:1d:7e:e4:74:be:9c:47:e8:94:c2:16:e8:ea:c4:fe:29:89: e8:6a:0f:9d:f8:90:ee:cc:e5:6d:28:ca:f3:b8:68:6b:a6:3f: 55:e3:0d:d2:b2:98:84:95:88:ed:bc:be:9c:46:88:bf:8b:ef: 71:f1:67:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPIAUtL1eRJkpFiYJG2YPuVTi4QAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yNDExMDgyMTU1MDJaFw0yNTExMDcyMjAwMDJaMDMxMTAvBgNV BAMTKDNGMkMzREQxNDBDREI4QUVGQ0Y0QjI3RDY1NDkxOTYyQjNDNTI1QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7bqtvPUxmvf+bLCxkCd4B7OfR TtolsyxIQaLU23Je1hXvCKqSfEIEkMgiCCfrAQ2IDYC+SFwD6koi0g3sGdmZIFwy vZgXJyMt1tMBxpU49dEKPiZWLlQauCq+L64WR73nStWpGkd4lhZ85pfzcWHDppWV 8j1qqjTjphyFN9LpR/n20aLGZoWddEBLySc7w1JxZI3idV27JNbSDEPaxFNMxMDb F51AyHh+NGe71SxpEzFzibsRTdbUvW96h7irhwkQdqRKUGs5VA5wnhnUFhNp5aRp tEHklNHvhxUrO36A/YLAP/g5gosL+qmQTJHEt8TMGf9MM+oUWdDGxOWzp9GRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPyw90UDNuK789LJ9ZUkZYrPFJbEwHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lTANBgkqhkiG 9w0BAQsFAAOCAQEAcapL9AgJ1bO+7qnzlDZ6lEDUY4s7J+kza95nt4Jk2DOea8Z+ baEauwJ1UE1Wg2Z57EkBKG3vsonq1RpnuqcTWpwO9/Xxx4uJ+6TiSTe/KQrO5G5B 39ZmQpH43yhlYQvUdw54BFkeqNEAhiqWElhaERWKccWJMkHPC0t5z+P7wBMLG5pQ WkDeISyq9MhVDasOVPJGck741W77basSEvoxZzuPECN4TfIUMyiX/Xpp3Mx3FkYf uOx7UnoNVLriY3m2Pr/9fhkPNx1+5HS+nEfolMIW6OrE/imJ6GoPnfiQ7szlbSjK 87hoa6Y/VeMN0rKYhJWI7by+nEaIv4vvcfFnow== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org