$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135302e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3135302e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: foU8evYUUK/WhOPn2iCnkUpSmUWVhP1OJKYDM3g1/O4= Subject key identifier: 2B:4D:CE:EE:61:B8:FD:13:BC:08:36:73:75:C3:24:CA:4D:6F:11:0F Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 1A6D550FF93641569C727A4ED3E24025A3702744 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135302e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Dec 2023 21:00:02 +0000 ROA not before: Fri 08 Dec 2023 20:55:02 +0000 ROA not after: Fri 06 Dec 2024 21:00:02 +0000 asID: 58397 IP address blocks: 117.53.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 23:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:6d:55:0f:f9:36:41:56:9c:72:7a:4e:d3:e2:40:25:a3:70:27:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Dec 8 20:55:02 2023 GMT Not After : Dec 6 21:00:02 2024 GMT Subject: CN=2B4DCEEE61B8FD13BC08367375C324CA4D6F110F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9e:73:d8:1b:8b:9a:c8:73:74:70:16:fc:05: 25:c6:6a:5c:dd:9f:7b:69:3c:c0:b4:d2:7d:0f:cf: b6:05:2a:5b:98:8b:cc:f2:c7:0f:6a:07:ff:3a:54: ad:55:de:06:03:f5:6a:32:c5:77:5a:f7:d3:58:da: 0c:c0:d0:be:01:36:20:dd:85:e1:19:48:e0:5b:ac: 87:04:f9:73:90:a7:7e:54:51:b2:c2:5f:48:42:fe: 39:7e:6c:bb:1c:a2:5b:12:99:12:21:d8:51:f0:ba: 3f:ce:ab:65:c4:ce:99:da:b5:51:e9:c2:7b:fa:5c: ec:6c:77:66:6c:71:3c:94:ff:81:07:10:64:93:41: e2:c2:4b:b1:16:55:2e:da:77:24:b5:19:b5:64:5d: 96:be:30:47:8d:0e:03:b0:60:03:46:8e:01:2f:51: 68:82:3a:78:19:74:2c:1a:45:80:62:c1:61:fe:49: 69:f7:42:d4:d0:a6:da:03:f2:35:ee:cc:d9:07:84: 79:20:bc:6b:1b:8e:88:ec:6a:10:8c:5e:95:d9:d8: c2:92:24:66:a6:84:49:7e:de:00:b2:b7:69:8b:aa: 92:b1:0c:db:f8:a3:65:0c:fb:d8:83:ad:5c:44:10: 24:0a:6f:b9:d3:0c:0c:ee:75:09:6b:ec:06:8e:15: b9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4D:CE:EE:61:B8:FD:13:BC:08:36:73:75:C3:24:CA:4D:6F:11:0F X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135302e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.150.0/24 Signature Algorithm: sha256WithRSAEncryption 55:56:da:0c:fd:b6:00:ca:a4:3f:43:dc:21:03:a1:b0:fa:37: 18:09:c1:d6:04:52:86:8a:da:fc:f7:89:ed:77:d2:67:f6:62: 25:fb:4a:12:42:13:1f:4b:d3:10:42:4a:7c:87:df:06:77:b8: 0f:18:1e:be:c8:2e:58:d1:1f:e3:79:59:1c:af:87:36:ec:44: 1f:21:9e:61:31:0f:d7:8e:c5:bd:97:d1:7f:b0:8d:d9:c8:64: c7:27:07:e2:49:46:0d:a8:05:06:6b:c6:53:93:33:93:43:bd: 21:35:69:b9:67:85:22:b6:3a:9f:45:ef:6c:9c:82:f5:c2:71: 1e:78:f7:64:10:34:f2:a5:76:d6:91:5d:22:98:0e:8b:87:23: a5:d9:4c:df:09:6c:27:d5:5c:01:3f:fc:6f:6b:e1:f5:68:77: 66:92:c2:4b:d4:51:5a:96:91:cb:87:a2:25:44:91:79:99:1d: d8:9f:6d:87:e4:15:28:92:3a:c7:f4:5b:44:54:ef:9a:6f:51: 0f:79:cd:d1:c1:21:31:26:f5:e4:ff:76:8c:5c:98:f1:7a:2a: 0a:4f:6e:91:d3:13:e9:15:29:fb:d4:65:8a:50:25:e6:4d:7f: 6b:1f:6f:8e:c8:66:13:45:30:62:f0:52:64:52:18:53:e9:a9: 37:13:94:b1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGm1VD/k2QVaccnpO0+JAJaNwJ0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yMzEyMDgyMDU1MDJaFw0yNDEyMDYyMTAwMDJaMDMxMTAvBgNV BAMTKDJCNERDRUVFNjFCOEZEMTNCQzA4MzY3Mzc1QzMyNENBNEQ2RjExMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpnnPYG4uayHN0cBb8BSXGalzd n3tpPMC00n0Pz7YFKluYi8zyxw9qB/86VK1V3gYD9WoyxXda99NY2gzA0L4BNiDd heEZSOBbrIcE+XOQp35UUbLCX0hC/jl+bLscolsSmRIh2FHwuj/Oq2XEzpnatVHp wnv6XOxsd2ZscTyU/4EHEGSTQeLCS7EWVS7adyS1GbVkXZa+MEeNDgOwYANGjgEv UWiCOngZdCwaRYBiwWH+SWn3QtTQptoD8jXuzNkHhHkgvGsbjojsahCMXpXZ2MKS JGamhEl+3gCyt2mLqpKxDNv4o2UM+9iDrVxEECQKb7nTDAzudQlr7AaOFbkhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUK03O7mG4/RO8CDZzdcMkyk1vEQ8wHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1ljANBgkqhkiG 9w0BAQsFAAOCAQEAVVbaDP22AMqkP0PcIQOhsPo3GAnB1gRShora/PeJ7XfSZ/Zi JftKEkITH0vTEEJKfIffBne4DxgevsguWNEf43lZHK+HNuxEHyGeYTEP147FvZfR f7CN2chkxycH4klGDagFBmvGU5Mzk0O9ITVpuWeFIrY6n0XvbJyC9cJxHnj3ZBA0 8qV21pFdIpgOi4cjpdlM3wlsJ9VcAT/8b2vh9Wh3ZpLCS9RRWpaRy4eiJUSReZkd 2J9th+QVKJI6x/RbRFTvmm9RD3nN0cEhMSb15P92jFyY8XoqCk9ukdMT6RUp+9Rl ilAl5k1/ax9vjshmE0UwYvBSZFIYU+mpNxOUsQ== -----END CERTIFICATE-----Generated at Thu May 2 17:16:34 2024 by rpki-client on console-ams.rpki-client.org