$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3135312e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: Si3tPvzTYMJNo6ziKI0r83ugddQoVhs+qZtKjviywZY= Subject key identifier: 30:2F:7B:63:09:EE:D3:75:15:B7:5B:D4:B4:BC:0F:E3:68:A6:8E:E8 Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 08C1B31CCFD3801272C6BE4E534F38F7A74100D3 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Nov 2024 22:00:01 +0000 ROA not before: Fri 08 Nov 2024 21:55:01 +0000 ROA not after: Fri 07 Nov 2025 22:00:01 +0000 asID: 58397 IP address blocks: 117.53.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c1:b3:1c:cf:d3:80:12:72:c6:be:4e:53:4f:38:f7:a7:41:00:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Nov 8 21:55:01 2024 GMT Not After : Nov 7 22:00:01 2025 GMT Subject: CN=302F7B6309EED37515B75BD4B4BC0FE368A68EE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:54:d3:74:9f:1a:4a:54:9c:ee:31:fb:b4:61: 07:09:1f:09:61:c6:70:d1:45:b8:0b:b4:1f:f5:50: 32:26:e3:79:e4:cb:fa:e8:0f:91:c7:cc:58:50:b7: 44:21:1c:d8:5e:c5:87:5e:28:dd:c7:a8:26:f5:57: 04:fd:07:96:a7:5b:c6:4a:70:42:b4:86:5d:24:04: f0:72:69:6c:b6:a7:41:46:00:32:a3:54:64:ef:36: 25:f6:98:24:6a:e8:3f:dc:f1:2e:a2:ae:5c:fc:36: f4:6e:5c:54:99:f3:5e:e9:a8:24:6c:ba:7f:1b:d8: eb:e5:96:b3:fc:8d:dd:1e:b5:07:27:83:eb:c5:68: ba:30:0c:38:1d:a1:0a:c0:27:f8:f7:2b:91:56:9b: 5d:3d:da:0f:fc:e3:fc:2b:22:6e:60:09:c6:47:6c: e2:6f:aa:aa:a1:3b:1e:39:2d:7c:d7:61:4f:e9:4e: e1:fa:eb:59:6b:ad:2c:35:a8:57:a3:0b:5c:76:71: 5d:68:e0:4e:6f:57:28:ee:5b:a5:bd:36:a9:68:d6: 87:8d:1d:1e:d2:a0:3e:97:3f:52:e2:87:13:45:37: a9:f9:ab:c4:2c:10:82:64:d2:c8:96:14:42:33:0f: f9:02:d4:e3:35:a3:d2:0e:02:b4:84:a4:71:f4:52: f8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:2F:7B:63:09:EE:D3:75:15:B7:5B:D4:B4:BC:0F:E3:68:A6:8E:E8 X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.151.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:0c:6a:de:78:5a:06:7f:a2:bf:50:04:df:5e:0d:78:b6:ba: 4e:07:58:a7:d3:a8:f2:91:60:e6:f8:67:fd:2e:b2:7c:9a:01: 2e:19:e1:a1:1f:02:b1:9c:e8:fc:cb:ae:1f:3c:22:47:45:dd: 41:22:2b:c9:a4:b2:9d:2b:be:a0:0f:a8:68:ee:fb:3a:b1:7d: e6:3e:ae:ab:57:cf:90:70:a6:34:87:d2:3e:5b:1e:7c:c5:87: a3:c5:61:91:5b:07:ad:40:73:a3:79:73:2a:a5:fa:94:2e:7f: d3:20:b6:79:20:8d:ae:f2:98:78:27:96:e0:8b:de:43:af:46: 80:d8:a4:6f:b7:79:c5:ba:32:b4:b2:59:46:56:29:cb:2b:92: 08:64:85:71:26:8c:99:c7:ac:46:9f:10:2e:13:89:d1:86:41: fa:53:f0:e3:3a:3b:dc:45:44:46:72:68:83:af:b7:dc:af:9a: 16:a6:01:08:11:e2:db:9f:6a:83:6b:1d:87:d8:cd:c7:9b:09: 52:9d:fc:3d:7b:d6:6c:ba:db:ce:0f:88:88:3b:56:ab:ef:d5: ee:2e:4c:0d:79:9f:92:1f:5c:1e:8b:e1:2c:a2:a9:fd:f2:28: 68:56:ea:ae:ed:4a:b7:ee:9d:55:1d:94:cd:d6:ac:44:44:2e: 94:d9:a7:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCMGzHM/TgBJyxr5OU08496dBANMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yNDExMDgyMTU1MDFaFw0yNTExMDcyMjAwMDFaMDMxMTAvBgNV BAMTKDMwMkY3QjYzMDlFRUQzNzUxNUI3NUJENEI0QkMwRkUzNjhBNjhFRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2VNN0nxpKVJzuMfu0YQcJHwlh xnDRRbgLtB/1UDIm43nky/roD5HHzFhQt0QhHNhexYdeKN3HqCb1VwT9B5anW8ZK cEK0hl0kBPByaWy2p0FGADKjVGTvNiX2mCRq6D/c8S6irlz8NvRuXFSZ817pqCRs un8b2OvllrP8jd0etQcng+vFaLowDDgdoQrAJ/j3K5FWm1092g/84/wrIm5gCcZH bOJvqqqhOx45LXzXYU/pTuH661lrrSw1qFejC1x2cV1o4E5vVyjuW6W9Nqlo1oeN HR7SoD6XP1LihxNFN6n5q8QsEIJk0siWFEIzD/kC1OM1o9IOArSEpHH0UvgTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMC97Ywnu03UVt1vUtLwP42imjugwHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lzANBgkqhkiG 9w0BAQsFAAOCAQEAbQxq3nhaBn+iv1AE314NeLa6TgdYp9Oo8pFg5vhn/S6yfJoB LhnhoR8CsZzo/MuuHzwiR0XdQSIryaSynSu+oA+oaO77OrF95j6uq1fPkHCmNIfS PlsefMWHo8VhkVsHrUBzo3lzKqX6lC5/0yC2eSCNrvKYeCeW4IveQ69GgNikb7d5 xboytLJZRlYpyyuSCGSFcSaMmcesRp8QLhOJ0YZB+lPw4zo73EVERnJog6+33K+a FqYBCBHi259qg2sdh9jNx5sJUp38PXvWbLrbzg+IiDtWq+/V7i5MDXmfkh9cHovh LKKp/fIoaFbqru1Kt+6dVR2UzdasREQulNmnFg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org