$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3131302e34302e302f32312d3234203d3e203338343936.roa File: 3131342e3131302e34302e302f32312d3234203d3e203338343936.roa (raw, json) Hash identifier: MCSnatI8SLF6xCSQhynRdGw56MhU8hexfBuK3qs4CH0= Subject key identifier: B0:8C:F5:70:7E:78:9D:AD:C5:26:EE:E4:EA:73:7C:46:FB:84:BC:6E Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 61E3919D52D412F9CDBFA2BA786AB8B5E11350B2 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3131302e34302e302f32312d3234203d3e203338343936.roa Signing time: Mon 01 Jul 2024 01:05:34 +0000 ROA not before: Mon 01 Jul 2024 01:00:34 +0000 ROA not after: Mon 30 Jun 2025 01:05:34 +0000 asID: 38496 IP address blocks: 114.110.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e3:91:9d:52:d4:12:f9:cd:bf:a2:ba:78:6a:b8:b5:e1:13:50:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Jul 1 01:00:34 2024 GMT Not After : Jun 30 01:05:34 2025 GMT Subject: CN=B08CF5707E789DADC526EEE4EA737C46FB84BC6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d2:27:04:05:fe:cd:5e:92:5f:56:46:49:91: 53:83:b6:cd:41:a8:62:2a:73:7b:fa:91:8d:58:30: d7:7c:f0:fa:50:31:ba:58:43:ca:f7:27:76:9a:8a: 0b:19:11:a8:b8:c1:6a:6e:6e:05:98:25:e4:7b:e4: ee:35:9c:3f:d9:34:ab:52:6a:1f:91:31:eb:a3:d8: a3:73:ed:bb:1c:b7:f8:df:1f:51:d0:9c:6a:34:81: 33:0a:fe:71:bf:bc:39:a0:55:3f:5c:1c:fb:33:95: 94:55:8d:fd:f2:2b:9b:21:6a:bc:df:94:c9:66:da: 22:6c:4c:af:b3:55:75:b6:81:d2:33:fe:f7:af:a6: 13:96:e7:87:06:73:69:3f:f5:1a:33:f5:2d:7a:d3: 0b:fb:b0:10:4f:b7:79:be:a6:01:cc:00:27:f6:17: d2:31:9f:a9:1b:b6:02:52:6f:92:67:b6:c1:d4:e5: ba:7e:db:d2:a5:3e:72:b4:db:55:fc:19:7b:7f:09: fa:d1:cc:8f:48:84:9d:4a:86:a3:cf:29:9b:b9:57: de:ae:e9:7d:c9:84:80:4d:8f:81:eb:be:d3:3e:ec: 02:2b:87:a0:ba:c7:da:87:e5:b0:ed:6d:85:c5:e2: 39:7a:7c:6c:d0:06:0d:90:a6:05:c5:ca:52:f1:2b: a3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:8C:F5:70:7E:78:9D:AD:C5:26:EE:E4:EA:73:7C:46:FB:84:BC:6E X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3131302e34302e302f32312d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.110.40.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:0a:5e:cd:66:ba:4a:2c:21:d6:6c:78:3d:e9:54:e5:bc:f8: d3:88:f6:8e:fe:0b:9d:17:a6:6d:eb:fc:46:32:61:ab:f0:be: 32:0e:df:b6:3a:32:06:43:f9:23:e2:cc:55:ab:59:3a:4b:af: cb:5c:17:cd:5e:dd:75:f4:73:21:2f:75:85:48:f0:b9:ab:19: 91:e5:f7:42:ed:6a:95:cc:46:82:15:38:5f:92:a6:43:fe:df: a6:21:cd:c0:08:ce:c8:c1:17:df:1c:20:e1:ae:3b:d9:b9:d0: fa:34:a1:20:df:0b:97:a4:6f:86:3c:7f:7a:08:a2:d2:93:a7: 96:7f:16:3b:6c:87:3b:cb:06:03:0e:de:f3:76:ed:13:f6:62: 46:eb:fb:e3:39:97:68:2e:c3:73:2a:98:03:69:66:9b:06:34: 11:6e:25:42:e5:bd:00:b8:25:ad:c7:bc:bb:05:a9:61:fd:e7: cf:2e:6c:50:e5:b0:07:9d:12:78:fa:b4:3f:74:cd:d3:24:42: 1e:e0:9b:f8:ac:f1:66:f4:1a:4a:97:30:67:ea:9c:14:5b:ad: 1e:ed:7c:8c:2e:ff:af:ed:c2:04:73:39:de:08:2f:bf:5f:69: f3:9f:24:25:81:54:dd:10:e5:a3:bf:af:b0:7f:bf:d9:b3:8a: de:aa:22:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYeORnVLUEvnNv6K6eGq4teETULIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA3MDEwMTAwMzRaFw0yNTA2MzAwMTA1MzRaMDMxMTAvBgNV BAMTKEIwOENGNTcwN0U3ODlEQURDNTI2RUVFNEVBNzM3QzQ2RkI4NEJDNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq0icEBf7NXpJfVkZJkVODts1B qGIqc3v6kY1YMNd88PpQMbpYQ8r3J3aaigsZEai4wWpubgWYJeR75O41nD/ZNKtS ah+RMeuj2KNz7bsct/jfH1HQnGo0gTMK/nG/vDmgVT9cHPszlZRVjf3yK5sharzf lMlm2iJsTK+zVXW2gdIz/vevphOW54cGc2k/9Roz9S160wv7sBBPt3m+pgHMACf2 F9Ixn6kbtgJSb5JntsHU5bp+29KlPnK021X8GXt/CfrRzI9IhJ1KhqPPKZu5V96u 6X3JhIBNj4HrvtM+7AIrh6C6x9qH5bDtbYXF4jl6fGzQBg2QpgXFylLxK6OVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsIz1cH54na3FJu7k6nN8RvuEvG4wHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzEzMTMwMmUzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3JuKDANBgkqhkiG 9w0BAQsFAAOCAQEAKwpezWa6Siwh1mx4PelU5bz404j2jv4LnRembev8RjJhq/C+ Mg7ftjoyBkP5I+LMVatZOkuvy1wXzV7ddfRzIS91hUjwuasZkeX3Qu1qlcxGghU4 X5KmQ/7fpiHNwAjOyMEX3xwg4a472bnQ+jShIN8Ll6Rvhjx/egii0pOnln8WO2yH O8sGAw7e83btE/ZiRuv74zmXaC7DcyqYA2lmmwY0EW4lQuW9ALglrce8uwWpYf3n zy5sUOWwB50SePq0P3TN0yRCHuCb+KzxZvQaSpcwZ+qcFFutHu18jC7/r+3CBHM5 3ggvv19p858kJYFU3RDlo7+vsH+/2bOK3qoiEA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org