$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3133342e37322e302f32312d3234203d3e203338343936.roa File: 3131342e3133342e37322e302f32312d3234203d3e203338343936.roa (raw, json) Hash identifier: kBXh40WJeHDLHJ16qsZ+Wh1twAhL60k+PnphRozING0= Subject key identifier: 1B:23:A8:17:54:C1:34:5A:E7:BA:8E:4E:83:F0:45:B6:02:64:37:13 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 5707269902C4E435B5649A705B16AB6DE1791718 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3133342e37322e302f32312d3234203d3e203338343936.roa Signing time: Mon 01 Jul 2024 01:05:31 +0000 ROA not before: Mon 01 Jul 2024 01:00:31 +0000 ROA not after: Mon 30 Jun 2025 01:05:31 +0000 asID: 38496 IP address blocks: 114.134.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:07:26:99:02:c4:e4:35:b5:64:9a:70:5b:16:ab:6d:e1:79:17:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Jul 1 01:00:31 2024 GMT Not After : Jun 30 01:05:31 2025 GMT Subject: CN=1B23A81754C1345AE7BA8E4E83F045B602643713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:e2:a9:92:ec:a8:36:07:49:8e:c2:80:03: 20:7b:33:82:98:b0:16:68:33:91:cb:fe:6f:25:77: bb:ca:a3:07:2d:66:90:62:2c:1f:4c:ab:9a:3e:62: fa:85:9e:81:d2:3f:83:07:df:27:1b:f6:3a:8a:af: 12:02:18:b7:5d:01:43:55:21:7b:52:f7:57:3d:7f: 29:d5:84:5e:c0:52:ed:f5:98:7d:b3:28:99:30:e0: e3:ce:4b:41:b6:5e:1c:99:a8:29:3e:e7:3e:09:0a: 07:35:a5:8d:ce:fe:65:d3:65:f0:e8:20:04:91:58: 5b:1c:0f:81:73:3d:38:86:64:b9:59:dc:48:99:9e: 07:f0:4c:bc:8b:8d:e5:20:4b:e2:d2:0e:60:1a:94: f0:54:07:8f:31:4c:61:98:f5:49:f4:f6:44:20:cb: 1d:9a:29:a5:dd:30:34:37:e0:09:38:7c:d2:d7:f9: 11:59:d1:33:d5:3e:3e:5d:26:55:7c:c3:73:8f:be: 4f:7c:d1:cb:b5:45:f6:f7:df:a6:7a:c7:13:d2:49: 10:98:b0:5f:e0:f3:6c:e5:d7:ca:9d:7f:06:39:85: f6:69:58:ac:6f:6e:27:f7:56:52:6f:d5:bd:13:e7: fa:8c:3e:f1:75:0c:bc:4b:bb:69:8a:9c:57:c1:ab: dc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:23:A8:17:54:C1:34:5A:E7:BA:8E:4E:83:F0:45:B6:02:64:37:13 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3133342e37322e302f32312d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.134.72.0/21 Signature Algorithm: sha256WithRSAEncryption b2:4f:8f:1c:c0:4f:a2:bc:67:8c:9b:69:95:c7:19:ee:71:e9: 25:cc:8c:7b:a6:66:ca:05:49:9e:13:0f:47:b2:9a:d4:75:04: 36:4f:d7:cb:63:06:19:42:17:9f:59:df:98:f2:3a:6e:11:4b: d4:90:f5:38:bf:0e:84:a2:a3:73:7b:42:6c:8e:70:47:ca:b2: d9:0a:e0:6a:4d:2d:01:1c:a3:da:ce:8c:06:4c:ab:17:ba:1e: 07:ae:21:3e:e0:38:c1:cd:8e:90:65:29:22:9f:11:cc:24:7f: 04:01:ed:6d:20:ac:50:9d:90:5e:64:64:55:73:1b:37:ea:36: 5a:85:b1:7b:35:7c:9b:67:52:78:f8:9d:b4:73:c2:22:87:84: 2f:5b:95:1a:8d:38:9c:a1:f5:95:5f:37:75:80:5e:b4:3f:41: db:10:85:bf:23:23:a1:6c:5c:47:cd:1b:fc:53:48:94:4a:c5: 5b:36:45:d1:e8:3e:17:e1:ee:38:62:3b:f6:5f:20:25:1a:69: 0f:87:e2:b3:b0:96:50:77:3d:c9:ae:b0:d3:2b:e7:6b:e1:3f: 42:c8:b0:d5:16:63:e1:31:62:60:98:39:25:c1:4c:8d:d7:fa: 20:e1:60:11:2c:f4:90:5d:c4:30:16:32:e9:8d:37:80:d9:4c: dc:77:1f:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVwcmmQLE5DW1ZJpwWxarbeF5FxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA3MDEwMTAwMzFaFw0yNTA2MzAwMTA1MzFaMDMxMTAvBgNV BAMTKDFCMjNBODE3NTRDMTM0NUFFN0JBOEU0RTgzRjA0NUI2MDI2NDM3MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNYeKpkuyoNgdJjsKAAyB7M4KY sBZoM5HL/m8ld7vKowctZpBiLB9Mq5o+YvqFnoHSP4MH3ycb9jqKrxICGLddAUNV IXtS91c9fynVhF7AUu31mH2zKJkw4OPOS0G2XhyZqCk+5z4JCgc1pY3O/mXTZfDo IASRWFscD4FzPTiGZLlZ3EiZngfwTLyLjeUgS+LSDmAalPBUB48xTGGY9Un09kQg yx2aKaXdMDQ34Ak4fNLX+RFZ0TPVPj5dJlV8w3OPvk980cu1Rfb336Z6xxPSSRCY sF/g82zl18qdfwY5hfZpWKxvbif3VlJv1b0T5/qMPvF1DLxLu2mKnFfBq9wVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGyOoF1TBNFrnuo5Og/BFtgJkNxMwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzEzMzM0MmUzNzMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3KGSDANBgkqhkiG 9w0BAQsFAAOCAQEAsk+PHMBPorxnjJtplccZ7nHpJcyMe6ZmygVJnhMPR7Ka1HUE Nk/Xy2MGGUIXn1nfmPI6bhFL1JD1OL8OhKKjc3tCbI5wR8qy2Qrgak0tARyj2s6M BkyrF7oeB64hPuA4wc2OkGUpIp8RzCR/BAHtbSCsUJ2QXmRkVXMbN+o2WoWxezV8 m2dSePidtHPCIoeEL1uVGo04nKH1lV83dYBetD9B2xCFvyMjoWxcR80b/FNIlErF WzZF0eg+F+HuOGI79l8gJRppD4fis7CWUHc9ya6w0yvna+E/Qsiw1RZj4TFiYJg5 JcFMjdf6IOFgESz0kF3EMBYy6Y03gNlM3HcfEg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:47 2024 by rpki-client on console-ams.rpki-client.org