$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131352e3137382e3132302e302f32342d3234203d3e203338343936.roa File: 3131352e3137382e3132302e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: 7lWHw+wMpqNC9b9mSG6m9E6jXYFGbXGDRJY5VkZbxa8= Subject key identifier: 24:9F:6C:30:29:1C:9D:42:14:C9:21:84:65:6F:31:F1:95:28:6F:51 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 3A95BEB04B8451284FE14D29CAC275C872D0BD18 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131352e3137382e3132302e302f32342d3234203d3e203338343936.roa Signing time: Fri 18 Oct 2024 08:37:32 +0000 ROA not before: Fri 18 Oct 2024 08:32:32 +0000 ROA not after: Fri 17 Oct 2025 08:37:32 +0000 asID: 38496 IP address blocks: 115.178.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:95:be:b0:4b:84:51:28:4f:e1:4d:29:ca:c2:75:c8:72:d0:bd:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Oct 18 08:32:32 2024 GMT Not After : Oct 17 08:37:32 2025 GMT Subject: CN=249F6C30291C9D4214C92184656F31F195286F51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:73:d5:28:c4:51:6b:02:b4:e5:67:c7:ac:e3: 44:49:32:e7:46:e8:93:38:d7:24:c3:d7:c0:ba:51: 4b:df:46:de:4c:94:29:ae:2e:3d:fd:df:d8:f9:43: 62:5f:25:d4:07:a7:6d:e1:52:da:32:d6:33:11:97: 95:f0:a6:3d:92:43:bc:13:de:7c:7a:b4:b4:70:c0: be:8d:4e:4e:0c:09:fd:95:8a:0d:63:00:54:96:d5: 79:f9:90:41:23:a5:1c:54:ae:2c:b6:45:4c:41:d3: 26:68:ca:62:f7:e1:28:2c:1e:a6:58:b2:0f:99:36: 06:43:ee:b3:b9:4f:f8:10:7e:47:b2:26:2b:78:d2: e0:56:e5:1d:29:18:10:f4:cd:0d:8b:94:a6:d3:bc: ea:4e:b9:87:b8:9d:b0:f5:b2:c0:09:8b:4d:03:1c: 47:04:9a:a3:eb:90:22:38:f8:14:b6:4b:65:ed:8d: b8:82:87:c4:5c:86:1e:87:79:2f:c8:31:06:cb:7d: 68:e4:50:b4:19:45:d6:e0:91:a2:d4:cd:75:5a:44: 15:6f:af:fc:13:97:24:f6:de:47:6d:db:47:cb:4a: d0:d2:cf:c8:b5:3a:71:1e:fb:61:b8:33:e8:c6:9e: ee:74:3f:89:92:d7:45:58:0d:86:82:b6:c0:c4:01: 24:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:9F:6C:30:29:1C:9D:42:14:C9:21:84:65:6F:31:F1:95:28:6F:51 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131352e3137382e3132302e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.120.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:1f:9b:c2:7e:1f:ac:a8:18:bd:e1:7b:0b:8e:eb:00:c7:6d: cb:34:01:8a:2d:ee:9f:ca:1e:c5:79:00:ae:21:0a:7c:e6:b2: e8:f3:cb:e0:7c:6e:8e:c4:ed:51:17:57:ee:0c:f9:aa:d5:e4: e7:40:f8:f3:bc:d6:cb:12:03:c2:ae:34:31:de:7f:af:88:df: 2c:0b:8f:9c:06:78:6b:4f:e2:00:ae:fb:f5:2d:38:9a:97:59: 7d:4b:39:77:e2:9d:31:a4:3b:89:d8:ab:4a:02:be:41:fa:7c: e3:8e:a8:74:7f:68:9a:fc:29:63:ae:0b:8e:b0:3a:2c:e4:79: 6b:7f:a3:0d:f1:fe:58:c0:c6:ab:23:3d:b5:a6:77:2a:e2:cf: fc:4c:48:a1:cc:57:35:ef:f6:d7:32:2a:89:0a:27:af:e8:36: 1e:a7:a8:80:84:22:98:c8:af:f2:74:30:ef:ea:62:b7:01:e3: 9d:58:ea:b4:8c:48:8d:e0:f3:74:f1:f4:96:83:50:63:6a:0b: 5f:25:58:4d:06:8e:bf:34:7c:65:2b:65:ab:f9:1b:ef:0a:e4: 57:f5:c8:75:bd:d5:b4:09:4c:1e:6d:73:27:e0:99:82:88:44: 3e:22:fd:8a:ea:20:5b:6c:27:50:de:06:1a:ae:eb:b9:fa:59: f8:33:4a:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOpW+sEuEUShP4U0pysJ1yHLQvRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDEwMTgwODMyMzJaFw0yNTEwMTcwODM3MzJaMDMxMTAvBgNV BAMTKDI0OUY2QzMwMjkxQzlENDIxNEM5MjE4NDY1NkYzMUYxOTUyODZGNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrc9UoxFFrArTlZ8es40RJMudG 6JM41yTD18C6UUvfRt5MlCmuLj3939j5Q2JfJdQHp23hUtoy1jMRl5Xwpj2SQ7wT 3nx6tLRwwL6NTk4MCf2Vig1jAFSW1Xn5kEEjpRxUriy2RUxB0yZoymL34SgsHqZY sg+ZNgZD7rO5T/gQfkeyJit40uBW5R0pGBD0zQ2LlKbTvOpOuYe4nbD1ssAJi00D HEcEmqPrkCI4+BS2S2XtjbiCh8Rchh6HeS/IMQbLfWjkULQZRdbgkaLUzXVaRBVv r/wTlyT23kdt20fLStDSz8i1OnEe+2G4M+jGnu50P4mS10VYDYaCtsDEASSZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJJ9sMCkcnUIUySGEZW8x8ZUob1EwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNTJlMzEzNzM4MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAc7J4MA0GCSqG SIb3DQEBCwUAA4IBAQBsH5vCfh+sqBi94XsLjusAx23LNAGKLe6fyh7FeQCuIQp8 5rLo88vgfG6OxO1RF1fuDPmq1eTnQPjzvNbLEgPCrjQx3n+viN8sC4+cBnhrT+IA rvv1LTial1l9Szl34p0xpDuJ2KtKAr5B+nzjjqh0f2ia/CljrguOsDos5Hlrf6MN 8f5YwMarIz21pncq4s/8TEihzFc17/bXMiqJCiev6DYep6iAhCKYyK/ydDDv6mK3 AeOdWOq0jEiN4PN08fSWg1BjagtfJVhNBo6/NHxlK2Wr+RvvCuRX9ch1vdW0CUwe bXMn4JmCiEQ+Iv2K6iBbbCdQ3gYaruu5+ln4M0qN -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org