$ rpki-client -vvf repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa File: 3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa (raw, json) Hash identifier: xFoVEBixfaV59f5eLoKvzCfI+maBpFsE/LQmHoFGuNo= Subject key identifier: 27:08:68:91:66:DB:B0:69:90:F6:6C:83:DA:B9:D3:E3:0E:CF:9B:D3 Certificate issuer: /CN=708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520 Certificate serial: 726B0B1CD98C291635115E23679C9621DA95CACF Authority key identifier: 70:8D:1F:99:C0:BD:2A:17:83:D1:CE:42:6B:BF:E8:3C:9C:0C:C5:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa Signing time: Thu 24 Oct 2024 22:00:02 +0000 ROA not before: Thu 24 Oct 2024 21:55:02 +0000 ROA not after: Thu 23 Oct 2025 22:00:02 +0000 asID: 152034 IP address blocks: 115.187.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.crl rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:6b:0b:1c:d9:8c:29:16:35:11:5e:23:67:9c:96:21:da:95:ca:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520 Validity Not Before: Oct 24 21:55:02 2024 GMT Not After : Oct 23 22:00:02 2025 GMT Subject: CN=2708689166DBB06990F66C83DAB9D3E30ECF9BD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f2:4f:e9:3c:40:d2:d5:0b:7e:93:b9:aa:24: 87:a6:2e:69:1e:af:14:2c:9b:64:05:e8:51:fb:e7: 66:77:ea:81:4c:48:99:84:f1:f7:eb:37:9c:23:c1: 50:62:fe:4d:38:3a:ef:b1:ea:6d:eb:fb:78:00:c6: 70:8f:99:a7:68:45:b5:c4:2c:69:8a:70:a8:ea:57: 11:49:49:52:42:ee:c4:aa:8e:0f:4d:88:37:61:bb: a8:3f:69:7e:da:61:a0:34:db:1d:63:d1:4c:3a:43: 3c:a3:55:df:7a:2a:5b:86:09:90:6a:1d:9a:95:41: cd:c6:66:70:9a:bc:21:e6:06:c9:a5:7f:e5:d7:9c: 68:ee:7e:ea:8a:8f:3e:58:3e:d1:5a:9a:b9:fc:d1: 57:b7:e4:52:59:8e:9e:4c:a4:41:b2:4c:0a:38:4f: 07:a5:15:e4:60:7b:cd:cd:f4:5c:11:a1:40:4b:67: 9d:79:36:5c:db:f5:8f:77:65:1b:17:91:5c:df:40: d2:01:93:9a:19:f4:07:d5:f9:c0:1e:18:05:d0:a9: d8:a6:fe:46:e2:c8:8c:b6:43:a5:67:ab:e5:c4:23: be:01:9c:34:66:c9:71:be:76:f7:11:38:0e:40:5d: fe:c5:01:47:f7:d7:a9:87:9e:8f:e3:cf:1d:18:f9: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:08:68:91:66:DB:B0:69:90:F6:6C:83:DA:B9:D3:E3:0E:CF:9B:D3 X509v3 Authority Key Identifier: keyid:70:8D:1F:99:C0:BD:2A:17:83:D1:CE:42:6B:BF:E8:3C:9C:0C:C5:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.187.28.0/23 Signature Algorithm: sha256WithRSAEncryption 59:6e:02:36:76:af:ac:e1:76:b4:72:fe:5e:99:a6:e7:a5:ac: aa:ec:13:c2:12:58:bc:41:96:4c:a3:44:4a:37:28:d9:f0:be: 31:8d:cb:a9:db:a0:88:29:aa:1d:24:52:2d:d5:bf:dd:65:72: 10:c1:50:36:b7:66:8a:ab:67:c3:9a:0f:dc:62:fa:e9:1c:14: 6e:74:b8:36:e5:1b:09:c0:a3:81:89:99:52:bf:68:49:04:1f: 9e:5e:1a:1e:e9:6f:0d:43:1f:87:9a:84:c0:8e:60:60:c6:8a: 7f:82:af:88:3f:dc:bf:6d:13:62:26:44:7f:2e:6c:71:30:1d: 7b:8c:6a:3e:28:92:e1:1d:63:32:b9:30:1a:24:0d:0b:5a:ce: c9:81:31:f2:d2:6d:b8:b8:bb:52:54:e3:94:45:73:8f:09:10: 5f:de:e0:8b:77:b8:38:d5:51:e5:be:6a:a5:7b:c8:0c:9d:52: bc:cd:76:d8:18:5a:d5:06:e3:f1:bb:e9:1a:59:17:be:37:df: a0:42:4f:83:25:4d:69:54:de:4d:f8:0d:de:92:58:ae:dd:54: 37:7f:59:a5:0e:80:c4:6d:87:3e:e3:57:b9:45:6e:a7:c2:02: 07:c5:31:5c:42:56:91:c1:24:e2:17:b4:b6:4e:9c:9b:12:4a: 7d:92:6f:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcmsLHNmMKRY1EV4jZ5yWIdqVys8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA4RDFGOTlDMEJEMkExNzgzRDFDRTQyNkJCRkU4M0M5 QzBDQzUyMDAeFw0yNDEwMjQyMTU1MDJaFw0yNTEwMjMyMjAwMDJaMDMxMTAvBgNV BAMTKDI3MDg2ODkxNjZEQkIwNjk5MEY2NkM4M0RBQjlEM0UzMEVDRjlCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV8k/pPEDS1Qt+k7mqJIemLmke rxQsm2QF6FH752Z36oFMSJmE8ffrN5wjwVBi/k04Ou+x6m3r+3gAxnCPmadoRbXE LGmKcKjqVxFJSVJC7sSqjg9NiDdhu6g/aX7aYaA02x1j0Uw6QzyjVd96KluGCZBq HZqVQc3GZnCavCHmBsmlf+XXnGjufuqKjz5YPtFamrn80Ve35FJZjp5MpEGyTAo4 TwelFeRge83N9FwRoUBLZ515Nlzb9Y93ZRsXkVzfQNIBk5oZ9AfV+cAeGAXQqdim /kbiyIy2Q6Vnq+XEI74BnDRmyXG+dvcROA5AXf7FAUf316mHno/jzx0Y+czTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJwhokWbbsGmQ9myD2rnT4w7Pm9MwHwYDVR0j BBgwFoAUcI0fmcC9KheD0c5Ca7/oPJwMxSAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yjc0ZWNlNi04ODBjLTRjZWYtYWRkMi03NzcxOWViZWRlYzkvMC83MDhEMUY5OUMw QkQyQTE3ODNEMUNFNDI2QkJGRTgzQzlDMENDNTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzA4RDFGOTlDMEJEMkExNzgzRDFDRTQyNkJCRkU4M0M5QzBD QzUyMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViNzRlY2U2LTg4MGMtNGNlZi1h ZGQyLTc3NzE5ZWJlZGVjOS8wLzMxMzEzNTJlMzEzODM3MmUzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBc7scMA0GCSqG SIb3DQEBCwUAA4IBAQBZbgI2dq+s4Xa0cv5emabnpayq7BPCEli8QZZMo0RKNyjZ 8L4xjcup26CIKaodJFIt1b/dZXIQwVA2t2aKq2fDmg/cYvrpHBRudLg25RsJwKOB iZlSv2hJBB+eXhoe6W8NQx+HmoTAjmBgxop/gq+IP9y/bRNiJkR/LmxxMB17jGo+ KJLhHWMyuTAaJA0LWs7JgTHy0m24uLtSVOOURXOPCRBf3uCLd7g41VHlvmqle8gM nVK8zXbYGFrVBuPxu+kaWRe+N9+gQk+DJU1pVN5N+A3ekliu3VQ3f1mlDoDEbYc+ 41e5RW6nwgIHxTFcQlaRwSTiF7S2TpybEkp9km/s -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:39 2024 by rpki-client on console-ams.rpki-client.org