$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136362e302f32342d3234203d3e203233363731.roa File: 3131312e39322e3136362e302f32342d3234203d3e203233363731.roa (raw, json) Hash identifier: 2itsPSRCvjSIsoJUIWOb+LzEqxxXedRDpXbO9NR2aHU= Subject key identifier: 91:4A:07:F0:09:7B:06:0C:88:FC:ED:33:00:C3:03:93:8B:CE:24:40 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 27F1AC812FF197914BE4F8A586C94C4927093DC6 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136362e302f32342d3234203d3e203233363731.roa Signing time: Wed 25 Sep 2024 04:01:29 +0000 ROA not before: Wed 25 Sep 2024 03:56:29 +0000 ROA not after: Wed 24 Sep 2025 04:01:29 +0000 asID: 23671 IP address blocks: 111.92.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f1:ac:81:2f:f1:97:91:4b:e4:f8:a5:86:c9:4c:49:27:09:3d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Sep 25 03:56:29 2024 GMT Not After : Sep 24 04:01:29 2025 GMT Subject: CN=914A07F0097B060C88FCED3300C303938BCE2440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e5:1b:16:ce:24:01:c7:0e:69:0b:2d:3e:33: 03:99:dd:1a:b3:54:31:90:2e:e5:34:4d:ed:00:0a: 89:35:13:34:8a:08:5f:f1:61:89:ff:e2:cf:e7:34: fc:93:b8:c1:04:d1:b7:17:2d:5a:0b:5e:fe:c3:5c: 4f:ce:07:0c:f5:b8:6d:0a:ef:89:72:70:7f:e0:09: da:3d:c1:5f:85:aa:58:81:a9:20:b0:5d:ab:ad:d2: 42:d6:93:7a:bb:b4:6c:66:3c:61:0a:e5:98:8b:ab: 53:87:7c:c9:f1:15:9c:2c:d4:c3:74:57:90:54:82: 9b:d4:40:36:02:4e:7c:0c:a9:d6:de:fb:1a:de:da: 78:66:8d:90:35:fd:27:f8:73:69:09:38:54:fc:7c: 89:af:d8:48:f1:0c:7d:82:c6:d0:0b:33:da:28:3a: 5a:63:14:5c:ca:9e:8b:58:dd:5e:21:aa:50:20:10: a9:dd:ce:b3:d2:18:57:35:4e:9f:bc:a5:05:44:6a: e5:57:8b:96:40:f3:92:3a:19:14:ef:ae:8e:b6:ef: 22:53:d5:2a:ef:5a:ef:c5:88:33:bc:59:18:08:5b: 2d:61:c7:9b:76:51:b0:46:6c:17:cf:4a:c5:25:0a: 96:ee:02:2f:8a:59:96:eb:ee:36:00:da:2b:05:de: 67:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:4A:07:F0:09:7B:06:0C:88:FC:ED:33:00:C3:03:93:8B:CE:24:40 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136362e302f32342d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.166.0/24 Signature Algorithm: sha256WithRSAEncryption 04:16:bf:d8:59:ea:d6:78:40:38:36:cc:df:ba:1a:58:7c:06: d4:37:57:a7:e2:40:b7:36:b8:be:09:1f:32:12:da:22:b5:cc: 01:8c:df:26:1d:f2:df:64:b8:68:58:5a:38:62:ac:ee:c5:76: 33:80:e1:e0:5f:ba:a5:98:c5:c6:9b:f4:e0:44:ab:88:77:3d: 36:2e:f5:28:c2:f2:2d:cd:fc:d6:1e:5f:5c:09:c2:df:bc:7d: dc:b1:d4:5d:bf:5b:2c:84:02:9e:86:10:7f:d4:4b:0c:7a:bf: c7:04:ac:04:36:1c:14:e5:bb:bb:fd:b3:f4:fb:6a:10:f2:8a: 8c:b2:3e:24:58:f3:7c:d1:23:29:1b:aa:7a:02:4c:cb:08:24: d6:70:f0:7b:8f:1c:c3:44:06:bf:c5:c1:2c:7a:43:22:ee:62: 93:f0:89:8d:8c:9f:f0:fa:47:0b:6e:78:4d:50:9e:83:48:32: c7:34:28:6c:50:3e:97:d8:d6:55:c5:5a:f1:1e:5f:70:6a:57: 58:d2:ae:04:43:50:19:7f:93:e8:26:97:25:3b:f0:d5:20:08: da:12:72:62:55:5e:a1:8c:f6:bc:ad:4f:27:62:4d:5a:93:01: 80:33:2c:a9:52:8e:61:7c:88:61:8c:27:26:e5:c0:d5:98:ff: c7:f8:b1:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ/GsgS/xl5FL5PilhslMSScJPcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA5MjUwMzU2MjlaFw0yNTA5MjQwNDAxMjlaMDMxMTAvBgNV BAMTKDkxNEEwN0YwMDk3QjA2MEM4OEZDRUQzMzAwQzMwMzkzOEJDRTI0NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC65RsWziQBxw5pCy0+MwOZ3Rqz VDGQLuU0Te0ACok1EzSKCF/xYYn/4s/nNPyTuMEE0bcXLVoLXv7DXE/OBwz1uG0K 74lycH/gCdo9wV+FqliBqSCwXaut0kLWk3q7tGxmPGEK5ZiLq1OHfMnxFZws1MN0 V5BUgpvUQDYCTnwMqdbe+xre2nhmjZA1/Sf4c2kJOFT8fImv2EjxDH2CxtALM9oo OlpjFFzKnotY3V4hqlAgEKndzrPSGFc1Tp+8pQVEauVXi5ZA85I6GRTvro627yJT 1SrvWu/FiDO8WRgIWy1hx5t2UbBGbBfPSsUlCpbuAi+KWZbr7jYA2isF3menAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkUoH8Al7BgyI/O0zAMMDk4vOJEAwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9cpjANBgkqhkiG 9w0BAQsFAAOCAQEABBa/2Fnq1nhAODbM37oaWHwG1DdXp+JAtza4vgkfMhLaIrXM AYzfJh3y32S4aFhaOGKs7sV2M4Dh4F+6pZjFxpv04ESriHc9Ni71KMLyLc381h5f XAnC37x93LHUXb9bLIQCnoYQf9RLDHq/xwSsBDYcFOW7u/2z9PtqEPKKjLI+JFjz fNEjKRuqegJMywgk1nDwe48cw0QGv8XBLHpDIu5ik/CJjYyf8PpHC254TVCeg0gy xzQobFA+l9jWVcVa8R5fcGpXWNKuBENQGX+T6CaXJTvw1SAI2hJyYlVeoYz2vK1P J2JNWpMBgDMsqVKOYXyIYYwnJuXA1Zj/x/ixig== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org