$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136372e302f32342d3234203d3e203233363731.roa File: 3131312e39322e3136372e302f32342d3234203d3e203233363731.roa (raw, json) Hash identifier: NNeRy/WJ3Ty5aBcLDqCW9SXAtxAJm0+Sh/mAPgyC4x8= Subject key identifier: F5:37:5C:68:34:0E:3E:64:E6:0D:E5:FC:CA:AC:89:60:4D:23:23:5C Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 03F78B00ECD417C2B043B357E6E984A7139C7E69 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136372e302f32342d3234203d3e203233363731.roa Signing time: Thu 26 Sep 2024 09:00:01 +0000 ROA not before: Thu 26 Sep 2024 08:55:01 +0000 ROA not after: Thu 25 Sep 2025 09:00:01 +0000 asID: 23671 IP address blocks: 111.92.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f7:8b:00:ec:d4:17:c2:b0:43:b3:57:e6:e9:84:a7:13:9c:7e:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Sep 26 08:55:01 2024 GMT Not After : Sep 25 09:00:01 2025 GMT Subject: CN=F5375C68340E3E64E60DE5FCCAAC89604D23235C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:64:91:01:4b:d5:d5:83:a3:90:41:ba:4d:dd: b0:c4:ce:aa:7b:32:b4:1a:99:72:1b:a7:35:b6:4d: 81:23:48:bd:9b:5e:87:13:bc:cb:4d:d9:a8:04:cc: e3:32:8b:68:9f:69:45:e7:61:c6:1c:01:41:42:a2: 7b:af:3d:a7:8a:91:41:84:49:4f:28:3c:73:e3:98: ed:34:11:93:0c:68:7f:48:28:f0:96:69:e0:57:44: c0:1e:4d:bf:95:81:ff:32:be:8a:38:6b:79:52:02: 24:bf:f5:2d:e4:c3:de:7f:6b:52:3b:6c:0e:c6:2e: 58:fe:97:99:5b:76:77:eb:5a:ed:86:03:eb:0a:0f: cb:68:fe:bf:b2:35:ad:0b:70:33:0d:6f:da:76:b3: 57:59:e9:cd:23:a8:b2:b4:b4:09:38:97:fb:92:8b: cf:81:7f:22:ec:b4:82:39:d5:91:a3:fb:b0:c0:a9: e9:17:d6:5b:fd:43:f0:bd:0c:6d:bb:47:a4:ac:5f: 28:cb:89:0d:1b:ea:4d:60:7b:65:a3:7c:c5:f1:ce: 93:03:18:a3:93:c3:b6:d3:fd:a1:71:2d:5a:0e:76: b0:36:cb:93:70:51:6e:6f:03:22:94:4b:ed:ec:af: e8:88:18:f9:7f:6f:45:05:e9:24:78:f6:4b:09:29: 1d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:37:5C:68:34:0E:3E:64:E6:0D:E5:FC:CA:AC:89:60:4D:23:23:5C X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136372e302f32342d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.167.0/24 Signature Algorithm: sha256WithRSAEncryption 61:d8:f5:c9:8a:f5:d1:8c:b7:3f:73:64:a2:55:e7:7d:42:39: 97:83:de:fa:6f:bd:cc:e8:87:04:d4:af:51:95:80:72:71:f0: 0d:7d:b9:33:bc:59:04:44:63:dc:64:52:64:03:f2:2d:dd:00: d5:33:3d:bb:d9:64:2e:97:02:5e:09:c5:6e:bd:cd:9a:71:03: 43:eb:8b:ae:57:d1:66:bd:3a:cb:0a:6a:b7:2f:5b:a2:da:24: 6a:5a:0c:bd:1b:fb:bb:22:09:38:2c:d4:16:70:ba:6d:bf:e2: 13:99:83:fb:b2:e2:f5:69:40:f3:9a:10:a9:a1:86:6b:76:2d: 26:62:7f:4c:5e:fc:dd:c0:24:57:35:d8:6f:1f:04:73:cc:e3: 8a:03:6e:08:8a:b6:73:74:89:2d:ec:87:eb:11:45:37:5a:e4: c8:9f:a1:1b:38:f9:71:61:00:fd:7f:e0:86:63:40:db:87:fc: f0:78:f3:00:46:17:d3:27:3e:a8:44:a9:20:4a:e4:57:0b:5a: 39:f6:3c:d0:e5:16:13:2f:e1:28:3a:11:b0:91:3e:e8:d8:bd: c0:f1:92:78:8f:c8:e8:e5:cc:36:bc:c6:0c:c7:fb:b1:54:e6: 02:3e:27:d2:e7:00:a4:a4:84:40:79:ad:0b:ef:a0:a7:7a:14: af:f9:d5:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA/eLAOzUF8KwQ7NX5umEpxOcfmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA5MjYwODU1MDFaFw0yNTA5MjUwOTAwMDFaMDMxMTAvBgNV BAMTKEY1Mzc1QzY4MzQwRTNFNjRFNjBERTVGQ0NBQUM4OTYwNEQyMzIzNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcZJEBS9XVg6OQQbpN3bDEzqp7 MrQamXIbpzW2TYEjSL2bXocTvMtN2agEzOMyi2ifaUXnYcYcAUFConuvPaeKkUGE SU8oPHPjmO00EZMMaH9IKPCWaeBXRMAeTb+Vgf8yvoo4a3lSAiS/9S3kw95/a1I7 bA7GLlj+l5lbdnfrWu2GA+sKD8to/r+yNa0LcDMNb9p2s1dZ6c0jqLK0tAk4l/uS i8+BfyLstII51ZGj+7DAqekX1lv9Q/C9DG27R6SsXyjLiQ0b6k1ge2WjfMXxzpMD GKOTw7bT/aFxLVoOdrA2y5NwUW5vAyKUS+3sr+iIGPl/b0UF6SR49ksJKR2LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9TdcaDQOPmTmDeX8yqyJYE0jI1wwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9cpzANBgkqhkiG 9w0BAQsFAAOCAQEAYdj1yYr10Yy3P3NkolXnfUI5l4Pe+m+9zOiHBNSvUZWAcnHw DX25M7xZBERj3GRSZAPyLd0A1TM9u9lkLpcCXgnFbr3NmnEDQ+uLrlfRZr06ywpq ty9botokaloMvRv7uyIJOCzUFnC6bb/iE5mD+7Li9WlA85oQqaGGa3YtJmJ/TF78 3cAkVzXYbx8Ec8zjigNuCIq2c3SJLeyH6xFFN1rkyJ+hGzj5cWEA/X/ghmNA24f8 8HjzAEYX0yc+qESpIErkVwtaOfY80OUWEy/hKDoRsJE+6Ni9wPGSeI/I6OXMNrzG DMf7sVTmAj4n0ucApKSEQHmtC++gp3oUr/nVAw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org