$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136382e302f32342d3234203d3e203233363731.roa File: 3131312e39322e3136382e302f32342d3234203d3e203233363731.roa (raw, json) Hash identifier: kMJJRq7iMKScHPPhUxAchzVjJc3/j+fHddklsMZHE1o= Subject key identifier: B0:44:6D:78:F8:6E:08:2F:83:FB:45:30:5D:F4:B3:90:57:87:50:AA Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 05BC01A89E76108125386001FBCB534F4E4711C8 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136382e302f32342d3234203d3e203233363731.roa Signing time: Wed 25 Sep 2024 04:01:29 +0000 ROA not before: Wed 25 Sep 2024 03:56:29 +0000 ROA not after: Wed 24 Sep 2025 04:01:29 +0000 asID: 23671 IP address blocks: 111.92.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:bc:01:a8:9e:76:10:81:25:38:60:01:fb:cb:53:4f:4e:47:11:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Sep 25 03:56:29 2024 GMT Not After : Sep 24 04:01:29 2025 GMT Subject: CN=B0446D78F86E082F83FB45305DF4B390578750AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2a:f3:0b:dc:7c:e8:be:46:eb:bc:39:8f:e7: 0f:2f:5e:9a:f1:59:3f:33:1f:d8:7b:b7:11:b1:58: c0:e0:06:5c:08:af:36:59:4a:cd:de:4b:44:fd:41: cb:97:92:8a:ef:72:6c:87:2f:53:23:e7:f4:ce:dc: cc:30:da:a4:f9:64:d6:51:65:e8:af:51:c4:d7:13: b5:b0:a8:3d:36:8e:40:f3:6b:e9:cb:e2:9f:54:27: 47:10:80:d3:1f:e1:da:31:03:7b:79:45:a9:74:3b: c9:42:14:0a:eb:ba:2f:d3:b8:14:e7:55:5c:fb:93: db:03:b2:68:18:9f:7e:ce:b0:31:f2:6c:90:ba:63: b8:08:88:69:49:cc:0b:25:2d:4f:77:d0:aa:d8:b8: d4:5a:07:b9:79:8b:07:d6:cd:74:e2:e7:48:a8:b5: ba:06:5b:7f:eb:7f:f6:93:24:b5:05:7e:d9:c2:53: 69:ad:50:02:cd:ba:6e:87:e4:1b:4e:1c:df:2b:11: c6:c3:18:e0:66:8a:cd:19:82:e8:93:2b:da:f7:c5: 15:65:30:f8:5b:13:1f:b8:28:0b:4c:21:1c:55:11: 8d:41:9b:4d:28:ec:44:6d:f7:8d:df:f0:f6:18:58: bf:7d:ba:1a:6b:99:74:72:10:9a:a6:71:50:52:8f: 73:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:44:6D:78:F8:6E:08:2F:83:FB:45:30:5D:F4:B3:90:57:87:50:AA X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136382e302f32342d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.168.0/24 Signature Algorithm: sha256WithRSAEncryption 07:b2:30:a5:a9:16:5a:4a:ea:27:cc:1e:35:81:1c:65:a8:28: d7:31:90:ba:e6:85:4c:c6:a6:f1:26:1b:39:b2:28:6f:ee:0c: 54:9b:65:4b:bd:96:2d:95:cb:73:42:a9:1a:0d:c3:06:fe:b6: 56:35:fa:79:cc:98:47:ee:6c:8e:49:d3:e1:47:68:97:16:7b: 95:c3:1c:cf:94:55:13:d7:d8:2e:bb:48:88:12:5d:e6:d7:30: ae:7f:54:93:3c:05:36:18:d1:3a:6f:8d:3e:93:cd:b7:43:c8: 83:3f:9e:85:9c:da:2c:e8:2b:91:58:44:99:d3:0a:72:f9:b4: 1b:4b:f0:54:25:8b:60:a6:81:3f:19:88:ff:37:41:b7:ad:ed: ff:7d:91:72:6e:61:03:c5:29:09:18:95:6e:96:82:c4:f2:b8: 78:c3:47:9f:10:eb:d0:b6:89:98:63:0b:8c:a1:84:91:78:c4: 85:de:2a:f5:c1:e9:6d:b7:b5:f1:8e:b7:4b:8d:46:e6:2b:54: ee:93:b9:dc:08:72:78:2f:0c:e2:ba:9f:c6:fe:ae:e9:f5:38: 47:26:b4:25:bb:f9:3b:b8:54:7b:9d:2f:5a:8b:07:4f:34:f5: 59:bc:61:8e:2e:97:6e:2b:d4:25:c9:c8:e2:82:34:73:07:f3: da:f4:14:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBbwBqJ52EIElOGAB+8tTT05HEcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA5MjUwMzU2MjlaFw0yNTA5MjQwNDAxMjlaMDMxMTAvBgNV BAMTKEIwNDQ2RDc4Rjg2RTA4MkY4M0ZCNDUzMDVERjRCMzkwNTc4NzUwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+KvML3HzovkbrvDmP5w8vXprx WT8zH9h7txGxWMDgBlwIrzZZSs3eS0T9QcuXkorvcmyHL1Mj5/TO3Mww2qT5ZNZR ZeivUcTXE7WwqD02jkDza+nL4p9UJ0cQgNMf4doxA3t5Ral0O8lCFArrui/TuBTn VVz7k9sDsmgYn37OsDHybJC6Y7gIiGlJzAslLU930KrYuNRaB7l5iwfWzXTi50io tboGW3/rf/aTJLUFftnCU2mtUALNum6H5BtOHN8rEcbDGOBmis0ZguiTK9r3xRVl MPhbEx+4KAtMIRxVEY1Bm00o7ERt943f8PYYWL99uhprmXRyEJqmcVBSj3NZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsERtePhuCC+D+0UwXfSzkFeHUKowHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9cqDANBgkqhkiG 9w0BAQsFAAOCAQEAB7IwpakWWkrqJ8weNYEcZago1zGQuuaFTMam8SYbObIob+4M VJtlS72WLZXLc0KpGg3DBv62VjX6ecyYR+5sjknT4UdolxZ7lcMcz5RVE9fYLrtI iBJd5tcwrn9UkzwFNhjROm+NPpPNt0PIgz+ehZzaLOgrkVhEmdMKcvm0G0vwVCWL YKaBPxmI/zdBt63t/32Rcm5hA8UpCRiVbpaCxPK4eMNHnxDr0LaJmGMLjKGEkXjE hd4q9cHpbbe18Y63S41G5itU7pO53AhyeC8M4rqfxv6u6fU4Rya0Jbv5O7hUe50v WosHTzT1Wbxhji6XbivUJcnI4oI0cwfz2vQUYw== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:21 2024 by rpki-client on console-fra.rpki-client.org