$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32332d3234203d3e203233363731.roa File: 3131312e39322e3137342e302f32332d3234203d3e203233363731.roa (raw, json) Hash identifier: wrYMl9QdvNfFCCKkZaUAB5mWDpq+wIj77e2/BRQW7D0= Subject key identifier: B6:D1:C1:D3:E2:BD:87:18:0D:9C:39:26:A3:80:57:6B:8B:B5:36:19 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 4BBECE9FA131963107BDC06D4595706A91C78274 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32332d3234203d3e203233363731.roa Signing time: Thu 26 Sep 2024 09:00:01 +0000 ROA not before: Thu 26 Sep 2024 08:55:01 +0000 ROA not after: Thu 25 Sep 2025 09:00:01 +0000 asID: 23671 IP address blocks: 111.92.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:be:ce:9f:a1:31:96:31:07:bd:c0:6d:45:95:70:6a:91:c7:82:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Sep 26 08:55:01 2024 GMT Not After : Sep 25 09:00:01 2025 GMT Subject: CN=B6D1C1D3E2BD87180D9C3926A380576B8BB53619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:0e:b3:04:dd:ad:ee:bc:e3:6e:e1:dd:53: 54:3a:0e:01:c0:4c:40:ac:4a:00:f1:59:c9:7c:19: 29:42:c9:b1:90:fe:e7:be:d8:64:e5:c1:5e:93:97: 17:1b:84:ed:f2:bd:3f:ac:70:29:46:e3:8b:c7:a7: 76:2f:e7:e7:67:ca:f5:bd:c8:49:32:ee:96:9e:fe: d9:f8:60:2f:86:7f:63:c3:ea:15:bf:f4:3c:54:b7: a4:4c:ec:f9:8a:09:91:c7:0f:26:9e:23:31:cd:98: 59:23:5f:97:78:6c:b8:09:39:22:f1:26:cf:82:12: 56:17:8e:e6:9c:5f:58:56:65:46:89:93:66:0d:35: 74:45:4d:03:47:a2:2c:c2:de:fa:72:78:86:66:08: e2:b2:f9:8a:d3:87:b7:4c:3e:7e:74:4c:71:c4:ca: 3c:fa:e8:6c:9c:e0:8b:b4:f7:3d:16:ba:82:a5:ba: 7e:97:56:1b:18:55:83:79:97:16:27:78:9b:20:cf: c4:1a:48:1d:fc:23:58:c3:10:96:05:e1:39:6b:e2: b0:d0:4b:c6:78:14:0a:dc:05:d6:e9:3c:ca:61:2d: 54:a0:14:05:26:4d:d1:cd:99:83:17:78:c0:35:b2: 74:49:83:b0:69:bb:8c:b1:81:1b:86:32:83:25:95: 60:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D1:C1:D3:E2:BD:87:18:0D:9C:39:26:A3:80:57:6B:8B:B5:36:19 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32332d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.174.0/23 Signature Algorithm: sha256WithRSAEncryption 22:02:28:20:df:22:fe:20:da:74:b0:19:e3:90:e6:ed:c9:13: 18:48:b3:6d:2c:95:ea:7e:02:b5:a2:60:48:47:de:e2:3d:f2: e1:b1:89:30:ba:4b:ed:e3:88:c2:dd:2f:40:c9:d5:06:94:d3: 46:40:38:cd:0d:49:96:94:38:9b:18:03:f7:bd:25:b3:64:1d: b3:8b:38:d9:37:b1:82:fe:21:41:f4:c2:aa:86:38:3f:ca:34: 98:13:4a:12:9b:c2:97:2b:5c:81:d9:4a:b7:87:51:2d:ea:fa: 13:06:05:d8:ab:c3:e6:48:d0:e3:17:12:4c:ae:86:d5:9a:97: 00:ec:19:c8:21:6f:d4:ac:78:8a:ad:3b:97:37:e8:c4:15:63: c1:c6:1e:69:81:d2:1e:67:86:81:13:fd:bd:19:ee:a1:c9:ec: 29:e1:55:61:f0:55:71:1d:41:90:65:7c:dd:47:34:4c:b5:b4: db:e1:6c:23:01:71:e6:e5:e8:49:24:d5:a9:6a:8f:71:91:ec: c2:ba:87:91:50:e5:db:53:36:2d:78:ce:05:2f:cf:0b:cf:19: 38:94:a1:6f:aa:91:00:47:b2:07:3b:b3:20:77:7c:1b:33:f9: 59:40:ac:9f:3c:ff:b3:24:dc:eb:ce:71:db:58:15:6f:4f:50: f4:86:72:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS77On6ExljEHvcBtRZVwapHHgnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA5MjYwODU1MDFaFw0yNTA5MjUwOTAwMDFaMDMxMTAvBgNV BAMTKEI2RDFDMUQzRTJCRDg3MTgwRDlDMzkyNkEzODA1NzZCOEJCNTM2MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9HA6zBN2t7rzjbuHdU1Q6DgHA TECsSgDxWcl8GSlCybGQ/ue+2GTlwV6TlxcbhO3yvT+scClG44vHp3Yv5+dnyvW9 yEky7pae/tn4YC+Gf2PD6hW/9DxUt6RM7PmKCZHHDyaeIzHNmFkjX5d4bLgJOSLx Js+CElYXjuacX1hWZUaJk2YNNXRFTQNHoizC3vpyeIZmCOKy+YrTh7dMPn50THHE yjz66Gyc4Iu09z0WuoKlun6XVhsYVYN5lxYneJsgz8QaSB38I1jDEJYF4Tlr4rDQ S8Z4FArcBdbpPMphLVSgFAUmTdHNmYMXeMA1snRJg7Bpu4yxgRuGMoMllWCPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUttHB0+K9hxgNnDkmo4BXa4u1NhkwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAW9crjANBgkqhkiG 9w0BAQsFAAOCAQEAIgIoIN8i/iDadLAZ45Dm7ckTGEizbSyV6n4CtaJgSEfe4j3y 4bGJMLpL7eOIwt0vQMnVBpTTRkA4zQ1JlpQ4mxgD970ls2Qds4s42Texgv4hQfTC qoY4P8o0mBNKEpvClytcgdlKt4dRLer6EwYF2KvD5kjQ4xcSTK6G1ZqXAOwZyCFv 1Kx4iq07lzfoxBVjwcYeaYHSHmeGgRP9vRnuocnsKeFVYfBVcR1BkGV83Uc0TLW0 2+FsIwFx5uXoSSTVqWqPcZHswrqHkVDl21M2LXjOBS/PC88ZOJShb6qRAEeyBzuz IHd8GzP5WUCsnzz/syTc685x21gVb09Q9IZy7Q== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:21 2024 by rpki-client on console-fra.rpki-client.org