$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 1lkKDaPYm3A5NLBqvtpYTsq/DnAUvDlC2yuwvCdWVPg= Subject key identifier: 31:58:99:4E:59:E2:A6:E1:5C:57:A7:61:AF:01:5A:90:39:34:47:6D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 63FA0E8AFBF546E9D9DE72672C019F9FD77EC406 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:58 +0000 ROA not before: Mon 01 Jul 2024 00:57:58 +0000 ROA not after: Mon 30 Jun 2025 01:02:58 +0000 asID: 9794 IP address blocks: 115.178.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:fa:0e:8a:fb:f5:46:e9:d9:de:72:67:2c:01:9f:9f:d7:7e:c4:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:58 2024 GMT Not After : Jun 30 01:02:58 2025 GMT Subject: CN=3158994E59E2A6E15C57A761AF015A903934476D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e5:8a:da:56:5c:18:94:82:76:f9:60:37:1c: a5:36:8d:0b:9e:0f:ff:1d:8e:fd:7d:a6:92:d1:37: 02:a8:51:29:93:a6:cd:9f:eb:11:28:8b:e9:4f:78: c8:00:1e:1f:95:a2:ef:6b:32:69:62:4f:08:53:93: f5:2e:51:84:a3:5c:75:0d:d5:86:dd:78:f5:45:55: 90:66:fa:6c:35:eb:05:aa:ec:c2:b3:5d:e8:bb:96: 5c:7d:41:00:e2:18:36:85:90:33:fa:33:81:08:e6: ed:2f:c3:f8:d2:85:61:ac:89:35:d6:c5:bd:b8:31: 10:c3:67:30:81:a3:59:bb:47:80:ea:0f:84:e1:e1: f1:46:9d:7e:e6:66:3b:06:da:72:a7:09:41:95:89: e9:cc:7c:b8:ef:80:73:fc:21:80:4a:67:99:33:ba: 99:df:d2:47:e2:ec:65:c4:17:e6:b1:54:0b:23:98: 7e:df:f2:06:c8:a1:9f:33:ed:ea:e6:0f:06:04:82: 28:78:ee:80:e9:7d:29:7a:c4:94:c4:c8:7c:4e:99: 65:11:23:af:d4:db:e1:78:b6:58:19:b4:34:f4:dc: 81:08:6f:98:e9:73:52:39:96:1e:e1:d9:74:9f:09: ed:58:18:a0:5f:77:c9:ea:c6:b7:9a:73:25:b7:d5: e6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:58:99:4E:59:E2:A6:E1:5C:57:A7:61:AF:01:5A:90:39:34:47:6D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.129.0/24 Signature Algorithm: sha256WithRSAEncryption 04:d4:68:a0:87:b1:62:13:3f:e5:0c:20:28:e5:80:66:2a:d9: 35:b5:4a:88:ed:2f:0b:a2:83:d5:79:30:77:e8:f9:da:c7:fc: 2c:22:f6:96:f9:cf:ee:37:f9:91:50:fd:bd:31:87:17:d4:24: 9e:26:ff:1e:ef:e1:06:e6:0c:d5:89:c6:d5:e7:02:6e:3a:32: 92:1e:ca:37:be:25:b2:a0:38:c1:b1:23:7d:03:b3:c2:fc:14: 37:90:ea:c1:dd:55:4e:d8:dd:93:23:3e:8a:31:1d:a8:27:d8: 51:49:48:33:0a:74:c3:33:5a:92:7a:cc:98:76:d0:3a:7f:34: 71:b8:c8:f1:8a:92:35:ba:10:14:36:21:1a:f7:cb:c2:b7:c6: c8:66:37:49:66:b7:88:5b:65:29:4a:11:77:d8:5c:87:ad:1d: 61:34:e4:dd:7c:4e:b9:9d:36:cd:3f:b8:ef:70:6b:5e:83:12: de:f2:3c:78:15:95:d8:56:7a:2f:ee:d4:52:c4:f6:b3:d3:90: de:98:37:42:e2:da:5d:aa:48:39:25:71:05:3f:43:b1:fd:ed: eb:a8:75:c0:b8:2e:3a:b5:34:51:5a:d9:d9:32:1c:72:11:de: db:c6:88:3d:d0:d5:7b:ee:53:b4:9f:e4:60:46:f8:e7:b0:b1: e2:45:d2:5a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY/oOivv1RunZ3nJnLAGfn9d+xAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NThaFw0yNTA2MzAwMTAyNThaMDMxMTAvBgNV BAMTKDMxNTg5OTRFNTlFMkE2RTE1QzU3QTc2MUFGMDE1QTkwMzkzNDQ3NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb5YraVlwYlIJ2+WA3HKU2jQue D/8djv19ppLRNwKoUSmTps2f6xEoi+lPeMgAHh+Vou9rMmliTwhTk/UuUYSjXHUN 1YbdePVFVZBm+mw16wWq7MKzXei7llx9QQDiGDaFkDP6M4EI5u0vw/jShWGsiTXW xb24MRDDZzCBo1m7R4DqD4Th4fFGnX7mZjsG2nKnCUGVienMfLjvgHP8IYBKZ5kz upnf0kfi7GXEF+axVAsjmH7f8gbIoZ8z7ermDwYEgih47oDpfSl6xJTEyHxOmWUR I6/U2+F4tlgZtDT03IEIb5jpc1I5lh7h2XSfCe1YGKBfd8nqxreacyW31eavAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMViZTlnipuFcV6dhrwFakDk0R20wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOygTANBgkqhkiG 9w0BAQsFAAOCAQEABNRooIexYhM/5QwgKOWAZirZNbVKiO0vC6KD1Xkwd+j52sf8 LCL2lvnP7jf5kVD9vTGHF9Qknib/Hu/hBuYM1YnG1ecCbjoykh7KN74lsqA4wbEj fQOzwvwUN5Dqwd1VTtjdkyM+ijEdqCfYUUlIMwp0wzNaknrMmHbQOn80cbjI8YqS NboQFDYhGvfLwrfGyGY3SWa3iFtlKUoRd9hch60dYTTk3XxOuZ02zT+473BrXoMS 3vI8eBWV2FZ6L+7UUsT2s9OQ3pg3QuLaXapIOSVxBT9Dsf3t66h1wLguOrU0UVrZ 2TIcchHe28aIPdDVe+5TtJ/kYEb457Cx4kXSWg== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org