$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 2bMBE7d+P+fsHuXbMVCq0EzHXMsUw6YkK8TZkj4CejE= Subject key identifier: F2:CA:E2:20:77:95:F8:6E:00:0F:69:ED:C1:6E:79:A1:2C:2B:29:56 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 46B05F2B9CCA6ABF817E3EE7DCBA371B1C1264C4 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa Signing time: Thu 11 Jan 2024 08:00:00 +0000 ROA not before: Thu 11 Jan 2024 07:55:00 +0000 ROA not after: Thu 09 Jan 2025 08:00:00 +0000 asID: 9794 IP address blocks: 115.178.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b0:5f:2b:9c:ca:6a:bf:81:7e:3e:e7:dc:ba:37:1b:1c:12:64:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jan 11 07:55:00 2024 GMT Not After : Jan 9 08:00:00 2025 GMT Subject: CN=F2CAE2207795F86E000F69EDC16E79A12C2B2956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f0:9e:4f:af:ab:09:3a:b8:04:10:47:dd:e2: 2a:a1:09:99:41:82:51:49:dd:d5:7b:57:9e:d8:a7: 4d:53:ea:3e:13:b2:4c:60:af:c4:4c:21:cb:ca:dc: 70:0b:e9:ca:bd:95:e3:12:66:4f:a4:fc:d1:bf:69: 3f:b7:55:c3:bf:36:22:f6:4d:b3:a3:b9:ab:f2:73: 60:89:97:78:a0:7d:61:d7:d4:b2:ec:0a:68:e0:1c: 9c:c2:0d:cf:b2:fc:d3:e6:09:43:cb:80:d7:c8:ca: c7:a3:61:95:3a:48:ed:62:09:1c:c5:92:9b:82:8b: 3c:8a:40:34:44:85:bf:86:83:36:39:b0:fb:cc:2d: de:43:fe:d1:62:da:35:0c:8f:4e:f2:97:8c:ed:a0: 91:fb:ea:41:2f:7b:28:79:57:16:cb:0c:c6:f7:1e: a4:ef:1e:44:6a:87:27:ac:c3:d2:ff:39:e4:1c:37: f7:84:ce:48:9e:2a:a3:27:ee:23:77:3f:ea:f9:59: 9e:19:ec:99:8e:7c:f5:d0:d0:96:22:7d:75:b3:af: e8:cc:d2:ee:82:09:92:52:ef:38:35:4a:ed:b7:47: 56:14:21:c8:ff:0d:6d:d3:5f:c0:0f:83:fa:9c:35: c5:09:cb:2e:4c:8d:16:ef:53:fa:76:6a:a8:52:0f: ae:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CA:E2:20:77:95:F8:6E:00:0F:69:ED:C1:6E:79:A1:2C:2B:29:56 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.133.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:e3:72:e2:cf:ea:2b:17:61:0f:45:48:06:24:40:59:63:14: 66:79:b4:45:61:5a:66:da:0f:8a:df:5e:93:0e:ed:ea:92:5a: bc:a9:ca:1b:29:c2:6d:8c:b4:ff:f9:ec:d5:2a:79:da:5c:0f: 7e:f2:56:f2:36:2d:a3:95:94:90:82:1b:0a:82:8f:df:1f:5c: 0b:d7:f5:6f:59:d7:33:45:c0:07:10:bb:6c:6a:ff:2f:9a:f7: c6:95:95:84:8e:a4:99:5e:cf:99:4b:ee:7c:48:da:92:fc:74: ef:d0:91:2c:25:ea:9e:37:e7:9f:e5:6a:48:a4:1b:c0:8a:c7: 6c:19:f0:09:c1:83:e0:48:70:fb:1c:64:0b:c5:70:28:eb:d1: cd:f1:21:72:78:cf:52:8d:21:d5:17:7d:eb:cf:0a:9e:8d:5e: eb:2f:4f:8c:5b:0e:9c:3c:57:44:f9:17:f7:3c:43:ed:85:ec: 1e:8b:ba:f0:d1:e0:01:ee:e2:50:76:4a:88:c4:31:49:1e:a4: 5c:f0:d2:d9:f7:f6:55:07:b3:c8:73:96:cf:38:30:03:4f:2f: b0:b9:f2:7a:63:9a:0f:da:77:00:93:0a:bb:02:dc:a5:89:82: ed:81:2d:05:75:18:32:6d:28:2a:0d:8f:85:e6:35:88:17:45: 39:22:f8:68 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURrBfK5zKar+Bfj7n3Lo3GxwSZMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDAxMTEwNzU1MDBaFw0yNTAxMDkwODAwMDBaMDMxMTAvBgNV BAMTKEYyQ0FFMjIwNzc5NUY4NkUwMDBGNjlFREMxNkU3OUExMkMyQjI5NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ8J5Pr6sJOrgEEEfd4iqhCZlB glFJ3dV7V57Yp01T6j4Tskxgr8RMIcvK3HAL6cq9leMSZk+k/NG/aT+3VcO/NiL2 TbOjuavyc2CJl3igfWHX1LLsCmjgHJzCDc+y/NPmCUPLgNfIysejYZU6SO1iCRzF kpuCizyKQDREhb+GgzY5sPvMLd5D/tFi2jUMj07yl4ztoJH76kEveyh5VxbLDMb3 HqTvHkRqhyesw9L/OeQcN/eEzkieKqMn7iN3P+r5WZ4Z7JmOfPXQ0JYifXWzr+jM 0u6CCZJS7zg1Su23R1YUIcj/DW3TX8APg/qcNcUJyy5MjRbvU/p2aqhSD667AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8sriIHeV+G4AD2ntwW55oSwrKVYwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMzMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOyhTANBgkqhkiG 9w0BAQsFAAOCAQEAS+Ny4s/qKxdhD0VIBiRAWWMUZnm0RWFaZtoPit9ekw7t6pJa vKnKGynCbYy0//ns1Sp52lwPfvJW8jYto5WUkIIbCoKP3x9cC9f1b1nXM0XABxC7 bGr/L5r3xpWVhI6kmV7PmUvufEjakvx079CRLCXqnjfnn+VqSKQbwIrHbBnwCcGD 4Ehw+xxkC8VwKOvRzfEhcnjPUo0h1Rd9688Kno1e6y9PjFsOnDxXRPkX9zxD7YXs Hou68NHgAe7iUHZKiMQxSR6kXPDS2ff2VQezyHOWzzgwA08vsLnyemOaD9p3AJMK uwLcpYmC7YEtBXUYMm0oKg2PheY1iBdFOSL4aA== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org