$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: 0dyULwNkFSHEVX/tvlAUs4eeVk01UMSlVu/D0z1p74s= Subject key identifier: 22:14:25:4D:70:86:67:08:F8:1A:A2:47:28:28:FB:4C:0A:9E:04:26 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 195132A577A7CE06C938975262A6463819710B8B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa Signing time: Thu 01 Feb 2024 08:02:06 +0000 ROA not before: Thu 01 Feb 2024 07:57:06 +0000 ROA not after: Thu 30 Jan 2025 08:02:06 +0000 asID: 9794 IP address blocks: 115.178.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:51:32:a5:77:a7:ce:06:c9:38:97:52:62:a6:46:38:19:71:0b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Feb 1 07:57:06 2024 GMT Not After : Jan 30 08:02:06 2025 GMT Subject: CN=2214254D70866708F81AA2472828FB4C0A9E0426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:be:0f:d6:ae:10:42:dc:b5:97:3d:17:5f:97: ee:84:4e:2e:33:fb:ff:76:52:19:97:1f:5d:b4:fd: c4:d0:6f:ef:89:39:cf:55:07:ad:b7:63:1e:4b:47: 2c:94:bb:86:ba:b8:d3:00:f7:a8:07:ed:30:de:55: c4:fa:1b:a9:4b:ae:17:1a:d9:56:44:a6:ec:30:cd: aa:59:c3:22:94:4d:b4:58:6b:af:81:2a:20:ba:35: f3:73:5c:6e:85:5b:3c:de:fc:55:83:2b:ec:87:b5: e1:a5:30:e8:50:ac:25:53:8c:39:50:69:c7:57:ef: 6a:32:d2:b9:13:ac:77:ef:cc:bf:fa:24:41:63:3e: 9a:27:2f:b8:fb:5a:b4:51:89:3d:37:a8:74:6a:57: 55:09:f5:ba:1e:8b:63:2a:88:eb:e6:6d:ad:40:c1: 92:23:14:cc:07:e3:2f:bd:a0:0d:c6:a5:14:47:ec: e5:b5:e4:58:29:d2:75:5d:8f:64:d6:98:bc:51:43: 35:66:0d:f0:9e:32:ea:b6:bf:6a:9f:36:17:ea:d8: 7b:c9:52:6f:0a:02:b6:c9:8a:de:1a:44:9f:f1:61: e2:b5:00:c9:d0:3a:fd:ab:fa:77:d8:e4:53:fe:73: 6b:3b:d6:9a:d8:c6:fe:81:1b:4a:67:86:64:e3:e1: 92:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:14:25:4D:70:86:67:08:F8:1A:A2:47:28:28:FB:4C:0A:9E:04:26 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.140.0/22 Signature Algorithm: sha256WithRSAEncryption 99:22:64:fd:25:5d:9d:7e:ea:3d:9b:fd:c7:cb:f9:a6:6e:d0: 14:fe:08:0a:9c:dd:2f:54:f9:0c:a3:46:17:d0:f3:a7:0b:13: 03:17:22:c3:1b:d4:f5:24:cf:81:c2:4d:d6:41:5e:d4:23:f4: 74:cb:f7:5b:48:5b:69:06:95:5b:bf:33:95:96:98:9c:8d:6f: d0:f3:3e:32:e8:10:bd:b1:7f:bf:4e:fe:37:f4:2a:7d:49:ac: 0a:9f:fd:fb:1a:10:50:b9:80:f0:d5:6c:9c:ca:f3:b5:cf:6a: c9:8c:01:96:75:c9:73:43:0e:33:4e:df:2a:5e:75:2a:a7:41: 01:0d:86:e8:d9:4b:32:d2:f8:a0:ac:b3:cf:20:43:1d:59:27: e2:53:e0:ec:14:ff:00:85:8b:6a:54:86:bd:20:1c:7b:1d:1a: 4c:81:d0:64:05:ec:3d:17:ec:ef:85:47:ad:2a:16:08:94:fa: e8:c9:77:b1:b5:b6:cb:e1:2d:0e:88:e8:32:59:90:a8:9f:1d: e5:93:3f:ce:82:1d:a9:a0:3a:09:78:e8:ff:2e:af:8d:dd:b5: b8:75:48:37:3e:43:c9:e0:35:13:64:3e:8d:71:b3:85:be:10: 55:85:89:76:b9:06:11:bd:59:a1:1e:81:e2:89:c2:9b:9a:50: 1c:ac:b5:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGVEypXenzgbJOJdSYqZGOBlxC4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDAyMDEwNzU3MDZaFw0yNTAxMzAwODAyMDZaMDMxMTAvBgNV BAMTKDIyMTQyNTRENzA4NjY3MDhGODFBQTI0NzI4MjhGQjRDMEE5RTA0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3vg/WrhBC3LWXPRdfl+6ETi4z +/92UhmXH120/cTQb++JOc9VB623Yx5LRyyUu4a6uNMA96gH7TDeVcT6G6lLrhca 2VZEpuwwzapZwyKUTbRYa6+BKiC6NfNzXG6FWzze/FWDK+yHteGlMOhQrCVTjDlQ acdX72oy0rkTrHfvzL/6JEFjPponL7j7WrRRiT03qHRqV1UJ9boei2MqiOvmba1A wZIjFMwH4y+9oA3GpRRH7OW15Fgp0nVdj2TWmLxRQzVmDfCeMuq2v2qfNhfq2HvJ Um8KArbJit4aRJ/xYeK1AMnQOv2r+nfY5FP+c2s71prYxv6BG0pnhmTj4ZJZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIhQlTXCGZwj4GqJHKCj7TAqeBCYwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOyjDANBgkqhkiG 9w0BAQsFAAOCAQEAmSJk/SVdnX7qPZv9x8v5pm7QFP4ICpzdL1T5DKNGF9DzpwsT AxciwxvU9STPgcJN1kFe1CP0dMv3W0hbaQaVW78zlZaYnI1v0PM+MugQvbF/v07+ N/QqfUmsCp/9+xoQULmA8NVsnMrztc9qyYwBlnXJc0MOM07fKl51KqdBAQ2G6NlL MtL4oKyzzyBDHVkn4lPg7BT/AIWLalSGvSAcex0aTIHQZAXsPRfs74VHrSoWCJT6 6Ml3sbW2y+EtDojoMlmQqJ8d5ZM/zoIdqaA6CXjo/y6vjd21uHVINz5DyeA1E2Q+ jXGzhb4QVYWJdrkGEb1ZoR6B4onCm5pQHKy11A== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:26 2024 by rpki-client on console-ams.rpki-client.org