$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: ftUIA7ldY3BmvdULryvmXl89wGZ+qKikjvxLhqddr5s= Subject key identifier: BA:5A:DA:EB:3B:76:8B:E3:D9:A5:C4:72:22:B6:DC:A9:14:B8:A1:1E Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6FCA8B7C2B4E112D5D5F971CCC39A11E5EB7A225 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa Signing time: Thu 01 Feb 2024 07:00:00 +0000 ROA not before: Thu 01 Feb 2024 06:55:00 +0000 ROA not after: Thu 30 Jan 2025 07:00:00 +0000 asID: 9794 IP address blocks: 115.178.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ca:8b:7c:2b:4e:11:2d:5d:5f:97:1c:cc:39:a1:1e:5e:b7:a2:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Feb 1 06:55:00 2024 GMT Not After : Jan 30 07:00:00 2025 GMT Subject: CN=BA5ADAEB3B768BE3D9A5C47222B6DCA914B8A11E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:4c:f6:15:d4:5b:6b:88:d2:d1:66:82:5d: f9:1f:c6:3c:96:14:9c:05:da:14:ed:03:0e:e4:19: 0e:14:f9:b9:b8:c5:fe:c7:f6:8a:57:63:da:ad:27: 4c:45:db:18:74:0e:5e:36:96:33:2d:82:1d:14:e9: ee:6e:59:72:26:f8:11:2b:0c:b3:13:dc:6f:6c:5c: 17:fe:dd:bd:55:2e:1b:41:7b:25:0e:22:e4:b3:f9: a2:23:97:23:fd:c5:c9:3e:bb:37:90:09:13:4a:e0: 87:a6:56:6c:b3:d7:b9:b0:73:0e:59:1a:bc:d4:72: 01:b8:f1:38:8b:1a:3a:de:12:b9:71:98:1c:d6:c6: 34:4e:c2:28:dc:d4:ce:4d:df:87:d9:f5:c7:b4:09: ba:b9:78:11:25:97:87:7f:bd:0c:ba:4a:3d:f2:29: 98:a1:5f:43:39:52:24:49:bd:93:f2:68:46:dc:27: 7b:03:b2:55:8f:a1:b0:19:98:bd:e2:52:98:ec:12: 09:66:66:08:87:9a:ab:fd:f1:c3:0a:8d:a4:48:f8: da:a0:02:9a:81:04:d7:87:18:0c:5e:6f:0d:8c:b0: 8c:ba:6e:8e:4e:91:80:6a:37:4c:2a:e5:4f:d3:0a: 8d:18:0d:5c:d6:a5:d2:1b:f0:98:e2:93:41:00:9a: f6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:5A:DA:EB:3B:76:8B:E3:D9:A5:C4:72:22:B6:DC:A9:14:B8:A1:1E X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.144.0/22 Signature Algorithm: sha256WithRSAEncryption 66:8e:de:dd:30:82:18:17:c8:2a:e1:ad:10:8b:f8:d4:83:e1: c0:a1:11:6c:f7:50:3f:f1:9f:65:91:8d:12:c0:36:65:80:24: a3:90:4d:db:8b:6e:1d:5a:97:41:d5:df:b0:80:61:48:6d:fa: 6a:bd:22:dd:f6:0c:83:20:f1:19:7d:8a:73:61:68:66:46:72: 36:7e:77:04:68:8d:22:c6:95:60:06:bb:3c:fb:01:06:a4:0e: 05:aa:d7:2f:71:3a:37:3e:0c:e9:ed:cf:04:f1:b4:f2:f2:16: e4:58:b7:ee:24:d7:9c:db:e9:56:1d:ce:25:e5:65:37:92:05: ae:68:e0:37:98:40:40:4e:ff:cd:1c:b1:3f:03:31:18:a8:9c: b4:f5:fb:10:e2:86:2d:ed:7f:c5:af:62:4b:68:a0:f6:73:73: 85:75:07:b4:5f:9e:96:b1:bd:f0:5e:c1:b5:72:31:5f:14:12: 49:a5:fd:7f:ef:03:74:fe:74:34:98:03:23:e6:9f:ef:4c:18: 75:90:d7:51:76:3d:cc:15:19:51:5f:e8:c6:9a:51:5c:97:87: 86:b9:4f:5e:d1:9c:12:8d:9f:cf:af:8f:ba:fd:98:04:e2:3c: 35:23:73:2b:e3:ab:0c:f8:0f:24:6d:61:ab:37:a6:03:28:68: 53:e1:f2:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb8qLfCtOES1dX5cczDmhHl63oiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDAyMDEwNjU1MDBaFw0yNTAxMzAwNzAwMDBaMDMxMTAvBgNV BAMTKEJBNUFEQUVCM0I3NjhCRTNEOUE1QzQ3MjIyQjZEQ0E5MTRCOEExMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyLEz2FdRba4jS0WaCXfkfxjyW FJwF2hTtAw7kGQ4U+bm4xf7H9opXY9qtJ0xF2xh0Dl42ljMtgh0U6e5uWXIm+BEr DLMT3G9sXBf+3b1VLhtBeyUOIuSz+aIjlyP9xck+uzeQCRNK4IemVmyz17mwcw5Z GrzUcgG48TiLGjreErlxmBzWxjROwijc1M5N34fZ9ce0Cbq5eBEll4d/vQy6Sj3y KZihX0M5UiRJvZPyaEbcJ3sDslWPobAZmL3iUpjsEglmZgiHmqv98cMKjaRI+Nqg ApqBBNeHGAxebw2MsIy6bo5OkYBqN0wq5U/TCo0YDVzWpdIb8Jjik0EAmvZXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUulra6zt2i+PZpcRyIrbcqRS4oR4wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM0MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOykDANBgkqhkiG 9w0BAQsFAAOCAQEAZo7e3TCCGBfIKuGtEIv41IPhwKERbPdQP/GfZZGNEsA2ZYAk o5BN24tuHVqXQdXfsIBhSG36ar0i3fYMgyDxGX2Kc2FoZkZyNn53BGiNIsaVYAa7 PPsBBqQOBarXL3E6Nz4M6e3PBPG08vIW5Fi37iTXnNvpVh3OJeVlN5IFrmjgN5hA QE7/zRyxPwMxGKictPX7EOKGLe1/xa9iS2ig9nNzhXUHtF+elrG98F7BtXIxXxQS SaX9f+8DdP50NJgDI+af70wYdZDXUXY9zBUZUV/oxppRXJeHhrlPXtGcEo2fz6+P uv2YBOI8NSNzK+OrDPgPJG1hqzemAyhoU+HylQ== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org