$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: YagwqGZBnUC/SlGGArLBwIwCaaINVwlohd8WTJlDP54= Subject key identifier: 92:2F:0A:90:8A:F3:89:D4:00:FA:EA:F3:9C:DB:AE:29:09:44:E6:B7 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 50A4599FB5319C7AB8FABE3B20B8C1A204CBAC49 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa Signing time: Thu 01 Feb 2024 07:00:00 +0000 ROA not before: Thu 01 Feb 2024 06:55:00 +0000 ROA not after: Thu 30 Jan 2025 07:00:00 +0000 asID: 9794 IP address blocks: 115.178.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a4:59:9f:b5:31:9c:7a:b8:fa:be:3b:20:b8:c1:a2:04:cb:ac:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Feb 1 06:55:00 2024 GMT Not After : Jan 30 07:00:00 2025 GMT Subject: CN=922F0A908AF389D400FAEAF39CDBAE290944E6B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2a:5a:9c:ad:be:b5:ae:94:07:95:9a:ae:84: c8:ac:fa:ef:02:fe:2c:dd:68:30:8f:6e:5c:0c:b0: 53:84:72:59:ba:11:37:04:4f:54:d9:4a:71:4f:15: 25:56:f0:cf:08:5d:3f:37:67:dc:2a:33:6b:14:22: 98:4a:cd:87:c4:4b:2f:39:2f:bd:03:3e:4e:a0:29: 01:89:6d:3c:5d:4c:98:58:9d:99:66:b9:ac:f9:b9: ce:d7:8e:ce:9f:2d:7c:5d:3b:02:30:11:ad:ba:7b: bc:35:1a:67:27:77:24:ec:58:20:a2:db:ac:03:6a: e5:34:67:4e:0b:1c:b3:2d:e4:b6:06:3a:54:9a:7b: c9:0c:f1:eb:b0:2a:3c:55:b6:88:b5:dc:0b:89:c3: 78:58:08:63:56:b1:6d:11:60:e7:1c:0a:d8:e8:3d: 27:1a:d0:5c:a5:25:20:3d:04:a2:69:41:2c:c8:ab: e0:83:02:eb:cc:c3:e9:64:8c:83:e1:48:a1:d9:94: 94:2b:d5:93:33:98:81:fc:f2:8c:9a:8b:b3:7a:e9: 18:c4:72:71:12:90:c6:77:82:73:f2:dc:75:9c:aa: 2a:c3:1a:c3:1f:a3:ff:a8:55:4a:f0:fa:0b:bd:fa: 76:21:30:9e:5c:47:13:41:c8:80:06:0e:f3:b4:7f: 50:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2F:0A:90:8A:F3:89:D4:00:FA:EA:F3:9C:DB:AE:29:09:44:E6:B7 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.148.0/22 Signature Algorithm: sha256WithRSAEncryption 42:e5:a1:05:3c:8b:e9:e4:be:7a:7e:f0:e7:bd:d5:6a:82:81: 8b:da:43:7a:44:4d:38:e6:46:37:a0:fa:c9:24:fd:77:08:07: 12:e0:7e:42:5f:19:84:e1:0d:50:78:2f:45:bc:73:00:fa:2f: 44:d9:d8:e6:0a:18:e8:07:6c:1e:07:01:02:65:83:9d:8c:c5: 7c:ba:72:19:1d:a5:8b:16:e5:67:94:82:1e:c4:b0:68:12:36: a2:9d:d7:ef:a3:51:f8:68:6b:55:bd:ba:ef:8b:ff:c1:6d:2a: 8e:bf:12:a5:69:88:5d:6b:cf:29:55:c8:a1:75:f6:92:cb:03: 54:c1:87:d3:b2:ec:01:85:c0:30:d9:b7:32:3c:b3:08:9b:63: 6d:ab:e2:cd:93:7c:4e:ec:07:69:7e:60:30:ae:1b:f9:54:f8: 8e:7b:d1:f0:d5:15:b7:ce:e4:12:d3:ad:3c:97:32:54:f6:94: 65:eb:b5:f9:3c:95:ad:57:56:50:96:36:c0:de:e1:7f:9f:8d: 5d:87:ac:94:a5:c5:36:16:ff:b1:4e:b0:56:ff:ae:d7:e2:b5: ef:19:12:89:e3:0f:dc:57:37:00:7f:fc:77:e3:5d:ce:1e:78: 26:a0:d8:13:2e:31:51:d0:fc:31:15:26:2d:cc:06:f7:4e:13: 7e:cf:66:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUKRZn7UxnHq4+r47ILjBogTLrEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDAyMDEwNjU1MDBaFw0yNTAxMzAwNzAwMDBaMDMxMTAvBgNV BAMTKDkyMkYwQTkwOEFGMzg5RDQwMEZBRUFGMzlDREJBRTI5MDk0NEU2QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqKlqcrb61rpQHlZquhMis+u8C /izdaDCPblwMsFOEclm6ETcET1TZSnFPFSVW8M8IXT83Z9wqM2sUIphKzYfESy85 L70DPk6gKQGJbTxdTJhYnZlmuaz5uc7Xjs6fLXxdOwIwEa26e7w1GmcndyTsWCCi 26wDauU0Z04LHLMt5LYGOlSae8kM8euwKjxVtoi13AuJw3hYCGNWsW0RYOccCtjo PSca0FylJSA9BKJpQSzIq+CDAuvMw+lkjIPhSKHZlJQr1ZMzmIH88oyai7N66RjE cnESkMZ3gnPy3HWcqirDGsMfo/+oVUrw+gu9+nYhMJ5cRxNByIAGDvO0f1BzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUki8KkIrzidQA+urznNuuKQlE5rcwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM0MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOylDANBgkqhkiG 9w0BAQsFAAOCAQEAQuWhBTyL6eS+en7w573VaoKBi9pDekRNOOZGN6D6yST9dwgH EuB+Ql8ZhOENUHgvRbxzAPovRNnY5goY6AdsHgcBAmWDnYzFfLpyGR2lixblZ5SC HsSwaBI2op3X76NR+GhrVb2674v/wW0qjr8SpWmIXWvPKVXIoXX2kssDVMGH07Ls AYXAMNm3MjyzCJtjbavizZN8TuwHaX5gMK4b+VT4jnvR8NUVt87kEtOtPJcyVPaU Zeu1+TyVrVdWUJY2wN7hf5+NXYeslKXFNhb/sU6wVv+u1+K17xkSieMP3Fc3AH/8 d+Ndzh54JqDYEy4xUdD8MRUmLcwG904Tfs9mSA== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:26 2024 by rpki-client on console-ams.rpki-client.org