$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: JpfDl9q4nqoxft9gw1JWRYx+Z3cqlJ3NoepbuSzqtpY= Subject key identifier: 44:BC:57:A6:A6:0F:46:0C:50:3A:AF:B8:28:4F:67:67:AB:8D:68:7B Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 4CA34FF84E34BAB656571875955C2D7A88DD4165 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa Signing time: Thu 01 Feb 2024 07:00:00 +0000 ROA not before: Thu 01 Feb 2024 06:55:00 +0000 ROA not after: Thu 30 Jan 2025 07:00:00 +0000 asID: 9794 IP address blocks: 115.178.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a3:4f:f8:4e:34:ba:b6:56:57:18:75:95:5c:2d:7a:88:dd:41:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Feb 1 06:55:00 2024 GMT Not After : Jan 30 07:00:00 2025 GMT Subject: CN=44BC57A6A60F460C503AAFB8284F6767AB8D687B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2a:7c:a5:d6:3c:40:35:49:d1:81:4a:3b:a3: 58:56:5f:12:ad:ba:28:bf:ee:f4:ba:34:77:55:82: 08:23:9d:54:d5:97:28:24:ec:b4:e4:fd:da:42:5b: 4a:50:3f:e6:a4:f9:84:7b:25:af:d6:68:19:e8:20: e0:a0:38:98:41:7a:f3:ae:92:4f:20:08:c0:4c:f9: 10:0f:d9:5c:16:63:43:4f:94:60:c5:19:7f:dd:09: 4f:ac:d4:83:f6:be:3f:bf:15:a6:11:8e:1e:5c:67: 1a:69:21:75:50:90:98:26:85:f7:5b:b9:76:23:0c: 21:af:33:5d:ce:df:9f:39:13:58:6b:91:84:f4:60: f7:40:63:46:8d:8a:6f:ba:d2:fe:03:7f:29:09:cb: 5e:04:a6:5b:06:01:14:fe:82:22:68:c9:ff:cb:05: 21:14:da:6e:f2:44:69:84:4f:ff:36:b5:26:5b:df: 07:bf:18:b9:f6:25:f2:b5:fc:2d:4c:a0:5e:c6:e3: dd:75:d4:94:fe:2a:e3:a2:e3:53:e9:d3:d4:cb:ad: 85:e6:35:62:90:21:a1:9e:6f:48:01:29:bc:29:d0: f5:de:bf:63:e2:2d:fd:10:d5:03:59:45:f0:cd:52: 31:34:7b:38:c4:57:09:80:a0:13:f6:6d:cd:20:e2: 7e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BC:57:A6:A6:0F:46:0C:50:3A:AF:B8:28:4F:67:67:AB:8D:68:7B X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.152.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:ac:62:72:0e:9b:33:8c:ee:ea:b3:09:ab:ab:a8:d8:f0:5e: 70:3e:4d:3e:44:92:f4:6e:27:56:01:88:2f:c6:42:e4:b6:5b: 52:14:f9:34:91:9e:66:54:84:e6:b2:ad:e3:18:38:58:0c:4c: 90:9a:e9:69:73:67:e9:45:7a:6d:0e:e5:2a:04:69:b9:8a:e8: 05:14:ff:10:eb:50:82:f2:a3:12:9c:b4:b1:f1:9b:1c:02:93: 62:84:5d:f5:0d:8e:91:fb:c6:f3:c3:e9:aa:e2:6b:36:d3:d1: 7b:a4:26:0c:18:31:a3:3e:04:cf:c1:f9:d3:39:fd:72:9d:ee: ad:da:aa:35:cd:19:35:6d:37:bc:26:71:e8:d4:7f:46:00:36: 46:65:4d:88:b2:4e:37:7e:dd:ba:72:d6:82:3c:91:e3:67:09: 6a:b6:34:2e:10:cd:bf:e0:7c:48:91:dd:a9:7f:e7:f8:e9:60: 26:b8:43:21:06:6b:01:8d:c1:31:65:8c:80:d3:f9:d1:13:3c: 4c:df:35:68:87:f7:f8:2b:dc:f9:70:af:bd:d9:c2:01:29:ee: e2:df:5d:61:55:d4:78:b3:11:2c:6c:38:0f:9d:f0:93:69:ab: a7:5b:df:8b:f9:8d:a5:77:7c:c2:da:63:bf:af:91:86:7a:13: cf:1a:1c:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTKNP+E40urZWVxh1lVwteojdQWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDAyMDEwNjU1MDBaFw0yNTAxMzAwNzAwMDBaMDMxMTAvBgNV BAMTKDQ0QkM1N0E2QTYwRjQ2MEM1MDNBQUZCODI4NEY2NzY3QUI4RDY4N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOKnyl1jxANUnRgUo7o1hWXxKt uii/7vS6NHdVgggjnVTVlygk7LTk/dpCW0pQP+ak+YR7Ja/WaBnoIOCgOJhBevOu kk8gCMBM+RAP2VwWY0NPlGDFGX/dCU+s1IP2vj+/FaYRjh5cZxppIXVQkJgmhfdb uXYjDCGvM13O3585E1hrkYT0YPdAY0aNim+60v4DfykJy14EplsGART+giJoyf/L BSEU2m7yRGmET/82tSZb3we/GLn2JfK1/C1MoF7G49111JT+KuOi41Pp09TLrYXm NWKQIaGeb0gBKbwp0PXev2PiLf0Q1QNZRfDNUjE0ezjEVwmAoBP2bc0g4n6PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURLxXpqYPRgxQOq+4KE9nZ6uNaHswHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOymDANBgkqhkiG 9w0BAQsFAAOCAQEAC6xicg6bM4zu6rMJq6uo2PBecD5NPkSS9G4nVgGIL8ZC5LZb UhT5NJGeZlSE5rKt4xg4WAxMkJrpaXNn6UV6bQ7lKgRpuYroBRT/EOtQgvKjEpy0 sfGbHAKTYoRd9Q2OkfvG88PpquJrNtPRe6QmDBgxoz4Ez8H50zn9cp3urdqqNc0Z NW03vCZx6NR/RgA2RmVNiLJON37dunLWgjyR42cJarY0LhDNv+B8SJHdqX/n+Olg JrhDIQZrAY3BMWWMgNP50RM8TN81aIf3+Cvc+XCvvdnCASnu4t9dYVXUeLMRLGw4 D53wk2mrp1vfi/mNpXd8wtpjv6+RhnoTzxocMQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org