$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: C+iQ3NcZ5N5GmN0fuw91yRO1icsvdsqpnGKEbCvCG2c= Subject key identifier: D6:52:2D:32:C5:5F:19:55:36:10:EE:DC:85:81:B3:18:11:4A:A3:1A Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7D00BCC9FB19FEE54CACD5C1799D8631162F38DF Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa Signing time: Thu 01 Feb 2024 08:02:06 +0000 ROA not before: Thu 01 Feb 2024 07:57:06 +0000 ROA not after: Thu 30 Jan 2025 08:02:06 +0000 asID: 9794 IP address blocks: 115.178.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:00:bc:c9:fb:19:fe:e5:4c:ac:d5:c1:79:9d:86:31:16:2f:38:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Feb 1 07:57:06 2024 GMT Not After : Jan 30 08:02:06 2025 GMT Subject: CN=D6522D32C55F19553610EEDC8581B318114AA31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:c8:54:62:a8:f4:cc:de:47:0e:64:8a:26: ac:21:8e:41:92:f6:a7:51:21:38:71:76:0d:a1:5a: 67:9b:50:c8:43:ad:46:4d:55:38:ed:b5:a6:8f:18: 8f:b2:c1:38:cd:60:af:51:25:2a:74:c1:39:25:f0: d9:5b:f2:64:2f:b9:74:f7:64:2d:4a:1d:48:26:33: 8d:a9:31:35:1c:2a:4c:3e:e8:ec:2b:e5:21:8e:47: 64:49:a7:e7:ec:45:f9:0f:ed:f3:6c:5b:0d:de:a4: 31:0c:b5:c2:69:87:ba:c2:be:07:10:d0:3c:b9:6d: f3:04:40:5f:2b:fb:69:79:cc:bb:f7:1c:da:cc:bf: 6c:49:b3:50:52:bf:85:48:e2:66:6a:6e:9c:fb:a5: 9e:73:59:77:e1:d1:e7:ae:04:8e:1e:4a:9f:15:71: bc:f4:ee:6d:08:cc:d7:40:c8:7d:10:4d:b7:f9:84: 9c:56:d4:6e:4f:71:f0:2e:98:3f:ab:20:a5:de:c0: 49:13:cd:66:25:93:59:0c:dd:3a:ab:cb:50:9c:8d: 9d:ad:e1:58:c2:ca:cf:49:45:95:13:00:5f:57:d6: 1e:1a:84:a2:1b:c2:ea:d4:8d:7c:cf:17:77:08:53: 52:85:be:1d:64:05:70:02:54:e4:25:cd:bf:31:f8: 06:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:52:2D:32:C5:5F:19:55:36:10:EE:DC:85:81:B3:18:11:4A:A3:1A X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.156.0/22 Signature Algorithm: sha256WithRSAEncryption 98:00:3a:a3:d2:98:b1:50:c2:ef:99:6e:d3:f4:30:27:fa:af: fe:9b:18:b3:28:d5:ef:4a:6c:92:16:cc:0c:55:2d:26:28:5b: 35:d4:62:8e:fd:8f:49:4b:39:25:be:be:ee:8d:00:0a:07:c0: 5d:4e:69:32:1f:e4:bc:28:66:0d:f2:34:16:47:91:ed:b8:5f: d9:d2:60:8a:a8:43:b1:24:2a:b1:d7:a3:ae:37:2a:d3:6a:c8: ee:19:0e:4b:ec:da:b7:55:4e:a2:0c:74:c6:7a:3b:a6:e4:64: d3:b3:b6:2a:61:bb:2d:8e:3e:06:81:a2:47:5c:d6:13:b8:0a: 67:4d:d1:b2:c3:46:2f:7d:51:3f:1c:36:af:df:ec:e0:b2:6c: f3:1c:18:3e:7f:b1:68:75:db:33:e1:bf:d7:e8:b3:2d:17:fb: 50:94:dd:be:ff:c1:70:4c:a2:70:35:7d:21:af:5a:25:a5:b6: 07:32:40:f2:4a:e6:bc:da:0e:19:ff:02:cb:7a:f9:cc:91:d1: e4:d7:8f:1b:ed:07:62:e6:f9:d6:bf:d3:70:bf:32:44:12:af: 77:9e:b1:b2:22:5d:23:ff:e4:ef:1c:42:70:87:d1:88:6a:9a: 82:1b:ad:2e:72:46:cf:c7:c0:5e:e9:d6:66:d8:b4:50:7e:53: 6d:3f:75:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfQC8yfsZ/uVMrNXBeZ2GMRYvON8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDAyMDEwNzU3MDZaFw0yNTAxMzAwODAyMDZaMDMxMTAvBgNV BAMTKEQ2NTIyRDMyQzU1RjE5NTUzNjEwRUVEQzg1ODFCMzE4MTE0QUEzMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMi8hUYqj0zN5HDmSKJqwhjkGS 9qdRIThxdg2hWmebUMhDrUZNVTjttaaPGI+ywTjNYK9RJSp0wTkl8Nlb8mQvuXT3 ZC1KHUgmM42pMTUcKkw+6Owr5SGOR2RJp+fsRfkP7fNsWw3epDEMtcJph7rCvgcQ 0Dy5bfMEQF8r+2l5zLv3HNrMv2xJs1BSv4VI4mZqbpz7pZ5zWXfh0eeuBI4eSp8V cbz07m0IzNdAyH0QTbf5hJxW1G5PcfAumD+rIKXewEkTzWYlk1kM3Tqry1CcjZ2t 4VjCys9JRZUTAF9X1h4ahKIbwurUjXzPF3cIU1KFvh1kBXACVOQlzb8x+AY5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1lItMsVfGVU2EO7chYGzGBFKoxowHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM1MzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOynDANBgkqhkiG 9w0BAQsFAAOCAQEAmAA6o9KYsVDC75lu0/QwJ/qv/psYsyjV70pskhbMDFUtJihb NdRijv2PSUs5Jb6+7o0ACgfAXU5pMh/kvChmDfI0FkeR7bhf2dJgiqhDsSQqsdej rjcq02rI7hkOS+zat1VOogx0xno7puRk07O2KmG7LY4+BoGiR1zWE7gKZ03RssNG L31RPxw2r9/s4LJs8xwYPn+xaHXbM+G/1+izLRf7UJTdvv/BcEyicDV9Ia9aJaW2 BzJA8krmvNoOGf8Cy3r5zJHR5NePG+0HYub51r/TcL8yRBKvd56xsiJdI//k7xxC cIfRiGqaghutLnJGz8fAXunWZti0UH5TbT91rw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org