$ rpki-client -vvf repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3131322e37382e34302e302f32312d3234203d3e203435333032.roa File: 3131322e37382e34302e302f32312d3234203d3e203435333032.roa (raw, json) Hash identifier: edHDzblDFRhSx06oJof4TjRb+BqE1LKTByyhYbMMo3U= Subject key identifier: C4:9D:08:7C:51:5A:41:88:8A:7E:88:C9:2F:7C:04:CB:6A:B0:3B:1C Certificate issuer: /CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Certificate serial: 4D68DCAB115E0B3C1195C9D0194BD692B764CB70 Authority key identifier: 19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3131322e37382e34302e302f32312d3234203d3e203435333032.roa Signing time: Mon 01 Jul 2024 01:04:28 +0000 ROA not before: Mon 01 Jul 2024 00:59:28 +0000 ROA not after: Mon 30 Jun 2025 01:04:28 +0000 asID: 45302 IP address blocks: 112.78.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:68:dc:ab:11:5e:0b:3c:11:95:c9:d0:19:4b:d6:92:b7:64:cb:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Validity Not Before: Jul 1 00:59:28 2024 GMT Not After : Jun 30 01:04:28 2025 GMT Subject: CN=C49D087C515A41888A7E88C92F7C04CB6AB03B1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ca:19:bc:d5:91:f4:8f:61:74:96:43:b2:a7: b9:f3:d9:69:38:e3:bf:68:f4:1b:39:ef:54:1e:c9: fc:1b:3e:3e:ca:77:1d:3c:24:86:28:18:93:b5:77: c6:29:78:53:7c:98:b3:b1:c4:1e:cd:fb:30:e4:c4: 05:c4:fa:47:d7:d4:4f:b1:ae:5c:2d:cc:8e:5f:2b: 3d:62:94:c6:51:31:65:d1:22:32:8f:45:c9:68:33: 08:58:26:7b:e8:bf:ac:92:d1:d8:a3:33:53:75:b0: ee:03:11:08:b5:b5:c3:55:28:67:53:73:d2:f8:5c: 7c:51:68:96:e1:b6:c8:da:f4:54:d2:57:fd:a3:60: f8:7b:db:14:c7:6f:8e:c2:99:b4:1c:de:7f:cc:e1: 76:2d:e3:e7:5d:f8:5e:c3:17:6c:8a:3d:19:a6:cd: 2b:a7:ee:3d:9a:9c:80:b0:65:bc:67:5f:88:fd:11: df:20:fb:d8:62:d5:de:e2:2c:d0:8d:47:29:9c:ca: 79:be:f5:f4:60:48:cb:b7:01:5e:44:d1:b7:fc:79: 15:10:46:44:ab:aa:ab:00:b0:ef:50:10:e3:e8:6b: 84:87:3a:31:a9:86:63:c7:32:c2:aa:9c:1a:97:e0: 49:35:29:d9:94:4b:d4:54:25:cc:46:39:f4:3a:5f: e4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9D:08:7C:51:5A:41:88:8A:7E:88:C9:2F:7C:04:CB:6A:B0:3B:1C X509v3 Authority Key Identifier: keyid:19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3131322e37382e34302e302f32312d3234203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.78.40.0/21 Signature Algorithm: sha256WithRSAEncryption 55:b5:40:a2:01:da:db:60:48:94:c4:7a:09:cb:d0:6f:e3:25: 82:d3:e9:f1:09:a7:26:d5:ba:10:b9:d0:60:4a:35:74:64:14: 59:c9:d4:45:f3:83:cb:b2:90:74:4c:e5:fa:8d:f5:88:85:2d: 79:dd:a9:99:16:98:3c:2c:8a:55:8d:e1:61:f5:79:18:d8:62: 37:30:f6:49:24:f6:49:53:fc:fb:1c:ef:79:d3:5d:61:42:29: d6:d6:b0:98:ce:cd:88:12:ce:89:c1:41:35:24:ad:5f:ad:21: 96:62:4a:ae:95:94:66:78:bc:48:ff:f9:79:45:8d:54:15:3b: 39:ab:fc:cb:d2:32:4c:eb:ce:93:9c:66:fa:5e:6f:92:72:9c: 00:60:88:36:d4:a0:75:59:52:76:0b:be:23:38:7f:48:d5:5e: 17:f2:3a:0c:df:b3:30:d2:a0:32:52:f6:e8:38:6a:41:7b:00: 67:dd:5d:68:8c:f9:21:79:23:38:a4:87:4a:af:8c:0d:66:0d: 1e:9f:e3:3f:30:1c:45:b9:66:ac:08:4b:a8:4e:d4:d4:83:ed: 9b:fd:62:c2:cc:99:d3:f9:a5:4f:86:f8:df:ba:06:a5:27:75: 4b:70:c1:be:29:a5:7c:2d:d0:5c:ba:48:3b:94:ce:e6:d2:1c: d4:3d:02:02 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTWjcqxFeCzwRlcnQGUvWkrdky3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4 N0U2NUMzQzAeFw0yNDA3MDEwMDU5MjhaFw0yNTA2MzAwMTA0MjhaMDMxMTAvBgNV BAMTKEM0OUQwODdDNTE1QTQxODg4QTdFODhDOTJGN0MwNENCNkFCMDNCMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1yhm81ZH0j2F0lkOyp7nz2Wk4 479o9Bs571QeyfwbPj7Kdx08JIYoGJO1d8YpeFN8mLOxxB7N+zDkxAXE+kfX1E+x rlwtzI5fKz1ilMZRMWXRIjKPRcloMwhYJnvov6yS0dijM1N1sO4DEQi1tcNVKGdT c9L4XHxRaJbhtsja9FTSV/2jYPh72xTHb47CmbQc3n/M4XYt4+dd+F7DF2yKPRmm zSun7j2anICwZbxnX4j9Ed8g+9hi1d7iLNCNRymcynm+9fRgSMu3AV5E0bf8eRUQ RkSrqqsAsO9QEOPoa4SHOjGphmPHMsKqnBqX4Ek1KdmUS9RUJcxGOfQ6X+ThAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxJ0IfFFaQYiKfojJL3wEy2qwOxwwHwYDVR0j BBgwFoAUGaGW9eW6ujGSbFru9E/BY4fmXDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Yjg4NThlMC1lY2YwLTRlNTMtYTQ5MC0zYjdjMmRlMTY5M2MvMC8xOUExOTZGNUU1 QkFCQTMxOTI2QzVBRUVGNDRGQzE2Mzg3RTY1QzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4N0U2 NUMzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMxMzEzMjJlMzczODJlMzQzMDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDM0MzUzMzMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANwTigwDQYJKoZIhvcN AQELBQADggEBAFW1QKIB2ttgSJTEegnL0G/jJYLT6fEJpybVuhC50GBKNXRkFFnJ 1EXzg8uykHRM5fqN9YiFLXndqZkWmDwsilWN4WH1eRjYYjcw9kkk9klT/Psc73nT XWFCKdbWsJjOzYgSzonBQTUkrV+tIZZiSq6VlGZ4vEj/+XlFjVQVOzmr/MvSMkzr zpOcZvpeb5JynABgiDbUoHVZUnYLviM4f0jVXhfyOgzfszDSoDJS9ug4akF7AGfd XWiM+SF5Izikh0qvjA1mDR6f4z8wHEW5ZqwIS6hO1NSD7Zv9YsLMmdP5pU+G+N+6 BqUndUtwwb4ppXwt0Fy6SDuUzubSHNQ9AgI= -----END CERTIFICATE-----Generated at Mon Nov 25 04:52:36 2024 by rpki-client on console-fra.rpki-client.org