$ rpki-client -vvf repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3131302e39322e37322e302f32332d3234203d3e203137393935.roa File: 3131302e39322e37322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: jTlGPF+oIxDdzQPSNldjBCWQrsqrXblg8LiwwgFscio= Subject key identifier: 8D:A9:6D:F9:00:E8:E7:10:78:D5:45:7B:6D:BC:D9:C1:B3:E7:BF:61 Certificate issuer: /CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Certificate serial: 6BFABBE01157B6A91C4415FFF6B58567455534D1 Authority key identifier: E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3131302e39322e37322e302f32332d3234203d3e203137393935.roa Signing time: Thu 23 Nov 2023 15:01:36 +0000 ROA not before: Thu 23 Nov 2023 14:56:36 +0000 ROA not after: Thu 21 Nov 2024 15:01:36 +0000 asID: 17995 IP address blocks: 110.92.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:fa:bb:e0:11:57:b6:a9:1c:44:15:ff:f6:b5:85:67:45:55:34:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Validity Not Before: Nov 23 14:56:36 2023 GMT Not After : Nov 21 15:01:36 2024 GMT Subject: CN=8DA96DF900E8E71078D5457B6DBCD9C1B3E7BF61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4d:be:ed:ea:b8:a3:ea:b3:86:dc:58:40:50: c1:c4:d5:9e:74:83:f6:55:a3:7a:7c:5a:e9:25:fc: 2b:41:dc:13:c4:7f:a1:d2:fd:d6:22:73:d8:ce:da: 1e:57:5f:d4:52:88:56:c8:ed:95:37:a6:37:c3:f4: 73:86:c7:21:85:e1:36:d8:50:53:b6:43:c4:97:ed: 4a:7d:d5:ab:71:18:cd:5c:55:a3:16:d1:fc:c4:b7: 3e:bf:f1:61:09:eb:94:cc:a2:ec:91:db:15:9a:fb: 0e:ed:b1:ab:d0:90:09:d2:ff:6e:96:25:ff:3e:c1: cb:33:d6:42:00:a9:44:1b:07:95:42:ba:7d:2b:75: 77:5a:7c:f0:9c:5d:8f:61:1e:5d:d5:ba:17:74:2d: 48:7b:91:f6:9c:3b:41:ec:de:57:8f:bf:52:c2:66: d5:5b:cd:97:8c:5c:b7:47:6c:ea:64:30:c2:4c:71: 13:a2:9f:a8:0c:75:3f:f9:99:62:13:15:b4:b9:36: da:12:6f:23:47:bc:eb:84:7a:df:3f:98:a9:07:a6: 6f:52:fe:83:68:2f:84:94:e2:a7:72:46:9a:df:6d: d6:64:9c:f5:ea:29:55:41:81:21:26:62:32:3e:63: 4e:aa:f3:49:1d:94:df:8a:e2:b6:c7:a0:48:d7:59: 71:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A9:6D:F9:00:E8:E7:10:78:D5:45:7B:6D:BC:D9:C1:B3:E7:BF:61 X509v3 Authority Key Identifier: keyid:E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3131302e39322e37322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.92.72.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:59:b7:87:d6:bb:7f:ea:68:9e:2f:46:7b:f3:cd:0a:6f:f7: b0:44:a5:21:5e:1e:e6:01:d6:c7:6f:15:14:1d:0a:05:9a:b8: 0a:11:92:64:b1:e7:23:60:ba:7d:93:63:33:21:45:7e:04:5b: 4d:db:fd:e3:70:06:da:14:b3:1d:b3:72:3e:6c:48:64:2a:00: 15:3c:27:5a:b6:82:68:bc:31:89:c9:8c:3f:4d:f4:c9:44:94: 1f:53:65:d1:af:d4:c8:fd:b2:f6:19:bb:df:86:7d:59:da:8f: 1d:b8:25:f5:5f:f8:2a:55:97:a7:46:2d:28:5c:3c:b5:11:62: db:dd:e9:0a:f7:f1:54:5e:b8:bc:09:7c:2f:0e:a4:d5:97:33: a6:5e:16:34:40:2c:09:1c:0d:da:b8:c4:a1:2c:52:e4:37:39: 81:e5:8e:3a:c4:6e:01:c3:5f:0c:ed:00:e3:05:8d:2f:6b:36: 51:b2:cf:36:43:01:2a:c5:04:b0:38:95:a7:a4:aa:c2:20:91: 11:72:23:18:d4:20:d2:86:49:9d:1a:26:03:6c:00:5a:fe:20: 23:0f:55:ee:4f:89:73:9c:19:e2:26:e3:a5:74:ab:48:ac:96: d5:a9:d4:9c:62:07:91:c3:5d:27:8e:89:15:2a:03:64:46:7d: 96:c6:c5:7d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUa/q74BFXtqkcRBX/9rWFZ0VVNNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJB NDBFNjM3MDAeFw0yMzExMjMxNDU2MzZaFw0yNDExMjExNTAxMzZaMDMxMTAvBgNV BAMTKDhEQTk2REY5MDBFOEU3MTA3OEQ1NDU3QjZEQkNEOUMxQjNFN0JGNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkTb7t6rij6rOG3FhAUMHE1Z50 g/ZVo3p8Wukl/CtB3BPEf6HS/dYic9jO2h5XX9RSiFbI7ZU3pjfD9HOGxyGF4TbY UFO2Q8SX7Up91atxGM1cVaMW0fzEtz6/8WEJ65TMouyR2xWa+w7tsavQkAnS/26W Jf8+wcsz1kIAqUQbB5VCun0rdXdafPCcXY9hHl3Vuhd0LUh7kfacO0Hs3lePv1LC ZtVbzZeMXLdHbOpkMMJMcROin6gMdT/5mWITFbS5NtoSbyNHvOuEet8/mKkHpm9S /oNoL4SU4qdyRprfbdZknPXqKVVBgSEmYjI+Y06q80kdlN+K4rbHoEjXWXGNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjalt+QDo5xB41UV7bbzZwbPnv2EwHwYDVR0j BBgwFoAU6U1AmQZHE/HDpeIR6BfPwqQOY3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjdhZTgyZi01MzdlLTQ2MjYtYmU5ZS0zMzM5NGEyZGM5NjkvMC9FOTRENDA5OTA2 NDcxM0YxQzNBNUUyMTFFODE3Q0ZDMkE0MEU2MzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJBNDBF NjM3MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmN2FlODJmLTUzN2UtNDYyNi1i ZTllLTMzMzk0YTJkYzk2OS8wLzMxMzEzMDJlMzkzMjJlMzczMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFuXEgwDQYJKoZIhvcN AQELBQADggEBADtZt4fWu3/qaJ4vRnvzzQpv97BEpSFeHuYB1sdvFRQdCgWauAoR kmSx5yNgun2TYzMhRX4EW03b/eNwBtoUsx2zcj5sSGQqABU8J1q2gmi8MYnJjD9N 9MlElB9TZdGv1Mj9svYZu9+GfVnajx24JfVf+CpVl6dGLShcPLURYtvd6Qr38VRe uLwJfC8OpNWXM6ZeFjRALAkcDdq4xKEsUuQ3OYHljjrEbgHDXwztAOMFjS9rNlGy zzZDASrFBLA4laekqsIgkRFyIxjUINKGSZ0aJgNsAFr+ICMPVe5PiXOcGeIm46V0 q0isltWp1JxiB5HDXSeOiRUqA2RGfZbGxX0= -----END CERTIFICATE-----Generated at Sat May 4 20:35:45 2024 by rpki-client on console-fra.rpki-client.org