$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa File: 3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa (raw, json) Hash identifier: ICHLru3ttqJrvtUB0G3jXEoAZOgThf6FI+tEOSoxM28= Subject key identifier: B5:2C:C2:71:FC:7F:F1:78:AA:AF:0C:93:A9:91:E0:E6:C5:F5:2E:0D Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 166204797E35CFBC85B7795644F79C65E9B84B94 Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa Signing time: Wed 17 Apr 2024 03:00:01 +0000 ROA not before: Wed 17 Apr 2024 02:55:01 +0000 ROA not after: Wed 16 Apr 2025 03:00:01 +0000 asID: 138818 IP address blocks: 114.141.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:62:04:79:7e:35:cf:bc:85:b7:79:56:44:f7:9c:65:e9:b8:4b:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Apr 17 02:55:01 2024 GMT Not After : Apr 16 03:00:01 2025 GMT Subject: CN=B52CC271FC7FF178AAAF0C93A991E0E6C5F52E0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a6:fd:52:2e:cc:c1:82:7d:fb:49:49:4d:2c: d0:7d:da:3f:37:a8:20:8d:e8:03:11:ca:15:f6:df: f3:06:65:42:d9:c6:67:a8:ea:59:61:70:2d:28:18: df:e7:c4:07:99:1b:08:b5:94:cd:f3:be:49:12:4c: f4:bf:1f:42:3b:2a:09:6a:d2:53:4b:84:02:99:5a: 4b:43:da:d0:2f:38:d0:b1:06:d5:69:85:e0:3f:ea: 8c:79:34:91:3d:06:c9:9b:34:2d:a1:4f:8d:f5:d5: ae:f2:22:35:f4:76:8f:df:c8:2b:eb:cc:82:a2:96: 5b:d4:95:ca:30:d6:7c:23:b2:1a:2e:8a:f3:99:93: af:e4:0a:29:e5:50:82:d9:ab:8e:9e:6a:8d:86:5f: 1f:75:52:3f:f0:9a:55:f7:0d:b6:b8:df:ed:39:c5: a1:b9:83:b7:0c:ff:be:d8:7f:c4:4f:c9:12:6d:8c: 8c:cf:72:69:a6:53:fb:dd:8f:57:26:fe:c0:0b:a3: b4:66:9b:d5:80:f1:e4:30:9c:1f:52:a4:47:90:bc: de:63:a4:10:85:99:a6:9c:3b:05:50:e2:ae:ae:90: 2b:c1:e7:65:5a:77:ff:fa:d8:18:12:99:2b:d2:0a: c3:47:04:18:6e:e6:5a:67:d1:5a:5b:64:ae:34:5f: f5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2C:C2:71:FC:7F:F1:78:AA:AF:0C:93:A9:91:E0:E6:C5:F5:2E:0D X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.95.0/24 Signature Algorithm: sha256WithRSAEncryption b4:1e:87:8a:b8:ac:3e:9d:e7:28:d1:22:bb:94:97:8d:d4:71: cd:eb:30:a6:35:34:73:6d:f8:47:fd:94:54:8a:97:d3:04:36: 94:78:e5:30:f7:b2:e7:ec:e3:ad:1a:97:5b:86:27:1b:0f:ea: 4b:e8:2c:56:23:46:3b:1d:04:1c:b3:81:05:30:2f:19:4f:66: ee:70:db:83:59:34:69:b3:9e:35:82:9f:07:a7:9e:05:b5:9d: 9b:23:e2:0e:36:39:29:e4:06:34:83:f5:d3:f1:0b:1c:b0:ff: 67:45:ef:8a:fd:64:4a:d6:1a:6c:f6:95:7e:ba:1c:da:1a:94: c3:db:35:7d:fb:b6:75:20:c8:5a:f2:87:2d:6b:29:2f:ef:a6: 31:29:ea:87:e4:12:56:49:e9:c6:b4:22:0a:fe:61:56:27:12: 64:52:da:16:11:a4:76:d9:27:c9:f3:9f:09:07:d9:c1:eb:ae: 40:bc:b3:5e:30:95:9c:1d:fd:59:75:10:38:2c:85:24:9a:fb: a3:6f:66:14:60:3e:bb:cd:9d:22:41:92:7c:52:ae:a1:60:ca: f7:43:e5:2c:80:97:92:91:ea:a4:76:31:e6:f2:30:20:a2:06: 1e:2d:4d:09:40:94:b0:d7:03:4c:87:ad:fc:4e:14:f3:bd:e6: 51:48:74:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFmIEeX41z7yFt3lWRPecZem4S5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNDA0MTcwMjU1MDFaFw0yNTA0MTYwMzAwMDFaMDMxMTAvBgNV BAMTKEI1MkNDMjcxRkM3RkYxNzhBQUFGMEM5M0E5OTFFMEU2QzVGNTJFMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDpv1SLszBgn37SUlNLNB92j83 qCCN6AMRyhX23/MGZULZxmeo6llhcC0oGN/nxAeZGwi1lM3zvkkSTPS/H0I7Kglq 0lNLhAKZWktD2tAvONCxBtVpheA/6ox5NJE9BsmbNC2hT4311a7yIjX0do/fyCvr zIKillvUlcow1nwjshouivOZk6/kCinlUILZq46eao2GXx91Uj/wmlX3Dba43+05 xaG5g7cM/77Yf8RPyRJtjIzPcmmmU/vdj1cm/sALo7Rmm9WA8eQwnB9SpEeQvN5j pBCFmaacOwVQ4q6ukCvB52Vad//62BgSmSvSCsNHBBhu5lpn0VpbZK40X/VLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtSzCcfx/8XiqrwyTqZHg5sX1Lg0wHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAco1fMA0GCSqG SIb3DQEBCwUAA4IBAQC0HoeKuKw+neco0SK7lJeN1HHN6zCmNTRzbfhH/ZRUipfT BDaUeOUw97Ln7OOtGpdbhicbD+pL6CxWI0Y7HQQcs4EFMC8ZT2bucNuDWTRps541 gp8Hp54FtZ2bI+IONjkp5AY0g/XT8QscsP9nRe+K/WRK1hps9pV+uhzaGpTD2zV9 +7Z1IMha8octaykv76YxKeqH5BJWSenGtCIK/mFWJxJkUtoWEaR22SfJ858JB9nB 665AvLNeMJWcHf1ZdRA4LIUkmvujb2YUYD67zZ0iQZJ8Uq6hYMr3Q+UsgJeSkeqk djHm8jAgogYeLU0JQJSw1wNMh638ThTzveZRSHQR -----END CERTIFICATE-----Generated at Sat May 4 16:47:46 2024 by rpki-client on console-ams.rpki-client.org