$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38322e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38322e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: Tfa+Eb4SOkcdtfnrnm171L2XL2Cp9sHGp/NNW2a0z7o= Subject key identifier: B3:A4:51:97:C6:45:82:60:39:26:30:8A:5C:2A:D8:84:E1:BE:9A:2E Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 2368E3CA837C8AA89E6099107C0B65CFE2ECA4B0 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38322e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:56 +0000 ROA not before: Sat 15 Jun 2024 11:56:56 +0000 ROA not after: Sat 14 Jun 2025 12:01:56 +0000 asID: 17671 IP address blocks: 114.199.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:68:e3:ca:83:7c:8a:a8:9e:60:99:10:7c:0b:65:cf:e2:ec:a4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:56 2024 GMT Not After : Jun 14 12:01:56 2025 GMT Subject: CN=B3A45197C64582603926308A5C2AD884E1BE9A2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:60:d8:74:b7:15:9c:cc:30:c9:b8:b4:5e:46: 89:e6:fc:fe:0e:fb:f8:63:64:b3:b0:e7:44:18:4f: 8e:d8:f7:b9:fb:18:93:16:a0:00:5b:4f:09:83:a4: 0e:a1:7a:f9:6e:b0:7e:84:5c:36:5d:6f:df:f8:d7: 6e:0f:08:1b:8a:f7:51:a1:b0:c3:6e:7a:9a:cb:fa: d5:c1:ee:1a:e3:ad:f6:d5:b1:5a:ba:63:27:1b:ac: 0a:16:f8:6e:af:3f:d5:00:c8:a6:fa:af:59:62:65: 59:df:8e:cb:c8:b3:e0:7d:4e:b6:12:67:31:0a:4c: d9:83:5e:fb:1f:7f:a6:c5:f8:cb:12:49:01:d2:d0: 40:66:33:40:f7:fd:25:1c:3e:af:5b:36:16:fe:58: be:ea:b8:3e:65:65:f5:44:fa:46:47:36:c7:af:7a: ff:41:66:84:a8:55:c8:ae:ee:70:d5:52:ad:0d:5d: 71:55:5b:8b:94:12:c2:9b:5b:07:bc:9e:24:7c:2f: 76:c5:8e:1f:db:69:c9:3f:6a:c9:3a:b2:85:41:ad: 6d:6f:89:ea:83:7c:4e:2c:c3:65:e4:7a:f6:51:11: 88:66:78:0c:2f:03:44:f9:a6:9f:5c:46:13:60:04: 4b:63:1e:07:64:1c:ca:a2:3f:52:44:c6:a4:8e:cb: 62:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A4:51:97:C6:45:82:60:39:26:30:8A:5C:2A:D8:84:E1:BE:9A:2E X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38322e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.82.0/24 Signature Algorithm: sha256WithRSAEncryption 41:c1:41:27:14:a8:73:75:32:c4:d4:85:90:99:3f:f6:19:89: f4:5e:95:9f:85:9b:55:45:bc:40:98:2c:52:9c:32:76:19:a8: 53:f0:7b:64:02:46:bb:cc:52:77:80:64:1c:9b:b4:89:1b:20: 6d:c6:54:3e:0d:c1:04:20:58:b6:13:f8:40:25:4b:4b:53:85: 66:d6:d4:91:d8:b7:91:2d:5c:89:84:d4:7c:5b:ed:6d:71:ea: 58:fe:ea:d1:b4:c8:af:d5:30:ae:4c:6c:4d:e7:ee:20:6a:4d: 0b:62:4d:69:0b:92:82:18:c9:d3:6b:38:6d:ba:ef:4e:84:82: 75:22:92:5d:9b:b3:b9:c3:48:ca:a5:c4:f2:b2:7f:b6:59:9b: 31:d2:33:37:4f:7f:ed:ac:89:db:d2:e6:ab:67:29:63:dc:c5: 4e:fb:1a:ea:8a:46:dd:f1:dd:99:3e:68:83:e9:f8:0d:26:3c: 51:a0:5a:ee:12:1d:33:12:96:47:64:1a:de:04:04:51:14:49: 8f:ca:0c:b7:5f:e2:e4:81:1a:e8:4e:67:64:60:50:3d:ab:c3: 64:a5:f6:46:52:1b:fd:8a:2e:f8:68:e9:fc:3d:b1:68:a4:20: 35:8f:9d:59:d8:fd:e2:ca:16:f5:e2:88:1c:e3:96:9c:19:0d: 7b:33:03:98 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI2jjyoN8iqieYJkQfAtlz+LspLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTZaFw0yNTA2MTQxMjAxNTZaMDMxMTAvBgNV BAMTKEIzQTQ1MTk3QzY0NTgyNjAzOTI2MzA4QTVDMkFEODg0RTFCRTlBMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrYNh0txWczDDJuLReRonm/P4O +/hjZLOw50QYT47Y97n7GJMWoABbTwmDpA6hevlusH6EXDZdb9/4124PCBuK91Gh sMNueprL+tXB7hrjrfbVsVq6YycbrAoW+G6vP9UAyKb6r1liZVnfjsvIs+B9TrYS ZzEKTNmDXvsff6bF+MsSSQHS0EBmM0D3/SUcPq9bNhb+WL7quD5lZfVE+kZHNsev ev9BZoSoVciu7nDVUq0NXXFVW4uUEsKbWwe8niR8L3bFjh/back/ask6soVBrW1v ieqDfE4sw2XkevZREYhmeAwvA0T5pp9cRhNgBEtjHgdkHMqiP1JExqSOy2LFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUs6RRl8ZFgmA5JjCKXCrYhOG+mi4wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHUjANBgkqhkiG 9w0BAQsFAAOCAQEAQcFBJxSoc3UyxNSFkJk/9hmJ9F6Vn4WbVUW8QJgsUpwydhmo U/B7ZAJGu8xSd4BkHJu0iRsgbcZUPg3BBCBYthP4QCVLS1OFZtbUkdi3kS1ciYTU fFvtbXHqWP7q0bTIr9UwrkxsTefuIGpNC2JNaQuSghjJ02s4bbrvToSCdSKSXZuz ucNIyqXE8rJ/tlmbMdIzN09/7ayJ29Lmq2cpY9zFTvsa6opG3fHdmT5og+n4DSY8 UaBa7hIdMxKWR2Qa3gQEURRJj8oMt1/i5IEa6E5nZGBQPavDZKX2RlIb/You+Gjp /D2xaKQgNY+dWdj94soW9eKIHOOWnBkNezMDmA== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org