$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38332e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38332e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: z2AhSln7Yh0ZiSRUTkL7VrEdnDwd/ffoTd1e+W03wrY= Subject key identifier: 53:52:C9:A7:2D:B9:F8:38:02:91:4F:D2:9B:D3:50:F8:14:BD:2F:E3 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 3C5FEDD723C22B69A742CEBC6017861E61EE2F5D Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38332e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:54 +0000 ROA not before: Sat 15 Jun 2024 11:56:54 +0000 ROA not after: Sat 14 Jun 2025 12:01:54 +0000 asID: 17671 IP address blocks: 114.199.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:5f:ed:d7:23:c2:2b:69:a7:42:ce:bc:60:17:86:1e:61:ee:2f:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:54 2024 GMT Not After : Jun 14 12:01:54 2025 GMT Subject: CN=5352C9A72DB9F83802914FD29BD350F814BD2FE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:57:a6:b0:57:68:d4:92:51:3a:68:f6:ac: b4:4e:4a:06:e3:ef:7d:f2:ba:89:14:e2:99:84:35: 2f:c8:ef:4c:92:26:84:11:77:28:8d:d3:22:c0:38: 35:df:29:cd:e5:19:d4:44:6d:48:e3:5d:ce:89:08: a8:c1:0f:d6:64:1c:c4:ba:21:52:2d:24:7b:92:28: dd:f4:92:64:13:75:aa:a9:35:48:5c:23:42:5e:39: 81:71:97:8e:1e:99:a5:5b:cc:82:2e:f9:2a:c4:95: 62:31:3e:2d:a4:e9:e7:da:3d:ea:a2:1d:92:d7:e5: 59:dc:4a:97:1d:27:1e:ff:96:01:29:a5:9c:6e:25: cc:76:e4:fa:e9:eb:e1:a4:c7:1f:60:a5:07:21:91: 2a:28:62:2f:09:8f:24:2e:15:79:2d:8e:b6:c9:b4: 5d:b6:7b:1a:62:87:2c:bf:aa:04:d6:3c:34:59:6c: e0:e7:2c:fe:87:94:21:86:35:33:9b:db:6a:78:d6: 63:47:1d:ab:b8:48:1a:cf:1d:7f:7a:5a:dc:87:9a: ee:3d:11:b7:00:04:c1:40:bc:78:a6:75:80:76:bf: 25:df:0e:49:22:5f:17:9f:f9:22:d0:6f:e5:7b:83: f9:4c:97:8f:ff:ea:ba:c8:e7:9d:49:41:09:da:74: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:52:C9:A7:2D:B9:F8:38:02:91:4F:D2:9B:D3:50:F8:14:BD:2F:E3 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38332e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.83.0/24 Signature Algorithm: sha256WithRSAEncryption 04:87:a4:bb:dc:af:40:41:eb:de:17:ac:3b:05:f4:f2:43:6c: 67:45:2d:de:9f:1d:20:00:98:eb:94:ce:b5:97:16:b9:e2:45: 4e:0e:03:d5:6e:0e:5a:92:4d:e1:6a:fc:c4:2c:3e:27:59:58: 38:4a:e9:ce:86:4d:a4:bf:61:4f:25:08:21:cb:35:86:2c:86: 85:5d:ed:a5:1b:62:4d:7b:57:6a:6d:a4:14:20:8b:a8:51:73: 17:bd:3d:d6:b0:8a:5f:41:3e:a7:af:a9:27:d2:b4:fa:ed:aa: e2:79:64:5a:15:98:51:d8:9e:75:cc:16:73:fe:86:73:3d:2a: 02:f1:28:f9:69:10:12:59:a0:15:14:5e:d0:20:f5:2a:39:70: 4e:5f:2c:ca:04:49:02:ed:da:df:a2:53:db:48:33:ca:ab:fa: ae:1e:01:42:59:12:bc:ce:d7:2e:11:5d:08:4c:73:4f:cf:fe: 92:b9:d1:af:f0:9d:d3:b2:a1:bd:03:74:71:64:c7:af:a9:31: d8:9d:4b:8e:aa:03:fb:09:fc:91:d7:ee:ac:a0:78:7d:01:3c: 17:73:b1:d6:61:3f:e2:46:d7:a3:c4:6e:97:6c:ef:0b:0d:f7: bc:39:e8:5f:9e:bb:4a:8d:d5:48:6f:ec:c6:18:3d:11:4e:93: f6:ed:e9:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPF/t1yPCK2mnQs68YBeGHmHuL10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTRaFw0yNTA2MTQxMjAxNTRaMDMxMTAvBgNV BAMTKDUzNTJDOUE3MkRCOUY4MzgwMjkxNEZEMjlCRDM1MEY4MTRCRDJGRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCa1emsFdo1JJROmj2rLROSgbj 733yuokU4pmENS/I70ySJoQRdyiN0yLAODXfKc3lGdREbUjjXc6JCKjBD9ZkHMS6 IVItJHuSKN30kmQTdaqpNUhcI0JeOYFxl44emaVbzIIu+SrElWIxPi2k6efaPeqi HZLX5VncSpcdJx7/lgEppZxuJcx25Prp6+Gkxx9gpQchkSooYi8JjyQuFXktjrbJ tF22expihyy/qgTWPDRZbODnLP6HlCGGNTOb22p41mNHHau4SBrPHX96WtyHmu49 EbcABMFAvHimdYB2vyXfDkkiXxef+SLQb+V7g/lMl4//6rrI551JQQnadMqdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU1LJpy25+DgCkU/Sm9NQ+BS9L+MwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHUzANBgkqhkiG 9w0BAQsFAAOCAQEABIeku9yvQEHr3hesOwX08kNsZ0Ut3p8dIACY65TOtZcWueJF Tg4D1W4OWpJN4Wr8xCw+J1lYOErpzoZNpL9hTyUIIcs1hiyGhV3tpRtiTXtXam2k FCCLqFFzF7091rCKX0E+p6+pJ9K0+u2q4nlkWhWYUdiedcwWc/6Gcz0qAvEo+WkQ ElmgFRRe0CD1KjlwTl8sygRJAu3a36JT20gzyqv6rh4BQlkSvM7XLhFdCExzT8/+ krnRr/Cd07KhvQN0cWTHr6kx2J1LjqoD+wn8kdfurKB4fQE8F3Ox1mE/4kbXo8Ru l2zvCw33vDnoX567So3VSG/sxhg9EU6T9u3pWA== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org