$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 41bL6WVbEabx0ROdJSdKK3Zcv3DHiyNuhbyC7hC2Is4= Subject key identifier: 05:59:CC:ED:21:DF:55:46:CC:62:48:BE:5E:BA:02:64:60:1F:B7:DC Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 7448CA6A545A0F17D80B8D74CE3DBD55E72C3D26 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:51 +0000 ROA not before: Sat 15 Jun 2024 11:56:51 +0000 ROA not after: Sat 14 Jun 2025 12:01:51 +0000 asID: 17671 IP address blocks: 114.199.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:48:ca:6a:54:5a:0f:17:d8:0b:8d:74:ce:3d:bd:55:e7:2c:3d:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:51 2024 GMT Not After : Jun 14 12:01:51 2025 GMT Subject: CN=0559CCED21DF5546CC6248BE5EBA0264601FB7DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:45:76:55:ef:fd:85:02:b3:f4:6b:41:ca:5b: c6:a7:2a:6a:8a:fd:c1:75:e4:35:15:ab:ba:54:d5: 63:22:94:d8:54:16:ff:31:8b:34:da:99:96:76:36: 74:c4:11:8c:0b:b7:02:a7:f2:ad:25:c1:52:2a:f5: 4b:c9:82:30:07:da:17:50:06:a4:a3:7c:bc:87:04: ec:65:8a:70:d1:89:39:55:2c:e5:43:60:76:78:d1: ee:e6:48:77:6d:fa:96:c7:aa:84:c0:54:c4:b7:6b: e3:24:c7:af:3f:04:01:6f:6b:e5:e9:87:08:74:df: 74:24:61:27:ac:8d:08:84:da:c7:cb:95:c5:e5:43: 22:c9:6c:b9:6d:d9:c3:b6:7d:c1:29:68:84:7e:7b: ab:a1:d5:e7:34:28:7d:2b:cf:f4:8d:a0:4b:6f:cc: 21:54:38:dc:1d:61:2a:75:aa:a5:96:2a:5e:24:b9: eb:03:e7:61:c3:3b:33:b4:81:91:bf:3d:bf:a7:65: 63:59:58:d4:c8:fd:69:18:f6:e8:d5:e6:b0:ad:e8: 69:29:cf:26:f7:a3:5c:28:3b:91:f1:e3:40:c8:92: 75:61:51:c8:45:9b:43:8a:63:78:a0:d8:a8:0a:f5: 5b:90:51:be:dc:0d:97:1a:d8:a3:a2:5d:fd:98:3e: 72:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:59:CC:ED:21:DF:55:46:CC:62:48:BE:5E:BA:02:64:60:1F:B7:DC X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.84.0/24 Signature Algorithm: sha256WithRSAEncryption a4:af:cb:63:d5:3d:02:92:9e:4f:c0:3a:68:7e:1e:33:68:25: f3:c2:a3:b3:bd:88:b7:ba:bc:7e:36:3c:b8:2c:0c:02:8b:02: c6:f1:94:de:d9:aa:83:65:b5:e3:a3:a6:01:51:fd:6a:37:2f: 0d:44:7f:1a:11:df:81:6c:be:48:e2:9d:73:4e:3b:54:09:ea: 67:2e:1a:65:e7:c3:d4:bb:0a:da:b5:14:49:bc:87:c9:70:e8: 92:59:32:3c:84:6e:4a:0c:40:9d:9e:87:e2:82:6a:84:bf:87: 49:41:43:20:e6:29:3b:f5:7d:42:7e:2f:87:d0:8a:93:2d:b1: 5b:fa:0c:71:aa:f9:1a:8c:ba:a0:e6:0d:73:1d:d2:71:f7:d3: a9:b0:b2:17:5b:c1:8b:b3:87:b1:27:b9:1f:7a:70:50:97:b4: 49:93:79:8d:04:c8:18:6e:69:f2:ca:25:e6:b6:80:b7:a7:15: e5:db:82:72:a1:18:52:09:59:0e:0c:c1:61:1e:4b:b1:99:58: dd:f7:75:9b:29:4c:31:c8:c0:5e:95:28:41:d1:e2:5a:8f:2a: 40:62:f7:4a:be:c5:4e:2a:51:3b:28:2d:b4:7b:6b:9d:b9:65: 88:f9:88:12:93:7e:6d:7f:85:99:99:71:a3:48:a0:30:3e:d1: c9:c6:49:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdEjKalRaDxfYC410zj29VecsPSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTFaFw0yNTA2MTQxMjAxNTFaMDMxMTAvBgNV BAMTKDA1NTlDQ0VEMjFERjU1NDZDQzYyNDhCRTVFQkEwMjY0NjAxRkI3REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnRXZV7/2FArP0a0HKW8anKmqK /cF15DUVq7pU1WMilNhUFv8xizTamZZ2NnTEEYwLtwKn8q0lwVIq9UvJgjAH2hdQ BqSjfLyHBOxlinDRiTlVLOVDYHZ40e7mSHdt+pbHqoTAVMS3a+Mkx68/BAFva+Xp hwh033QkYSesjQiE2sfLlcXlQyLJbLlt2cO2fcEpaIR+e6uh1ec0KH0rz/SNoEtv zCFUONwdYSp1qqWWKl4kuesD52HDOzO0gZG/Pb+nZWNZWNTI/WkY9ujV5rCt6Gkp zyb3o1woO5Hx40DIknVhUchFm0OKY3ig2KgK9VuQUb7cDZca2KOiXf2YPnJlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBVnM7SHfVUbMYki+XroCZGAft9wwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVDANBgkqhkiG 9w0BAQsFAAOCAQEApK/LY9U9ApKeT8A6aH4eM2gl88Kjs72It7q8fjY8uCwMAosC xvGU3tmqg2W146OmAVH9ajcvDUR/GhHfgWy+SOKdc047VAnqZy4aZefD1LsK2rUU SbyHyXDoklkyPIRuSgxAnZ6H4oJqhL+HSUFDIOYpO/V9Qn4vh9CKky2xW/oMcar5 Goy6oOYNcx3ScffTqbCyF1vBi7OHsSe5H3pwUJe0SZN5jQTIGG5p8sol5raAt6cV 5duCcqEYUglZDgzBYR5LsZlY3fd1mylMMcjAXpUoQdHiWo8qQGL3Sr7FTipROygt tHtrnblliPmIEpN+bX+FmZlxo0igMD7RycZJPw== -----END CERTIFICATE-----Generated at Thu Nov 28 12:13:47 2024 by rpki-client on console-fra.rpki-client.org