$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: RpG8IsWnVqz2fTUvveOFKGg3HZ2QtQsFfYHV0K45rEY= Subject key identifier: E1:A3:8C:0B:FF:43:FC:0C:53:18:CC:1F:8F:2F:2C:5D:68:A5:D5:69 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 4FF8F35FBC553F64C4835630BB5E8ACC00D86BC8 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 11:00:02 +0000 ROA not before: Sat 15 Jun 2024 10:55:02 +0000 ROA not after: Sat 14 Jun 2025 11:00:02 +0000 asID: 17671 IP address blocks: 114.199.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:f8:f3:5f:bc:55:3f:64:c4:83:56:30:bb:5e:8a:cc:00:d8:6b:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 10:55:02 2024 GMT Not After : Jun 14 11:00:02 2025 GMT Subject: CN=E1A38C0BFF43FC0C5318CC1F8F2F2C5D68A5D569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:d3:93:01:ab:21:ea:4c:6a:4f:b7:94:42: 06:c6:75:d6:88:cc:f3:26:b0:dc:66:55:8b:b1:e2: fd:df:af:b8:65:df:68:e9:e7:eb:6a:95:59:91:22: 18:71:32:05:13:44:26:b5:33:6b:4c:05:e6:ef:05: 43:19:3b:05:59:31:7f:96:25:5b:65:c9:93:58:88: 10:89:a3:23:5e:6e:6b:81:81:2e:ac:94:50:c4:d0: bd:8c:7c:26:4d:f3:4b:b4:8f:aa:87:86:f2:27:ea: 34:62:35:79:83:ac:5f:af:7e:a8:24:2d:d9:75:a6: fe:a0:96:0d:dc:63:39:7f:79:c4:92:7f:fe:c1:78: 54:07:3d:2b:31:76:43:25:96:04:21:e4:58:a7:3d: 92:4e:55:f1:be:c0:6e:39:63:66:6a:60:10:0f:4f: 91:ac:1d:94:a9:8e:40:d7:47:ed:44:e4:bd:90:19: ac:1a:dc:96:cc:c2:82:49:e4:7d:c6:4c:11:96:dd: a8:e8:d1:90:31:d1:4f:a4:36:8f:80:21:7c:b3:18: 8d:d7:4e:38:d2:b4:fc:7d:58:e7:61:fe:cf:22:47: 04:79:9f:94:84:6c:ad:71:4b:f6:6b:6d:cf:6e:9f: c2:52:ff:34:59:a0:d4:17:e0:3f:9c:e8:c8:15:44: f8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A3:8C:0B:FF:43:FC:0C:53:18:CC:1F:8F:2F:2C:5D:68:A5:D5:69 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.85.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:c0:8c:0d:70:de:a5:09:05:62:54:80:5c:f1:a9:61:1d:aa: ec:76:92:56:9d:c1:25:43:b5:f6:a6:f9:d0:07:13:95:26:f1: d5:14:d5:f3:f9:60:4d:14:76:97:b7:bb:f8:1f:ae:af:4f:02: 3d:56:c6:78:1a:6c:f7:22:85:8a:db:83:ff:c6:dd:0e:da:b1: b2:94:a4:4d:60:a3:e0:ce:d9:76:b7:9f:05:3c:ee:e9:6d:3f: 35:d3:62:d1:1d:98:a8:85:67:3c:7b:14:86:5c:60:b5:4b:18: 7f:e0:67:27:9b:45:db:fa:53:2d:7f:1c:8d:ac:08:93:29:ad: a6:c5:71:e3:12:c9:ea:8c:7c:6b:63:2a:a4:b3:54:b5:cf:b9: 4c:5c:a9:5b:ea:ce:78:94:ef:e4:8c:f2:46:55:3d:73:21:7d: 5d:04:e7:e2:9a:dc:96:15:e8:32:40:de:88:17:1d:03:04:c7: 2a:c0:82:31:3d:8e:b0:7d:99:16:32:40:12:cd:d9:b8:36:f5: ea:07:29:fc:fc:d2:ba:0c:81:a3:1c:f8:3b:51:45:67:cc:fe: 7f:33:41:0d:fa:a5:83:ff:ab:b3:ca:34:ad:4a:8a:d2:83:81: 06:f0:45:31:6e:56:82:b9:e6:74:c7:15:23:c6:07:37:48:87: d8:e5:fc:1b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT/jzX7xVP2TEg1Ywu16KzADYa8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMDU1MDJaFw0yNTA2MTQxMTAwMDJaMDMxMTAvBgNV BAMTKEUxQTM4QzBCRkY0M0ZDMEM1MzE4Q0MxRjhGMkYyQzVENjhBNUQ1NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzrdOTAash6kxqT7eUQgbGddaI zPMmsNxmVYux4v3fr7hl32jp5+tqlVmRIhhxMgUTRCa1M2tMBebvBUMZOwVZMX+W JVtlyZNYiBCJoyNebmuBgS6slFDE0L2MfCZN80u0j6qHhvIn6jRiNXmDrF+vfqgk Ldl1pv6glg3cYzl/ecSSf/7BeFQHPSsxdkMllgQh5FinPZJOVfG+wG45Y2ZqYBAP T5GsHZSpjkDXR+1E5L2QGawa3JbMwoJJ5H3GTBGW3ajo0ZAx0U+kNo+AIXyzGI3X TjjStPx9WOdh/s8iRwR5n5SEbK1xS/Zrbc9un8JS/zRZoNQX4D+c6MgVRPhPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4aOMC/9D/AxTGMwfjy8sXWil1WkwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVTANBgkqhkiG 9w0BAQsFAAOCAQEAncCMDXDepQkFYlSAXPGpYR2q7HaSVp3BJUO19qb50AcTlSbx 1RTV8/lgTRR2l7e7+B+ur08CPVbGeBps9yKFituD/8bdDtqxspSkTWCj4M7Zdref BTzu6W0/NdNi0R2YqIVnPHsUhlxgtUsYf+BnJ5tF2/pTLX8cjawIkymtpsVx4xLJ 6ox8a2MqpLNUtc+5TFypW+rOeJTv5IzyRlU9cyF9XQTn4prclhXoMkDeiBcdAwTH KsCCMT2OsH2ZFjJAEs3ZuDb16gcp/PzSugyBoxz4O1FFZ8z+fzNBDfqlg/+rs8o0 rUqK0oOBBvBFMW5WgrnmdMcVI8YHN0iH2OX8Gw== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org