$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38392e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: wZurU4o4wFt+xirMPRggeDCI6nlpjP9shHS/TlMYPoM= Subject key identifier: 74:A0:F2:31:D1:0D:39:35:27:9D:F5:DD:AF:18:1C:A3:75:91:73:4E Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5825342FAC0607C7B9AA7D63E4F8965F7E4A1A44 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38392e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:55 +0000 ROA not before: Sat 15 Jun 2024 11:56:55 +0000 ROA not after: Sat 14 Jun 2025 12:01:55 +0000 asID: 17671 IP address blocks: 114.199.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:25:34:2f:ac:06:07:c7:b9:aa:7d:63:e4:f8:96:5f:7e:4a:1a:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:55 2024 GMT Not After : Jun 14 12:01:55 2025 GMT Subject: CN=74A0F231D10D3935279DF5DDAF181CA37591734E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:11:5b:ab:a2:26:9d:10:c3:fe:7b:5e:5f:19: 2d:7d:1e:d4:ac:87:20:3b:cd:de:1e:b3:94:7c:65: f9:b4:6f:4d:f7:d1:59:16:64:a8:37:d6:d0:22:02: d8:54:e5:45:d6:64:48:6f:9d:66:a3:bc:29:ec:96: 46:16:43:88:38:85:dc:0a:e6:e1:fe:4e:34:41:b6: 9b:df:43:98:57:c4:48:09:af:85:20:a4:30:95:8e: 4c:e2:f2:cb:80:04:54:35:5a:a2:69:6b:7b:53:d4: ed:a5:ad:ee:85:57:cc:4b:b7:ed:07:c0:2f:27:5e: 61:84:74:66:36:7c:28:87:45:3b:ba:fc:f5:5c:dd: c3:c6:11:26:77:e7:0a:70:2e:cf:19:77:94:97:7f: 80:0b:34:0e:3b:df:2a:47:16:10:be:90:23:43:02: 01:e7:28:6f:5f:9c:74:7d:43:33:0e:b4:a7:6e:98: 1d:60:71:a9:1e:85:19:18:2e:f3:70:25:45:b3:2e: 80:52:f1:7e:e3:ff:c6:06:4d:ea:fc:0e:37:32:87: 22:19:85:54:3f:5b:81:46:c4:9b:52:2c:9d:72:bd: b4:3b:3a:a3:e4:a4:eb:28:ea:9c:e3:c1:77:18:e4: 44:14:ad:ef:c1:42:47:0c:df:7c:6f:2d:13:22:4c: b6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A0:F2:31:D1:0D:39:35:27:9D:F5:DD:AF:18:1C:A3:75:91:73:4E X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.89.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:63:2c:ca:ba:42:65:06:59:84:53:5b:cb:b8:7e:62:a2:65: cf:90:f1:0c:1b:14:c1:f5:04:63:eb:1a:00:83:29:65:09:1a: 56:63:9b:35:4d:e2:82:ae:a4:59:99:81:dc:e0:3c:45:cc:5d: 68:7a:66:58:e6:d7:59:bd:e0:c9:0a:0c:dc:b6:99:0e:94:e5: 4e:ab:33:8f:6d:ab:5d:6e:c3:4b:ff:48:04:64:e4:f9:e1:b3: 17:54:53:d4:09:b0:42:e4:8d:75:d1:17:6d:4a:a1:2a:c1:71: 8d:99:8e:77:0d:07:3f:35:18:05:9f:f1:5a:2f:d5:d5:89:68: 8b:77:10:68:94:de:59:af:a6:35:a3:30:55:4c:23:64:7e:91: ef:26:e9:41:9e:1c:4b:5e:84:a2:6b:fe:a7:70:46:3e:6b:bd: 43:e0:24:8b:ad:7a:6d:c8:6a:8d:2e:5f:d4:18:0f:58:a2:a2: 8e:07:08:28:d0:af:06:e5:65:74:92:f2:fd:37:29:78:d3:65: 08:62:7e:e1:d3:88:4b:fa:f4:12:c1:59:0e:bd:93:32:bb:db: 1e:97:3f:dd:37:a3:ee:86:55:68:1d:5f:27:7a:30:e1:17:28: d4:02:72:43:a3:29:ac:f1:7d:c1:c0:07:58:dc:79:d5:74:4c: fb:b9:2c:b7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWCU0L6wGB8e5qn1j5PiWX35KGkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTVaFw0yNTA2MTQxMjAxNTVaMDMxMTAvBgNV BAMTKDc0QTBGMjMxRDEwRDM5MzUyNzlERjVEREFGMTgxQ0EzNzU5MTczNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhEVuroiadEMP+e15fGS19HtSs hyA7zd4es5R8Zfm0b0330VkWZKg31tAiAthU5UXWZEhvnWajvCnslkYWQ4g4hdwK 5uH+TjRBtpvfQ5hXxEgJr4UgpDCVjkzi8suABFQ1WqJpa3tT1O2lre6FV8xLt+0H wC8nXmGEdGY2fCiHRTu6/PVc3cPGESZ35wpwLs8Zd5SXf4ALNA473ypHFhC+kCND AgHnKG9fnHR9QzMOtKdumB1gcakehRkYLvNwJUWzLoBS8X7j/8YGTer8DjcyhyIZ hVQ/W4FGxJtSLJ1yvbQ7OqPkpOso6pzjwXcY5EQUre/BQkcM33xvLRMiTLbdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdKDyMdENOTUnnfXdrxgco3WRc04wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHWTANBgkqhkiG 9w0BAQsFAAOCAQEAXWMsyrpCZQZZhFNby7h+YqJlz5DxDBsUwfUEY+saAIMpZQka VmObNU3igq6kWZmB3OA8RcxdaHpmWObXWb3gyQoM3LaZDpTlTqszj22rXW7DS/9I BGTk+eGzF1RT1AmwQuSNddEXbUqhKsFxjZmOdw0HPzUYBZ/xWi/V1Yloi3cQaJTe Wa+mNaMwVUwjZH6R7ybpQZ4cS16Eomv+p3BGPmu9Q+Aki616bchqjS5f1BgPWKKi jgcIKNCvBuVldJLy/TcpeNNlCGJ+4dOIS/r0EsFZDr2TMrvbHpc/3Tej7oZVaB1f J3ow4Rco1AJyQ6MprPF9wcAHWNx51XRM+7kstw== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org