$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39352e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e39352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: ym9Wby5fofZ2hY8wp3yX7x2WKHCk4ICiyMQdrNdKv5k= Subject key identifier: B2:BD:1E:8C:29:DD:F4:1B:87:5E:B4:C9:39:AD:6C:AC:84:E0:43:F1 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 05291880F08E76C160EAA4DC028B81A26D250174 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39352e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 11:00:03 +0000 ROA not before: Sat 15 Jun 2024 10:55:03 +0000 ROA not after: Sat 14 Jun 2025 11:00:03 +0000 asID: 17671 IP address blocks: 114.199.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:29:18:80:f0:8e:76:c1:60:ea:a4:dc:02:8b:81:a2:6d:25:01:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 10:55:03 2024 GMT Not After : Jun 14 11:00:03 2025 GMT Subject: CN=B2BD1E8C29DDF41B875EB4C939AD6CAC84E043F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:42:47:f3:75:ad:f6:5a:6f:53:d3:21:e5:41: 43:b7:5e:3b:dd:69:25:d2:73:1e:18:b2:e0:d9:a2: 8e:ed:d4:be:26:29:d0:b7:d6:c6:bd:6d:c1:bd:6c: f0:e9:6f:fc:84:7f:96:45:1b:42:0a:29:67:f3:b8: 7b:af:ae:88:14:55:1a:f4:c1:eb:c8:2c:70:47:ea: 16:c4:52:2c:90:2f:9c:9c:7d:d3:24:4d:bc:53:f5: df:d5:4f:6d:17:40:02:0d:8d:25:85:3b:17:b0:6b: b6:38:6f:32:e6:39:89:a7:8c:e1:ce:fa:47:92:1f: 3b:6c:cc:6b:d7:6d:71:17:60:ae:24:bc:b8:2d:20: 4a:7d:8d:64:23:95:3f:68:96:1d:c7:05:2f:16:87: 2e:1f:52:51:1d:51:fc:7b:08:70:f7:8c:ba:24:87: 7b:69:d0:6e:b0:be:68:a6:ab:99:9a:b8:33:8b:f3: 44:ea:05:42:c8:b5:fc:a9:cc:dc:a3:28:db:d1:dd: 18:0f:8e:51:07:1f:f1:85:f7:42:fe:dc:e2:5e:a0: 1d:4e:fc:5b:15:40:3a:94:34:5e:1c:e3:07:c6:35: a9:8a:d6:a5:dd:ef:2e:ea:d5:86:12:88:b7:72:b7: 9a:fe:1b:d8:93:21:a7:36:5c:13:48:34:cd:77:61: f4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BD:1E:8C:29:DD:F4:1B:87:5E:B4:C9:39:AD:6C:AC:84:E0:43:F1 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.95.0/24 Signature Algorithm: sha256WithRSAEncryption 98:c1:07:09:66:ef:85:f7:03:7c:5c:c5:19:9d:46:a4:ed:a9: 84:9b:d4:b5:4f:d5:b8:57:02:3f:14:8e:a7:6c:d3:ee:3c:e7: 41:a2:3c:e4:4e:1f:f9:34:f2:d3:be:85:b7:e4:80:fd:69:c3: 49:1e:5b:e7:a8:04:4b:70:57:1d:04:94:2e:38:7d:29:02:a1: b5:08:bc:85:3b:f9:83:45:08:da:b2:e2:4e:c1:41:c5:56:65: 08:56:34:76:1a:2f:34:8d:72:1a:1a:8d:a1:1a:90:0d:5a:83: 31:26:bb:01:f7:89:2c:59:63:62:55:88:25:bd:e0:ba:11:bc: af:1a:78:0b:88:5d:dd:7b:c7:68:62:a0:d9:f2:21:6c:dc:40: 74:0a:cb:b8:1b:9e:be:9f:64:a3:9f:b2:73:b6:7d:18:ef:bf: 13:b2:01:a3:58:90:23:aa:af:6e:30:02:3e:7e:b8:49:7e:35: 0d:bc:7f:93:0e:a9:38:75:3a:82:10:cc:26:98:61:7a:4a:1f: 00:25:fc:67:94:f9:8c:3b:30:db:25:69:ce:76:b3:a2:f5:c3: fc:88:7f:77:e2:9e:df:7d:e4:58:22:e3:2a:89:b8:82:db:01: c7:a1:d2:42:8a:2d:b9:dc:4e:26:2d:c5:c1:5d:d5:5f:d5:9b: d1:f8:d2:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBSkYgPCOdsFg6qTcAouBom0lAXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMDU1MDNaFw0yNTA2MTQxMTAwMDNaMDMxMTAvBgNV BAMTKEIyQkQxRThDMjlEREY0MUI4NzVFQjRDOTM5QUQ2Q0FDODRFMDQzRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaQkfzda32Wm9T0yHlQUO3Xjvd aSXScx4YsuDZoo7t1L4mKdC31sa9bcG9bPDpb/yEf5ZFG0IKKWfzuHuvrogUVRr0 wevILHBH6hbEUiyQL5ycfdMkTbxT9d/VT20XQAINjSWFOxewa7Y4bzLmOYmnjOHO +keSHztszGvXbXEXYK4kvLgtIEp9jWQjlT9olh3HBS8Why4fUlEdUfx7CHD3jLok h3tp0G6wvmimq5mauDOL80TqBULItfypzNyjKNvR3RgPjlEHH/GF90L+3OJeoB1O /FsVQDqUNF4c4wfGNamK1qXd7y7q1YYSiLdyt5r+G9iTIac2XBNINM13YfSPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsr0ejCnd9BuHXrTJOa1srITgQ/EwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHXzANBgkqhkiG 9w0BAQsFAAOCAQEAmMEHCWbvhfcDfFzFGZ1GpO2phJvUtU/VuFcCPxSOp2zT7jzn QaI85E4f+TTy076Ft+SA/WnDSR5b56gES3BXHQSULjh9KQKhtQi8hTv5g0UI2rLi TsFBxVZlCFY0dhovNI1yGhqNoRqQDVqDMSa7AfeJLFljYlWIJb3guhG8rxp4C4hd 3XvHaGKg2fIhbNxAdArLuBuevp9ko5+yc7Z9GO+/E7IBo1iQI6qvbjACPn64SX41 Dbx/kw6pOHU6ghDMJphhekofACX8Z5T5jDsw2yVpznazovXD/Ih/d+Ke333kWCLj Kom4gtsBx6HSQootudxOJi3FwV3VX9Wb0fjSUQ== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org