$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: M1XX69YA4h/dY2a6lbkkrJT2oZb1KyNMzJp9mQ1WMso= Subject key identifier: 90:56:D3:99:6B:B5:56:39:A8:55:45:33:8D:5B:7D:56:A8:CE:1E:8D Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 60057CF5DE96839B42B3381D0CDA3D29FAC10A10 Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa Signing time: Wed 17 Apr 2024 03:00:01 +0000 ROA not before: Wed 17 Apr 2024 02:55:01 +0000 ROA not after: Wed 16 Apr 2025 03:00:01 +0000 asID: 38773 IP address blocks: 114.141.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 09:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:05:7c:f5:de:96:83:9b:42:b3:38:1d:0c:da:3d:29:fa:c1:0a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Apr 17 02:55:01 2024 GMT Not After : Apr 16 03:00:01 2025 GMT Subject: CN=9056D3996BB55639A85545338D5B7D56A8CE1E8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b7:60:ae:fa:2f:b3:54:0d:cc:76:4b:96:26: e6:af:f3:f7:ce:cf:36:1a:6e:dc:96:4e:94:23:d4: 4d:6c:c4:80:53:0f:eb:86:d8:f0:06:6e:0e:3c:c8: 04:89:34:63:f2:50:1c:01:07:43:70:0d:10:c5:8a: b2:4a:fe:8c:9f:8f:53:c8:e2:71:6d:da:bd:24:7f: 85:53:ca:e0:05:4e:b1:b8:cd:5a:82:c0:e3:d1:4f: f7:86:9a:79:71:ae:53:4a:d6:2b:88:1c:49:ff:65: a4:7e:45:ee:10:70:c8:04:71:b4:33:e0:22:eb:f3: 45:87:80:7e:48:fd:97:9d:68:84:cf:bc:33:df:50: 7a:81:9f:a0:66:c9:3b:dd:f9:d1:bf:e0:a2:14:4f: e4:58:95:52:fe:7d:55:6a:9e:83:b1:da:85:5e:60: 43:7c:f0:c1:82:5e:d4:ae:da:13:97:12:ad:e9:05: 16:57:75:e6:39:96:3f:5e:78:16:9a:11:9a:5a:70: da:78:ed:3b:05:58:a5:a1:44:69:e2:6b:4b:06:78: f6:4b:7b:81:55:cb:55:c6:b2:c6:a4:90:76:61:20: 18:18:28:2b:68:1f:12:e7:46:26:df:9b:fd:6b:dc: 3f:de:39:b0:27:39:13:84:9b:9c:09:08:49:72:6e: 23:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:56:D3:99:6B:B5:56:39:A8:55:45:33:8D:5B:7D:56:A8:CE:1E:8D X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.88.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:56:b5:2e:73:46:84:50:fd:47:9d:17:ae:6c:a3:62:b0:f7: 11:ab:29:cc:5c:45:05:a1:25:26:f7:e6:3e:22:3c:40:66:4c: 40:96:ec:e6:5b:fc:83:49:72:7d:05:e3:9a:40:bb:f4:46:3a: 9d:5e:c2:8a:94:36:35:50:00:d8:d5:96:a5:b7:b9:8a:04:b4: 6e:d4:05:fc:33:17:2f:8a:85:d9:1f:ce:82:16:5c:39:c6:ed: 48:d5:31:d1:37:ac:3d:a5:97:c7:d0:83:dd:19:de:53:d8:e7: a2:a1:bc:4e:53:e8:56:53:10:8c:42:4d:68:5f:7e:a8:4c:fb: ed:92:15:58:fa:69:c4:8d:13:69:79:6d:0f:cb:2a:fa:27:f1: 1c:8c:e6:d4:b8:79:c8:c0:36:0a:8e:fe:57:f6:4b:7e:9d:2f: 25:c6:54:90:55:c7:cf:cd:88:19:06:50:50:95:3f:35:09:44: 0c:11:42:45:7e:c6:0e:25:4a:ab:1f:39:88:1a:38:06:b8:00: 98:49:ca:24:c8:61:9f:8e:f1:aa:61:b6:07:26:b6:a4:47:2d: 0e:01:89:65:9a:cd:1f:77:49:6b:80:37:c5:85:f9:7d:ad:b6: a2:9a:70:36:74:02:e6:43:e0:20:85:b0:98:70:2a:90:c0:cc: 8b:50:88:01 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYAV89d6Wg5tCszgdDNo9KfrBChAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNDA0MTcwMjU1MDFaFw0yNTA0MTYwMzAwMDFaMDMxMTAvBgNV BAMTKDkwNTZEMzk5NkJCNTU2MzlBODU1NDUzMzhENUI3RDU2QThDRTFFOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpt2Cu+i+zVA3MdkuWJuav8/fO zzYabtyWTpQj1E1sxIBTD+uG2PAGbg48yASJNGPyUBwBB0NwDRDFirJK/oyfj1PI 4nFt2r0kf4VTyuAFTrG4zVqCwOPRT/eGmnlxrlNK1iuIHEn/ZaR+Re4QcMgEcbQz 4CLr80WHgH5I/ZedaITPvDPfUHqBn6BmyTvd+dG/4KIUT+RYlVL+fVVqnoOx2oVe YEN88MGCXtSu2hOXEq3pBRZXdeY5lj9eeBaaEZpacNp47TsFWKWhRGnia0sGePZL e4FVy1XGssakkHZhIBgYKCtoHxLnRibfm/1r3D/eObAnOROEm5wJCElybiPHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkFbTmWu1VjmoVUUzjVt9VqjOHo0wHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWDANBgkqhkiG 9w0BAQsFAAOCAQEAb1a1LnNGhFD9R50XrmyjYrD3EaspzFxFBaElJvfmPiI8QGZM QJbs5lv8g0lyfQXjmkC79EY6nV7CipQ2NVAA2NWWpbe5igS0btQF/DMXL4qF2R/O ghZcOcbtSNUx0TesPaWXx9CD3RneU9jnoqG8TlPoVlMQjEJNaF9+qEz77ZIVWPpp xI0TaXltD8sq+ifxHIzm1Lh5yMA2Co7+V/ZLfp0vJcZUkFXHz82IGQZQUJU/NQlE DBFCRX7GDiVKqx85iBo4BrgAmEnKJMhhn47xqmG2Bya2pEctDgGJZZrNH3dJa4A3 xYX5fa22oppwNnQC5kPgIIWwmHAqkMDMi1CIAQ== -----END CERTIFICATE-----Generated at Thu May 2 05:25:47 2024 by rpki-client on console-fra.rpki-client.org