$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38392e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: 8i3x4gBaZ9q2FeKL77QwQugTPoFrVoqppzokcKf7V9U= Subject key identifier: D6:78:D5:18:76:AC:30:25:4C:3D:0F:F5:48:5C:64:64:42:E0:9F:B0 Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 042D6F9F3CFEE8032F698AC2321C84B678E53D23 Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38392e302f32342d3234203d3e203338373733.roa Signing time: Tue 21 Jan 2025 02:02:20 +0000 ROA not before: Tue 21 Jan 2025 01:57:20 +0000 ROA not after: Tue 20 Jan 2026 02:02:20 +0000 asID: 38773 IP address blocks: 114.141.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 09:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:2d:6f:9f:3c:fe:e8:03:2f:69:8a:c2:32:1c:84:b6:78:e5:3d:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Jan 21 01:57:20 2025 GMT Not After : Jan 20 02:02:20 2026 GMT Subject: CN=D678D51876AC30254C3D0FF5485C646442E09FB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ab:62:e2:9f:91:89:46:a2:e0:d1:99:c6:3e: 4c:69:0e:16:c7:f5:ab:58:32:96:19:fb:1a:be:ce: 2e:c4:a0:08:f7:8f:94:96:64:95:18:aa:3e:e9:94: 19:24:e4:5e:4e:ec:26:51:eb:43:43:d6:ac:e8:3a: 0c:71:fc:4f:02:09:dd:26:b0:33:c8:99:73:26:d4: e6:74:3c:12:e2:e7:73:fb:50:34:cd:af:c2:80:5e: a1:64:67:37:f5:1e:63:6c:76:c6:f5:d4:2c:48:57: 0c:d6:69:b2:27:45:cd:51:ef:f1:90:c5:e1:38:83: ed:3d:e6:58:f6:03:7a:25:45:cf:09:91:04:61:b3: f2:10:37:56:10:6b:a2:7d:0f:b8:c9:7a:f7:f6:54: 7c:c9:60:fb:e5:b9:56:e4:82:8b:78:eb:bb:0f:95: d7:2f:3c:bd:4d:4a:5e:da:32:44:6d:37:c1:0d:3b: fb:de:df:76:b8:e1:fd:37:7c:34:42:34:3b:66:58: 47:56:79:ee:bf:8a:c0:0a:62:0b:d2:d1:01:ff:57: 83:ec:4f:69:ff:62:6d:37:9d:31:26:0f:7e:f2:86: 28:54:6d:3b:d2:85:85:ae:9f:c5:44:9b:af:08:a4: c4:4f:f3:d1:80:97:61:38:34:75:f2:36:40:d4:4c: fd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:78:D5:18:76:AC:30:25:4C:3D:0F:F5:48:5C:64:64:42:E0:9F:B0 X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38392e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.89.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:71:ff:26:05:6f:5a:b3:10:ce:91:e7:b5:0d:7d:b0:12:7d: 71:2c:cf:08:12:dc:75:cc:3d:93:b9:d3:c0:40:08:9f:8b:80: d1:bd:95:1f:9c:eb:45:05:73:d3:ba:c7:c2:9f:6e:a0:72:ba: d5:38:57:69:eb:47:59:97:d1:91:34:e7:5d:7a:18:db:36:43: 95:3c:95:af:f4:92:78:59:e9:0e:71:67:f7:83:6c:1a:23:8b: 84:dc:e5:f7:09:da:8b:8f:53:30:8f:04:15:c1:9d:f4:34:77: e6:7f:ce:01:9b:1d:23:3e:d6:c7:b7:3d:48:43:4c:ef:8e:5f: 58:61:64:29:58:25:b4:68:bf:43:d9:2a:bc:9c:09:97:80:38: fc:4a:e0:4f:b5:27:99:50:92:87:b4:c1:72:ca:8f:cf:19:79: bd:35:a8:b4:62:66:bd:b3:69:a1:91:83:49:88:a7:95:48:47: 09:15:6d:c0:f2:db:b9:63:7c:0c:d6:9a:cf:0a:36:ee:48:2c: f4:7a:93:09:85:66:1a:b3:2b:05:0c:51:ab:54:cf:27:d4:be: 1a:88:6e:77:c1:d2:c6:9a:59:15:3a:2a:09:15:a7:37:1f:db: 4c:ca:0d:f2:5c:03:09:40:65:6b:58:98:b4:ea:14:09:b3:b7: a8:83:b2:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBC1vnzz+6AMvaYrCMhyEtnjlPSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNTAxMjEwMTU3MjBaFw0yNjAxMjAwMjAyMjBaMDMxMTAvBgNV BAMTKEQ2NzhENTE4NzZBQzMwMjU0QzNEMEZGNTQ4NUM2NDY0NDJFMDlGQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOq2Lin5GJRqLg0ZnGPkxpDhbH 9atYMpYZ+xq+zi7EoAj3j5SWZJUYqj7plBkk5F5O7CZR60ND1qzoOgxx/E8CCd0m sDPImXMm1OZ0PBLi53P7UDTNr8KAXqFkZzf1HmNsdsb11CxIVwzWabInRc1R7/GQ xeE4g+095lj2A3olRc8JkQRhs/IQN1YQa6J9D7jJevf2VHzJYPvluVbkgot467sP ldcvPL1NSl7aMkRtN8ENO/ve33a44f03fDRCNDtmWEdWee6/isAKYgvS0QH/V4Ps T2n/Ym03nTEmD37yhihUbTvShYWun8VEm68IpMRP89GAl2E4NHXyNkDUTP0TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1njVGHasMCVMPQ/1SFxkZELgn7AwHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWTANBgkqhkiG 9w0BAQsFAAOCAQEAPHH/JgVvWrMQzpHntQ19sBJ9cSzPCBLcdcw9k7nTwEAIn4uA 0b2VH5zrRQVz07rHwp9uoHK61ThXaetHWZfRkTTnXXoY2zZDlTyVr/SSeFnpDnFn 94NsGiOLhNzl9wnai49TMI8EFcGd9DR35n/OAZsdIz7Wx7c9SENM745fWGFkKVgl tGi/Q9kqvJwJl4A4/ErgT7UnmVCSh7TBcsqPzxl5vTWotGJmvbNpoZGDSYinlUhH CRVtwPLbuWN8DNaazwo27kgs9HqTCYVmGrMrBQxRq1TPJ9S+Gohud8HSxppZFToq CRWnNx/bTMoN8lwDCUBla1iYtOoUCbO3qIOy4w== -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:26 2025 by rpki-client