$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38392e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: hp55s1aaqtg0/53MqP8UsZKmOzBqmgyF+uAtnUwRJl0= Subject key identifier: 02:0B:84:42:25:6A:02:9C:4F:CC:2C:42:32:5D:E9:DC:7F:B0:B1:2E Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 38361945F317E7209086B6C8D39526DBB11F9562 Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38392e302f32342d3234203d3e203338373733.roa Signing time: Tue 20 Feb 2024 02:02:01 +0000 ROA not before: Tue 20 Feb 2024 01:57:01 +0000 ROA not after: Tue 18 Feb 2025 02:02:01 +0000 asID: 38773 IP address blocks: 114.141.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 09:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:36:19:45:f3:17:e7:20:90:86:b6:c8:d3:95:26:db:b1:1f:95:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Feb 20 01:57:01 2024 GMT Not After : Feb 18 02:02:01 2025 GMT Subject: CN=020B8442256A029C4FCC2C42325DE9DC7FB0B12E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:36:7f:ed:2c:5b:bd:c8:b4:1e:b0:54:2b:b2: 74:26:59:3e:4a:38:43:b4:f4:e9:7d:18:7b:a7:0f: 18:b9:cb:e1:ca:ae:11:d3:2c:63:a0:e9:ed:c6:76: ca:f0:e1:18:3f:4d:99:66:dd:36:0b:1a:51:a7:83: f7:a2:f9:1c:13:bc:b4:4c:cd:27:83:19:b1:88:df: 6a:c3:38:14:8d:cd:40:90:c7:42:38:0f:be:83:ad: 62:84:a8:d4:5d:6a:ca:fd:5e:64:17:f5:20:61:6b: 56:8a:40:7c:48:40:c8:8e:0e:dd:fe:3f:6a:a6:c6: 77:15:e4:4d:49:5c:87:47:63:1b:81:f8:9a:f6:60: 00:75:c3:1e:c5:32:fc:3e:89:39:4b:30:a3:26:67: 0f:17:98:67:7a:48:35:19:60:3d:58:05:a1:0c:8d: 57:f5:94:33:a0:91:07:10:ea:e5:40:58:47:cc:df: 31:6b:d1:2f:45:7d:71:08:aa:4f:3b:4c:a1:79:12: 14:5f:42:00:58:d0:ad:c0:5b:1a:cf:c4:ab:c8:c6: b7:bf:dc:47:c4:4d:39:6e:46:ab:3d:31:ac:ed:42: 6a:6a:63:4e:48:f5:bb:35:16:aa:5d:1d:93:a0:6b: ce:d4:44:9b:f7:3c:1e:33:ff:aa:db:d2:57:f4:8e: 08:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0B:84:42:25:6A:02:9C:4F:CC:2C:42:32:5D:E9:DC:7F:B0:B1:2E X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38392e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.89.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:9f:af:e6:ed:62:cd:76:19:f5:57:6f:8e:f6:ac:7a:2e:e4: 6f:b8:ee:41:6d:8f:0e:29:10:7b:3f:e6:fc:66:9b:5f:1e:b5: e5:2b:4a:c4:6c:e2:e9:b3:5f:75:d4:9a:82:34:97:a9:2d:03: c7:83:9f:16:82:c7:c7:31:dc:0b:38:15:bd:07:37:29:30:c4: 50:5d:3c:d0:f4:cb:11:00:cc:a4:5d:00:ae:b2:5f:05:50:81: 5f:55:fe:1a:bd:0a:c8:21:87:95:7e:20:c8:71:df:fe:b6:81: 33:08:6e:5b:88:8a:32:2a:a4:c4:d7:00:88:41:e3:39:38:01: 79:84:d2:a0:04:b5:22:98:f4:fe:73:6e:40:f6:04:04:4c:c7: ce:0c:9d:6d:9c:b0:09:ef:79:34:32:1c:8e:ab:3c:35:21:87: 2c:c7:7a:66:3f:77:c1:a3:d9:f9:6f:16:38:8d:16:a9:ff:76: ba:50:fd:13:e2:5f:6a:27:96:5f:7d:eb:de:29:46:6c:6d:d5: cb:ac:49:c9:e4:40:5a:59:00:98:a4:08:4c:5e:ae:1a:46:14: a7:27:c1:1c:02:f4:51:ab:5e:aa:83:64:89:35:b1:56:4b:ed: c4:52:b9:f4:a7:93:28:1a:38:96:ca:d6:81:95:1f:53:30:ba: b6:e0:dc:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUODYZRfMX5yCQhrbI05Um27EflWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNDAyMjAwMTU3MDFaFw0yNTAyMTgwMjAyMDFaMDMxMTAvBgNV BAMTKDAyMEI4NDQyMjU2QTAyOUM0RkNDMkM0MjMyNURFOURDN0ZCMEIxMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDNn/tLFu9yLQesFQrsnQmWT5K OEO09Ol9GHunDxi5y+HKrhHTLGOg6e3Gdsrw4Rg/TZlm3TYLGlGng/ei+RwTvLRM zSeDGbGI32rDOBSNzUCQx0I4D76DrWKEqNRdasr9XmQX9SBha1aKQHxIQMiODt3+ P2qmxncV5E1JXIdHYxuB+Jr2YAB1wx7FMvw+iTlLMKMmZw8XmGd6SDUZYD1YBaEM jVf1lDOgkQcQ6uVAWEfM3zFr0S9FfXEIqk87TKF5EhRfQgBY0K3AWxrPxKvIxre/ 3EfETTluRqs9MaztQmpqY05I9bs1FqpdHZOga87URJv3PB4z/6rb0lf0jgjpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAguEQiVqApxPzCxCMl3p3H+wsS4wHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWTANBgkqhkiG 9w0BAQsFAAOCAQEAn5+v5u1izXYZ9Vdvjvasei7kb7juQW2PDikQez/m/GabXx61 5StKxGzi6bNfddSagjSXqS0Dx4OfFoLHxzHcCzgVvQc3KTDEUF080PTLEQDMpF0A rrJfBVCBX1X+Gr0KyCGHlX4gyHHf/raBMwhuW4iKMiqkxNcAiEHjOTgBeYTSoAS1 Ipj0/nNuQPYEBEzHzgydbZywCe95NDIcjqs8NSGHLMd6Zj93waPZ+W8WOI0Wqf92 ulD9E+JfaieWX33r3ilGbG3Vy6xJyeRAWlkAmKQITF6uGkYUpyfBHAL0UateqoNk iTWxVkvtxFK59KeTKBo4lsrWgZUfUzC6tuDceg== -----END CERTIFICATE-----Generated at Thu May 2 05:25:47 2024 by rpki-client on console-fra.rpki-client.org