$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39302e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: ZGKVuFj7T5aaVSU8VpgBF2DIJjZ5gskuohbO2L3axCo= Subject key identifier: 77:8F:EB:7D:8E:66:C7:D2:B2:AF:52:25:38:D7:E2:BB:A6:9D:8B:7B Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 27B573B457AD963AE818C8A25ACBA428CB7FE0FF Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39302e302f32342d3234203d3e203338373733.roa Signing time: Tue 20 Feb 2024 02:02:01 +0000 ROA not before: Tue 20 Feb 2024 01:57:01 +0000 ROA not after: Tue 18 Feb 2025 02:02:01 +0000 asID: 38773 IP address blocks: 114.141.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b5:73:b4:57:ad:96:3a:e8:18:c8:a2:5a:cb:a4:28:cb:7f:e0:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Feb 20 01:57:01 2024 GMT Not After : Feb 18 02:02:01 2025 GMT Subject: CN=778FEB7D8E66C7D2B2AF522538D7E2BBA69D8B7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1e:4d:f9:0b:2d:ba:7b:f6:eb:a1:e5:17:9a: c3:ab:db:8f:96:89:9d:52:e8:b3:f9:5d:3d:47:f6: fe:15:69:06:b3:7b:bf:2a:96:43:55:59:87:a2:34: 51:f9:02:ab:f2:f7:71:d9:ae:88:eb:a7:63:7a:e6: 4f:57:bc:bb:3b:67:3e:36:62:53:62:e7:39:09:ef: b2:3d:38:6b:b1:40:64:16:87:bf:ee:28:12:13:db: 7b:83:9a:8b:2b:70:28:cf:6b:e1:6a:47:00:1c:5d: 04:35:5f:4c:23:2e:94:5a:21:8d:76:27:0b:69:8d: 6b:b1:ae:a7:ca:a4:f0:dc:7c:96:db:46:5e:86:70: 60:62:0d:bd:21:89:98:11:d5:09:38:18:40:ad:46: eb:98:d3:eb:42:df:9b:82:0c:6c:5b:84:21:c3:8e: 7d:e0:b6:08:87:7c:c0:4a:78:16:20:4a:2a:9e:4b: 6b:43:3c:76:03:d8:33:1a:e9:0c:3d:1a:bc:86:c1: de:c0:fb:82:67:6c:19:39:60:cc:60:9d:25:c9:7e: 1d:bd:5f:c4:be:79:c9:b9:68:4b:84:14:11:1b:57: 51:f2:47:74:85:6f:8a:66:93:ba:cb:dd:55:b4:6d: 5c:66:75:3f:0b:2a:3d:01:08:f5:0a:8a:a8:18:3e: 33:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8F:EB:7D:8E:66:C7:D2:B2:AF:52:25:38:D7:E2:BB:A6:9D:8B:7B X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39302e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.90.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:4b:f8:bd:4f:e7:e3:fa:83:2b:56:23:8e:52:fe:6d:41:77: 88:df:36:5a:13:1c:f2:08:97:92:c9:ed:14:dd:a1:21:8d:06: b4:c7:5b:c4:08:91:dd:4e:dd:0c:b3:ba:7d:d2:17:6f:8b:7c: 78:5a:f7:5b:c9:40:37:8e:86:02:e8:e2:ca:ab:73:a7:96:7b: 2b:b0:04:8d:e8:5a:b2:17:68:9c:f4:25:3f:4c:9e:a3:1e:be: 59:1a:22:d0:5d:8d:ca:0a:c1:ad:d3:df:4f:51:39:66:99:72: 5c:32:72:46:02:46:5c:ce:2e:de:20:ac:44:e3:ed:e7:1d:82: 47:31:b0:81:b9:ad:61:1b:a3:e3:52:e0:b0:6a:e7:0f:d2:bd: 0f:6c:7f:ff:a2:16:14:f5:d0:af:3b:4d:34:0a:26:55:0c:60: a6:dc:23:00:4a:e2:74:50:d2:f4:ff:ee:a6:3b:97:ab:58:46: 53:22:01:a8:33:5b:2b:8e:8d:93:45:00:f3:d6:7e:d1:31:37: 90:ad:eb:50:6e:14:a3:dc:2d:34:82:f0:67:be:d0:e7:8a:6a: 70:18:c2:b8:a6:47:c3:f1:08:89:c6:35:8b:3d:1f:27:ef:7f: 36:85:65:45:df:31:01:68:34:a4:89:8c:c5:ad:75:d6:82:03: 70:ae:14:01 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ7VztFetljroGMiiWsukKMt/4P8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNDAyMjAwMTU3MDFaFw0yNTAyMTgwMjAyMDFaMDMxMTAvBgNV BAMTKDc3OEZFQjdEOEU2NkM3RDJCMkFGNTIyNTM4RDdFMkJCQTY5RDhCN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbHk35Cy26e/broeUXmsOr24+W iZ1S6LP5XT1H9v4VaQaze78qlkNVWYeiNFH5Aqvy93HZrojrp2N65k9XvLs7Zz42 YlNi5zkJ77I9OGuxQGQWh7/uKBIT23uDmosrcCjPa+FqRwAcXQQ1X0wjLpRaIY12 JwtpjWuxrqfKpPDcfJbbRl6GcGBiDb0hiZgR1Qk4GECtRuuY0+tC35uCDGxbhCHD jn3gtgiHfMBKeBYgSiqeS2tDPHYD2DMa6Qw9GryGwd7A+4JnbBk5YMxgnSXJfh29 X8S+ecm5aEuEFBEbV1HyR3SFb4pmk7rL3VW0bVxmdT8LKj0BCPUKiqgYPjNXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd4/rfY5mx9Kyr1IlONfiu6adi3swHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWjANBgkqhkiG 9w0BAQsFAAOCAQEAakv4vU/n4/qDK1YjjlL+bUF3iN82WhMc8giXksntFN2hIY0G tMdbxAiR3U7dDLO6fdIXb4t8eFr3W8lAN46GAujiyqtzp5Z7K7AEjehashdonPQl P0yeox6+WRoi0F2NygrBrdPfT1E5ZplyXDJyRgJGXM4u3iCsROPt5x2CRzGwgbmt YRuj41LgsGrnD9K9D2x//6IWFPXQrztNNAomVQxgptwjAEridFDS9P/upjuXq1hG UyIBqDNbK46Nk0UA89Z+0TE3kK3rUG4Uo9wtNILwZ77Q54pqcBjCuKZHw/EIicY1 iz0fJ+9/NoVlRd8xAWg0pImMxa111oIDcK4UAQ== -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:47 2024 by rpki-client on console-ams.rpki-client.org