$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39302e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: 9CQ6JFUhExdNBAYYYWcUpyzc1PDrxOfBKcNbdLlWf6U= Subject key identifier: 1F:57:4B:87:4F:B3:AE:E6:1C:69:C9:FB:8A:63:8E:52:91:65:BA:23 Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 160EC1A9013A96369AA862B2177AE87722DF8F27 Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39302e302f32342d3234203d3e203338373733.roa Signing time: Tue 21 Jan 2025 02:02:20 +0000 ROA not before: Tue 21 Jan 2025 01:57:20 +0000 ROA not after: Tue 20 Jan 2026 02:02:20 +0000 asID: 38773 IP address blocks: 114.141.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 09:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:0e:c1:a9:01:3a:96:36:9a:a8:62:b2:17:7a:e8:77:22:df:8f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Jan 21 01:57:20 2025 GMT Not After : Jan 20 02:02:20 2026 GMT Subject: CN=1F574B874FB3AEE61C69C9FB8A638E529165BA23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d2:00:ea:c6:96:cd:52:fb:7d:7b:c4:e9:20: dd:54:55:71:c9:60:0d:8d:b3:80:2f:bb:25:75:bd: 2a:6a:a5:34:a6:ed:ff:42:d8:1a:e4:44:ae:bb:07: c7:e1:2b:ad:ef:6b:75:30:89:63:3f:a0:14:44:73: 0a:fb:23:a7:9d:5f:b5:e1:b6:f7:85:e4:2c:a8:06: a1:75:f4:3b:68:f0:27:d2:fd:b9:f1:43:a9:6a:7e: 89:ce:42:c5:13:76:c6:26:70:d8:c1:ce:64:ff:c9: 25:c5:f6:5e:f2:23:38:06:9c:4c:b8:b9:2c:e0:ea: 64:b3:52:5e:a4:d9:4b:01:b9:22:dc:76:d6:8e:e1: 22:cd:ad:5c:5a:f4:1c:bf:93:ad:d2:85:a7:c7:b7: 45:09:03:b9:8c:4a:82:6f:0e:d1:cd:21:73:90:dc: d9:27:86:7e:50:c7:01:57:12:18:e2:60:44:da:74: ba:25:14:50:cc:14:c1:17:f5:7f:1e:60:7e:19:2e: 64:54:aa:7f:e6:56:23:20:51:59:e0:34:42:59:31: 54:e4:77:d5:ca:bf:51:d7:2e:32:e4:d8:1d:7c:9d: c3:28:1c:47:4c:aa:c5:20:7e:10:10:24:2a:86:22: 33:99:eb:65:30:c5:e3:77:b2:b3:5d:9d:46:df:23: 81:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:57:4B:87:4F:B3:AE:E6:1C:69:C9:FB:8A:63:8E:52:91:65:BA:23 X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39302e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.90.0/24 Signature Algorithm: sha256WithRSAEncryption 37:73:d7:9c:bd:3d:0b:55:a6:0e:4d:91:56:44:a7:61:ad:3d: 3a:d9:5c:61:17:3a:f3:e3:1b:2e:16:73:c2:4f:a7:0a:fb:a0: ee:47:72:78:71:cb:1b:f9:d8:42:24:c3:70:34:d2:d1:b2:cb: 13:64:53:df:aa:48:bf:3e:cb:3a:49:57:55:27:e1:02:82:c5: 92:69:e7:02:ba:ad:c5:1a:81:ab:a6:e5:6d:7d:94:5c:7c:7d: 48:e2:43:c2:60:45:93:8c:0c:2c:a4:86:aa:89:52:a8:18:f2: 56:aa:a3:eb:d2:5b:f7:08:a3:2e:15:bc:d1:12:42:dd:0c:1d: 79:41:20:da:1c:97:c1:8e:b9:3c:4a:56:41:57:07:da:03:c0: 78:5e:49:f9:fe:86:59:8c:ef:77:bb:9b:15:df:13:af:a4:36: 6f:a9:c7:af:a9:2a:1f:1f:52:9f:de:ec:f7:4d:76:fa:9d:4f: 56:b1:6f:ad:31:64:26:58:1c:13:28:ce:9f:57:ef:a4:72:5e: a2:79:f6:14:b3:2b:d8:31:26:ab:28:97:7e:b7:8d:8a:d2:16: 97:b8:d3:4f:07:af:9e:52:5a:84:3b:92:ec:f9:65:09:ed:13: e8:07:76:2a:5f:6b:59:1d:9b:32:01:44:13:d2:3b:f1:28:f5: 89:d8:d3:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFg7BqQE6ljaaqGKyF3rodyLfjycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNTAxMjEwMTU3MjBaFw0yNjAxMjAwMjAyMjBaMDMxMTAvBgNV BAMTKDFGNTc0Qjg3NEZCM0FFRTYxQzY5QzlGQjhBNjM4RTUyOTE2NUJBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB0gDqxpbNUvt9e8TpIN1UVXHJ YA2Ns4AvuyV1vSpqpTSm7f9C2BrkRK67B8fhK63va3UwiWM/oBREcwr7I6edX7Xh tveF5CyoBqF19Dto8CfS/bnxQ6lqfonOQsUTdsYmcNjBzmT/ySXF9l7yIzgGnEy4 uSzg6mSzUl6k2UsBuSLcdtaO4SLNrVxa9By/k63ShafHt0UJA7mMSoJvDtHNIXOQ 3Nknhn5QxwFXEhjiYETadLolFFDMFMEX9X8eYH4ZLmRUqn/mViMgUVngNEJZMVTk d9XKv1HXLjLk2B18ncMoHEdMqsUgfhAQJCqGIjOZ62UwxeN3srNdnUbfI4H7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH1dLh0+zruYcacn7imOOUpFluiMwHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWjANBgkqhkiG 9w0BAQsFAAOCAQEAN3PXnL09C1WmDk2RVkSnYa09OtlcYRc68+MbLhZzwk+nCvug 7kdyeHHLG/nYQiTDcDTS0bLLE2RT36pIvz7LOklXVSfhAoLFkmnnArqtxRqBq6bl bX2UXHx9SOJDwmBFk4wMLKSGqolSqBjyVqqj69Jb9wijLhW80RJC3QwdeUEg2hyX wY65PEpWQVcH2gPAeF5J+f6GWYzvd7ubFd8Tr6Q2b6nHr6kqHx9Sn97s9012+p1P VrFvrTFkJlgcEyjOn1fvpHJeonn2FLMr2DEmqyiXfreNitIWl7jTTwevnlJahDuS 7PllCe0T6Ad2Kl9rWR2bMgFEE9I78Sj1idjTig== -----END CERTIFICATE-----Generated at Sun Apr 6 05:54:34 2025 by rpki-client