$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3133342e37322e302f32312d3234203d3e203338343936.roa File: 3131342e3133342e37322e302f32312d3234203d3e203338343936.roa (raw, json) Hash identifier: wKY4nR2NFuwUiZYlHRY387fD7c/R/uL1WdAOfgZiY8U= Subject key identifier: E2:70:4D:67:4B:FE:6E:76:57:D3:9F:4F:49:6F:24:4F:97:EC:3A:E1 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 313D4CFC06EC229FFE5F816FF67C724CA72EF952 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3133342e37322e302f32312d3234203d3e203338343936.roa Signing time: Mon 31 Jul 2023 00:09:36 +0000 ROA not before: Mon 31 Jul 2023 00:04:36 +0000 ROA not after: Mon 29 Jul 2024 00:09:36 +0000 asID: 38496 IP address blocks: 114.134.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:3d:4c:fc:06:ec:22:9f:fe:5f:81:6f:f6:7c:72:4c:a7:2e:f9:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Jul 31 00:04:36 2023 GMT Not After : Jul 29 00:09:36 2024 GMT Subject: CN=E2704D674BFE6E7657D39F4F496F244F97EC3AE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:65:a1:f3:d1:57:f4:aa:77:ea:4c:10:9f:a5: 24:87:bc:78:bb:1e:bf:b2:9e:33:fb:76:ac:b3:03: 40:5d:3c:31:a0:cc:64:2d:fa:b9:30:5e:f9:49:6f: 8f:bf:df:8f:37:f1:31:67:f9:e8:0c:4f:7d:22:81: 90:f8:6d:85:f8:f7:38:a5:d4:66:1d:71:94:c4:8b: 04:86:38:d7:df:ec:a3:3d:49:80:30:79:2f:5e:ee: 12:a5:0c:3a:ac:8b:56:99:45:80:33:06:5f:0a:98: 6e:85:59:90:53:0b:53:b0:a8:70:be:5f:c3:ed:84: 12:6d:a0:3c:f5:7f:6f:21:00:fb:84:da:0a:78:e9: 0c:98:f1:77:12:05:fe:24:7b:d4:52:11:a2:ed:39: 80:0b:a5:d4:27:13:0c:85:14:48:02:cc:85:43:02: 78:18:27:05:d2:73:5a:20:f8:54:f4:39:62:c2:61: db:57:a9:4f:fa:26:43:95:e6:9a:18:41:08:01:b8: 79:a7:45:42:7c:07:3d:d8:09:94:ad:d1:f8:4c:e5: e0:b5:bf:27:54:76:a9:73:f9:90:d0:0d:4f:96:20: f3:7a:3f:a8:f1:cc:3c:52:42:b2:c6:1f:73:c0:27: 4a:e8:0e:ab:22:50:13:22:2e:cd:ed:50:d8:a5:bd: a5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:70:4D:67:4B:FE:6E:76:57:D3:9F:4F:49:6F:24:4F:97:EC:3A:E1 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e3133342e37322e302f32312d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.134.72.0/21 Signature Algorithm: sha256WithRSAEncryption 76:2f:f7:3a:d3:dd:b9:0c:fe:74:8b:f0:e7:fd:54:f5:a5:58: 20:b1:e9:bc:9f:c0:4d:33:c2:0f:e4:5b:df:ac:4c:bb:0d:4d: 0e:5b:ca:9c:01:16:4d:89:6a:35:4a:53:ed:3e:97:73:32:21: 65:63:6e:a2:cf:96:cb:2e:bb:c9:56:c8:35:c3:b1:12:0c:ef: 6c:5e:f1:1e:18:57:11:14:5b:1d:2c:68:5e:0c:52:7d:a2:a3: 77:f0:7d:fb:04:ed:0f:fc:10:3e:85:ce:cb:32:bb:3c:60:3e: 23:39:b4:01:ad:53:a3:d0:74:c7:b4:b6:9f:98:3a:86:85:1e: 7b:78:93:49:ea:e5:bd:bd:6b:3e:35:7b:20:49:bd:af:34:91: 48:f6:cc:06:b0:79:28:59:56:3c:d7:52:cd:d4:53:07:4a:e7: 47:db:e3:45:82:9c:e4:9d:4e:e7:39:71:64:35:62:28:76:15: a5:85:a0:71:f0:eb:13:9c:3a:41:5d:a4:78:c9:7c:74:ee:4b: ad:ce:a1:18:a3:87:b8:d0:29:9e:74:65:0d:b1:f2:6a:a2:3b: 93:0f:c9:68:b1:3d:ff:c7:fd:7b:bc:9d:41:b4:29:f7:29:1a: 18:c1:85:27:db:81:4d:86:6a:06:3a:a4:1b:07:8f:39:8f:88: 5c:9e:87:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMT1M/AbsIp/+X4Fv9nxyTKcu+VIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yMzA3MzEwMDA0MzZaFw0yNDA3MjkwMDA5MzZaMDMxMTAvBgNV BAMTKEUyNzA0RDY3NEJGRTZFNzY1N0QzOUY0RjQ5NkYyNDRGOTdFQzNBRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZZaHz0Vf0qnfqTBCfpSSHvHi7 Hr+ynjP7dqyzA0BdPDGgzGQt+rkwXvlJb4+/34838TFn+egMT30igZD4bYX49zil 1GYdcZTEiwSGONff7KM9SYAweS9e7hKlDDqsi1aZRYAzBl8KmG6FWZBTC1OwqHC+ X8PthBJtoDz1f28hAPuE2gp46QyY8XcSBf4ke9RSEaLtOYALpdQnEwyFFEgCzIVD AngYJwXSc1og+FT0OWLCYdtXqU/6JkOV5poYQQgBuHmnRUJ8Bz3YCZSt0fhM5eC1 vydUdqlz+ZDQDU+WIPN6P6jxzDxSQrLGH3PAJ0roDqsiUBMiLs3tUNilvaWTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4nBNZ0v+bnZX059PSW8kT5fsOuEwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzEzMzM0MmUzNzMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3KGSDANBgkqhkiG 9w0BAQsFAAOCAQEAdi/3OtPduQz+dIvw5/1U9aVYILHpvJ/ATTPCD+Rb36xMuw1N DlvKnAEWTYlqNUpT7T6XczIhZWNuos+Wyy67yVbINcOxEgzvbF7xHhhXERRbHSxo XgxSfaKjd/B9+wTtD/wQPoXOyzK7PGA+Izm0Aa1To9B0x7S2n5g6hoUee3iTSerl vb1rPjV7IEm9rzSRSPbMBrB5KFlWPNdSzdRTB0rnR9vjRYKc5J1O5zlxZDViKHYV pYWgcfDrE5w6QV2keMl8dO5Lrc6hGKOHuNApnnRlDbHyaqI7kw/JaLE9/8f9e7yd QbQp9ykaGMGFJ9uBTYZqBjqkGwePOY+IXJ6HKA== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:29 2024 by rpki-client on console-fra.rpki-client.org