$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234322e302f32342d3234203d3e203338343936.roa File: 3131342e33312e3234322e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: ekxl08EmWQ+b9/jtS+83Ikup8tu6ad7wT2C6XFJAXxU= Subject key identifier: B5:99:2D:0D:22:C8:BD:BB:4F:E5:0B:66:43:7A:41:F4:3C:5E:6C:DD Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 3F253C30A7FFACC6B9355624DE1569FD0E554792 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234322e302f32342d3234203d3e203338343936.roa Signing time: Tue 02 Apr 2024 05:03:16 +0000 ROA not before: Tue 02 Apr 2024 04:58:16 +0000 ROA not after: Tue 01 Apr 2025 05:03:16 +0000 asID: 38496 IP address blocks: 114.31.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:25:3c:30:a7:ff:ac:c6:b9:35:56:24:de:15:69:fd:0e:55:47:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Apr 2 04:58:16 2024 GMT Not After : Apr 1 05:03:16 2025 GMT Subject: CN=B5992D0D22C8BDBB4FE50B66437A41F43C5E6CDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a9:11:ab:08:14:00:27:f4:54:18:7d:dd:e5: 08:6b:41:14:70:5b:e9:83:ff:3c:c6:c7:fe:ab:d0: 0c:4d:01:c7:04:9b:55:95:f4:ac:4f:b9:7b:08:a6: e5:66:a4:20:c6:67:95:fd:9a:0e:be:34:4a:fe:d4: 7d:a7:7a:8e:20:1d:de:ef:98:4f:c9:5e:90:66:84: 27:10:96:c9:6d:c9:ce:cc:9e:39:80:42:41:ab:8e: 52:e0:76:da:80:0f:8f:3c:86:24:fa:ab:8a:ea:1f: e3:1f:93:d9:3f:38:1f:00:98:19:48:c1:62:14:5c: f8:80:17:c0:09:ae:ed:64:d9:31:b2:96:7d:4d:75: f8:a2:e3:a6:21:50:58:1b:ac:c3:20:79:0e:ed:e9: 07:89:5f:71:3b:b5:4e:ad:11:ce:5a:23:3d:89:f6: 57:7e:eb:a7:f6:a9:fc:9e:f6:72:9a:fd:9a:13:d8: d4:b8:f6:53:d6:a2:fe:a0:d7:51:36:d1:d8:49:12: 74:28:be:1c:cf:86:2c:38:fc:32:53:14:16:79:ca: 11:ff:d1:45:cc:4d:81:36:a6:65:e9:cb:1f:73:51: e5:d0:82:88:c8:f5:30:1b:a7:10:53:2e:d8:e5:20: 5a:4b:90:d8:6a:57:63:97:ca:07:75:fe:8e:28:f3: 2b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:99:2D:0D:22:C8:BD:BB:4F:E5:0B:66:43:7A:41:F4:3C:5E:6C:DD X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234322e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.31.242.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:62:e9:ec:5b:64:c6:d6:02:4b:37:12:e8:3a:5b:04:f1:74: 42:04:45:3c:e8:08:f0:97:82:2d:04:52:3b:0b:79:76:55:44: c8:46:e4:11:28:58:67:52:19:0c:72:22:63:2c:3c:70:a1:91: fc:f3:4e:ff:d8:5a:93:11:a2:a1:e1:b3:46:21:f8:c1:97:00: df:6e:74:e3:c2:39:5c:94:14:a3:6c:c8:22:47:3b:5a:19:ee: 92:fe:32:fb:a7:f3:01:48:49:0e:21:c3:d7:94:bb:80:77:04: 56:2c:0b:06:70:65:b5:c4:ee:ea:c3:80:be:7b:ce:3a:09:20: b4:47:98:0f:ba:41:6b:c3:c3:5e:27:bb:8c:1e:4b:92:66:5a: 03:0b:aa:ed:61:51:03:99:df:06:c1:14:f8:82:27:2f:1b:2a: 66:39:ac:35:77:04:ac:1a:b7:18:23:4e:d1:e5:ee:0b:20:6f: d4:6e:3c:4e:4b:aa:7f:1a:0b:9c:79:fe:62:d0:e9:fb:2d:e2: 9f:f8:01:74:89:e0:5e:f7:7a:c1:6f:7e:d1:73:c7:8a:18:ca: e1:b5:fc:7a:73:4b:b6:7c:7a:3f:e5:9b:32:1d:b7:ba:ce:7c: d9:db:90:d6:18:50:05:ba:65:48:65:cd:8d:5e:d2:13:c5:fa: 9b:84:ae:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPyU8MKf/rMa5NVYk3hVp/Q5VR5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA0MDIwNDU4MTZaFw0yNTA0MDEwNTAzMTZaMDMxMTAvBgNV BAMTKEI1OTkyRDBEMjJDOEJEQkI0RkU1MEI2NjQzN0E0MUY0M0M1RTZDREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwqRGrCBQAJ/RUGH3d5QhrQRRw W+mD/zzGx/6r0AxNAccEm1WV9KxPuXsIpuVmpCDGZ5X9mg6+NEr+1H2neo4gHd7v mE/JXpBmhCcQlsltyc7MnjmAQkGrjlLgdtqAD488hiT6q4rqH+Mfk9k/OB8AmBlI wWIUXPiAF8AJru1k2TGyln1Ndfii46YhUFgbrMMgeQ7t6QeJX3E7tU6tEc5aIz2J 9ld+66f2qfye9nKa/ZoT2NS49lPWov6g11E20dhJEnQovhzPhiw4/DJTFBZ5yhH/ 0UXMTYE2pmXpyx9zUeXQgojI9TAbpxBTLtjlIFpLkNhqV2OXygd1/o4o8yvjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtZktDSLIvbtP5QtmQ3pB9DxebN0wHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzMzMTJlMzIzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHIf8jANBgkqhkiG 9w0BAQsFAAOCAQEAnWLp7FtkxtYCSzcS6DpbBPF0QgRFPOgI8JeCLQRSOwt5dlVE yEbkEShYZ1IZDHIiYyw8cKGR/PNO/9hakxGioeGzRiH4wZcA325048I5XJQUo2zI Ikc7Whnukv4y+6fzAUhJDiHD15S7gHcEViwLBnBltcTu6sOAvnvOOgkgtEeYD7pB a8PDXie7jB5LkmZaAwuq7WFRA5nfBsEU+IInLxsqZjmsNXcErBq3GCNO0eXuCyBv 1G48TkuqfxoLnHn+YtDp+y3in/gBdIngXvd6wW9+0XPHihjK4bX8enNLtnx6P+Wb Mh23us582duQ1hhQBbplSGXNjV7SE8X6m4SuCg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:47 2024 by rpki-client on console-ams.rpki-client.org