$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234342e302f32342d3234203d3e203338343936.roa File: 3131342e33312e3234342e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: SjzVFZKoLR0X7d92Igf2cTQeDZSKId1IM5IMmjcZiK4= Subject key identifier: 32:2B:F5:98:41:1B:56:28:21:3C:07:B9:21:55:A7:3D:ED:9A:AE:FA Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 1768A19000050B10B3E11D6E9E011BE06AB311A1 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234342e302f32342d3234203d3e203338343936.roa Signing time: Tue 02 Apr 2024 05:03:16 +0000 ROA not before: Tue 02 Apr 2024 04:58:16 +0000 ROA not after: Tue 01 Apr 2025 05:03:16 +0000 asID: 38496 IP address blocks: 114.31.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:68:a1:90:00:05:0b:10:b3:e1:1d:6e:9e:01:1b:e0:6a:b3:11:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Apr 2 04:58:16 2024 GMT Not After : Apr 1 05:03:16 2025 GMT Subject: CN=322BF598411B5628213C07B92155A73DED9AAEFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:8f:6b:19:f7:f2:77:d9:0d:de:45:57:37: da:d8:b0:1a:4d:9b:a0:b2:24:49:29:b1:b9:86:61: e5:ea:8f:63:f5:f8:1d:ae:7a:00:12:0a:fc:de:de: 41:a8:4e:54:c0:7a:3a:da:a6:58:e8:62:c3:29:c8: d9:53:3d:49:76:b8:25:98:e9:bc:50:44:d6:2c:9a: 59:a7:4d:7a:3d:82:41:10:73:1b:96:69:74:f7:26: bc:27:c7:c9:83:6d:db:c2:9b:d2:65:eb:51:3f:66: 2f:7c:b1:52:ea:8c:26:e6:b3:57:2d:5f:17:b9:40: ca:10:ee:61:96:62:bf:13:c7:a7:ce:4c:34:d3:84: d4:5c:ee:b1:69:a2:e8:40:41:13:8f:34:eb:35:45: e6:cd:ae:7c:9d:72:cd:83:e0:94:8f:91:20:d5:7f: a0:b4:10:ac:4b:33:6a:27:9d:3c:f8:bc:d9:43:4e: 91:f5:d1:5a:bd:1a:93:63:b2:0b:f1:e6:7f:14:dc: 69:4a:ea:de:8b:96:6d:f2:4c:12:32:68:69:28:e3: a9:eb:2d:3b:3a:3b:6c:85:40:f7:27:4d:b6:12:f8: d9:89:f7:2a:9d:c5:ff:79:7c:bf:80:b1:37:cd:08: 63:07:4c:91:86:77:fa:37:f9:95:57:f9:8c:ba:f0: d2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2B:F5:98:41:1B:56:28:21:3C:07:B9:21:55:A7:3D:ED:9A:AE:FA X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234342e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.31.244.0/24 Signature Algorithm: sha256WithRSAEncryption 18:be:b1:b0:c7:86:ee:48:b2:62:35:6b:82:ae:52:96:7e:6a: 08:8f:94:24:1d:ab:95:d0:e4:cb:aa:b2:14:64:e2:81:c5:f7: 35:65:9e:80:67:1b:94:87:28:1f:e0:0b:96:e7:04:b8:1f:22: 36:88:f7:6d:18:e9:11:17:e9:47:c6:43:c6:38:fb:73:be:65: 26:f2:80:2f:66:cb:f0:4f:07:17:54:6d:52:83:6f:ad:be:17: f3:c4:f7:40:31:e0:bc:c5:b2:9f:92:fd:32:88:d9:a4:b4:b1: 63:5c:66:14:fd:8b:c6:93:0c:6b:af:08:09:18:98:8a:5f:b7: e5:ae:05:df:d4:8d:be:6b:38:99:e6:10:20:2c:db:6b:f3:a2: d3:69:55:cf:61:36:24:46:80:db:38:06:ea:ce:10:66:59:59: 70:22:e1:70:a5:37:90:18:a4:a9:57:c4:49:90:21:43:a4:3c: 16:6e:7a:65:69:08:b9:fa:7c:a2:f7:55:6d:b5:43:72:c2:96: 71:55:f3:57:c4:b1:ef:fe:3a:e4:31:33:c6:dc:e0:11:c4:7e: 8b:38:8b:ba:45:2b:1d:25:cb:84:09:43:d6:1a:0a:f4:6e:40: 38:7b:0b:fa:6d:28:66:a5:78:d3:bd:63:f7:9c:eb:a5:d5:24: d4:60:23:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF2ihkAAFCxCz4R1ungEb4GqzEaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA0MDIwNDU4MTZaFw0yNTA0MDEwNTAzMTZaMDMxMTAvBgNV BAMTKDMyMkJGNTk4NDExQjU2MjgyMTNDMDdCOTIxNTVBNzNERUQ5QUFFRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWkI9rGffyd9kN3kVXN9rYsBpN m6CyJEkpsbmGYeXqj2P1+B2uegASCvze3kGoTlTAejrapljoYsMpyNlTPUl2uCWY 6bxQRNYsmlmnTXo9gkEQcxuWaXT3Jrwnx8mDbdvCm9Jl61E/Zi98sVLqjCbms1ct Xxe5QMoQ7mGWYr8Tx6fOTDTThNRc7rFpouhAQROPNOs1RebNrnydcs2D4JSPkSDV f6C0EKxLM2onnTz4vNlDTpH10Vq9GpNjsgvx5n8U3GlK6t6Llm3yTBIyaGko46nr LTs6O2yFQPcnTbYS+NmJ9yqdxf95fL+AsTfNCGMHTJGGd/o3+ZVX+Yy68NL9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMiv1mEEbVighPAe5IVWnPe2arvowHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzMzMTJlMzIzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHIf9DANBgkqhkiG 9w0BAQsFAAOCAQEAGL6xsMeG7kiyYjVrgq5Sln5qCI+UJB2rldDky6qyFGTigcX3 NWWegGcblIcoH+ALlucEuB8iNoj3bRjpERfpR8ZDxjj7c75lJvKAL2bL8E8HF1Rt UoNvrb4X88T3QDHgvMWyn5L9MojZpLSxY1xmFP2LxpMMa68ICRiYil+35a4F39SN vms4meYQICzba/Oi02lVz2E2JEaA2zgG6s4QZllZcCLhcKU3kBikqVfESZAhQ6Q8 Fm56ZWkIufp8ovdVbbVDcsKWcVXzV8Sx7/465DEzxtzgEcR+iziLukUrHSXLhAlD 1hoK9G5AOHsL+m0oZqV4071j95zrpdUk1GAjRg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org