$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38392e302f32342d3234203d3e203338313635.roa File: 3131342e33302e38392e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: MNtgfDP5xaOb73s7EZFOOHUXWJKnJvyj8fntHX2nq2g= Subject key identifier: 46:F7:3A:FB:49:7E:1B:16:3C:B2:F7:2E:80:B0:62:A8:B9:AF:DC:21 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 1F899EBA12BC291F0F1515D6B12A0A473BA60808 Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38392e302f32342d3234203d3e203338313635.roa Signing time: Mon 26 Feb 2024 01:56:08 +0000 ROA not before: Mon 26 Feb 2024 01:51:08 +0000 ROA not after: Mon 24 Feb 2025 01:56:08 +0000 asID: 38165 IP address blocks: 114.30.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:89:9e:ba:12:bc:29:1f:0f:15:15:d6:b1:2a:0a:47:3b:a6:08:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Feb 26 01:51:08 2024 GMT Not After : Feb 24 01:56:08 2025 GMT Subject: CN=46F73AFB497E1B163CB2F72E80B062A8B9AFDC21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:86:1c:9e:50:a8:7b:37:73:c6:cb:1f:95: cf:e5:ce:2a:ab:9e:e4:28:e5:ea:04:c3:cf:32:62: cf:f3:c9:71:09:40:02:4d:d7:4a:fc:63:b7:00:94: 4a:53:ba:72:a1:e3:26:c9:9c:a7:5c:37:8f:9d:9a: 34:2e:35:62:b8:15:9d:d1:1e:df:7b:ed:65:b2:71: a7:69:b5:c1:b1:ee:31:8f:a0:99:37:69:55:3d:11: 72:18:9f:c1:44:f8:25:a2:bb:7b:68:5e:a6:59:56: 85:e4:e1:e7:15:ca:79:74:80:78:46:e0:ba:e6:1c: 65:b5:8e:06:c9:47:07:e6:dc:36:cf:67:b2:83:e2: 53:88:01:fe:b6:49:14:9c:0a:6d:41:3e:15:c7:ac: 5c:5d:2c:d9:1d:1c:51:da:d1:c1:74:75:67:83:9c: 8f:b0:07:f2:91:70:e2:94:15:91:3b:c2:f4:b2:d5: 4b:5e:6c:12:95:9f:ea:2b:3a:88:22:4e:08:25:8c: 7e:a6:83:0d:07:79:bd:6c:39:be:aa:62:79:2e:e1: 3b:b5:86:c5:cf:fc:66:a1:5f:70:a1:bd:bd:f8:3a: 75:20:85:b1:41:89:2e:b5:ba:c5:5c:fc:f0:79:03: 06:71:cd:40:d3:2f:fb:44:c4:81:76:20:3a:14:b2: dd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F7:3A:FB:49:7E:1B:16:3C:B2:F7:2E:80:B0:62:A8:B9:AF:DC:21 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38392e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.89.0/24 Signature Algorithm: sha256WithRSAEncryption 47:cd:e4:0b:5b:de:8b:d2:94:48:14:aa:77:c0:ff:d6:a2:26: 00:f0:61:58:61:5a:49:d7:d0:26:fb:6f:96:78:26:5c:9a:5f: c7:d7:56:b5:7c:5e:e5:a1:10:90:0a:fd:75:0a:70:87:93:0b: 60:9d:86:22:7b:25:0b:ba:4a:51:dc:f5:e2:87:2e:4e:33:5b: 07:ac:58:b6:a6:87:c5:15:08:23:c3:64:51:97:e2:8b:76:4d: 21:01:25:10:88:2b:8c:11:8a:e7:9a:48:39:cf:a6:39:68:1c: ed:2f:ff:42:1e:80:a3:90:48:7f:de:4a:51:71:2e:6d:99:27: de:dc:f7:a7:f9:f4:8e:af:33:bf:4e:48:29:cf:3e:96:fd:25: bb:75:3c:4a:68:40:2c:d7:88:86:53:24:b1:3d:ba:4c:20:01: 59:2a:f3:eb:18:88:7a:17:1c:65:5b:35:96:51:ac:ad:41:2c: 34:84:f8:e1:dc:f7:31:e5:9e:67:ae:e4:43:46:80:46:5d:62: e5:c9:e8:74:fb:6e:2d:1a:39:a7:5a:03:fc:ab:4b:1c:24:06: 19:5a:c3:41:e4:24:66:c6:4b:c9:45:f2:93:a0:fd:e9:a3:e9: 41:12:8e:4d:e2:87:c3:06:ca:53:88:05:9c:60:77:7a:a7:03: 4f:36:43:2c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH4meuhK8KR8PFRXWsSoKRzumCAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNDAyMjYwMTUxMDhaFw0yNTAyMjQwMTU2MDhaMDMxMTAvBgNV BAMTKDQ2RjczQUZCNDk3RTFCMTYzQ0IyRjcyRTgwQjA2MkE4QjlBRkRDMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4x4YcnlCoezdzxssflc/lziqr nuQo5eoEw88yYs/zyXEJQAJN10r8Y7cAlEpTunKh4ybJnKdcN4+dmjQuNWK4FZ3R Ht977WWycadptcGx7jGPoJk3aVU9EXIYn8FE+CWiu3toXqZZVoXk4ecVynl0gHhG 4LrmHGW1jgbJRwfm3DbPZ7KD4lOIAf62SRScCm1BPhXHrFxdLNkdHFHa0cF0dWeD nI+wB/KRcOKUFZE7wvSy1UtebBKVn+orOogiTggljH6mgw0Heb1sOb6qYnku4Tu1 hsXP/GahX3Chvb34OnUghbFBiS61usVc/PB5AwZxzUDTL/tExIF2IDoUst1hAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURvc6+0l+GxY8svcugLBiqLmv3CEwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNDJlMzMzMDJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAByHlkwDQYJKoZIhvcN AQELBQADggEBAEfN5Atb3ovSlEgUqnfA/9aiJgDwYVhhWknX0Cb7b5Z4JlyaX8fX VrV8XuWhEJAK/XUKcIeTC2CdhiJ7JQu6SlHc9eKHLk4zWwesWLamh8UVCCPDZFGX 4ot2TSEBJRCIK4wRiueaSDnPpjloHO0v/0IegKOQSH/eSlFxLm2ZJ97c96f59I6v M79OSCnPPpb9Jbt1PEpoQCzXiIZTJLE9ukwgAVkq8+sYiHoXHGVbNZZRrK1BLDSE +OHc9zHlnmeu5ENGgEZdYuXJ6HT7bi0aOadaA/yrSxwkBhlaw0HkJGbGS8lF8pOg /emj6UESjk3ih8MGylOIBZxgd3qnA082Qyw= -----END CERTIFICATE-----Generated at Fri May 31 08:37:57 2024 by rpki-client on console-fra.rpki-client.org