$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38392e302f32342d3234203d3e203338313635.roa File: 3131342e33302e38392e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: RvUGHn7mkZmrSZy3yAv/1vnjjfvzdlU/vA6oX1QXwh0= Subject key identifier: 6C:F3:FD:07:A4:82:E4:F5:18:49:94:29:44:08:07:BD:BA:01:1E:2C Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 5EFCF9D72C1E6E9ABD9A7E286B4A78CE4B8DC99B Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38392e302f32342d3234203d3e203338313635.roa Signing time: Mon 27 Jan 2025 02:00:01 +0000 ROA not before: Mon 27 Jan 2025 01:55:01 +0000 ROA not after: Mon 26 Jan 2026 02:00:01 +0000 asID: 38165 IP address blocks: 114.30.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:fc:f9:d7:2c:1e:6e:9a:bd:9a:7e:28:6b:4a:78:ce:4b:8d:c9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Jan 27 01:55:01 2025 GMT Not After : Jan 26 02:00:01 2026 GMT Subject: CN=6CF3FD07A482E4F518499429440807BDBA011E2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:49:ec:71:69:53:c9:cd:50:fa:14:95:21: 54:d6:1d:df:db:9e:75:de:85:28:6f:65:30:5e:c3: c1:8b:d1:f2:cb:08:05:0e:28:2d:07:d6:07:20:1b: d9:66:62:52:cd:68:00:d9:13:4f:f2:c7:59:93:89: fb:d6:a2:56:c6:8e:33:05:af:19:5a:b9:46:82:7f: ef:36:99:df:df:5d:e3:9b:b1:83:9b:65:ed:4a:5d: 44:45:42:d1:fd:41:b0:93:ca:cc:5f:24:40:92:2c: 71:fc:06:3c:b9:18:92:57:19:0c:98:46:72:d0:2c: c9:81:04:04:2d:ba:01:35:0f:58:af:f5:45:3f:f9: ee:13:4c:1f:ed:06:cd:25:b5:89:bf:bb:cd:c4:fa: ee:2e:b1:9c:a4:59:8a:a4:19:57:1e:9f:13:01:4c: 95:b8:02:7f:0f:cb:8d:e9:2c:28:48:31:58:c2:72: e9:8d:d0:95:e4:66:e3:dc:4a:4e:c6:e0:82:fe:2d: 67:12:32:e8:f7:15:b1:ae:a3:b5:05:47:0d:28:a8: bf:d7:7d:23:da:8c:2e:b5:4b:73:3a:0a:52:39:60: ba:67:d7:88:11:ec:37:dc:a0:d5:0c:de:e5:4b:33: 6d:3d:bc:39:ef:b8:aa:ba:ec:56:84:f1:42:45:67: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F3:FD:07:A4:82:E4:F5:18:49:94:29:44:08:07:BD:BA:01:1E:2C X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38392e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.89.0/24 Signature Algorithm: sha256WithRSAEncryption 06:8f:dc:52:31:34:08:0e:ab:ea:ae:46:28:b2:d4:2f:2d:f6: e2:6a:74:c0:dd:4e:1a:2a:cd:5f:cc:c9:5f:27:e2:6a:49:4c: 1b:51:ed:b3:16:0c:3e:4b:c7:03:2f:e0:fe:1c:b9:d8:7e:23: ce:be:94:fe:fb:04:43:71:0f:74:c5:25:9d:57:9c:52:c6:b4: fb:a5:34:21:61:a1:e3:b2:bc:f4:e0:3f:3c:a1:ac:f8:12:04: b1:79:0b:59:1b:87:56:cc:66:8b:c0:98:7a:50:a5:2e:38:2d: 57:ae:b3:43:6d:07:eb:7a:b1:f4:2a:d4:2f:bb:d4:36:af:b4: 62:39:d1:73:31:88:d3:5b:13:e4:8d:29:18:68:4e:ee:0c:f7: 50:c9:53:e7:00:a7:23:52:5d:b2:31:91:45:c4:34:19:67:f1: eb:f1:d7:5b:6b:13:c8:07:40:60:1c:73:81:f8:db:ba:d2:d8: f4:8a:b4:41:b7:e8:aa:a4:7c:6a:41:72:e2:d5:54:44:48:29: 04:91:10:0e:1e:ad:18:d8:f9:30:0a:79:69:42:5b:ba:6b:a0: 1c:c6:d1:57:b9:c6:72:01:71:b2:bb:bb:9f:f6:86:27:63:32: 4f:dd:b9:56:e7:e5:08:c0:a1:6d:80:f0:f3:d7:88:39:b5:92: db:51:cd:fc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXvz51ywebpq9mn4oa0p4zkuNyZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNTAxMjcwMTU1MDFaFw0yNjAxMjYwMjAwMDFaMDMxMTAvBgNV BAMTKDZDRjNGRDA3QTQ4MkU0RjUxODQ5OTQyOTQ0MDgwN0JEQkEwMTFFMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6u0nscWlTyc1Q+hSVIVTWHd/b nnXehShvZTBew8GL0fLLCAUOKC0H1gcgG9lmYlLNaADZE0/yx1mTifvWolbGjjMF rxlauUaCf+82md/fXeObsYObZe1KXURFQtH9QbCTysxfJECSLHH8Bjy5GJJXGQyY RnLQLMmBBAQtugE1D1iv9UU/+e4TTB/tBs0ltYm/u83E+u4usZykWYqkGVcenxMB TJW4An8Py43pLChIMVjCcumN0JXkZuPcSk7G4IL+LWcSMuj3FbGuo7UFRw0oqL/X fSPajC61S3M6ClI5YLpn14gR7DfcoNUM3uVLM209vDnvuKq67FaE8UJFZ0D3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbPP9B6SC5PUYSZQpRAgHvboBHiwwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNDJlMzMzMDJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAByHlkwDQYJKoZIhvcN AQELBQADggEBAAaP3FIxNAgOq+quRiiy1C8t9uJqdMDdThoqzV/MyV8n4mpJTBtR 7bMWDD5LxwMv4P4cudh+I86+lP77BENxD3TFJZ1XnFLGtPulNCFhoeOyvPTgPzyh rPgSBLF5C1kbh1bMZovAmHpQpS44LVeus0NtB+t6sfQq1C+71DavtGI50XMxiNNb E+SNKRhoTu4M91DJU+cApyNSXbIxkUXENBln8evx11trE8gHQGAcc4H427rS2PSK tEG36KqkfGpBcuLVVERIKQSREA4erRjY+TAKeWlCW7proBzG0Ve5xnIBcbK7u5/2 hidjMk/duVbn5QjAoW2A8PPXiDm1kttRzfw= -----END CERTIFICATE-----Generated at Sun Apr 6 15:58:36 2025 by rpki-client