$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39302e302f32342d3234203d3e203338313635.roa File: 3131342e33302e39302e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: tCYjlVFLpo8h/4X0LklqUt0190oAqWzEX76/Up8IDhY= Subject key identifier: 61:4F:3C:0E:50:44:F5:FF:99:12:7F:63:FE:EE:23:E3:F1:89:95:66 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 0CF4081C80745AD53751AB6FF017C77A45B95FEB Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39302e302f32342d3234203d3e203338313635.roa Signing time: Mon 26 Feb 2024 01:54:38 +0000 ROA not before: Mon 26 Feb 2024 01:49:38 +0000 ROA not after: Mon 24 Feb 2025 01:54:38 +0000 asID: 38165 IP address blocks: 114.30.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f4:08:1c:80:74:5a:d5:37:51:ab:6f:f0:17:c7:7a:45:b9:5f:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Feb 26 01:49:38 2024 GMT Not After : Feb 24 01:54:38 2025 GMT Subject: CN=614F3C0E5044F5FF99127F63FEEE23E3F1899566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:08:c7:0e:cf:39:cc:e5:2f:ac:93:87:d3:08: 38:de:fc:0f:ba:8d:1f:ca:f7:e3:f3:5a:6e:d2:ec: 8c:79:dd:37:f3:f0:3a:81:58:88:ed:93:c6:96:94: 10:c8:bd:91:5c:70:b9:8b:bc:9b:61:3a:a3:45:99: d9:45:fb:05:20:09:52:87:98:4d:66:f4:1c:8e:8d: 8a:2a:f9:4d:f7:db:97:0a:e9:be:45:da:c9:c5:6f: c2:be:60:71:27:6e:d3:62:e0:a6:0a:36:46:65:44: 53:27:2d:68:c7:c5:bc:27:f9:1a:27:b6:9e:41:bd: 26:00:96:84:ad:3f:30:c4:82:98:0e:fa:04:48:d6: 2d:b4:ec:25:6c:b6:9a:eb:5d:8f:b3:35:0b:18:c3: 51:5f:2c:c2:44:65:63:0c:2f:e7:d5:59:d4:b4:34: 69:c5:1d:45:0f:dc:5e:ca:21:92:ef:25:f4:5d:cf: de:99:ff:06:e2:ca:b1:0e:55:c6:bd:c5:6e:13:26: 41:f8:b9:04:8d:93:71:05:91:60:01:44:cf:f2:b5: 5f:3a:71:fb:9c:1c:f0:8b:3c:f2:dc:86:96:70:61: 2d:f2:25:4f:93:8b:7d:6f:0d:9d:0f:d5:ea:4c:bd: ef:b8:2a:7c:e7:60:b2:fb:1f:27:5f:eb:df:fb:29: 45:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4F:3C:0E:50:44:F5:FF:99:12:7F:63:FE:EE:23:E3:F1:89:95:66 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39302e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.90.0/24 Signature Algorithm: sha256WithRSAEncryption 44:5d:c5:98:dd:17:85:74:68:00:6e:70:b0:73:c2:72:57:50: e3:35:e6:a9:68:20:f3:40:84:1a:9a:15:33:f5:a3:f8:b2:af: 6a:3c:24:a5:51:3a:78:1f:a4:b0:89:8f:55:65:68:f5:c2:9d: c3:0d:11:74:79:d2:1a:61:89:44:e1:c0:69:97:d0:af:18:af: 5c:ce:dc:7a:32:ba:c3:80:e0:a5:36:8a:ae:20:a8:75:70:25: 0f:a1:2f:d4:24:64:bc:30:8a:3b:b0:d2:16:a4:20:4b:5f:85: 09:54:72:83:a2:d1:f2:8d:b7:b9:51:fd:50:79:51:17:e2:39: 6a:bc:6a:50:cc:1c:46:91:29:81:d8:d6:26:15:fd:5c:27:8f: 07:ff:15:96:33:2c:f5:7d:6a:e3:ee:09:cb:54:f7:03:4b:0f: 19:25:15:92:91:91:73:ce:9f:6e:f9:ab:c7:97:30:0e:53:d8: 1b:bb:5c:f0:a7:e8:20:31:7d:25:0a:d4:e5:a6:a2:0c:10:d4: 89:ee:21:58:bf:fb:ff:bb:be:d8:b1:19:83:3f:82:db:65:6b: d7:16:38:db:f0:bb:47:85:56:32:21:89:fa:5e:85:20:3a:c1: e2:94:b2:e2:32:37:79:d3:88:47:61:88:a3:0c:da:40:95:3c: c4:d3:bb:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDPQIHIB0WtU3Uatv8BfHekW5X+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNDAyMjYwMTQ5MzhaFw0yNTAyMjQwMTU0MzhaMDMxMTAvBgNV BAMTKDYxNEYzQzBFNTA0NEY1RkY5OTEyN0Y2M0ZFRUUyM0UzRjE4OTk1NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaCMcOzznM5S+sk4fTCDje/A+6 jR/K9+PzWm7S7Ix53Tfz8DqBWIjtk8aWlBDIvZFccLmLvJthOqNFmdlF+wUgCVKH mE1m9ByOjYoq+U3325cK6b5F2snFb8K+YHEnbtNi4KYKNkZlRFMnLWjHxbwn+Ron tp5BvSYAloStPzDEgpgO+gRI1i207CVstprrXY+zNQsYw1FfLMJEZWMML+fVWdS0 NGnFHUUP3F7KIZLvJfRdz96Z/wbiyrEOVca9xW4TJkH4uQSNk3EFkWABRM/ytV86 cfucHPCLPPLchpZwYS3yJU+Ti31vDZ0P1epMve+4KnznYLL7Hydf69/7KUUFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUYU88DlBE9f+ZEn9j/u4j4/GJlWYwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNDJlMzMzMDJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAByHlowDQYJKoZIhvcN AQELBQADggEBAERdxZjdF4V0aABucLBzwnJXUOM15qloIPNAhBqaFTP1o/iyr2o8 JKVROngfpLCJj1VlaPXCncMNEXR50hphiUThwGmX0K8Yr1zO3HoyusOA4KU2iq4g qHVwJQ+hL9QkZLwwijuw0hakIEtfhQlUcoOi0fKNt7lR/VB5URfiOWq8alDMHEaR KYHY1iYV/Vwnjwf/FZYzLPV9auPuCctU9wNLDxklFZKRkXPOn275q8eXMA5T2Bu7 XPCn6CAxfSUK1OWmogwQ1InuIVi/+/+7vtixGYM/gttla9cWONvwu0eFVjIhifpe hSA6weKUsuIyN3nTiEdhiKMM2kCVPMTTu7k= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org