$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39312e302f32342d3234203d3e203338313635.roa File: 3131342e33302e39312e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: KwjZWC2Ds8hh1CLsjAHfpUPRijRC00CD591UsD+qJ0g= Subject key identifier: D1:F5:55:42:E5:9F:65:D7:8F:B8:AB:4A:03:27:B7:8B:AD:7A:B7:06 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 5D5330BE8F5C745409840A920CA4ACC9E9DCAA1C Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39312e302f32342d3234203d3e203338313635.roa Signing time: Mon 26 Feb 2024 01:54:49 +0000 ROA not before: Mon 26 Feb 2024 01:49:49 +0000 ROA not after: Mon 24 Feb 2025 01:54:49 +0000 asID: 38165 IP address blocks: 114.30.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:53:30:be:8f:5c:74:54:09:84:0a:92:0c:a4:ac:c9:e9:dc:aa:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Feb 26 01:49:49 2024 GMT Not After : Feb 24 01:54:49 2025 GMT Subject: CN=D1F55542E59F65D78FB8AB4A0327B78BAD7AB706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:41:88:39:7e:7f:ac:bf:ee:78:24:cd:50:d3: ca:e3:55:19:47:bd:b8:2d:47:5f:7e:89:54:52:c4: 4a:5c:79:6b:f2:33:ae:ad:c1:09:86:e6:2a:a7:27: ea:31:bc:d7:f4:dd:19:c4:6e:d0:d2:c1:76:0d:7b: a1:d9:4d:c6:8a:26:4e:bf:41:84:f0:40:e9:fb:87: 79:ad:0a:8a:cc:0e:2e:e6:c5:35:55:42:4f:0f:bf: 0a:d0:3b:bc:5a:12:00:91:a0:01:43:f2:c8:3e:e7: 2b:c5:91:61:69:7b:53:98:cf:7a:c3:da:ec:13:73: a1:7e:69:0f:2d:18:fc:0c:96:33:5f:13:85:5b:22: 93:a6:00:5e:24:a0:f7:73:c0:bb:d6:53:be:5c:52: cf:7d:21:27:12:64:6c:92:57:fd:59:e0:8a:a9:10: 9d:a1:54:23:1e:6d:f6:19:a6:3b:4f:56:a8:c5:cc: b3:af:8a:40:be:33:f2:00:fa:ea:9b:c2:1d:be:7d: 4a:df:bd:c4:c4:e1:67:a1:c8:ca:16:3a:cc:da:d0: 4d:a7:83:f7:c1:48:4c:2c:8b:5d:ac:ac:5d:b1:af: 40:c3:4f:b2:f3:5f:a8:e7:25:65:0b:fd:e5:15:ce: 83:88:3e:d6:9f:93:fd:aa:47:38:c4:8c:09:bb:bb: 5b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F5:55:42:E5:9F:65:D7:8F:B8:AB:4A:03:27:B7:8B:AD:7A:B7:06 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39312e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.91.0/24 Signature Algorithm: sha256WithRSAEncryption 08:f5:65:f6:e2:a3:58:66:a9:2e:94:3d:1e:44:8c:fc:81:36: 58:dc:b6:f4:f1:d5:44:e5:b9:a7:07:1f:ca:b9:b1:31:5c:71: c1:28:bc:12:83:5b:51:cd:53:6e:e3:7c:5f:6f:52:6a:d3:16: 9d:76:cc:9e:ba:0c:e2:88:ca:ba:65:ce:6c:1d:64:15:84:47: 86:e9:bc:4d:d8:cf:bc:58:aa:91:dd:bd:66:ae:78:fb:a9:54: 64:61:b7:0e:50:54:f9:03:8c:0e:12:4d:d9:a6:17:2c:f5:c7: 57:99:75:c2:e1:0c:bf:ee:33:eb:c8:44:f5:97:14:b1:3c:03: 34:12:db:9b:54:86:9f:90:7a:7a:1f:67:5a:32:27:64:5f:ed: 62:06:96:c9:43:35:4f:63:c8:aa:00:ff:36:fd:48:9a:96:d2: 56:fc:a1:3f:da:3d:aa:5d:e3:3b:ef:b5:d3:9f:8f:4b:8a:d5: 1b:f5:74:46:5c:8c:4f:ec:88:24:d9:c0:4a:d0:cc:b6:af:67: fb:37:cf:fb:17:ef:d4:36:09:63:b3:9d:29:4e:fd:c4:dc:54: d1:9d:e4:8e:87:e9:50:30:02:92:0a:7e:cf:17:85:9d:06:07: 42:64:20:8c:1d:c7:12:b6:50:03:b4:e5:d7:2b:8c:17:5b:cb: d8:42:0b:9e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXVMwvo9cdFQJhAqSDKSsyencqhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNDAyMjYwMTQ5NDlaFw0yNTAyMjQwMTU0NDlaMDMxMTAvBgNV BAMTKEQxRjU1NTQyRTU5RjY1RDc4RkI4QUI0QTAzMjdCNzhCQUQ3QUI3MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLQYg5fn+sv+54JM1Q08rjVRlH vbgtR19+iVRSxEpceWvyM66twQmG5iqnJ+oxvNf03RnEbtDSwXYNe6HZTcaKJk6/ QYTwQOn7h3mtCorMDi7mxTVVQk8PvwrQO7xaEgCRoAFD8sg+5yvFkWFpe1OYz3rD 2uwTc6F+aQ8tGPwMljNfE4VbIpOmAF4koPdzwLvWU75cUs99IScSZGySV/1Z4Iqp EJ2hVCMebfYZpjtPVqjFzLOvikC+M/IA+uqbwh2+fUrfvcTE4WehyMoWOsza0E2n g/fBSEwsi12srF2xr0DDT7LzX6jnJWUL/eUVzoOIPtafk/2qRzjEjAm7u1uNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0fVVQuWfZdePuKtKAye3i616twYwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNDJlMzMzMDJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAByHlswDQYJKoZIhvcN AQELBQADggEBAAj1Zfbio1hmqS6UPR5EjPyBNljctvTx1UTluacHH8q5sTFcccEo vBKDW1HNU27jfF9vUmrTFp12zJ66DOKIyrplzmwdZBWER4bpvE3Yz7xYqpHdvWau ePupVGRhtw5QVPkDjA4STdmmFyz1x1eZdcLhDL/uM+vIRPWXFLE8AzQS25tUhp+Q enofZ1oyJ2Rf7WIGlslDNU9jyKoA/zb9SJqW0lb8oT/aPapd4zvvtdOfj0uK1Rv1 dEZcjE/siCTZwErQzLavZ/s3z/sX79Q2CWOznSlO/cTcVNGd5I6H6VAwApIKfs8X hZ0GB0JkIIwdxxK2UAO05dcrjBdby9hCC54= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org