$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: GmClOBw6+VruBQ9b/vvix1llxc0PlSy9jYNUFIzlFng= Subject key identifier: 42:A9:CD:23:35:AE:87:86:37:69:C8:B0:4B:CC:A1:8D:ED:EF:B5:A0 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1B753395D21C842DD29C4AEDCBAE09A71B3AF358 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:47 +0000 ROA not before: Tue 22 Apr 2025 07:58:47 +0000 ROA not after: Tue 21 Apr 2026 08:03:47 +0000 asID: 24525 IP address blocks: 114.199.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:75:33:95:d2:1c:84:2d:d2:9c:4a:ed:cb:ae:09:a7:1b:3a:f3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:47 2025 GMT Not After : Apr 21 08:03:47 2026 GMT Subject: CN=42A9CD2335AE87863769C8B04BCCA18DEDEFB5A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ad:93:55:55:d9:e3:70:b5:d1:fb:b2:02:f5: 3d:5f:3d:3a:4a:71:49:07:63:0f:40:48:f6:aa:72: 96:e3:4d:bf:90:23:e7:2e:95:de:9a:ea:af:54:57: d1:b8:5a:34:4c:c6:fa:1c:24:5f:14:a8:44:e8:ff: 5e:b7:4b:92:d8:8c:c0:8b:7b:b5:01:37:86:1b:42: 5c:c9:d9:96:f6:88:14:27:1b:83:bd:fb:dd:f1:30: a0:19:4d:72:0b:84:16:00:a4:e4:77:1e:f7:bc:3d: 4f:62:5f:be:fb:dd:51:36:a4:da:96:73:7f:4b:da: 0f:2e:ef:ed:dd:82:7e:79:f8:5c:11:3b:83:2e:d8: 99:bf:03:61:2e:9b:31:26:cb:9c:70:5a:4f:42:37: 53:20:61:aa:33:47:91:7c:15:33:92:f7:82:c1:d7: 99:95:4a:2b:2c:14:dd:0e:ab:9b:63:6c:67:d5:86: f3:18:76:9a:0c:27:8b:94:5f:b5:04:01:c7:1e:3b: 36:e8:2e:aa:67:db:e3:cd:a6:a7:9f:63:dc:39:93: 1b:73:bd:9f:89:40:f5:a5:70:df:ab:cf:26:0f:8c: 95:9d:05:60:db:86:4d:a2:e3:39:d7:75:ef:30:4e: 73:6b:3d:50:83:d5:4c:39:6a:06:a7:9e:c8:82:ed: 6f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A9:CD:23:35:AE:87:86:37:69:C8:B0:4B:CC:A1:8D:ED:EF:B5:A0 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.100.0/22 Signature Algorithm: sha256WithRSAEncryption 15:c2:86:25:ff:f8:ef:34:3e:db:4c:e6:e7:e7:35:f5:25:37: 4e:d8:f4:89:ff:78:f2:33:6c:df:d5:0f:9d:43:cb:e0:68:28: 7b:68:2a:f8:41:c9:6d:06:bb:94:bf:1d:f1:e7:98:10:5f:6f: 7f:13:0c:d5:c0:11:ed:e9:29:86:65:ac:e5:e5:34:18:97:f3: b8:35:72:d4:2f:7d:10:eb:1f:2b:99:bf:c3:82:3f:5a:b0:5f: a8:1c:75:db:47:e1:7d:6b:71:cf:3a:f3:a4:54:0e:2e:a9:f1: 3e:30:41:33:51:b7:0f:7b:b9:dd:40:9c:24:14:7e:5f:17:00: 8c:24:7c:b6:80:75:44:2f:41:1f:c8:1b:2b:83:06:dd:55:66: 4e:f4:36:c7:85:33:bd:42:9f:cd:90:4c:02:4f:66:e5:d7:b6: 89:3f:49:e5:d5:bd:a1:29:b1:58:03:01:c5:20:21:88:73:72: 9e:26:44:4b:b9:8b:9c:71:b5:88:9c:9a:36:6a:b5:a3:3c:36: 90:b3:66:35:4e:73:80:9b:0c:3c:fe:4d:33:b5:08:ec:66:ca: d3:47:b1:2e:35:1b:07:db:4d:6e:ee:01:a2:4e:cc:cf:0f:f2: 26:86:fe:c2:e2:c5:e9:64:34:45:9c:68:d2:33:3a:9f:79:62: 1e:cc:62:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG3UzldIchC3SnErty64Jpxs681gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDdaFw0yNjA0MjEwODAzNDdaMDMxMTAvBgNV BAMTKDQyQTlDRDIzMzVBRTg3ODYzNzY5QzhCMDRCQ0NBMThERURFRkI1QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbrZNVVdnjcLXR+7IC9T1fPTpK cUkHYw9ASPaqcpbjTb+QI+culd6a6q9UV9G4WjRMxvocJF8UqETo/163S5LYjMCL e7UBN4YbQlzJ2Zb2iBQnG4O9+93xMKAZTXILhBYApOR3Hve8PU9iX7773VE2pNqW c39L2g8u7+3dgn55+FwRO4Mu2Jm/A2EumzEmy5xwWk9CN1MgYaozR5F8FTOS94LB 15mVSissFN0Oq5tjbGfVhvMYdpoMJ4uUX7UEAcceOzboLqpn2+PNpqefY9w5kxtz vZ+JQPWlcN+rzyYPjJWdBWDbhk2i4znXde8wTnNrPVCD1Uw5agannsiC7W+LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQqnNIzWuh4Y3aciwS8yhje3vtaAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdkMA0GCSqG SIb3DQEBCwUAA4IBAQAVwoYl//jvND7bTObn5zX1JTdO2PSJ/3jyM2zf1Q+dQ8vg aCh7aCr4QcltBruUvx3x55gQX29/EwzVwBHt6SmGZazl5TQYl/O4NXLUL30Q6x8r mb/Dgj9asF+oHHXbR+F9a3HPOvOkVA4uqfE+MEEzUbcPe7ndQJwkFH5fFwCMJHy2 gHVEL0EfyBsrgwbdVWZO9DbHhTO9Qp/NkEwCT2bl17aJP0nl1b2hKbFYAwHFICGI c3KeJkRLuYuccbWInJo2arWjPDaQs2Y1TnOAmww8/k0ztQjsZsrTR7EuNRsH201u 7gGiTszPD/Imhv7C4sXpZDRFnGjSMzqfeWIezGJk -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net