$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: IDPT7yDG4xTAi0OwoxJ5lhfRXCgZN9sUjQdbR3xiTa4= Subject key identifier: 23:70:17:88:C9:DC:27:4B:10:98:32:37:E3:06:EB:38:41:F5:09:96 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0DEBD6C503A0EC126D5965EB66BA4840C60AE6F5 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:50 +0000 ROA not before: Tue 22 Apr 2025 07:58:50 +0000 ROA not after: Tue 21 Apr 2026 08:03:50 +0000 asID: 24525 IP address blocks: 114.199.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:eb:d6:c5:03:a0:ec:12:6d:59:65:eb:66:ba:48:40:c6:0a:e6:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:50 2025 GMT Not After : Apr 21 08:03:50 2026 GMT Subject: CN=23701788C9DC274B10983237E306EB3841F50996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:e3:a8:e7:d6:3b:f1:b6:d7:69:eb:a9:c1: 8e:92:df:b9:a9:3d:98:2f:2e:14:30:58:6b:f4:3a: 16:5b:87:5a:50:92:cb:7d:fe:26:5d:d5:99:8a:ac: 04:c5:89:b8:13:fa:6d:92:4a:b2:f9:7d:88:02:ef: 7e:89:34:2e:dc:67:51:35:4e:3e:a9:ea:c3:e8:0c: da:b6:58:ba:23:7a:70:65:fb:25:f6:20:d7:7a:3e: d7:63:43:87:bb:71:ef:86:90:91:9e:8b:29:c8:6a: 81:74:bb:4d:cb:0f:00:04:13:b9:10:40:c1:27:55: 1a:80:e8:32:36:21:05:23:29:bb:50:5b:b9:37:f9: 17:59:65:6b:b4:8b:aa:71:63:ad:f5:a1:98:11:99: 61:da:88:53:cf:e6:56:38:64:3d:70:7c:1a:51:43: 2b:28:02:f3:a7:70:33:b5:ee:0e:b5:78:37:52:7a: 61:7b:3d:c0:ab:68:06:a9:ce:5f:e6:55:ea:6b:5c: 06:4f:f5:6f:1e:44:d6:a9:6c:4b:78:f6:cb:dd:90: 7e:55:2b:28:92:ff:eb:16:6d:4c:be:12:2c:a6:57: 86:a3:d7:17:4f:9b:6e:fc:66:aa:7f:75:ff:1f:29: d0:ef:1c:1b:fe:b9:54:9a:0f:f7:f4:9f:e2:ed:9b: 64:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:70:17:88:C9:DC:27:4B:10:98:32:37:E3:06:EB:38:41:F5:09:96 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/23 Signature Algorithm: sha256WithRSAEncryption a0:45:8e:3d:19:c5:eb:8b:e7:1d:61:67:53:6e:e0:61:ef:82: a4:e9:db:5d:8f:88:a6:ee:27:26:15:b1:1c:6f:60:34:2e:97: b4:a6:3d:e1:28:8c:a3:f5:cb:e4:5d:83:89:56:17:39:f5:7f: d5:c5:b3:fb:ae:f9:12:5d:44:33:b7:2e:20:47:e6:2d:cb:07: 55:31:66:ce:41:22:53:8d:ef:cc:1e:67:5a:22:5d:f2:56:73: f8:55:8a:42:5b:9e:30:40:a7:e7:9d:5e:db:2b:52:3e:71:c1: 38:03:83:74:71:b4:ea:a0:28:21:e8:2c:ed:79:45:60:66:b7: 75:48:a6:7a:00:d4:26:f1:5c:8b:9c:a1:82:27:36:09:36:57: fd:6d:88:61:36:78:f2:42:67:4d:c3:b0:5b:1e:3a:05:ef:0f: f2:ed:f9:d4:7f:6c:b2:98:df:2d:6a:d4:59:8b:32:d6:37:d2: 91:fd:56:25:22:58:84:2a:68:51:68:0f:76:05:89:9e:38:bc: fd:92:9b:de:0a:0d:f0:d8:d9:16:85:88:6a:a2:31:10:f3:91: 7b:1b:2c:38:90:1d:48:9d:3a:e5:5c:20:f3:86:a1:a1:b1:c0: 60:9e:eb:f1:4a:79:a3:7d:95:b0:f7:b1:eb:44:27:22:fb:36: 1d:d9:09:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDevWxQOg7BJtWWXrZrpIQMYK5vUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NTBaFw0yNjA0MjEwODAzNTBaMDMxMTAvBgNV BAMTKDIzNzAxNzg4QzlEQzI3NEIxMDk4MzIzN0UzMDZFQjM4NDFGNTA5OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6NuOo59Y78bbXaeupwY6S37mp PZgvLhQwWGv0OhZbh1pQkst9/iZd1ZmKrATFibgT+m2SSrL5fYgC736JNC7cZ1E1 Tj6p6sPoDNq2WLojenBl+yX2INd6PtdjQ4e7ce+GkJGeiynIaoF0u03LDwAEE7kQ QMEnVRqA6DI2IQUjKbtQW7k3+RdZZWu0i6pxY631oZgRmWHaiFPP5lY4ZD1wfBpR QysoAvOncDO17g61eDdSemF7PcCraAapzl/mVeprXAZP9W8eRNapbEt49svdkH5V KyiS/+sWbUy+EiymV4aj1xdPm278Zqp/df8fKdDvHBv+uVSaD/f0n+Ltm2QnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI3AXiMncJ0sQmDI34wbrOEH1CZYwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQCgRY49GcXri+cdYWdTbuBh74Kk6dtdj4im7icmFbEcb2A0 Lpe0pj3hKIyj9cvkXYOJVhc59X/VxbP7rvkSXUQzty4gR+YtywdVMWbOQSJTje/M HmdaIl3yVnP4VYpCW54wQKfnnV7bK1I+ccE4A4N0cbTqoCgh6CzteUVgZrd1SKZ6 ANQm8VyLnKGCJzYJNlf9bYhhNnjyQmdNw7BbHjoF7w/y7fnUf2yymN8tatRZizLW N9KR/VYlIliEKmhRaA92BYmeOLz9kpveCg3w2NkWhYhqojEQ85F7Gyw4kB1InTrl XCDzhqGhscBgnuvxSnmjfZWw97HrRCci+zYd2Qnr -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net