$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: le571ZhkMM2Rkq2xARtJOhoiqcv0Mg8slO6e3gPigBI= Subject key identifier: 65:AE:34:5D:FF:B2:FF:FB:85:96:45:3C:0F:CD:9E:4A:3E:0E:78:F2 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2C8E7BFF8DA0B2BB992E558F7849A82421C2C44D Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:48 +0000 ROA not before: Tue 22 Apr 2025 07:58:48 +0000 ROA not after: Tue 21 Apr 2026 08:03:48 +0000 asID: 24525 IP address blocks: 114.199.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:8e:7b:ff:8d:a0:b2:bb:99:2e:55:8f:78:49:a8:24:21:c2:c4:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:48 2025 GMT Not After : Apr 21 08:03:48 2026 GMT Subject: CN=65AE345DFFB2FFFB8596453C0FCD9E4A3E0E78F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:49:21:0b:e5:51:ff:0b:a5:b3:c0:cb:11: 44:83:56:72:b1:31:f9:44:6b:91:8a:03:73:8f:39: ac:25:18:69:f7:47:35:3c:87:2b:84:bb:8b:64:3f: 69:d5:7b:a5:35:40:1c:17:01:f8:c2:9f:40:37:25: 55:11:61:55:19:fd:2b:b9:13:4b:a8:a3:0a:c5:72: 43:39:01:fd:48:96:60:bc:b6:8f:7e:fc:3a:5a:44: e6:3e:cb:64:df:1c:c1:24:43:a4:d7:c5:7f:74:ec: c6:23:ac:e7:80:ea:28:cb:ca:73:d3:2c:d6:c0:c1: 68:a5:26:bb:f3:f4:07:f4:12:c9:fd:b4:70:7b:20: 22:2d:3f:f1:e2:f6:22:31:13:61:b4:09:00:63:73: 71:3f:fe:3e:d4:7c:19:6b:11:7e:97:50:01:56:30: f9:24:d8:c2:c6:ae:2f:e5:11:5c:2f:a8:52:2b:41: 96:56:51:e1:8f:05:82:1d:91:64:c2:fb:3f:6a:a4: f1:22:00:df:6c:1c:a5:a4:23:b5:3c:ee:04:1d:cf: 9c:75:c0:d1:17:e5:ed:f9:7d:9c:73:05:5f:88:a0: 4c:2f:8f:49:94:d0:84:e8:2d:21:b9:64:60:61:69: 0e:cd:5f:df:c4:49:70:75:f9:9d:a7:7b:5a:3b:3e: fc:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:AE:34:5D:FF:B2:FF:FB:85:96:45:3C:0F:CD:9E:4A:3E:0E:78:F2 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.114.0/23 Signature Algorithm: sha256WithRSAEncryption 05:1e:23:d6:e1:61:d7:03:ea:48:33:0f:1b:62:86:98:e9:ac: 0b:c1:bd:54:16:09:cc:9a:44:f7:8d:a4:aa:4c:7e:d6:c8:b1: 1a:b9:0d:98:78:79:7d:7a:09:5f:bd:18:12:56:9d:12:e9:a2: a9:49:76:f5:c3:70:fb:7e:34:6d:42:ad:b7:f2:b7:7a:21:bf: 4d:65:0f:54:1a:cd:a7:86:46:b9:8d:03:f6:16:9b:41:7e:19: ed:38:6b:97:fd:ee:0c:c9:87:3c:f8:46:53:c0:ac:82:36:3c: 45:06:92:35:67:12:41:e6:3d:9e:c6:76:80:f2:13:66:0d:a9: e6:96:33:40:d1:8c:5d:50:74:02:0c:4b:98:db:c7:37:80:2d: d8:e6:14:c0:7c:61:be:77:0d:90:95:5d:ac:28:5b:f8:e6:15: 44:8d:48:ba:bb:0c:95:7d:7d:25:b9:db:2a:aa:d0:ff:e9:a0: 2f:fa:93:ed:14:25:3a:37:4c:4b:80:65:82:e6:91:e3:97:44: d4:80:66:b5:38:db:2e:8e:8e:32:12:20:aa:84:7a:b7:15:32: 7f:30:dc:b1:9d:ea:35:3d:79:0a:b9:f5:ce:f2:dc:54:0c:03: 9d:0f:e2:65:76:eb:f8:b8:80:2e:d2:45:f6:08:6b:40:f0:13: 32:91:7d:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULI57/42gsruZLlWPeEmoJCHCxE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDhaFw0yNjA0MjEwODAzNDhaMDMxMTAvBgNV BAMTKDY1QUUzNDVERkZCMkZGRkI4NTk2NDUzQzBGQ0Q5RTRBM0UwRTc4RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Z0khC+VR/wuls8DLEUSDVnKx MflEa5GKA3OPOawlGGn3RzU8hyuEu4tkP2nVe6U1QBwXAfjCn0A3JVURYVUZ/Su5 E0uoowrFckM5Af1IlmC8to9+/DpaROY+y2TfHMEkQ6TXxX907MYjrOeA6ijLynPT LNbAwWilJrvz9Af0Esn9tHB7ICItP/Hi9iIxE2G0CQBjc3E//j7UfBlrEX6XUAFW MPkk2MLGri/lEVwvqFIrQZZWUeGPBYIdkWTC+z9qpPEiAN9sHKWkI7U87gQdz5x1 wNEX5e35fZxzBV+IoEwvj0mU0IToLSG5ZGBhaQ7NX9/ESXB1+Z2ne1o7PvzrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZa40Xf+y//uFlkU8D82eSj4OePIwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdyMA0GCSqG SIb3DQEBCwUAA4IBAQAFHiPW4WHXA+pIMw8bYoaY6awLwb1UFgnMmkT3jaSqTH7W yLEauQ2YeHl9eglfvRgSVp0S6aKpSXb1w3D7fjRtQq238rd6Ib9NZQ9UGs2nhka5 jQP2FptBfhntOGuX/e4MyYc8+EZTwKyCNjxFBpI1ZxJB5j2exnaA8hNmDanmljNA 0YxdUHQCDEuY28c3gC3Y5hTAfGG+dw2QlV2sKFv45hVEjUi6uwyVfX0ludsqqtD/ 6aAv+pPtFCU6N0xLgGWC5pHjl0TUgGa1ONsujo4yEiCqhHq3FTJ/MNyxneo1PXkK ufXO8txUDAOdD+Jlduv4uIAu0kX2CGtA8BMykX0l -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net