$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131362e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: 4Dl9uIYJ/rl1I/3WKlN2wIjZd39mv8vnKduPG/RVWbw= Subject key identifier: 68:11:FE:5C:44:BE:9F:3B:49:1D:17:D4:8F:E6:42:4A:D5:7C:0A:A3 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5655E97C6F27CD1E99B323D425F0AF2CA8E9EE62 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:49 +0000 ROA not before: Tue 22 Apr 2025 07:58:49 +0000 ROA not after: Tue 21 Apr 2026 08:03:49 +0000 asID: 24525 IP address blocks: 114.199.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:55:e9:7c:6f:27:cd:1e:99:b3:23:d4:25:f0:af:2c:a8:e9:ee:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:49 2025 GMT Not After : Apr 21 08:03:49 2026 GMT Subject: CN=6811FE5C44BE9F3B491D17D48FE6424AD57C0AA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:d7:e5:2c:61:12:a2:0e:95:18:61:55:07:b9: 9b:ab:a0:3f:61:bf:8a:34:42:71:01:42:a8:ac:ec: ba:d3:82:bb:a0:ee:67:d6:01:16:73:8d:fc:72:f9: ef:c5:cd:f3:6b:ea:20:20:40:4d:54:a2:09:b4:1c: 11:0e:d4:62:ee:fd:de:63:0c:2b:71:e5:6b:ac:e3: 9b:5c:db:cc:98:01:5f:31:17:ec:67:5e:12:99:7a: 17:5b:d5:1d:cc:d8:61:cc:84:83:65:7c:4a:49:77: f3:32:a1:c0:6b:9e:35:c6:51:af:6f:77:78:55:f0: a3:70:03:ad:88:0b:32:43:21:c6:1a:44:fc:16:8f: f8:9c:e6:7b:85:ed:46:ca:56:f1:1e:f6:0c:7f:e9: a4:7c:00:2d:73:48:c1:38:b8:d2:4f:3b:aa:2c:b0: c7:f1:54:e2:9c:a3:24:9d:f5:98:e7:d2:de:80:5e: a2:ab:1d:e4:f3:ad:50:4d:a6:ab:6a:59:38:49:b8: 96:a3:89:69:37:e0:69:a6:ab:da:2d:d8:8d:20:e8: 6e:03:44:63:5c:a3:93:55:15:bb:5e:61:c9:4f:dc: 9a:4c:90:b2:1a:7a:df:db:38:bc:62:a4:89:3a:3b: 52:d9:6f:6d:23:a6:64:06:ab:c5:76:28:43:25:c8: 5a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:11:FE:5C:44:BE:9F:3B:49:1D:17:D4:8F:E6:42:4A:D5:7C:0A:A3 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.116.0/23 Signature Algorithm: sha256WithRSAEncryption 60:e6:aa:de:fc:b0:a1:4f:5a:2b:c9:66:28:bb:60:1f:fa:97: a3:f7:20:16:33:8a:6f:20:92:94:fb:2f:7d:73:56:53:8f:9a: e3:f3:62:47:d5:5e:ef:b2:47:24:33:ee:38:5d:af:7f:a1:c2: 32:32:98:74:21:fb:16:20:1f:90:d2:76:f4:1f:eb:21:72:ac: 35:6b:95:9b:ff:19:0c:72:32:03:a5:0e:42:c6:73:5d:b1:21: 52:48:ca:29:62:83:f8:ff:e6:b1:3e:83:a8:88:c1:44:01:29: f7:d2:7c:d4:04:08:6d:12:08:5e:54:9a:58:74:19:7c:ed:ab: 2b:cd:5a:8f:02:c8:7e:21:c7:b0:6d:66:68:f2:6e:8e:13:d6: d4:e2:c7:e4:e2:5e:3d:12:d0:05:fa:78:14:23:dc:35:ca:5f: ec:b6:1b:ba:48:4f:5e:cc:9e:e5:b6:cd:07:d1:20:30:14:cd: 45:1e:54:d2:15:b4:1c:2b:65:91:8f:f5:74:9c:3a:b2:53:a7: 2f:b7:a6:6f:d4:0d:34:8f:12:3b:76:fa:63:3d:5f:c0:ca:e0: e2:79:31:52:d9:2c:97:04:b7:be:a9:6b:a0:5f:04:d8:15:bc: 20:8b:9c:1d:92:0c:6e:c2:e7:d2:f3:fb:31:15:12:88:03:ca: 09:d9:ba:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVlXpfG8nzR6ZsyPUJfCvLKjp7mIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDlaFw0yNjA0MjEwODAzNDlaMDMxMTAvBgNV BAMTKDY4MTFGRTVDNDRCRTlGM0I0OTFEMTdENDhGRTY0MjRBRDU3QzBBQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD01+UsYRKiDpUYYVUHuZuroD9h v4o0QnEBQqis7LrTgrug7mfWARZzjfxy+e/FzfNr6iAgQE1Uogm0HBEO1GLu/d5j DCtx5Wus45tc28yYAV8xF+xnXhKZehdb1R3M2GHMhINlfEpJd/MyocBrnjXGUa9v d3hV8KNwA62ICzJDIcYaRPwWj/ic5nuF7UbKVvEe9gx/6aR8AC1zSME4uNJPO6os sMfxVOKcoySd9Zjn0t6AXqKrHeTzrVBNpqtqWThJuJajiWk34Gmmq9ot2I0g6G4D RGNco5NVFbteYclP3JpMkLIaet/bOLxipIk6O1LZb20jpmQGq8V2KEMlyFodAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaBH+XES+nztJHRfUj+ZCStV8CqMwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd0MA0GCSqG SIb3DQEBCwUAA4IBAQBg5qre/LChT1oryWYou2Af+pej9yAWM4pvIJKU+y99c1ZT j5rj82JH1V7vskckM+44Xa9/ocIyMph0IfsWIB+Q0nb0H+shcqw1a5Wb/xkMcjID pQ5CxnNdsSFSSMopYoP4/+axPoOoiMFEASn30nzUBAhtEgheVJpYdBl87asrzVqP Ash+IcewbWZo8m6OE9bU4sfk4l49EtAF+ngUI9w1yl/sthu6SE9ezJ7lts0H0SAw FM1FHlTSFbQcK2WRj/V0nDqyU6cvt6Zv1A00jxI7dvpjPV/AyuDieTFS2SyXBLe+ qWugXwTYFbwgi5wdkgxuwufS8/sxFRKIA8oJ2brl -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net