$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: sxqmlNp2APUaKbtP9fnG4EJ7NxXELa14Ib3VjJ/1X5M= Subject key identifier: CB:B9:A8:5C:34:9F:FF:85:EE:F4:1E:5F:21:22:83:27:B1:23:B4:77 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 6D2CBB8E19D0D438E59D93C8470F0C81B6169B0C Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa Signing time: Tue 22 Apr 2025 06:00:01 +0000 ROA not before: Tue 22 Apr 2025 05:55:01 +0000 ROA not after: Tue 21 Apr 2026 06:00:01 +0000 asID: 24525 IP address blocks: 114.199.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2c:bb:8e:19:d0:d4:38:e5:9d:93:c8:47:0f:0c:81:b6:16:9b:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 05:55:01 2025 GMT Not After : Apr 21 06:00:01 2026 GMT Subject: CN=CBB9A85C349FFF85EEF41E5F21228327B123B477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:cd:32:e2:e8:27:0c:17:75:08:2c:5c:72: 97:5f:0b:91:c1:14:03:98:3d:be:15:51:9b:fa:af: 66:fc:32:d4:b3:66:b6:ba:06:0a:c1:0c:2e:bf:15: 06:e2:d1:f7:66:8f:0d:51:fe:5b:42:a4:97:8a:a6: 08:1f:d6:ab:74:cf:42:a9:01:87:76:18:c1:73:35: 5b:e9:09:44:81:a0:b8:17:d5:c0:bc:25:43:fd:55: bf:cb:c2:60:5a:68:2a:e1:44:55:5c:31:e5:ac:6b: 27:2d:ee:bc:33:cd:44:ee:1a:9e:a5:11:17:20:28: 0b:cb:19:f0:63:b3:66:80:78:6a:58:60:ce:bd:81: f5:b7:85:5b:78:b5:27:0b:1e:18:40:94:90:aa:b0: 69:ce:f1:9c:3d:7d:d0:ec:5c:69:2f:e8:0e:95:f4: 11:49:5e:3e:c7:44:3a:ec:67:99:a7:10:5e:32:9b: ad:0c:3e:f4:a1:3d:1d:32:5f:b6:88:62:3f:5c:5e: 22:c2:a4:db:f0:84:4b:10:51:5d:96:9c:f8:42:3d: 0b:ab:b9:d5:37:e8:de:79:6f:65:5d:57:d1:ac:eb: b6:1f:3f:4f:eb:ad:c0:0f:bb:4e:9b:34:c1:35:aa: 8e:d0:e6:86:8b:80:13:fb:1b:a9:8f:46:31:52:f4: e0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B9:A8:5C:34:9F:FF:85:EE:F4:1E:5F:21:22:83:27:B1:23:B4:77 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/21 Signature Algorithm: sha256WithRSAEncryption 29:fb:f4:90:d2:2c:d0:5c:6a:d3:1e:b6:2f:38:49:a8:8a:ba: 15:6c:0d:bd:3a:7b:c2:ad:b4:d6:81:41:f9:a9:46:a5:c0:ed: 8a:0f:5b:08:ec:50:ba:49:72:7c:e3:b0:39:8d:59:d3:8c:a8: 77:dd:18:8e:17:2a:54:42:1e:26:79:c8:4c:1f:67:38:5a:c5: b8:88:af:88:45:63:19:6c:7b:9a:de:76:c9:34:0c:78:77:96: 59:20:8d:fa:1f:ba:2f:89:70:07:54:05:0e:a8:87:29:40:42: ff:11:37:78:11:96:f0:72:0f:88:d1:4a:91:1b:35:ac:8a:a2: f6:7d:50:3e:39:05:8f:6d:39:39:8e:98:37:05:d6:82:e9:55: ab:e2:97:04:e4:4c:23:0f:19:0f:24:a0:00:f5:50:ff:e7:1f: 55:8d:e0:ac:d7:12:1c:49:96:66:60:af:04:e9:d6:c5:23:2c: 78:82:bb:f9:3d:87:45:68:9b:c9:94:77:c8:92:af:e2:cd:e9: 9f:07:03:87:20:81:34:68:cf:9d:42:fc:13:8e:a9:55:ce:e9: f3:40:48:c7:63:79:fd:bf:69:53:3c:de:cf:eb:37:38:ac:79: 07:ca:f3:fe:3e:fa:78:36:e0:4a:46:9a:43:80:7c:0d:b9:57: 92:85:5f:0c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbSy7jhnQ1DjlnZPIRw8MgbYWmwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNTU1MDFaFw0yNjA0MjEwNjAwMDFaMDMxMTAvBgNV BAMTKENCQjlBODVDMzQ5RkZGODVFRUY0MUU1RjIxMjI4MzI3QjEyM0I0NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Xc0y4ugnDBd1CCxccpdfC5HB FAOYPb4VUZv6r2b8MtSzZra6BgrBDC6/FQbi0fdmjw1R/ltCpJeKpggf1qt0z0Kp AYd2GMFzNVvpCUSBoLgX1cC8JUP9Vb/LwmBaaCrhRFVcMeWsayct7rwzzUTuGp6l ERcgKAvLGfBjs2aAeGpYYM69gfW3hVt4tScLHhhAlJCqsGnO8Zw9fdDsXGkv6A6V 9BFJXj7HRDrsZ5mnEF4ym60MPvShPR0yX7aIYj9cXiLCpNvwhEsQUV2WnPhCPQur udU36N55b2VdV9Gs67YfP0/rrcAPu06bNME1qo7Q5oaLgBP7G6mPRjFS9OD1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy7moXDSf/4Xu9B5fISKDJ7EjtHcwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQAp+/SQ0izQXGrTHrYvOEmoiroVbA29OnvCrbTWgUH5qUal wO2KD1sI7FC6SXJ847A5jVnTjKh33RiOFypUQh4mechMH2c4WsW4iK+IRWMZbHua 3nbJNAx4d5ZZII36H7oviXAHVAUOqIcpQEL/ETd4EZbwcg+I0UqRGzWsiqL2fVA+ OQWPbTk5jpg3BdaC6VWr4pcE5EwjDxkPJKAA9VD/5x9VjeCs1xIcSZZmYK8E6dbF Iyx4grv5PYdFaJvJlHfIkq/izemfBwOHIIE0aM+dQvwTjqlVzunzQEjHY3n9v2lT PN7P6zc4rHkHyvP+Pvp4NuBKRppDgHwNuVeShV8M -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net