$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: Caz0m+Mf9bugo9gRSEmPxCrmKSDfTF0my1LV40+M2sc= Subject key identifier: 4D:2A:4F:25:63:82:99:BD:33:1D:F1:29:D7:30:B8:0E:62:3D:69:20 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 24D6EC1E2464690ED31713DDB799DC707C23DB85 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:48 +0000 ROA not before: Tue 22 Apr 2025 07:58:48 +0000 ROA not after: Tue 21 Apr 2026 08:03:48 +0000 asID: 24525 IP address blocks: 114.199.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d6:ec:1e:24:64:69:0e:d3:17:13:dd:b7:99:dc:70:7c:23:db:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:48 2025 GMT Not After : Apr 21 08:03:48 2026 GMT Subject: CN=4D2A4F25638299BD331DF129D730B80E623D6920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:be:90:0a:9a:73:61:3f:94:fb:b0:cf:ec: 11:ad:94:bc:95:43:7f:1c:31:bf:70:ca:75:dc:49: 42:14:88:47:86:ce:2f:30:e0:2e:e6:e0:e9:51:bb: 86:28:fe:fa:62:bb:f6:01:f0:40:c5:26:00:fa:33: e4:b3:02:7c:42:10:0d:24:64:a3:94:91:cf:2c:09: 50:45:bd:4a:4d:0e:1c:78:c9:bf:95:e4:fc:44:13: 7d:48:51:37:c6:c1:56:9a:d0:d5:3e:a0:59:28:66: c9:7b:dc:00:26:31:4a:29:cc:ef:09:69:7d:d9:a5: 06:4c:b4:6f:63:2b:8e:31:08:7f:25:9d:2e:6b:74: 4e:9c:91:02:3b:e4:5f:ed:4c:26:72:22:7f:b1:a5: c0:ce:c7:51:48:a4:cd:7b:8e:31:db:40:08:85:8c: 06:bd:bf:f6:4d:7d:2c:0d:2e:73:db:69:62:2e:5a: f7:f8:d0:6c:e1:95:90:90:4e:2f:a8:41:74:c4:ce: 79:72:f7:61:9b:27:be:e0:2a:fb:aa:8a:f7:77:8f: b5:41:c7:8a:fc:eb:23:02:da:fa:06:3c:2b:31:6c: b9:02:63:38:73:fa:aa:ed:0e:23:30:be:27:85:ea: f3:15:53:4d:08:ef:c7:96:df:ed:ab:88:ca:39:f0: c1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2A:4F:25:63:82:99:BD:33:1D:F1:29:D7:30:B8:0E:62:3D:69:20 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.122.0/23 Signature Algorithm: sha256WithRSAEncryption a6:05:8d:66:a9:86:eb:73:cd:b2:e6:86:56:6a:ab:1c:df:ae: e0:5d:7b:56:d6:6b:a7:8a:50:3a:dc:62:de:c5:cf:93:96:67: b3:43:3c:29:1a:26:90:9e:c3:e1:81:e0:eb:f8:a4:4b:44:fd: c3:ad:20:31:36:2a:0b:ab:74:ce:6d:1f:a5:1d:bb:9d:05:0c: e4:99:9d:8f:3e:21:f7:90:ac:c1:f9:82:c3:82:c5:01:5d:06: 57:55:e8:b4:c0:fc:b9:bc:2b:65:ce:53:f0:ac:6b:0b:28:32: 9e:da:44:86:92:92:36:73:39:9a:86:ab:8f:9b:d8:5a:3b:72: dc:1d:eb:53:57:7c:56:34:87:c6:0e:a0:7a:3f:ca:64:61:85: be:22:95:10:8e:77:87:9c:a0:6d:3e:5e:02:a7:f6:33:3f:7e: 49:d1:e6:72:57:f5:c5:bf:41:5d:03:81:00:da:25:42:fc:a7: dc:13:ac:05:06:fb:a2:6f:e9:08:64:a4:3a:e7:76:1c:37:61: e7:08:4e:b3:6d:63:0c:24:1b:d3:b4:94:52:37:e5:93:0a:3a: 62:cb:c0:fd:96:ee:a8:14:54:63:2b:f0:56:a9:a5:bc:ba:44: f1:c7:eb:f3:97:d8:6e:8f:4b:fe:7e:0c:79:08:4c:e7:9c:71: 95:5e:3c:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJNbsHiRkaQ7TFxPdt5nccHwj24UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDhaFw0yNjA0MjEwODAzNDhaMDMxMTAvBgNV BAMTKDREMkE0RjI1NjM4Mjk5QkQzMzFERjEyOUQ3MzBCODBFNjIzRDY5MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/b6QCppzYT+U+7DP7BGtlLyV Q38cMb9wynXcSUIUiEeGzi8w4C7m4OlRu4Yo/vpiu/YB8EDFJgD6M+SzAnxCEA0k ZKOUkc8sCVBFvUpNDhx4yb+V5PxEE31IUTfGwVaa0NU+oFkoZsl73AAmMUopzO8J aX3ZpQZMtG9jK44xCH8lnS5rdE6ckQI75F/tTCZyIn+xpcDOx1FIpM17jjHbQAiF jAa9v/ZNfSwNLnPbaWIuWvf40GzhlZCQTi+oQXTEznly92GbJ77gKvuqivd3j7VB x4r86yMC2voGPCsxbLkCYzhz+qrtDiMwvieF6vMVU00I78eW3+2riMo58MFrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTSpPJWOCmb0zHfEp1zC4DmI9aSAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd6MA0GCSqG SIb3DQEBCwUAA4IBAQCmBY1mqYbrc82y5oZWaqsc367gXXtW1munilA63GLexc+T lmezQzwpGiaQnsPhgeDr+KRLRP3DrSAxNioLq3TObR+lHbudBQzkmZ2PPiH3kKzB +YLDgsUBXQZXVei0wPy5vCtlzlPwrGsLKDKe2kSGkpI2czmahquPm9haO3LcHetT V3xWNIfGDqB6P8pkYYW+IpUQjneHnKBtPl4Cp/YzP35J0eZyV/XFv0FdA4EA2iVC /KfcE6wFBvuib+kIZKQ653YcN2HnCE6zbWMMJBvTtJRSN+WTCjpiy8D9lu6oFFRj K/BWqaW8ukTxx+vzl9huj0v+fgx5CEznnHGVXjy4 -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net