$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: BDiwnyt4Y6d4v9ea4sTH/NizlJ9uVO3if+jRK3xYJGU= Subject key identifier: 0D:04:62:CC:84:34:98:E6:87:BC:C9:FF:B4:BE:7C:42:86:13:08:2A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 13FA02432ED25E1C1FEC2BE2B28B276B8C5FD291 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:48 +0000 ROA not before: Tue 22 Apr 2025 07:58:48 +0000 ROA not after: Tue 21 Apr 2026 08:03:48 +0000 asID: 24525 IP address blocks: 114.199.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:fa:02:43:2e:d2:5e:1c:1f:ec:2b:e2:b2:8b:27:6b:8c:5f:d2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:48 2025 GMT Not After : Apr 21 08:03:48 2026 GMT Subject: CN=0D0462CC843498E687BCC9FFB4BE7C428613082A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cf:53:57:3d:34:24:4b:c3:e3:4a:8a:dc:32: 08:87:17:72:9a:56:5b:6a:e9:7c:20:7f:31:ef:62: 8d:cf:68:57:ef:f1:af:e3:a4:c9:e9:f3:6c:b0:37: c0:c4:71:29:aa:aa:85:0c:f3:ac:03:11:ee:c2:a3: 3b:15:de:8a:cc:e0:0a:29:69:4e:7a:91:bf:92:9c: fa:ec:d2:70:0d:58:62:3f:6c:4c:8b:ba:10:b4:74: c8:ad:b6:9e:99:ad:9c:bc:fd:52:21:99:fa:c0:99: 75:4c:e6:38:9b:74:e1:4c:2d:c9:f7:9f:b5:83:fc: 62:4f:5d:e0:31:5a:97:7c:50:b3:27:00:8b:8e:54: 5f:b8:80:8b:ac:ab:04:0d:0f:09:b8:15:75:cd:4d: 65:21:cf:13:a4:be:83:d0:29:0b:a4:88:f7:3a:b4: 4c:1f:4f:43:cb:2a:01:4c:4f:d1:98:61:0d:76:21: 92:d3:6e:58:cc:9d:bc:dc:60:15:56:82:c7:89:80: 6c:71:92:f8:0a:79:b8:fd:9a:e0:89:d9:3e:d1:cf: ff:0a:ee:52:7a:c2:1b:d8:ab:c2:93:e4:af:20:56: 61:38:c3:71:c5:19:7d:40:a7:48:41:c5:2e:21:7b: 7a:7d:dc:99:41:f5:01:a1:5c:bf:1c:28:0f:26:1b: e1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:04:62:CC:84:34:98:E6:87:BC:C9:FF:B4:BE:7C:42:86:13:08:2A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.124.0/23 Signature Algorithm: sha256WithRSAEncryption 81:c4:08:db:2c:71:8a:14:df:e8:f3:d5:a4:ab:f4:1d:a9:c0: 98:56:99:79:c2:9d:fc:4e:41:82:3d:bc:ca:ec:87:f3:6c:67: b1:14:3e:8a:6c:45:a4:bd:74:95:96:38:06:b5:2a:7c:a8:f6: ce:af:88:41:3a:ee:01:45:fb:92:37:a6:6b:b7:8e:3f:9b:ca: 0d:68:24:9f:10:66:a1:57:43:87:9d:be:fa:84:20:ce:c0:2f: 5c:33:e6:ab:79:d8:0e:da:f7:3d:1b:9d:5c:a5:7a:60:b5:5c: 8c:fe:35:a4:cd:30:76:38:01:ca:ba:b9:14:39:12:0f:e1:51: c0:fd:16:25:38:b7:8f:c9:c9:53:4b:0a:b7:1f:63:84:2a:d5: 09:e4:0a:02:f4:de:59:a8:26:ff:bb:1d:c3:44:52:69:d3:15: b6:60:9f:0f:57:22:18:9f:8b:8d:ca:0e:bd:8c:df:c4:13:35: 80:37:cc:08:30:85:ee:25:ef:b0:9f:bb:3d:75:55:e0:c6:0c: 31:3e:2f:15:3c:93:d7:c5:3c:47:c3:16:fc:63:aa:8f:58:6d: bf:14:68:b5:a8:d6:f5:eb:7c:85:ca:ba:23:a8:2c:78:b9:b0: e8:8e:e1:2b:ca:c0:f5:01:e6:83:7a:15:e5:e0:ac:9c:24:19: b4:a9:cd:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE/oCQy7SXhwf7Cvisosna4xf0pEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDhaFw0yNjA0MjEwODAzNDhaMDMxMTAvBgNV BAMTKDBEMDQ2MkNDODQzNDk4RTY4N0JDQzlGRkI0QkU3QzQyODYxMzA4MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAz1NXPTQkS8PjSorcMgiHF3Ka Vltq6XwgfzHvYo3PaFfv8a/jpMnp82ywN8DEcSmqqoUM86wDEe7CozsV3orM4Aop aU56kb+SnPrs0nANWGI/bEyLuhC0dMittp6ZrZy8/VIhmfrAmXVM5jibdOFMLcn3 n7WD/GJPXeAxWpd8ULMnAIuOVF+4gIusqwQNDwm4FXXNTWUhzxOkvoPQKQukiPc6 tEwfT0PLKgFMT9GYYQ12IZLTbljMnbzcYBVWgseJgGxxkvgKebj9muCJ2T7Rz/8K 7lJ6whvYq8KT5K8gVmE4w3HFGX1Ap0hBxS4he3p93JlB9QGhXL8cKA8mG+GvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDQRizIQ0mOaHvMn/tL58QoYTCCowHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd8MA0GCSqG SIb3DQEBCwUAA4IBAQCBxAjbLHGKFN/o89Wkq/QdqcCYVpl5wp38TkGCPbzK7Ifz bGexFD6KbEWkvXSVljgGtSp8qPbOr4hBOu4BRfuSN6Zrt44/m8oNaCSfEGahV0OH nb76hCDOwC9cM+aredgO2vc9G51cpXpgtVyM/jWkzTB2OAHKurkUORIP4VHA/RYl OLePyclTSwq3H2OEKtUJ5AoC9N5ZqCb/ux3DRFJp0xW2YJ8PVyIYn4uNyg69jN/E EzWAN8wIMIXuJe+wn7s9dVXgxgwxPi8VPJPXxTxHwxb8Y6qPWG2/FGi1qNb163yF yrojqCx4ubDojuErysD1AeaDehXl4KycJBm0qc2L -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net