$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f31392d3139203d3e203234353235.roa File: 3131342e3139392e39362e302f31392d3139203d3e203234353235.roa (raw, json) Hash identifier: hXxDZpOgsae0LIhAJaeJtABGV4eOWbH0UOz8XXqa0LY= Subject key identifier: 54:BD:5D:2D:FB:88:41:61:0C:56:EA:66:6C:A6:49:86:38:47:D6:BF Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0F3B170816EA21DE270680C8AF651D27A2A4058F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f31392d3139203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:48 +0000 ROA not before: Tue 22 Apr 2025 07:58:48 +0000 ROA not after: Tue 21 Apr 2026 08:03:48 +0000 asID: 24525 IP address blocks: 114.199.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3b:17:08:16:ea:21:de:27:06:80:c8:af:65:1d:27:a2:a4:05:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:48 2025 GMT Not After : Apr 21 08:03:48 2026 GMT Subject: CN=54BD5D2DFB8841610C56EA666CA649863847D6BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:f6:2f:3e:5c:b9:51:35:5e:b5:e4:bd:2a: 19:48:90:87:71:22:1d:42:5d:32:f4:7a:75:26:10: ab:93:5b:4a:24:19:c9:34:05:eb:c8:c2:61:1a:18: a3:99:ae:8b:a9:e0:e3:da:e6:0f:e8:b2:8b:52:b2: fa:63:f1:32:b8:c1:9c:77:cf:d4:a2:c9:a3:5f:59: 40:4a:47:1f:6f:0b:cd:a1:34:9d:5d:d5:ba:4d:67: 0d:22:e8:68:c0:b0:ac:56:14:a3:84:6a:e0:ac:e6: 44:98:95:28:25:d1:f6:c2:c8:32:b6:ed:b3:76:2e: 48:ec:ec:36:87:93:e0:8e:e7:99:f4:3a:17:7d:29: 47:7f:b4:15:cb:dd:3c:5b:2f:2a:af:8e:ef:59:0f: a3:6e:18:d1:6c:b4:3f:b0:6c:b9:48:0f:05:e7:74: 41:40:da:c4:7e:bb:ce:2a:97:76:23:39:88:80:aa: 2e:93:7b:84:24:77:37:35:02:ff:7d:b2:61:b4:91: 1c:c5:1e:c0:2b:46:e7:a6:73:16:11:da:9e:68:a4: 9e:b2:6b:46:4e:2a:2e:6d:c4:80:72:df:fe:1d:7e: ef:1f:7f:68:90:3b:26:6f:2c:d7:3c:ca:22:86:53: a2:1c:3c:79:8d:1e:30:aa:5c:b2:bf:c5:d6:a7:f9: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:BD:5D:2D:FB:88:41:61:0C:56:EA:66:6C:A6:49:86:38:47:D6:BF X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f31392d3139203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.96.0/19 Signature Algorithm: sha256WithRSAEncryption 8a:15:61:c3:e7:4e:ca:7d:15:ad:20:04:cf:a9:46:8f:78:31: 93:d5:6b:6c:0d:9c:c6:23:77:8c:12:4e:57:74:73:75:1f:72: 41:3d:b3:33:5a:dd:cb:c2:74:de:03:8d:75:5c:d8:ca:75:df: 26:dd:a3:fc:dd:34:a9:17:b1:e9:d0:57:c5:a5:d2:a5:9e:df: 91:c5:d7:1a:03:65:d2:3a:92:34:ef:2b:56:20:ef:cd:9e:d2: fe:5d:84:d7:9b:62:f7:5d:05:4a:45:8d:ba:ae:45:48:70:53: e7:df:3b:89:f9:69:06:03:d7:69:9e:a4:15:10:9c:0f:56:f0: c0:65:ac:22:6f:b0:48:ef:c1:0a:03:a8:2c:49:99:b0:a7:50: d3:66:81:a4:5e:da:34:09:3f:19:75:53:73:8c:f8:4d:c1:ad: 73:27:15:0e:94:b5:e5:1c:4c:df:5e:f5:33:d0:27:da:0b:ab: 3c:40:20:ce:f3:4a:c4:f7:26:f0:09:7f:ce:89:83:a9:2c:45: d2:cb:33:53:be:cd:5b:97:d0:9f:74:7a:12:9f:8a:c3:81:b0: e1:07:41:2d:1a:26:ba:0a:09:ae:19:5e:8f:dd:06:1c:b5:f9: f1:11:3a:05:dd:8c:88:59:5f:f5:99:a7:b7:83:24:36:17:e7: 9b:43:b8:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDzsXCBbqId4nBoDIr2UdJ6KkBY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDhaFw0yNjA0MjEwODAzNDhaMDMxMTAvBgNV BAMTKDU0QkQ1RDJERkI4ODQxNjEwQzU2RUE2NjZDQTY0OTg2Mzg0N0Q2QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9XPYvPly5UTVeteS9KhlIkIdx Ih1CXTL0enUmEKuTW0okGck0BevIwmEaGKOZroup4OPa5g/osotSsvpj8TK4wZx3 z9SiyaNfWUBKRx9vC82hNJ1d1bpNZw0i6GjAsKxWFKOEauCs5kSYlSgl0fbCyDK2 7bN2Lkjs7DaHk+CO55n0Ohd9KUd/tBXL3TxbLyqvju9ZD6NuGNFstD+wbLlIDwXn dEFA2sR+u84ql3YjOYiAqi6Te4Qkdzc1Av99smG0kRzFHsArRuemcxYR2p5opJ6y a0ZOKi5txIBy3/4dfu8ff2iQOyZvLNc8yiKGU6IcPHmNHjCqXLK/xdan+VEPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVL1dLfuIQWEMVupmbKZJhjhH1r8wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM2MmUzMDJmMzEz OTJkMzEzOTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXLHYDANBgkqhkiG 9w0BAQsFAAOCAQEAihVhw+dOyn0VrSAEz6lGj3gxk9VrbA2cxiN3jBJOV3RzdR9y QT2zM1rdy8J03gONdVzYynXfJt2j/N00qRex6dBXxaXSpZ7fkcXXGgNl0jqSNO8r ViDvzZ7S/l2E15ti910FSkWNuq5FSHBT5987iflpBgPXaZ6kFRCcD1bwwGWsIm+w SO/BCgOoLEmZsKdQ02aBpF7aNAk/GXVTc4z4TcGtcycVDpS15RxM3171M9An2gur PEAgzvNKxPcm8Al/zomDqSxF0sszU77NW5fQn3R6Ep+Kw4Gw4QdBLRomugoJrhle j90GHLX58RE6Bd2MiFlf9Zmnt4MkNhfnm0O4zA== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net