$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e39362e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: zT/6fmQITsI4nPPeZIDLoX0INIShZy07BPp4wYHmdTE= Subject key identifier: 19:BA:54:0E:7F:64:82:B5:B3:48:21:CB:4B:1C:C8:B4:4F:84:67:AE Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 54B0FD68F092CF0A021FB98D0529AE4927BCD575 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32312d3231203d3e203234353235.roa Signing time: Tue 22 Apr 2025 07:00:07 +0000 ROA not before: Tue 22 Apr 2025 06:55:07 +0000 ROA not after: Tue 21 Apr 2026 07:00:07 +0000 asID: 24525 IP address blocks: 114.199.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b0:fd:68:f0:92:cf:0a:02:1f:b9:8d:05:29:ae:49:27:bc:d5:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 06:55:07 2025 GMT Not After : Apr 21 07:00:07 2026 GMT Subject: CN=19BA540E7F6482B5B34821CB4B1CC8B44F8467AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0e:cb:fc:15:0a:50:4e:65:08:6a:bb:3b:fc: 7d:3c:00:32:05:3f:40:db:f1:f3:69:07:da:fd:9e: ad:71:9c:50:68:1f:d8:0e:57:2a:88:f5:41:b5:62: ae:0a:40:00:fa:0c:8b:5e:83:00:46:3a:69:d9:3d: f5:9f:c5:be:25:9b:12:e2:a0:40:d2:04:42:bf:1f: 5e:c2:96:ee:2c:8f:77:2f:f7:44:9f:ed:85:75:e2: 45:42:9d:40:07:d0:4c:aa:dd:14:87:79:bf:7a:af: bc:62:b7:c0:72:06:83:47:33:a6:c9:b6:63:07:ba: 30:70:81:e7:b6:bc:db:68:3b:d6:a1:9c:80:31:30: 86:8a:a7:ea:3f:04:6a:22:89:51:55:4f:90:62:ec: 0f:98:ee:9f:8d:ff:4d:8c:9b:df:45:17:7a:e2:ac: e5:44:ac:68:ac:94:1a:c3:a7:e0:90:cd:9c:25:3c: 41:95:99:0a:59:6d:b9:21:dd:50:fd:3f:59:e1:63: 69:82:f3:98:02:21:4b:a2:dd:4e:36:ec:41:87:b7: a4:b2:cf:36:71:45:93:09:76:3a:2c:42:12:a7:57: a5:3a:c1:b4:b8:06:15:5e:8a:c6:d9:fc:34:19:a2: 4e:d0:74:98:55:bd:f8:a8:3d:b4:d2:60:6c:8a:7f: 63:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BA:54:0E:7F:64:82:B5:B3:48:21:CB:4B:1C:C8:B4:4F:84:67:AE X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.96.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:8a:8b:a1:55:96:87:2d:6f:3c:ce:aa:51:78:47:e3:9d:46: 83:63:7e:e3:63:a4:6a:e6:a8:cf:cf:77:b9:0d:75:c2:18:af: f9:23:a0:87:74:d1:b4:9f:6d:2c:cd:d7:ef:c1:7b:9e:55:ea: 10:bd:c1:d7:9f:7a:e9:ff:f8:af:69:fd:47:67:d6:1c:a3:d1: c6:79:f0:5f:8e:96:02:37:e4:1a:ca:6f:53:b1:07:68:32:cc: 66:52:cc:aa:8f:21:fc:92:f3:53:92:62:9a:a2:61:e6:ca:50: b4:dc:12:06:4e:15:f1:6e:d6:1b:de:e9:9a:ed:d7:88:39:4e: 89:92:38:76:77:46:b7:82:75:98:ed:41:a6:4c:94:46:09:c9: dd:0a:4c:b9:0c:60:2d:0d:1c:90:3b:9b:60:a4:88:4e:ac:81: e3:9d:07:7d:2a:3d:5d:fe:54:6e:c7:5c:6c:fe:3d:e2:4d:a2: 92:88:36:da:00:9e:ec:b6:97:9f:35:b7:d7:75:bb:75:0b:8e: c6:92:28:79:7b:30:db:76:ad:21:05:92:d4:b7:a6:12:01:ec: e8:09:b4:c8:b8:c9:53:ad:a5:9c:a8:41:74:e2:31:31:fc:e5: 41:36:50:cc:a6:30:cc:f1:bb:27:3f:d8:6c:a8:13:bd:73:10: e4:db:d3:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVLD9aPCSzwoCH7mNBSmuSSe81XUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNjU1MDdaFw0yNjA0MjEwNzAwMDdaMDMxMTAvBgNV BAMTKDE5QkE1NDBFN0Y2NDgyQjVCMzQ4MjFDQjRCMUNDOEI0NEY4NDY3QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSDsv8FQpQTmUIars7/H08ADIF P0Db8fNpB9r9nq1xnFBoH9gOVyqI9UG1Yq4KQAD6DItegwBGOmnZPfWfxb4lmxLi oEDSBEK/H17Clu4sj3cv90Sf7YV14kVCnUAH0Eyq3RSHeb96r7xit8ByBoNHM6bJ tmMHujBwgee2vNtoO9ahnIAxMIaKp+o/BGoiiVFVT5Bi7A+Y7p+N/02Mm99FF3ri rOVErGislBrDp+CQzZwlPEGVmQpZbbkh3VD9P1nhY2mC85gCIUui3U427EGHt6Sy zzZxRZMJdjosQhKnV6U6wbS4BhVeisbZ/DQZok7QdJhVvfioPbTSYGyKf2MbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGbpUDn9kgrWzSCHLSxzItE+EZ64wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3LHYDANBgkqhkiG 9w0BAQsFAAOCAQEAS4qLoVWWhy1vPM6qUXhH451Gg2N+42Okauaoz893uQ11whiv +SOgh3TRtJ9tLM3X78F7nlXqEL3B15966f/4r2n9R2fWHKPRxnnwX46WAjfkGspv U7EHaDLMZlLMqo8h/JLzU5JimqJh5spQtNwSBk4V8W7WG97pmu3XiDlOiZI4dndG t4J1mO1BpkyURgnJ3QpMuQxgLQ0ckDubYKSITqyB450HfSo9Xf5UbsdcbP494k2i kog22gCe7LaXnzW313W7dQuOxpIoeXsw23atIQWS1LemEgHs6Am0yLjJU62lnKhB dOIxMfzlQTZQzKYwzPG7Jz/YbKgTvXMQ5NvThw== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net