$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e39362e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: oZi9dGC6V678LyKNP/hPROXSeSbfEFMDGst4Y+cXNt4= Subject key identifier: C3:5F:CF:9B:81:8D:E5:88:CA:66:7D:20:6B:71:E9:C0:BA:67:73:5A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 6AF9F59C34A8FC0A479941DC32E23D38F2F0C844 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:48 +0000 ROA not before: Tue 22 Apr 2025 07:58:48 +0000 ROA not after: Tue 21 Apr 2026 08:03:48 +0000 asID: 24525 IP address blocks: 114.199.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f9:f5:9c:34:a8:fc:0a:47:99:41:dc:32:e2:3d:38:f2:f0:c8:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:48 2025 GMT Not After : Apr 21 08:03:48 2026 GMT Subject: CN=C35FCF9B818DE588CA667D206B71E9C0BA67735A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:14:69:9f:f6:cb:63:75:5a:39:0c:44:27:41: 00:9f:26:7a:b6:40:3d:0f:b5:4a:e6:aa:2c:98:49: ae:2b:d3:af:88:de:da:d5:9e:29:c0:58:70:97:09: 97:0c:1a:eb:95:c0:f4:3a:71:7b:7d:1c:30:e5:f6: 39:f8:2a:45:a3:68:38:fd:00:16:01:80:50:e6:6d: 05:71:a2:9e:3d:ea:bf:85:41:9b:07:af:a8:08:5e: 31:14:e8:5f:a1:d4:36:9b:a0:1d:c2:0c:86:50:7e: 86:6e:97:3a:29:78:1f:36:9f:7b:f6:68:4e:0d:71: e6:d0:30:3c:10:2f:2a:6f:0d:1e:26:97:ee:09:8a: a9:75:56:80:1c:c0:01:5b:be:00:be:e9:f1:6e:f4: 18:e4:41:18:0e:fc:31:59:7b:96:d9:ba:f1:4d:60: 85:38:45:a3:4c:c3:fa:b8:68:63:7f:04:80:2f:56: 10:86:85:02:05:06:ba:17:21:ab:00:e9:39:56:8a: 48:ae:13:86:9c:36:b5:01:f0:8c:d3:b1:ca:90:fd: 11:91:41:dd:f6:7b:67:90:53:3e:d7:c0:b0:8a:ce: a0:51:02:25:de:48:b7:2e:64:bd:05:24:d7:50:fe: 88:10:ee:09:18:a9:fd:81:63:8e:09:86:59:e8:be: 28:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5F:CF:9B:81:8D:E5:88:CA:66:7D:20:6B:71:E9:C0:BA:67:73:5A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.96.0/22 Signature Algorithm: sha256WithRSAEncryption 18:63:ab:a7:a7:67:1c:61:55:ec:24:53:3c:b2:6a:ff:06:10: 68:a8:e8:a1:f0:6c:8c:1c:7e:50:87:c1:52:41:0f:75:58:6c: 01:f1:7b:66:29:ed:52:6e:fa:6c:e5:ef:31:99:5b:74:dc:35: 03:17:ef:7e:aa:8f:0b:a1:10:75:d8:a7:56:08:b2:09:5a:5d: 92:33:02:db:bb:f2:b1:02:61:65:83:f9:17:3b:27:ef:e7:fb: 09:22:c2:4a:26:04:26:3a:19:31:42:13:64:0f:3c:ec:9e:45: 62:f4:80:d4:e3:93:c0:97:de:b6:0b:0e:ad:5a:b3:d2:8e:3b: bf:0c:44:de:4b:53:07:95:26:d2:90:ab:25:e7:98:02:67:8f: 32:cd:be:7d:3c:db:27:ed:90:2a:f6:2b:72:b0:11:3e:e0:3c: ca:ad:64:d3:f4:be:f8:c9:43:ab:aa:99:5e:05:8f:6d:a2:a9: 67:a1:8b:e3:cb:02:e2:0f:5f:b0:8d:fb:c5:d2:b7:bd:39:20: d0:4e:76:87:b2:fb:08:3a:bc:e9:4b:e0:a7:89:d2:07:de:c5: 18:f5:64:4c:e3:01:54:6a:8f:38:05:bb:59:e2:10:3d:5d:a4: 2b:33:db:51:f1:c7:78:46:c8:e7:1c:c4:d0:dc:a4:d5:02:c6: d1:ad:32:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUavn1nDSo/ApHmUHcMuI9OPLwyEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDhaFw0yNjA0MjEwODAzNDhaMDMxMTAvBgNV BAMTKEMzNUZDRjlCODE4REU1ODhDQTY2N0QyMDZCNzFFOUMwQkE2NzczNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChFGmf9stjdVo5DEQnQQCfJnq2 QD0PtUrmqiyYSa4r06+I3trVninAWHCXCZcMGuuVwPQ6cXt9HDDl9jn4KkWjaDj9 ABYBgFDmbQVxop496r+FQZsHr6gIXjEU6F+h1DaboB3CDIZQfoZulzopeB82n3v2 aE4NcebQMDwQLypvDR4ml+4Jiql1VoAcwAFbvgC+6fFu9BjkQRgO/DFZe5bZuvFN YIU4RaNMw/q4aGN/BIAvVhCGhQIFBroXIasA6TlWikiuE4acNrUB8IzTscqQ/RGR Qd32e2eQUz7XwLCKzqBRAiXeSLcuZL0FJNdQ/ogQ7gkYqf2BY44JhlnoviipAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUw1/Pm4GN5YjKZn0ga3HpwLpnc1owHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnLHYDANBgkqhkiG 9w0BAQsFAAOCAQEAGGOrp6dnHGFV7CRTPLJq/wYQaKjoofBsjBx+UIfBUkEPdVhs AfF7ZintUm76bOXvMZlbdNw1AxfvfqqPC6EQddinVgiyCVpdkjMC27vysQJhZYP5 Fzsn7+f7CSLCSiYEJjoZMUITZA887J5FYvSA1OOTwJfetgsOrVqz0o47vwxE3ktT B5Um0pCrJeeYAmePMs2+fTzbJ+2QKvYrcrARPuA8yq1k0/S++MlDq6qZXgWPbaKp Z6GL48sC4g9fsI37xdK3vTkg0E52h7L7CDq86Uvgp4nSB97FGPVkTOMBVGqPOAW7 WeIQPV2kKzPbUfHHeEbI5xzE0Nyk1QLG0a0yNw== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net