$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: bQ/0Y3gOE38F/hh6I6ix2RFNlRx1oA+Xa2Hppirts7U= Subject key identifier: 06:82:E6:82:3E:26:03:B5:A1:D8:2D:FB:E1:5C:3E:C5:16:E1:8C:0E Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 42FBA1C38B5A11810B4403DA7DD608210E863AB7 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa Signing time: Tue 21 May 2024 07:00:02 +0000 ROA not before: Tue 21 May 2024 06:55:02 +0000 ROA not after: Tue 20 May 2025 07:00:02 +0000 asID: 24525 IP address blocks: 114.199.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:fb:a1:c3:8b:5a:11:81:0b:44:03:da:7d:d6:08:21:0e:86:3a:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 06:55:02 2024 GMT Not After : May 20 07:00:02 2025 GMT Subject: CN=0682E6823E2603B5A1D82DFBE15C3EC516E18C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:8a:64:12:1b:39:89:25:04:de:67:b3:76: 1e:3a:cf:5d:f0:8a:72:75:35:75:7c:04:6f:bd:09: db:49:0f:af:85:95:4d:6d:58:3a:79:d9:f8:a0:55: e6:04:31:e4:15:bf:a4:6a:bc:63:0d:7a:36:45:10: f3:6f:db:b0:20:c2:d7:23:ab:1b:a7:26:dd:47:8e: a1:e2:2c:b5:3a:41:af:e7:45:30:2c:c2:2d:a2:01: 6c:aa:c6:db:09:b7:19:c0:09:87:d9:d5:ab:45:4f: cd:ae:d7:af:0e:c4:88:1d:32:16:b7:b1:78:7b:8e: 3c:83:47:a4:9d:cd:1a:2b:20:53:4b:9b:d9:2f:5c: 18:ff:c1:d6:dd:02:b8:4d:d9:45:48:a0:92:12:a4: 9e:7a:5e:cb:7b:6c:fd:fb:5b:06:d5:c8:33:48:38: 99:81:0d:c7:50:d1:92:55:6e:70:16:94:80:ba:da: 55:e4:63:de:bb:94:c0:68:c1:7e:5e:89:7f:a6:83: d2:14:91:8d:40:bf:c5:85:b2:44:3d:be:51:ba:09: e8:4f:1e:02:47:ca:21:ec:20:aa:37:f1:bf:29:04: d5:cf:6a:12:e7:de:96:51:87:27:7f:a3:4f:b1:b9: d0:f4:55:c1:a6:33:2c:53:a1:2f:ee:f4:63:d6:29: bd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:82:E6:82:3E:26:03:B5:A1:D8:2D:FB:E1:5C:3E:C5:16:E1:8C:0E X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.100.0/23 Signature Algorithm: sha256WithRSAEncryption ae:ea:68:a3:5d:9c:94:83:c2:42:a7:92:cd:7f:79:1a:e2:3e: 76:89:82:5f:a8:06:6a:78:c3:2f:35:2f:44:1e:5f:9e:e6:e7: a2:07:b7:76:16:17:11:8e:42:66:63:9c:11:f8:62:7a:dd:35: 19:11:84:ed:e2:51:6b:24:0d:33:08:9b:1b:e8:e4:e6:31:97: 1b:7d:87:08:39:94:e9:d4:86:7a:13:3c:a2:74:9e:ec:7f:10: 7e:cd:16:37:78:93:c5:ae:c6:e7:7a:ee:ca:c4:de:4c:af:07: 07:31:1b:c1:91:2d:dd:8f:d0:97:3e:02:d1:7c:69:e4:6e:fe: b0:b9:42:ee:32:27:ea:3c:94:17:76:ac:72:be:15:dd:51:29: 99:00:09:6d:a5:bf:b1:49:55:af:a0:2a:f7:4c:ef:29:bf:d7: 47:9e:da:34:2a:ed:95:2c:ca:57:8d:c8:19:e6:34:a1:29:3c: f9:18:43:6a:57:10:5e:31:81:66:24:89:06:77:45:45:d7:82: b8:ff:b1:c0:97:09:16:e8:02:ed:79:85:ff:0a:67:3f:12:66: e8:5a:d5:be:27:07:04:e5:fb:af:a6:c1:ec:30:a1:03:69:be: f0:9e:ab:d1:e3:1c:d6:72:e2:7b:c9:a9:7e:e7:fe:67:e8:5e: ec:6e:3f:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQvuhw4taEYELRAPafdYIIQ6GOrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNjU1MDJaFw0yNTA1MjAwNzAwMDJaMDMxMTAvBgNV BAMTKDA2ODJFNjgyM0UyNjAzQjVBMUQ4MkRGQkUxNUMzRUM1MTZFMThDMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPgYpkEhs5iSUE3mezdh46z13w inJ1NXV8BG+9CdtJD6+FlU1tWDp52figVeYEMeQVv6RqvGMNejZFEPNv27Agwtcj qxunJt1HjqHiLLU6Qa/nRTAswi2iAWyqxtsJtxnACYfZ1atFT82u168OxIgdMha3 sXh7jjyDR6SdzRorIFNLm9kvXBj/wdbdArhN2UVIoJISpJ56Xst7bP37WwbVyDNI OJmBDcdQ0ZJVbnAWlIC62lXkY967lMBowX5eiX+mg9IUkY1Av8WFskQ9vlG6CehP HgJHyiHsIKo38b8pBNXPahLn3pZRhyd/o0+xudD0VcGmMyxToS/u9GPWKb3FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBoLmgj4mA7Wh2C374Vw+xRbhjA4wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdkMA0GCSqG SIb3DQEBCwUAA4IBAQCu6mijXZyUg8JCp5LNf3ka4j52iYJfqAZqeMMvNS9EHl+e 5ueiB7d2FhcRjkJmY5wR+GJ63TUZEYTt4lFrJA0zCJsb6OTmMZcbfYcIOZTp1IZ6 EzyidJ7sfxB+zRY3eJPFrsbneu7KxN5MrwcHMRvBkS3dj9CXPgLRfGnkbv6wuULu MifqPJQXdqxyvhXdUSmZAAltpb+xSVWvoCr3TO8pv9dHnto0Ku2VLMpXjcgZ5jSh KTz5GENqVxBeMYFmJIkGd0VF14K4/7HAlwkW6ALteYX/Cmc/EmboWtW+JwcE5fuv psHsMKEDab7wnqvR4xzWcuJ7yal+5/5n6F7sbj+Z -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org