$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: WnvbJYABZJGKRuil33/tr1eNMYE8sMHoReaPO1PRhx0= Subject key identifier: 6E:C6:8C:71:FB:75:16:B5:04:16:12:68:ED:9C:02:C4:BC:27:F3:C1 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 67ADFAADF14675A5643176DF6EA6177A34CEBA5E Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:00 +0000 ROA not before: Sat 01 Jun 2024 07:56:00 +0000 ROA not after: Sat 31 May 2025 08:01:00 +0000 asID: 24525 IP address blocks: 114.199.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ad:fa:ad:f1:46:75:a5:64:31:76:df:6e:a6:17:7a:34:ce:ba:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:00 2024 GMT Not After : May 31 08:01:00 2025 GMT Subject: CN=6EC68C71FB7516B504161268ED9C02C4BC27F3C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0c:6e:cc:79:5b:23:97:b3:7e:53:22:dc:b6: fb:30:9f:9c:3b:a5:2a:4c:a4:8e:1d:dd:01:10:c9: a8:60:30:9b:8f:4f:e7:59:b5:4c:39:ea:84:29:03: 01:03:c6:e6:e9:fc:de:9f:2b:b0:4f:98:cb:13:18: b8:e9:bd:c0:a4:e9:7f:c4:0c:98:ba:d6:98:8d:af: 90:99:dc:6c:50:65:e1:e7:e8:13:cf:8f:f0:7b:ab: 23:6e:5f:2c:58:35:81:4f:ef:fd:ae:5e:b7:ae:0d: 87:9f:10:78:5e:f5:18:ab:1d:4f:df:6c:4b:3f:e9: 10:23:dd:00:23:2c:85:d6:c7:80:a5:db:65:38:7a: e5:06:68:42:2b:52:12:99:51:ff:98:42:cd:82:da: a8:32:c3:06:79:4d:39:2c:56:af:e0:dc:0f:fe:7f: 45:cf:2d:8f:c3:bd:53:37:97:17:af:2b:75:e0:eb: 43:55:df:96:5b:e3:8e:98:76:55:59:67:bb:ee:08: f9:4f:e7:fb:00:26:67:92:f0:91:e2:ed:6b:dc:31: cf:56:b7:b9:e7:68:62:44:ce:cc:85:ed:b5:e3:c1: a6:4a:96:84:6b:6d:3a:f1:03:0b:bc:cf:18:4e:01: 42:9d:47:ab:6f:fd:df:3c:9d:10:a1:70:4c:51:af: 9d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C6:8C:71:FB:75:16:B5:04:16:12:68:ED:9C:02:C4:BC:27:F3:C1 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.102.0/24 Signature Algorithm: sha256WithRSAEncryption ad:54:48:c0:73:79:ec:7f:79:8b:34:b4:dc:4d:dc:28:bf:d8: 83:aa:8d:ec:ec:29:b9:24:4a:66:bf:68:45:2b:b7:1b:c6:41: 0e:67:64:32:43:e8:6d:e7:f3:30:86:6d:ee:ee:0f:5c:d9:a3: d6:bd:11:07:85:c3:ae:5a:f2:02:6b:f4:db:38:c2:1e:c1:86: f1:44:d4:91:64:2b:19:94:56:94:e2:51:56:1f:13:67:cb:ba: 54:99:af:f7:b5:d1:14:2e:9a:08:5b:0b:b0:24:aa:f9:d3:04: 9b:ff:7b:f0:5b:9e:64:3e:e4:38:0c:23:ab:d9:9e:c8:61:7a: c4:05:b0:4c:d7:ac:cc:58:57:de:bd:7c:b3:09:0a:d8:8c:a1: 31:75:34:83:18:b8:05:4c:23:e1:6e:5d:99:06:d0:c0:c7:19: a8:e2:5b:54:33:94:8e:e5:40:76:56:ec:e0:db:79:5f:5c:19: 44:8d:4c:2f:78:94:62:36:94:87:7e:ba:e1:67:c8:f6:10:31: d0:d9:49:5b:d7:27:be:03:a2:a4:80:43:f2:19:11:8c:60:0b: fd:38:98:50:51:51:81:4e:c5:7d:b0:0c:89:7b:29:ac:d2:61: 5b:1d:0c:de:68:56:e7:db:1d:43:86:a4:d9:99:fb:e0:d1:1e: e5:3c:6d:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ636rfFGdaVkMXbfbqYXejTOul4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDBaFw0yNTA1MzEwODAxMDBaMDMxMTAvBgNV BAMTKDZFQzY4QzcxRkI3NTE2QjUwNDE2MTI2OEVEOUMwMkM0QkMyN0YzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmDG7MeVsjl7N+UyLctvswn5w7 pSpMpI4d3QEQyahgMJuPT+dZtUw56oQpAwEDxubp/N6fK7BPmMsTGLjpvcCk6X/E DJi61piNr5CZ3GxQZeHn6BPPj/B7qyNuXyxYNYFP7/2uXreuDYefEHhe9RirHU/f bEs/6RAj3QAjLIXWx4Cl22U4euUGaEIrUhKZUf+YQs2C2qgywwZ5TTksVq/g3A/+ f0XPLY/DvVM3lxevK3Xg60NV35Zb446YdlVZZ7vuCPlP5/sAJmeS8JHi7WvcMc9W t7nnaGJEzsyF7bXjwaZKloRrbTrxAwu8zxhOAUKdR6tv/d88nRChcExRr501AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbsaMcft1FrUEFhJo7ZwCxLwn88EwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdmMA0GCSqG SIb3DQEBCwUAA4IBAQCtVEjAc3nsf3mLNLTcTdwov9iDqo3s7Cm5JEpmv2hFK7cb xkEOZ2QyQ+ht5/Mwhm3u7g9c2aPWvREHhcOuWvICa/TbOMIewYbxRNSRZCsZlFaU 4lFWHxNny7pUma/3tdEULpoIWwuwJKr50wSb/3vwW55kPuQ4DCOr2Z7IYXrEBbBM 16zMWFfevXyzCQrYjKExdTSDGLgFTCPhbl2ZBtDAxxmo4ltUM5SO5UB2Vuzg23lf XBlEjUwveJRiNpSHfrrhZ8j2EDHQ2Ulb1ye+A6KkgEPyGRGMYAv9OJhQUVGBTsV9 sAyJeyms0mFbHQzeaFbn2x1DhqTZmfvg0R7lPG0i -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org