$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: DLp6dEKHxTaqpgt1LBXN1ctBmLdd9MUY0TavbgllC/0= Subject key identifier: E4:AA:13:F3:D9:CF:FA:7B:82:6F:DD:48:4F:5A:ED:59:26:D7:79:81 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 4700CACD04B7848B23512B78CD7EC23B1A6D37F6 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:00 +0000 ROA not before: Sat 01 Jun 2024 07:56:00 +0000 ROA not after: Sat 31 May 2025 08:01:00 +0000 asID: 24525 IP address blocks: 114.199.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:00:ca:cd:04:b7:84:8b:23:51:2b:78:cd:7e:c2:3b:1a:6d:37:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:00 2024 GMT Not After : May 31 08:01:00 2025 GMT Subject: CN=E4AA13F3D9CFFA7B826FDD484F5AED5926D77981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:84:a4:5e:5d:80:c3:ca:2b:a9:a5:fb:e9:42: c7:8a:b3:3e:f3:47:a6:49:09:4c:02:25:60:97:bd: 70:93:56:da:a5:3b:b9:fb:6e:64:4a:78:9e:f7:3c: 42:3f:1b:27:a3:e9:cc:48:dd:6a:91:91:1b:ae:7a: 70:85:15:ab:aa:e5:e3:a2:20:aa:e9:80:17:34:e7: 5d:b1:87:ca:e5:91:4e:9f:95:1d:82:1f:53:30:d0: 53:a3:e6:0d:21:7d:3a:e0:ca:2b:b0:37:e4:18:09: fc:30:da:17:2a:47:9b:11:fe:03:01:97:5d:41:13: 03:06:67:76:9e:22:ff:60:30:55:fc:98:eb:5f:18: ba:7a:f8:9e:7b:09:07:e8:08:31:1d:64:0e:6a:32: 56:54:d6:5c:83:45:02:fa:a6:90:a6:1e:c6:76:6f: 6b:9e:a9:ed:51:2e:04:ee:e6:7b:07:b4:a1:47:e9: 47:9b:9d:29:0e:83:bb:fa:f1:f9:ea:86:7c:ea:9d: 1a:77:69:97:10:dd:66:a2:53:2b:d8:e9:2f:30:a7: 82:4c:0e:85:8e:0f:1e:b3:44:eb:eb:36:21:86:7c: 2a:cf:63:d8:24:97:95:46:f2:51:9e:8e:15:e7:be: 2f:a6:21:92:eb:33:a8:c8:77:f7:f3:fd:d4:ad:3a: 8e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:AA:13:F3:D9:CF:FA:7B:82:6F:DD:48:4F:5A:ED:59:26:D7:79:81 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.103.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:bb:34:32:49:58:0e:12:e7:c7:c0:b3:b3:1d:fb:97:85:32: f6:68:7e:3d:5a:6e:d0:58:05:55:81:a8:c8:5f:a2:3c:d9:73: d4:54:28:41:d6:d6:37:ff:90:b5:d7:59:4e:cf:29:41:f3:8e: 4c:c2:4f:75:cd:18:d6:69:48:02:4f:84:e1:ad:26:d7:94:14: 2a:cd:0f:df:c7:69:da:ec:25:5d:ee:d4:62:8d:3f:34:eb:55: d0:20:68:38:99:1a:58:ad:e9:7f:ff:a1:cb:00:66:9f:06:dd: 73:e0:83:10:8a:39:d4:4a:c1:b7:e3:42:56:d4:37:57:c0:b7: ef:e5:b2:ac:4c:1d:86:5f:01:99:a8:91:86:35:e4:d3:ac:0f: 5a:2f:de:e6:6b:7d:97:42:15:8f:8d:91:8c:e1:89:7d:7f:5b: 75:1b:08:98:81:72:66:4b:c8:e7:1c:90:19:57:78:0f:b5:15: 53:f8:23:33:97:80:10:e4:26:8b:2a:c5:87:24:75:6a:b2:83: 0d:c7:f4:34:a7:ce:58:a0:25:44:03:4c:7b:4c:98:7d:d0:0e: c9:5d:50:d0:96:11:0d:e7:71:53:32:e9:99:ae:2b:49:31:22: 19:48:31:1e:aa:0f:92:b5:bb:b4:29:f0:00:23:f9:ae:ad:21: a5:94:ed:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURwDKzQS3hIsjUSt4zX7COxptN/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDBaFw0yNTA1MzEwODAxMDBaMDMxMTAvBgNV BAMTKEU0QUExM0YzRDlDRkZBN0I4MjZGREQ0ODRGNUFFRDU5MjZENzc5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxhKReXYDDyiuppfvpQseKsz7z R6ZJCUwCJWCXvXCTVtqlO7n7bmRKeJ73PEI/Gyej6cxI3WqRkRuuenCFFauq5eOi IKrpgBc0512xh8rlkU6flR2CH1Mw0FOj5g0hfTrgyiuwN+QYCfww2hcqR5sR/gMB l11BEwMGZ3aeIv9gMFX8mOtfGLp6+J57CQfoCDEdZA5qMlZU1lyDRQL6ppCmHsZ2 b2ueqe1RLgTu5nsHtKFH6UebnSkOg7v68fnqhnzqnRp3aZcQ3WaiUyvY6S8wp4JM DoWODx6zROvrNiGGfCrPY9gkl5VG8lGejhXnvi+mIZLrM6jId/fz/dStOo69AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5KoT89nP+nuCb91IT1rtWSbXeYEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdnMA0GCSqG SIb3DQEBCwUAA4IBAQB8uzQySVgOEufHwLOzHfuXhTL2aH49Wm7QWAVVgajIX6I8 2XPUVChB1tY3/5C111lOzylB845Mwk91zRjWaUgCT4ThrSbXlBQqzQ/fx2na7CVd 7tRijT8061XQIGg4mRpYrel//6HLAGafBt1z4IMQijnUSsG340JW1DdXwLfv5bKs TB2GXwGZqJGGNeTTrA9aL97ma32XQhWPjZGM4Yl9f1t1GwiYgXJmS8jnHJAZV3gP tRVT+CMzl4AQ5CaLKsWHJHVqsoMNx/Q0p85YoCVEA0x7TJh90A7JXVDQlhEN53FT MumZritJMSIZSDEeqg+Stbu0KfAAI/murSGllO05 -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org