$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: zGTsDgV7TJca/u5IxwDy6gFZhQwhrBjuFyVuIjqD6G4= Subject key identifier: 49:41:24:92:11:90:84:93:C9:DB:FB:97:9D:46:CA:58:52:95:87:46 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 714FB20C6C41903A084C559C6B0C3C4A9A89F98A Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa Signing time: Tue 21 May 2024 07:00:01 +0000 ROA not before: Tue 21 May 2024 06:55:01 +0000 ROA not after: Tue 20 May 2025 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:4f:b2:0c:6c:41:90:3a:08:4c:55:9c:6b:0c:3c:4a:9a:89:f9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 06:55:01 2024 GMT Not After : May 20 07:00:01 2025 GMT Subject: CN=4941249211908493C9DBFB979D46CA5852958746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:c3:29:1c:1e:92:d0:03:62:fc:9e:e6:63: 1c:59:fc:02:7e:8f:75:3f:63:2b:28:63:60:1c:e2: 6c:6f:c4:24:ce:5c:8b:ac:74:2a:72:f2:e6:7e:35: ed:13:c1:cb:cc:36:09:84:db:ff:db:24:d5:82:ee: 70:31:a3:42:fe:92:a1:8e:a0:00:97:be:75:36:8e: 6d:fa:96:f2:ed:02:8c:20:30:35:18:5d:e5:09:2e: b2:cd:b1:21:2d:b7:1a:b9:4a:e5:68:9d:c0:cd:35: c1:95:d0:c2:de:d5:2a:41:94:3c:6c:61:d6:ce:5d: 9e:2f:1f:f4:e3:2c:3e:6f:16:81:ac:38:9f:b5:61: 3c:a6:a6:a7:9a:0a:31:5f:03:de:7b:74:36:72:b2: 0b:88:ed:5a:08:60:29:35:7c:7a:2d:f0:68:63:14: f0:41:a7:da:60:6e:8c:66:7f:c3:c0:ff:f4:d3:5c: 4e:20:a9:34:cf:21:9a:f7:13:8f:0f:dc:75:14:6b: 0f:ad:e5:92:e4:bf:03:b4:c9:b7:aa:55:be:81:6f: ae:50:3e:2b:46:31:11:23:2e:6c:ea:04:22:fc:1e: e2:34:96:af:e2:f9:9c:da:50:9f:13:cf:93:74:80: 56:f0:90:66:61:c3:38:d6:75:45:2a:fb:53:fb:4e: 28:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:41:24:92:11:90:84:93:C9:DB:FB:97:9D:46:CA:58:52:95:87:46 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/21 Signature Algorithm: sha256WithRSAEncryption 95:ea:38:4e:1e:ee:6d:d7:41:3f:fa:08:29:04:b1:73:dc:3e: 02:14:72:1b:76:11:63:66:7b:5c:34:4b:a4:5e:c1:08:18:af: 59:58:e4:55:69:89:09:65:d9:a0:30:6e:32:17:d2:2d:b3:4b: cc:78:40:39:1b:88:f2:2f:83:61:ac:8d:74:b5:2a:66:8b:25: c1:28:d1:3d:40:19:a0:4c:ae:17:83:19:9b:d2:22:92:51:25: d5:28:6f:80:f3:40:5f:60:86:4e:b3:01:70:b2:9f:39:79:a1: 0c:20:37:4f:b1:7f:e3:df:90:c8:a2:3b:15:46:d0:72:3c:8e: b6:88:f8:4c:43:6c:5c:10:20:41:e6:51:7d:d0:fd:27:de:1b: 73:57:c6:f3:b4:7c:bc:79:a4:33:37:39:4d:cd:58:0c:bf:28: bd:e4:35:77:cd:4b:10:43:06:7e:29:f6:81:d8:e0:67:60:d7: a1:7d:f9:f6:a4:ba:6d:49:95:b0:ba:5e:34:74:60:a4:c9:c8: 56:36:61:4c:82:c9:b4:57:ee:d5:e4:ca:d8:34:0b:f2:74:4d: 51:1f:13:92:6a:47:67:38:50:ca:f4:b2:23:20:27:90:66:f6: cf:b9:9d:e9:0f:99:aa:68:66:9f:8f:31:58:26:85:96:93:b4: 78:5b:03:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcU+yDGxBkDoITFWcaww8SpqJ+YowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNjU1MDFaFw0yNTA1MjAwNzAwMDFaMDMxMTAvBgNV BAMTKDQ5NDEyNDkyMTE5MDg0OTNDOURCRkI5NzlENDZDQTU4NTI5NTg3NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC76sMpHB6S0ANi/J7mYxxZ/AJ+ j3U/YysoY2Ac4mxvxCTOXIusdCpy8uZ+Ne0TwcvMNgmE2//bJNWC7nAxo0L+kqGO oACXvnU2jm36lvLtAowgMDUYXeUJLrLNsSEttxq5SuVoncDNNcGV0MLe1SpBlDxs YdbOXZ4vH/TjLD5vFoGsOJ+1YTympqeaCjFfA957dDZysguI7VoIYCk1fHot8Ghj FPBBp9pgboxmf8PA//TTXE4gqTTPIZr3E48P3HUUaw+t5ZLkvwO0ybeqVb6Bb65Q PitGMREjLmzqBCL8HuI0lq/i+ZzaUJ8Tz5N0gFbwkGZhwzjWdUUq+1P7TihZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSUEkkhGQhJPJ2/uXnUbKWFKVh0YwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQCV6jhOHu5t10E/+ggpBLFz3D4CFHIbdhFjZntcNEukXsEI GK9ZWORVaYkJZdmgMG4yF9Its0vMeEA5G4jyL4NhrI10tSpmiyXBKNE9QBmgTK4X gxmb0iKSUSXVKG+A80BfYIZOswFwsp85eaEMIDdPsX/j35DIojsVRtByPI62iPhM Q2xcECBB5lF90P0n3htzV8bztHy8eaQzNzlNzVgMvyi95DV3zUsQQwZ+KfaB2OBn YNehffn2pLptSZWwul40dGCkychWNmFMgsm0V+7V5MrYNAvydE1RHxOSakdnOFDK 9LIjICeQZvbPuZ3pD5mqaGafjzFYJoWWk7R4WwMo -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org