$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: vpApZ3b9Di8mZgnMC0MHVeQS9WYA8vCxunack5iGYiU= Subject key identifier: 09:DF:8D:EF:96:B2:07:23:E8:D8:1C:FE:83:C5:C9:85:1C:C0:49:8A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2EA06EB7D0282F112D4ECEAAFB49FDA283C6305A Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:59 +0000 ROA not before: Sat 01 Jun 2024 07:55:59 +0000 ROA not after: Sat 31 May 2025 08:00:59 +0000 asID: 24525 IP address blocks: 114.199.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a0:6e:b7:d0:28:2f:11:2d:4e:ce:aa:fb:49:fd:a2:83:c6:30:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:59 2024 GMT Not After : May 31 08:00:59 2025 GMT Subject: CN=09DF8DEF96B20723E8D81CFE83C5C9851CC0498A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ba:0a:66:4f:39:58:f6:67:34:b4:17:be:7f: 07:4e:29:b9:3b:ec:07:1a:a7:c5:42:c9:9c:17:46: 06:75:fb:8d:e6:3b:5c:6e:3c:79:13:8e:9a:fd:a5: 1a:70:e3:bb:87:95:e7:12:f7:00:34:26:28:cc:69: 9c:76:3a:84:5e:12:dc:52:1b:9f:da:30:bc:f8:71: 09:8c:57:1c:55:9d:b0:64:a2:23:1a:a0:d7:09:3a: de:fd:ff:28:dc:ce:df:af:02:ca:47:97:d1:aa:5b: f0:de:eb:25:9c:d5:ad:f1:9b:b5:1c:1d:55:ed:74: dd:cd:7c:41:5b:e0:de:eb:47:b2:89:3b:bc:31:d2: ff:c5:a8:76:f7:b6:2d:05:75:61:61:c5:73:94:3d: e3:a1:82:7c:23:03:71:77:2a:1f:27:3c:56:1a:e1: 4a:02:ef:98:1f:e1:1a:ff:ed:5a:ec:8e:51:8d:20: f8:d6:f7:dd:96:da:29:0d:ba:16:a7:90:c5:26:74: 76:55:1a:22:7b:e3:e2:4b:00:4d:35:5d:fc:22:95: 25:c7:cd:3a:5e:ff:5b:44:d5:0f:16:89:50:45:c7: b4:6b:7e:f9:da:98:7e:a2:09:72:d1:5c:20:bc:d6: 33:f3:86:a2:c5:c9:b1:b2:86:ab:40:69:47:74:cc: 19:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DF:8D:EF:96:B2:07:23:E8:D8:1C:FE:83:C5:C9:85:1C:C0:49:8A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.105.0/24 Signature Algorithm: sha256WithRSAEncryption a1:5c:ef:29:ff:7f:fc:1c:99:be:35:a5:20:1d:f0:6e:63:da: 24:a5:30:28:60:1a:6b:e0:20:e1:2c:64:e0:58:9f:f6:8d:52: 98:96:4b:b6:02:c5:96:d4:d0:f3:94:02:12:87:b5:b8:8a:c2: e9:9b:b8:cc:fe:16:49:7e:63:a2:39:6a:0d:ab:b0:ec:c1:f1: fc:55:0b:10:3e:85:9b:95:28:69:6e:ee:18:12:e6:c1:6d:b6: 55:5a:5d:c4:60:5e:ea:5d:1b:32:3e:36:d3:d9:c1:e7:aa:c8: 3f:b8:66:f3:d3:8d:7e:00:7a:8e:7a:b2:aa:27:79:30:08:b1: 4b:5a:06:79:10:56:90:74:3d:78:e8:46:8b:43:81:74:14:e4: a2:d2:cf:e4:e4:21:29:f3:eb:d5:27:7c:1a:43:f8:36:d1:21: 00:36:bf:3b:3c:b6:ee:3e:71:b5:fb:4d:4d:70:7d:07:a8:44: f5:42:bf:28:44:b1:90:46:b1:54:49:46:12:4f:29:3d:d7:e8: 89:34:ff:1b:9c:21:7e:03:9f:18:21:d0:3f:e9:bc:ce:b2:4c: dc:f1:3b:48:ee:b4:ae:71:ef:05:fb:46:b0:f0:83:b0:e6:8e: 26:c3:b3:98:cb:b6:35:a5:47:eb:ad:81:40:0d:26:56:b8:13: c2:c2:0c:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULqBut9AoLxEtTs6q+0n9ooPGMFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTlaFw0yNTA1MzEwODAwNTlaMDMxMTAvBgNV BAMTKDA5REY4REVGOTZCMjA3MjNFOEQ4MUNGRTgzQzVDOTg1MUNDMDQ5OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDougpmTzlY9mc0tBe+fwdOKbk7 7Acap8VCyZwXRgZ1+43mO1xuPHkTjpr9pRpw47uHlecS9wA0JijMaZx2OoReEtxS G5/aMLz4cQmMVxxVnbBkoiMaoNcJOt79/yjczt+vAspHl9GqW/De6yWc1a3xm7Uc HVXtdN3NfEFb4N7rR7KJO7wx0v/FqHb3ti0FdWFhxXOUPeOhgnwjA3F3Kh8nPFYa 4UoC75gf4Rr/7VrsjlGNIPjW992W2ikNuhankMUmdHZVGiJ74+JLAE01XfwilSXH zTpe/1tE1Q8WiVBFx7RrfvnamH6iCXLRXCC81jPzhqLFybGyhqtAaUd0zBkXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCd+N75ayByPo2Bz+g8XJhRzASYowHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdpMA0GCSqG SIb3DQEBCwUAA4IBAQChXO8p/3/8HJm+NaUgHfBuY9okpTAoYBpr4CDhLGTgWJ/2 jVKYlku2AsWW1NDzlAISh7W4isLpm7jM/hZJfmOiOWoNq7DswfH8VQsQPoWblShp bu4YEubBbbZVWl3EYF7qXRsyPjbT2cHnqsg/uGbz041+AHqOerKqJ3kwCLFLWgZ5 EFaQdD146EaLQ4F0FOSi0s/k5CEp8+vVJ3waQ/g20SEANr87PLbuPnG1+01NcH0H qET1Qr8oRLGQRrFUSUYSTyk91+iJNP8bnCF+A58YIdA/6bzOskzc8TtI7rSuce8F +0aw8IOw5o4mw7OYy7Y1pUfrrYFADSZWuBPCwgzu -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:16 2024 by rpki-client on console-ams.rpki-client.org