$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: QdqQsnNj04YLSw0hDXgR10E+qEVr60oe0rqwQYSV3IM= Subject key identifier: 67:CD:AD:2C:F8:48:E3:29:03:E1:3F:13:B9:61:8C:87:6F:A3:0D:CE Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 66971298BDB19BD0BB0DDDBBDE44EC607D6F1463 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:57 +0000 ROA not before: Sat 01 Jun 2024 07:55:57 +0000 ROA not after: Sat 31 May 2025 08:00:57 +0000 asID: 24525 IP address blocks: 114.199.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:97:12:98:bd:b1:9b:d0:bb:0d:dd:bb:de:44:ec:60:7d:6f:14:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:57 2024 GMT Not After : May 31 08:00:57 2025 GMT Subject: CN=67CDAD2CF848E32903E13F13B9618C876FA30DCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9c:d6:cf:7d:12:d0:5b:e3:56:59:44:b4:42: 3a:47:a6:8d:c6:62:8c:07:07:59:66:cf:8b:00:ff: f6:9c:ee:66:18:9d:0c:8e:82:0b:ee:5b:8a:75:92: 08:de:a1:dc:ca:70:18:e0:8d:50:6a:e1:b9:22:12: a2:3b:d0:aa:d6:11:c2:e7:c8:73:96:43:14:83:40: ef:21:2b:15:43:22:ef:5a:7b:22:bd:37:b6:cf:71: d7:b8:f3:10:a1:72:38:a9:f2:c1:06:ed:61:0a:73: 24:60:bf:25:f9:fa:aa:d9:e9:52:6c:92:2b:d5:5d: b0:79:9d:73:b2:dd:8a:43:18:68:66:34:8c:66:8c: 5a:39:a6:30:5a:1e:fb:f4:e2:c9:a0:be:5c:e8:d9: 23:8b:21:72:38:6e:2b:24:35:b3:f8:6b:d8:5b:0a: 35:cb:6b:de:d9:9d:de:e8:6c:2f:6c:0d:47:ec:7b: 87:be:c9:c7:5e:46:f2:1e:5a:15:51:47:61:cb:7c: 98:f4:af:8d:34:c7:ca:bc:07:0d:40:4e:08:bd:3a: 5e:6f:df:94:41:8f:b8:2d:31:21:68:8d:42:5d:dd: 33:41:13:2f:2b:2d:5b:06:c7:db:f5:b2:ef:fc:ba: 28:70:2f:98:4b:4b:25:79:a9:17:eb:9f:7d:41:23: be:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CD:AD:2C:F8:48:E3:29:03:E1:3F:13:B9:61:8C:87:6F:A3:0D:CE X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.106.0/24 Signature Algorithm: sha256WithRSAEncryption 37:61:db:f3:df:09:fc:bd:8c:79:e2:f6:8e:fc:6e:c7:3e:68: 89:fb:4a:f1:61:18:c3:f7:af:1a:43:5c:66:de:0f:65:01:c0: e9:47:b0:fb:ef:d0:35:85:6a:88:a0:93:c1:0f:3e:86:02:34: 32:25:56:9e:0d:82:5c:e0:26:76:4b:71:43:03:f2:97:7b:ee: 07:48:2b:8a:c7:d2:6c:02:73:ec:44:1e:74:e8:6e:57:af:65: e3:a7:df:e2:c4:2f:92:02:0c:84:2d:2a:d1:f0:80:af:8a:14: d8:c1:7e:ff:c4:67:17:10:8a:f2:be:3e:65:07:8a:ac:d7:4f: c3:ba:13:04:4e:01:13:ba:28:13:34:c3:88:7c:4a:0b:09:22: a1:00:07:03:27:7d:e8:53:8f:5a:9c:83:ec:86:3f:5d:4d:77: 49:54:79:31:f9:32:49:a9:60:94:6a:c7:b0:94:9c:d1:8d:11: d1:63:f8:cc:84:c3:06:e3:6d:0c:4f:2e:20:68:d9:03:c6:65: 1b:b7:1d:54:bd:45:a8:9a:13:dd:df:ed:a2:85:c4:fe:56:08: 0b:9d:69:97:3f:ba:75:e0:f9:c7:6e:3d:9e:de:98:79:00:17: ac:5f:49:38:7a:a7:be:ca:e1:5f:91:75:28:dd:29:24:d9:9b: f7:24:33:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZpcSmL2xm9C7Dd273kTsYH1vFGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTdaFw0yNTA1MzEwODAwNTdaMDMxMTAvBgNV BAMTKDY3Q0RBRDJDRjg0OEUzMjkwM0UxM0YxM0I5NjE4Qzg3NkZBMzBEQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQConNbPfRLQW+NWWUS0QjpHpo3G YowHB1lmz4sA//ac7mYYnQyOggvuW4p1kgjeodzKcBjgjVBq4bkiEqI70KrWEcLn yHOWQxSDQO8hKxVDIu9aeyK9N7bPcde48xChcjip8sEG7WEKcyRgvyX5+qrZ6VJs kivVXbB5nXOy3YpDGGhmNIxmjFo5pjBaHvv04smgvlzo2SOLIXI4biskNbP4a9hb CjXLa97Znd7obC9sDUfse4e+ycdeRvIeWhVRR2HLfJj0r400x8q8Bw1ATgi9Ol5v 35RBj7gtMSFojUJd3TNBEy8rLVsGx9v1su/8uihwL5hLSyV5qRfrn31BI74nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ82tLPhI4ykD4T8TuWGMh2+jDc4wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdqMA0GCSqG SIb3DQEBCwUAA4IBAQA3Ydvz3wn8vYx54vaO/G7HPmiJ+0rxYRjD968aQ1xm3g9l AcDpR7D779A1hWqIoJPBDz6GAjQyJVaeDYJc4CZ2S3FDA/KXe+4HSCuKx9JsAnPs RB506G5Xr2Xjp9/ixC+SAgyELSrR8ICvihTYwX7/xGcXEIryvj5lB4qs10/DuhME TgETuigTNMOIfEoLCSKhAAcDJ33oU49anIPshj9dTXdJVHkx+TJJqWCUasewlJzR jRHRY/jMhMMG420MTy4gaNkDxmUbtx1UvUWomhPd3+2ihcT+VggLnWmXP7p14PnH bj2e3ph5ABesX0k4eqe+yuFfkXUo3Skk2Zv3JDN6 -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org