$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: mhVJ72JCOrSuQq0fXOQjiOXI0bjvTcTiRCN8QZOrDV4= Subject key identifier: 26:A4:AB:1A:13:15:DA:20:58:28:1C:FC:23:1F:89:0F:5E:D8:6F:0C Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 77785B2B89ABD474356704AD6B946049093B0C4B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:57 +0000 ROA not before: Sat 01 Jun 2024 07:55:57 +0000 ROA not after: Sat 31 May 2025 08:00:57 +0000 asID: 24525 IP address blocks: 114.199.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:78:5b:2b:89:ab:d4:74:35:67:04:ad:6b:94:60:49:09:3b:0c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:57 2024 GMT Not After : May 31 08:00:57 2025 GMT Subject: CN=26A4AB1A1315DA2058281CFC231F890F5ED86F0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:86:ca:d6:ac:16:50:ae:83:30:fa:03:23:23: 14:30:cd:76:22:81:64:d9:27:23:aa:ae:1b:19:62: 8d:ac:24:e9:ef:5f:d9:93:7b:0d:c0:83:58:85:c0: e4:78:bb:ea:e8:e0:29:4d:ea:be:58:c8:32:a6:cd: d4:ae:29:a7:c3:5f:af:41:9f:8b:d5:71:c5:22:63: 53:d4:39:b7:e3:94:b5:fc:27:e7:aa:85:89:c9:07: d6:dd:08:b5:f4:3b:18:15:a6:63:69:e6:17:0d:14: c5:cd:c0:2c:b8:05:46:8d:57:e4:5b:07:82:78:53: 5a:53:ae:0c:95:6e:fe:e2:7a:3e:a9:52:14:03:74: c5:62:8e:a7:75:27:aa:a1:07:c4:2e:89:f7:bc:79: 34:4f:88:47:09:4a:ec:30:0f:42:21:db:20:97:0c: c7:87:07:28:77:88:3b:89:0b:6b:ed:6d:f5:64:f3: 44:66:3c:c1:38:7b:1f:17:db:a7:be:7a:1a:4b:92: aa:37:b8:b2:53:b4:13:d6:b3:7d:04:2f:71:b2:5b: 8e:b3:7f:38:65:91:2a:3e:33:59:b7:20:f1:d8:3c: c7:c1:3d:a7:aa:86:92:a4:5b:50:42:e4:e3:4e:8a: 31:80:fb:d0:33:77:5a:f0:3a:83:87:3d:d9:2d:f6: 59:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A4:AB:1A:13:15:DA:20:58:28:1C:FC:23:1F:89:0F:5E:D8:6F:0C X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.107.0/24 Signature Algorithm: sha256WithRSAEncryption 35:94:f8:e5:b9:28:df:52:c4:bb:22:72:fb:4d:43:05:21:e7: 1c:59:4c:88:7e:81:a4:f5:93:94:01:a0:90:cf:b8:33:cc:39: ba:f2:61:c4:35:eb:eb:21:4d:9b:85:ea:9f:e8:d4:1a:07:40: a0:d4:8c:be:1b:61:9a:36:32:e7:43:8c:a7:2d:66:be:f1:52: 67:02:d7:a1:7d:58:84:bc:77:90:3d:56:58:72:47:5f:09:c7: 2d:f2:b1:da:8f:d5:d7:58:46:e0:8e:ee:b3:07:2d:97:76:db: 71:ac:95:8b:61:22:20:dc:6d:4b:8c:b9:d4:b2:be:cb:6d:0a: be:66:93:87:55:2c:2d:12:a0:c6:e9:cc:d9:91:83:ef:28:f1: d0:f8:27:f3:7e:27:89:f9:ae:24:84:10:3e:1b:8d:e3:b1:09: 0c:f0:de:15:db:04:4f:eb:86:cf:eb:64:61:0c:3b:38:6e:34: 02:6a:f8:1c:39:9c:5b:eb:30:3c:69:a1:e8:06:be:0c:70:b7: 9c:a9:cc:df:dc:48:ab:91:54:dc:6e:20:54:8d:b3:92:bf:0f: c2:ef:31:1c:70:13:34:e2:eb:17:d6:2d:b7:40:f8:ce:d6:3e: 88:cf:e6:43:6f:39:77:26:48:bc:a0:eb:26:7d:ab:76:2b:26: d4:df:49:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd3hbK4mr1HQ1ZwSta5RgSQk7DEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTdaFw0yNTA1MzEwODAwNTdaMDMxMTAvBgNV BAMTKDI2QTRBQjFBMTMxNURBMjA1ODI4MUNGQzIzMUY4OTBGNUVEODZGMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXhsrWrBZQroMw+gMjIxQwzXYi gWTZJyOqrhsZYo2sJOnvX9mTew3Ag1iFwOR4u+ro4ClN6r5YyDKmzdSuKafDX69B n4vVccUiY1PUObfjlLX8J+eqhYnJB9bdCLX0OxgVpmNp5hcNFMXNwCy4BUaNV+Rb B4J4U1pTrgyVbv7iej6pUhQDdMVijqd1J6qhB8Quife8eTRPiEcJSuwwD0Ih2yCX DMeHByh3iDuJC2vtbfVk80RmPME4ex8X26e+ehpLkqo3uLJTtBPWs30EL3GyW46z fzhlkSo+M1m3IPHYPMfBPaeqhpKkW1BC5ONOijGA+9Azd1rwOoOHPdkt9lljAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJqSrGhMV2iBYKBz8Ix+JD17YbwwwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdrMA0GCSqG SIb3DQEBCwUAA4IBAQA1lPjluSjfUsS7InL7TUMFIeccWUyIfoGk9ZOUAaCQz7gz zDm68mHENevrIU2bheqf6NQaB0Cg1Iy+G2GaNjLnQ4ynLWa+8VJnAtehfViEvHeQ PVZYckdfCcct8rHaj9XXWEbgju6zBy2XdttxrJWLYSIg3G1LjLnUsr7LbQq+ZpOH VSwtEqDG6czZkYPvKPHQ+CfzfieJ+a4khBA+G43jsQkM8N4V2wRP64bP62RhDDs4 bjQCavgcOZxb6zA8aaHoBr4McLecqczf3EirkVTcbiBUjbOSvw/C7zEccBM04usX 1i23QPjO1j6Iz+ZDbzl3Jki8oOsmfat2KybU30lJ -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org