$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: Y4vAcCEakbphBGQ/6J4BUp3+JCW0U1qz4BDv3WPxo9k= Subject key identifier: 8A:48:2A:F7:5E:5D:EA:10:7B:B5:C8:20:24:70:15:C7:7D:D5:DB:9A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1FBD64F29351A3AA43B6613FBC89A09139126044 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa Signing time: Tue 21 May 2024 06:00:01 +0000 ROA not before: Tue 21 May 2024 05:55:01 +0000 ROA not after: Tue 20 May 2025 06:00:01 +0000 asID: 24525 IP address blocks: 114.199.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:bd:64:f2:93:51:a3:aa:43:b6:61:3f:bc:89:a0:91:39:12:60:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 05:55:01 2024 GMT Not After : May 20 06:00:01 2025 GMT Subject: CN=8A482AF75E5DEA107BB5C820247015C77DD5DB9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:3d:cd:62:39:ff:df:ae:2c:22:0f:82:13: bf:b6:c7:bb:6e:48:6c:bf:4c:7a:13:a8:24:7c:77: b9:7c:5b:5e:08:d0:0a:6f:2f:fc:53:cd:db:51:9b: af:79:32:4b:16:85:e3:ee:da:44:54:ff:15:35:88: 93:44:e6:50:b0:8e:e4:46:0a:fb:ef:14:df:ad:60: a2:5e:84:11:ac:77:0c:1f:ae:b6:69:82:4b:ed:8f: 22:e5:78:28:61:fc:2c:a0:de:60:b4:68:1d:df:16: 29:14:fc:e4:c9:ac:61:22:9c:18:e5:be:a1:04:8d: 0d:87:2a:8c:31:0d:08:b9:e5:ff:95:ac:70:87:b4: b1:39:f4:b7:42:50:df:40:2a:28:9c:80:d8:1a:2e: 1a:83:bf:1a:9c:7e:56:85:02:30:59:8e:46:5f:03: 72:08:01:57:7c:3f:b9:a3:2d:70:17:0a:34:b2:40: 10:99:56:ca:4b:66:e4:2a:bf:b5:b0:03:66:6d:90: 6d:7c:a7:a6:4a:4b:ba:de:b1:33:3f:28:20:44:9d: 9f:aa:d5:50:c1:d1:fc:b9:b8:8e:19:20:8c:44:e8: 10:c2:2b:0f:76:2a:d7:95:75:47:29:48:44:2a:b7: 76:10:cb:6c:e7:59:1b:8f:1f:dc:f2:27:52:c8:2a: b0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:48:2A:F7:5E:5D:EA:10:7B:B5:C8:20:24:70:15:C7:7D:D5:DB:9A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:4c:ab:a1:b9:92:d0:a2:aa:21:65:87:ce:8c:11:cf:22:48: 05:4d:b8:02:8b:81:8b:82:cc:2d:d6:1c:80:ec:cb:b1:0f:ad: cd:d7:ae:96:17:e0:29:ef:6b:de:51:68:69:4d:29:5e:3e:b4: 71:2b:0c:20:f1:fc:2b:c9:99:61:50:00:73:15:3e:a6:cf:37: 1a:24:4f:2e:87:c2:5b:c7:6a:96:d8:14:8a:5b:c7:2c:cd:ca: 2a:bc:16:91:cb:8b:d6:28:bf:4e:04:05:12:b8:de:4d:73:ca: 31:f3:6d:e7:5d:a4:03:22:bf:80:7e:a3:65:d8:ef:a8:8d:e7: 39:f4:b8:76:74:a2:12:9d:aa:ad:46:fe:75:bd:ef:a2:c7:f8: ab:83:c6:ff:3f:ef:bf:05:f2:6f:cf:aa:db:a6:10:37:14:d0: ac:eb:9f:93:e3:5c:e1:08:5d:16:59:7a:45:a3:44:32:2c:ad: 60:a8:22:f8:f2:79:78:57:47:9d:14:26:40:a1:cb:a2:34:36: 86:71:bf:0f:10:9c:2b:08:65:e3:d4:52:29:88:58:e5:6c:c0: 7c:81:93:54:97:eb:26:2b:38:00:d1:a4:27:b7:a9:fb:f4:7c: 07:c1:bb:a3:85:36:1c:31:e2:76:8c:ea:43:53:97:21:8b:3f: 2f:45:14:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH71k8pNRo6pDtmE/vImgkTkSYEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNTU1MDFaFw0yNTA1MjAwNjAwMDFaMDMxMTAvBgNV BAMTKDhBNDgyQUY3NUU1REVBMTA3QkI1QzgyMDI0NzAxNUM3N0RENURCOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzwj3NYjn/364sIg+CE7+2x7tu SGy/THoTqCR8d7l8W14I0ApvL/xTzdtRm695MksWhePu2kRU/xU1iJNE5lCwjuRG CvvvFN+tYKJehBGsdwwfrrZpgkvtjyLleChh/Cyg3mC0aB3fFikU/OTJrGEinBjl vqEEjQ2HKowxDQi55f+VrHCHtLE59LdCUN9AKiicgNgaLhqDvxqcflaFAjBZjkZf A3IIAVd8P7mjLXAXCjSyQBCZVspLZuQqv7WwA2ZtkG18p6ZKS7resTM/KCBEnZ+q 1VDB0fy5uI4ZIIxE6BDCKw92KteVdUcpSEQqt3YQy2znWRuPH9zyJ1LIKrBhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUikgq915d6hB7tcggJHAVx33V25owHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQBdTKuhuZLQoqohZYfOjBHPIkgFTbgCi4GLgswt1hyA7Mux D63N166WF+Ap72veUWhpTSlePrRxKwwg8fwryZlhUABzFT6mzzcaJE8uh8Jbx2qW 2BSKW8cszcoqvBaRy4vWKL9OBAUSuN5Nc8ox823nXaQDIr+AfqNl2O+ojec59Lh2 dKISnaqtRv51ve+ix/irg8b/P++/BfJvz6rbphA3FNCs65+T41zhCF0WWXpFo0Qy LK1gqCL48nl4V0edFCZAocuiNDaGcb8PEJwrCGXj1FIpiFjlbMB8gZNUl+smKzgA 0aQnt6n79HwHwbujhTYcMeJ2jOpDU5chiz8vRRRY -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org