$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: aX4TTIEz9sDmXMW8BOIBLMROFkPqhM4VXclqq2F66i4= Subject key identifier: D9:30:E6:24:A2:53:8A:26:A4:97:13:12:24:DA:72:D3:5D:9E:6B:D1 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 665EA546235A01707689E667BB40ECB64D5BE996 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:42 +0000 ROA not before: Tue 21 May 2024 07:57:42 +0000 ROA not after: Tue 20 May 2025 08:02:42 +0000 asID: 24525 IP address blocks: 114.199.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:5e:a5:46:23:5a:01:70:76:89:e6:67:bb:40:ec:b6:4d:5b:e9:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:42 2024 GMT Not After : May 20 08:02:42 2025 GMT Subject: CN=D930E624A2538A26A497131224DA72D35D9E6BD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b0:67:42:68:11:fb:2f:c1:b7:7b:f1:67:c8: 86:27:72:c5:60:a4:98:1c:fe:16:b9:f6:1c:6f:da: 55:ae:1a:5c:c7:c7:d3:65:e5:97:eb:3e:d7:ff:3d: 58:9c:e2:58:71:9a:ec:0c:b3:84:76:2e:fa:aa:bd: a3:e2:61:c1:bf:b7:5d:0d:66:be:2e:c3:b0:e0:4e: d0:ce:ac:28:8a:f5:78:fc:9f:f6:a8:b9:7a:93:07: 67:1b:d6:5c:45:a2:3e:3e:25:cf:c9:c4:3a:46:e2: cd:87:82:6b:d7:e7:6f:8f:33:44:23:bf:c8:3b:a4: a0:4b:d2:31:85:b1:fd:11:d9:b4:dd:a8:68:d8:31: 38:14:b8:c6:87:a3:4c:1d:f3:59:7e:d9:42:36:6a: 23:88:d6:95:2f:df:ba:76:d8:2d:c5:5a:c9:07:69: c9:f7:d2:e6:6a:99:cb:7e:43:b3:10:d1:67:66:14: ff:bd:b1:c1:d2:46:ec:48:fc:51:11:8f:af:bf:61: 6b:f6:49:62:88:1f:83:f2:ae:2a:ae:b9:06:a7:d1: 2f:d0:ad:5a:73:74:3c:50:cb:9b:53:13:a9:cc:75: 14:66:14:e7:2a:f8:54:3d:6d:69:77:f9:f9:30:c5: 10:e4:e7:41:97:db:73:aa:41:c8:94:e0:aa:97:1d: db:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:30:E6:24:A2:53:8A:26:A4:97:13:12:24:DA:72:D3:5D:9E:6B:D1 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/23 Signature Algorithm: sha256WithRSAEncryption 00:78:b5:37:23:5f:ae:5a:96:2f:62:47:3d:ff:f0:35:a3:51: df:8d:6a:c0:7b:74:80:c3:75:ad:d2:c0:79:b7:ec:e9:50:ab: bc:27:44:4c:86:96:ce:f7:07:94:1d:82:b7:e9:d9:53:73:6c: 4f:e9:b4:3f:e6:4b:29:1c:05:82:28:a3:81:d2:7a:c9:9a:ad: f7:92:79:5d:06:34:58:59:84:f5:af:47:e6:74:76:bb:30:84: d2:26:4d:57:e7:ee:ec:21:75:0d:f1:62:65:34:26:da:dc:d9: 70:63:16:e6:f8:f5:6a:c5:25:6c:2f:09:7e:e8:bb:e1:7c:16: 79:3e:12:af:90:75:0d:ae:48:8c:f4:56:f4:a9:b3:d7:c5:de: c7:15:e5:d7:1e:23:2e:56:6e:23:a1:8f:09:a7:e8:bf:27:7a: 54:3b:b0:44:fa:29:bf:7d:44:c4:f2:6e:28:5f:54:78:4b:7e: f0:84:98:95:ff:60:d0:58:0a:a1:84:90:3c:62:64:49:a1:ae: ed:87:02:f6:d5:a0:6f:b6:5a:d8:44:ca:cc:1d:ad:c6:26:41: 51:48:5b:a0:6a:c6:60:ac:f1:31:79:43:6c:d0:fa:66:bd:98: 4b:08:75:48:07:d6:b8:e0:34:fe:81:3d:bd:9f:7e:75:10:b8: 33:23:92:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZl6lRiNaAXB2ieZnu0Dstk1b6ZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDJaFw0yNTA1MjAwODAyNDJaMDMxMTAvBgNV BAMTKEQ5MzBFNjI0QTI1MzhBMjZBNDk3MTMxMjI0REE3MkQzNUQ5RTZCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTsGdCaBH7L8G3e/FnyIYncsVg pJgc/ha59hxv2lWuGlzHx9Nl5ZfrPtf/PVic4lhxmuwMs4R2LvqqvaPiYcG/t10N Zr4uw7DgTtDOrCiK9Xj8n/aouXqTB2cb1lxFoj4+Jc/JxDpG4s2HgmvX52+PM0Qj v8g7pKBL0jGFsf0R2bTdqGjYMTgUuMaHo0wd81l+2UI2aiOI1pUv37p22C3FWskH acn30uZqmct+Q7MQ0WdmFP+9scHSRuxI/FERj6+/YWv2SWKIH4PyriquuQan0S/Q rVpzdDxQy5tTE6nMdRRmFOcq+FQ9bWl3+fkwxRDk50GX23OqQciU4KqXHdu9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2TDmJKJTiiaklxMSJNpy012ea9EwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQAAeLU3I1+uWpYvYkc9//A1o1HfjWrAe3SAw3Wt0sB5t+zp UKu8J0RMhpbO9weUHYK36dlTc2xP6bQ/5kspHAWCKKOB0nrJmq33knldBjRYWYT1 r0fmdHa7MITSJk1X5+7sIXUN8WJlNCba3NlwYxbm+PVqxSVsLwl+6LvhfBZ5PhKv kHUNrkiM9Fb0qbPXxd7HFeXXHiMuVm4joY8Jp+i/J3pUO7BE+im/fUTE8m4oX1R4 S37whJiV/2DQWAqhhJA8YmRJoa7thwL21aBvtlrYRMrMHa3GJkFRSFugasZgrPEx eUNs0PpmvZhLCHVIB9a44DT+gT29n351ELgzI5L7 -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org