$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: FnV0vl1n7gn0AqmjMODhec7aoWbXUoap537LO3MN1Ko= Subject key identifier: 52:CE:57:5E:36:A5:32:25:99:A4:6C:00:7E:90:AB:B8:C3:03:52:41 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 75982B59B2E5D38D1CB245D66E1D95FBA8F035AF Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:02 +0000 ROA not before: Sat 03 May 2025 08:55:02 +0000 ROA not after: Sat 02 May 2026 09:00:02 +0000 asID: 24525 IP address blocks: 114.199.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:98:2b:59:b2:e5:d3:8d:1c:b2:45:d6:6e:1d:95:fb:a8:f0:35:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:02 2025 GMT Not After : May 2 09:00:02 2026 GMT Subject: CN=52CE575E36A5322599A46C007E90ABB8C3035241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:ff:fc:7f:d8:f8:3d:0e:d4:18:bb:da:e1: d8:80:7a:7f:4b:46:06:eb:33:21:37:f5:1d:6a:06: c9:21:0b:b2:4e:8f:8b:8f:28:e3:8e:cd:7e:f3:b1: 6a:94:32:86:45:42:55:c2:e0:80:5e:29:9c:18:98: b9:c9:be:bd:bb:31:48:da:5e:c7:0d:83:8d:d1:9e: a8:58:2e:38:54:4f:45:f0:66:e3:eb:ad:60:3c:13: 0d:af:03:b7:b1:78:3e:ae:0d:60:f5:6c:cb:75:a0: ae:d9:6d:5b:2e:60:df:8f:56:2b:d2:d5:19:8d:08: 03:79:55:5a:99:64:50:3d:66:3e:7b:f3:f2:38:51: f3:be:3b:5b:a5:5a:4e:13:07:8a:eb:48:2f:37:74: 51:2c:4a:01:ae:f0:02:b5:20:f8:1d:3f:60:3d:25: 12:f9:01:a1:51:79:13:95:5c:65:79:51:55:5b:47: bc:f9:ae:7a:d3:a2:89:17:11:49:90:cb:98:0b:91: 02:40:b2:e7:e3:45:c2:2b:f1:38:05:4f:79:9b:1b: 75:10:4d:e0:42:fb:5a:50:20:09:9f:63:2e:0a:4c: 9d:39:73:7e:b7:25:24:42:72:42:47:be:77:4f:36: fc:88:e6:77:1c:bf:25:de:0d:91:53:ca:ee:78:81: f4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CE:57:5E:36:A5:32:25:99:A4:6C:00:7E:90:AB:B8:C3:03:52:41 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/24 Signature Algorithm: sha256WithRSAEncryption 42:8c:e3:53:96:7f:d8:0d:5d:7b:1e:94:c4:fd:12:0c:0f:9b: b1:71:12:71:06:46:99:1f:c0:a2:28:b7:ae:70:dd:ef:97:c6: 84:d3:ee:e8:67:d5:9b:d9:61:20:fc:23:d2:4a:c5:d0:62:c2: 35:11:3d:33:c4:62:9e:2a:ad:c4:7c:72:f3:65:5e:bc:1e:d2: a3:81:df:25:2a:f1:78:8d:41:c4:8f:b7:9c:7d:ce:b4:c0:67: 63:2d:e6:7d:ef:2b:7c:b4:16:79:d1:bc:21:be:32:1c:09:8b: 79:5a:d8:4d:8b:87:3f:95:b1:b9:38:48:ec:46:fa:7e:a3:70: 55:80:b6:e5:69:c4:08:a9:eb:b9:a5:de:5a:71:db:72:0c:9a: 19:43:d8:ae:5f:ba:68:60:2b:52:0c:87:b2:3f:b5:33:25:9a: d6:aa:84:ce:41:8a:41:36:8b:80:8d:b3:90:d0:f9:f8:05:e7: 5b:3b:57:68:97:c1:f2:27:5b:2b:5b:f6:f2:59:46:58:fa:e6: e3:bd:76:6a:43:4c:20:0e:43:78:54:22:c5:58:71:97:df:b1: 89:3d:db:6a:fa:2c:9a:0e:09:82:92:fa:0d:ac:79:6d:ca:b2: 3c:fe:f2:0d:91:d9:73:2d:53:d9:ec:5c:47:48:79:32:ef:50: d2:10:6d:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdZgrWbLl040cskXWbh2V+6jwNa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDJaFw0yNjA1MDIwOTAwMDJaMDMxMTAvBgNV BAMTKDUyQ0U1NzVFMzZBNTMyMjU5OUE0NkMwMDdFOTBBQkI4QzMwMzUyNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLK//8f9j4PQ7UGLva4diAen9L RgbrMyE39R1qBskhC7JOj4uPKOOOzX7zsWqUMoZFQlXC4IBeKZwYmLnJvr27MUja XscNg43RnqhYLjhUT0XwZuPrrWA8Ew2vA7exeD6uDWD1bMt1oK7ZbVsuYN+PVivS 1RmNCAN5VVqZZFA9Zj578/I4UfO+O1ulWk4TB4rrSC83dFEsSgGu8AK1IPgdP2A9 JRL5AaFReROVXGV5UVVbR7z5rnrTookXEUmQy5gLkQJAsufjRcIr8TgFT3mbG3UQ TeBC+1pQIAmfYy4KTJ05c363JSRCckJHvndPNvyI5nccvyXeDZFTyu54gfRJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUs5XXjalMiWZpGwAfpCruMMDUkEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQBCjONTln/YDV17HpTE/RIMD5uxcRJxBkaZH8CiKLeucN3v l8aE0+7oZ9Wb2WEg/CPSSsXQYsI1ET0zxGKeKq3EfHLzZV68HtKjgd8lKvF4jUHE j7ecfc60wGdjLeZ97yt8tBZ50bwhvjIcCYt5WthNi4c/lbG5OEjsRvp+o3BVgLbl acQIqeu5pd5acdtyDJoZQ9iuX7poYCtSDIeyP7UzJZrWqoTOQYpBNouAjbOQ0Pn4 BedbO1dol8HyJ1srW/byWUZY+ubjvXZqQ0wgDkN4VCLFWHGX37GJPdtq+iyaDgmC kvoNrHltyrI8/vINkdlzLVPZ7FxHSHky71DSEG0j -----END CERTIFICATE-----Generated at Sat Jun 7 19:50:10 2025 by rpki-client