$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: saJwgV6RBebPY3xp0PaXnLDUioOM29Kg1ObDpicBXrE= Subject key identifier: EB:6B:4B:1A:B9:B0:84:41:A6:41:01:B0:8F:9F:39:92:92:B5:B7:4B Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 52C4B1C367F1B04C09A04EF6384E4A3F98904870 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:01 +0000 ROA not before: Sat 01 Jun 2024 07:56:01 +0000 ROA not after: Sat 31 May 2025 08:01:01 +0000 asID: 24525 IP address blocks: 114.199.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:c4:b1:c3:67:f1:b0:4c:09:a0:4e:f6:38:4e:4a:3f:98:90:48:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:01 2024 GMT Not After : May 31 08:01:01 2025 GMT Subject: CN=EB6B4B1AB9B08441A64101B08F9F399292B5B74B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0b:20:05:a5:09:d0:d3:49:25:05:63:65:66: 83:04:6b:88:0e:6b:bd:23:f9:c1:4b:89:bc:bc:46: 45:ad:2b:72:9e:c4:20:b3:20:35:89:65:ad:74:c4: 9d:36:67:f9:2c:2f:15:ea:61:83:cf:2a:fa:de:bf: 0d:39:41:9d:5b:b1:a8:a6:59:b2:8b:71:31:83:cd: fb:16:7d:54:b0:b0:27:11:5a:a2:30:19:e2:08:df: 8d:e0:e2:43:0e:d4:2d:47:31:28:67:4d:42:6a:94: 0c:dd:62:1f:a0:46:48:43:de:c9:3b:40:7e:ac:1d: b8:2f:7c:81:b6:7e:e0:58:e3:3c:38:a7:60:ec:b2: 3e:16:73:af:5f:98:30:d4:8e:a6:a0:22:0a:67:52: 26:6f:90:23:a8:21:8e:3a:f4:3b:3d:a6:c2:c6:68: 49:cd:ba:10:55:5b:8b:e4:7d:5a:c8:4d:0b:e9:47: eb:3b:71:c0:d1:47:ed:76:f1:e1:5d:a2:ff:0c:49: df:68:ef:94:f7:49:9f:e7:94:72:b4:1b:76:b6:68: f7:10:c6:7a:a1:bd:df:a0:73:45:e8:ee:18:30:97: 8e:02:fc:22:ae:01:e1:95:10:9d:23:f1:13:d1:e8: bd:4b:f8:4f:66:a9:fc:18:d1:13:23:eb:26:8a:15: 04:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:6B:4B:1A:B9:B0:84:41:A6:41:01:B0:8F:9F:39:92:92:B5:B7:4B X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/24 Signature Algorithm: sha256WithRSAEncryption bf:79:54:65:d7:5c:87:7d:20:42:79:02:87:21:e7:fa:a4:5a: 74:95:3f:16:0c:e7:bd:bd:6e:74:95:23:6b:97:26:3a:f1:4b: ea:20:8a:2c:e9:18:56:e6:2f:2c:43:59:8d:09:b6:76:d6:db: 3a:34:8a:57:50:bf:d0:f1:72:df:63:4a:51:df:63:15:79:85: 41:29:05:3a:c0:d1:2a:ce:0f:e3:3f:46:ea:fa:a2:8e:36:44: fd:0e:c9:9a:23:ee:84:4d:5b:f2:61:62:a0:c5:1d:e4:82:70: ec:38:87:96:e5:b9:d6:08:15:fa:85:a2:9d:f4:5d:ad:81:e6: f8:d1:29:fc:53:75:88:18:29:c2:1e:58:97:5a:7d:0e:d9:5e: 95:10:59:d8:57:23:d5:98:03:21:6d:b1:97:6c:e8:0b:21:28: 51:47:a8:f9:a6:9b:10:35:81:5d:14:24:fd:4f:6b:c5:20:f2: f7:a0:f2:55:90:02:eb:8c:bc:86:b0:94:21:96:b9:b1:27:81: 9f:95:69:31:fb:2b:0b:58:d7:e8:47:71:c3:11:a6:26:e0:3c: 21:21:79:9f:f9:e0:11:72:f5:11:0a:b5:c7:6e:01:0a:f2:ca: 89:e0:13:58:d2:5e:57:02:de:b5:4a:78:ce:35:da:20:a1:2b: 38:ea:e8:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUsSxw2fxsEwJoE72OE5KP5iQSHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDFaFw0yNTA1MzEwODAxMDFaMDMxMTAvBgNV BAMTKEVCNkI0QjFBQjlCMDg0NDFBNjQxMDFCMDhGOUYzOTkyOTJCNUI3NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJCyAFpQnQ00klBWNlZoMEa4gO a70j+cFLiby8RkWtK3KexCCzIDWJZa10xJ02Z/ksLxXqYYPPKvrevw05QZ1bsaim WbKLcTGDzfsWfVSwsCcRWqIwGeII343g4kMO1C1HMShnTUJqlAzdYh+gRkhD3sk7 QH6sHbgvfIG2fuBY4zw4p2Dssj4Wc69fmDDUjqagIgpnUiZvkCOoIY469Ds9psLG aEnNuhBVW4vkfVrITQvpR+s7ccDRR+128eFdov8MSd9o75T3SZ/nlHK0G3a2aPcQ xnqhvd+gc0Xo7hgwl44C/CKuAeGVEJ0j8RPR6L1L+E9mqfwY0RMj6yaKFQRvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU62tLGrmwhEGmQQGwj585kpK1t0swHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQC/eVRl11yHfSBCeQKHIef6pFp0lT8WDOe9vW50lSNrlyY6 8UvqIIos6RhW5i8sQ1mNCbZ21ts6NIpXUL/Q8XLfY0pR32MVeYVBKQU6wNEqzg/j P0bq+qKONkT9DsmaI+6ETVvyYWKgxR3kgnDsOIeW5bnWCBX6haKd9F2tgeb40Sn8 U3WIGCnCHliXWn0O2V6VEFnYVyPVmAMhbbGXbOgLIShRR6j5ppsQNYFdFCT9T2vF IPL3oPJVkALrjLyGsJQhlrmxJ4GflWkx+ysLWNfoR3HDEaYm4DwhIXmf+eARcvUR CrXHbgEK8sqJ4BNY0l5XAt61SnjONdogoSs46uh6 -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org