$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131302e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131302e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: ZXF7cgyjX3QbuXO0u0HmGOqTXWrAtLzFhkM+I7BaPD4= Subject key identifier: 45:C2:D9:C0:99:9F:34:9F:A8:EC:E3:34:6D:B7:17:13:25:11:5A:84 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3F5C06B1682B6B181BA94604419B896BF32F6ACC Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131302e302f32332d3233203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:41 +0000 ROA not before: Tue 21 May 2024 07:57:41 +0000 ROA not after: Tue 20 May 2025 08:02:41 +0000 asID: 24525 IP address blocks: 114.199.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:5c:06:b1:68:2b:6b:18:1b:a9:46:04:41:9b:89:6b:f3:2f:6a:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:41 2024 GMT Not After : May 20 08:02:41 2025 GMT Subject: CN=45C2D9C0999F349FA8ECE3346DB7171325115A84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d3:0a:f5:34:a6:62:5e:3b:70:57:0a:49:a6: c2:60:ca:91:c1:5b:5f:3c:2e:18:ae:df:c6:c2:02: d9:5a:f8:1c:06:ee:8b:c7:0c:50:89:13:e7:9a:ca: 01:cd:a9:06:44:6d:da:36:c5:ae:16:b8:9f:33:8d: a7:a6:ca:ea:a9:49:2c:0d:b3:1f:0c:03:f2:31:03: 69:3e:c2:21:db:f0:d6:06:c7:12:a2:d3:b7:41:e4: 28:d2:4b:9f:2c:bd:c8:fb:67:52:84:eb:9d:97:74: d9:4c:48:04:91:05:f9:3d:92:ed:d7:b9:93:eb:45: 9d:e7:98:e3:dd:93:47:b1:63:c7:6c:b3:80:01:99: b7:72:b4:e8:6b:80:b3:95:aa:27:a3:45:f5:26:8e: aa:a3:81:54:c5:da:9f:a6:21:63:55:09:11:e8:59: 99:6d:17:33:59:41:6d:bd:58:6b:04:44:0f:49:3c: fe:66:59:3b:86:e8:3a:82:4e:9f:20:0d:eb:e8:34: 38:2b:af:81:53:d4:ed:d6:45:58:e9:44:90:7e:41: d8:24:38:4f:f1:a2:84:a9:5a:cc:65:70:f5:60:a8: c4:79:16:80:27:52:02:2a:73:ac:a4:fd:79:8e:c9: 16:68:d5:8e:ce:ad:b3:83:8a:b9:c3:68:cb:a3:ea: 58:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C2:D9:C0:99:9F:34:9F:A8:EC:E3:34:6D:B7:17:13:25:11:5A:84 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131302e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.110.0/23 Signature Algorithm: sha256WithRSAEncryption 20:52:4f:6c:a2:bd:36:89:c7:8f:f4:da:2e:4e:63:9b:2d:76: 48:3f:90:60:1d:02:f5:37:63:88:e8:d2:e0:96:da:2b:23:94: eb:32:73:10:ad:4f:56:be:56:2c:c9:b1:61:8f:2f:83:a7:8f: f5:29:bb:9f:e7:d9:c5:18:bd:c5:2b:ca:89:ac:70:5e:0f:11: 37:8a:38:7b:bd:c4:22:54:db:7e:5c:33:5b:20:46:58:1f:ca: b6:da:22:9c:8e:38:06:c3:81:0d:0d:67:a6:d6:5c:a2:cd:d8: 52:52:0e:d3:e8:30:6a:6e:7c:9c:45:4a:d9:c8:b1:be:29:06: 28:b2:7e:ea:64:20:0c:9a:35:7e:23:fa:f6:fb:87:3e:21:65: 65:0f:c0:04:6f:91:56:44:3a:7a:34:b8:55:f5:b9:15:28:3b: 5b:50:d7:52:fa:71:6b:e0:52:5c:1a:4b:f7:e2:2f:bc:c2:26: 18:d1:ad:f7:e7:6b:d9:9d:f1:bf:b1:e4:d8:04:8e:17:5d:66: 5f:77:a1:c3:94:fc:b6:f5:c0:cf:09:13:09:31:4b:4c:b6:dc: 09:5e:22:29:42:7d:c9:99:bc:f7:c6:69:c7:18:b2:92:d2:1a: f9:78:d9:fe:10:6d:d5:1c:69:0d:39:d9:d7:86:37:b8:fc:a9: 0e:60:86:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP1wGsWgraxgbqUYEQZuJa/MvaswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDFaFw0yNTA1MjAwODAyNDFaMDMxMTAvBgNV BAMTKDQ1QzJEOUMwOTk5RjM0OUZBOEVDRTMzNDZEQjcxNzEzMjUxMTVBODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc0wr1NKZiXjtwVwpJpsJgypHB W188Lhiu38bCAtla+BwG7ovHDFCJE+eaygHNqQZEbdo2xa4WuJ8zjaemyuqpSSwN sx8MA/IxA2k+wiHb8NYGxxKi07dB5CjSS58svcj7Z1KE652XdNlMSASRBfk9ku3X uZPrRZ3nmOPdk0exY8dss4ABmbdytOhrgLOVqiejRfUmjqqjgVTF2p+mIWNVCRHo WZltFzNZQW29WGsERA9JPP5mWTuG6DqCTp8gDevoNDgrr4FT1O3WRVjpRJB+Qdgk OE/xooSpWsxlcPVgqMR5FoAnUgIqc6yk/XmOyRZo1Y7OrbODirnDaMuj6lgZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURcLZwJmfNJ+o7OM0bbcXEyURWoQwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsduMA0GCSqG SIb3DQEBCwUAA4IBAQAgUk9sor02iceP9NouTmObLXZIP5BgHQL1N2OI6NLgltor I5TrMnMQrU9WvlYsybFhjy+Dp4/1Kbuf59nFGL3FK8qJrHBeDxE3ijh7vcQiVNt+ XDNbIEZYH8q22iKcjjgGw4ENDWem1lyizdhSUg7T6DBqbnycRUrZyLG+KQYosn7q ZCAMmjV+I/r2+4c+IWVlD8AEb5FWRDp6NLhV9bkVKDtbUNdS+nFr4FJcGkv34i+8 wiYY0a3352vZnfG/seTYBI4XXWZfd6HDlPy29cDPCRMJMUtMttwJXiIpQn3Jmbz3 xmnHGLKS0hr5eNn+EG3VHGkNOdnXhje4/KkOYIZO -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org