$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: MK9tXOl+k3u6PRpANt9YooDdirEy2AypfdhjpgJ/HCM= Subject key identifier: 16:E1:AB:C7:C3:C4:47:20:A3:5F:A6:B4:10:FE:00:51:DE:A1:75:AD Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 6A04FE16994223ABA000F7B3F90E548F6FED0902 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa Signing time: Tue 24 Sep 2024 08:46:33 +0000 ROA not before: Tue 24 Sep 2024 08:41:33 +0000 ROA not after: Tue 23 Sep 2025 08:46:33 +0000 asID: 24525 IP address blocks: 114.199.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:04:fe:16:99:42:23:ab:a0:00:f7:b3:f9:0e:54:8f:6f:ed:09:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Sep 24 08:41:33 2024 GMT Not After : Sep 23 08:46:33 2025 GMT Subject: CN=16E1ABC7C3C44720A35FA6B410FE0051DEA175AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6a:a4:9d:0c:77:51:e5:e7:82:ee:ef:bb:c8: 84:da:c7:9d:e1:2e:15:de:29:1f:50:0a:d4:68:e3: 70:82:e4:f0:7b:24:45:91:7a:72:f8:9b:ab:f7:13: 56:61:50:51:c9:d9:3e:60:19:8b:c2:e6:5c:85:92: ed:5e:3a:32:4b:c4:22:11:43:d4:84:9b:49:77:8d: 57:01:c8:97:2d:0d:e4:d6:eb:d2:9e:d5:6b:09:0c: ce:38:72:7d:73:6e:93:91:53:24:39:82:bd:99:7d: d0:45:c5:f3:97:9b:30:dd:9a:7c:c1:49:56:3c:c5: bb:43:27:bf:1c:e1:67:75:0c:80:e3:99:2f:ae:b4: bb:2d:14:23:89:f0:f9:8b:6b:1d:98:6b:81:7c:cb: 01:dd:29:f1:7d:d6:f6:20:5c:8b:32:c8:46:93:c1: d0:36:93:73:27:77:c6:91:dc:36:cc:84:c3:f1:2b: 0e:27:0e:f5:25:f2:a4:11:f8:33:9b:e6:09:18:98: 03:37:e8:b6:6c:9e:ab:ec:21:92:b6:79:f9:43:f7: 67:6c:d5:eb:5f:8b:74:43:6d:50:39:9c:4b:95:db: 87:6c:3b:cd:57:6a:33:af:67:c7:40:bb:8e:f9:9a: bc:e0:70:f6:8b:d3:b8:9f:9b:fe:38:e5:b0:03:af: ed:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E1:AB:C7:C3:C4:47:20:A3:5F:A6:B4:10:FE:00:51:DE:A1:75:AD X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.111.0/24 Signature Algorithm: sha256WithRSAEncryption 81:65:a3:c9:fb:32:1f:a1:a4:ba:98:fe:96:c7:d1:b7:e2:68: 60:ab:5c:1a:88:40:1d:9f:ef:70:81:cf:a3:89:e3:1a:4a:02: cb:03:f6:af:f4:77:aa:73:3c:2a:6f:9c:78:9f:74:68:7e:d2: 2c:61:2c:b0:f4:8a:5b:0a:64:2e:ba:67:6c:c8:89:13:7d:3f: fd:45:d3:66:1e:46:6c:44:0d:22:3b:ec:d6:8b:1f:3d:ef:67: a8:16:a5:7e:ce:fb:65:67:d1:36:fb:7c:f7:03:09:f0:01:b2: 83:fb:0c:6b:bb:00:45:92:5b:f7:75:23:38:87:5c:14:b4:40: d9:40:05:2a:f0:7f:66:cb:a2:5a:d7:9d:0d:6f:61:cc:aa:09: 78:a1:e6:83:a5:e1:ab:2f:7e:4e:53:c8:5d:44:56:39:31:f7: 3a:4f:ed:c5:f6:98:cc:8c:0b:8a:29:09:e5:e8:a7:62:5b:36: 10:20:1f:b9:bb:f9:55:b6:6e:18:c7:c7:12:c3:1f:7f:e8:84: 5f:c6:c3:39:6d:c7:82:1a:61:e7:91:af:36:de:c4:8e:6d:30: 35:e8:ff:ac:f6:5d:f5:f1:d5:71:08:d6:e9:eb:c2:71:88:90: 98:de:9c:b4:a6:9f:30:08:a8:55:8d:e4:61:cd:6a:b0:83:14: 46:a0:3e:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUagT+FplCI6ugAPez+Q5Uj2/tCQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA5MjQwODQxMzNaFw0yNTA5MjMwODQ2MzNaMDMxMTAvBgNV BAMTKDE2RTFBQkM3QzNDNDQ3MjBBMzVGQTZCNDEwRkUwMDUxREVBMTc1QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdaqSdDHdR5eeC7u+7yITax53h LhXeKR9QCtRo43CC5PB7JEWRenL4m6v3E1ZhUFHJ2T5gGYvC5lyFku1eOjJLxCIR Q9SEm0l3jVcByJctDeTW69Ke1WsJDM44cn1zbpORUyQ5gr2ZfdBFxfOXmzDdmnzB SVY8xbtDJ78c4Wd1DIDjmS+utLstFCOJ8PmLax2Ya4F8ywHdKfF91vYgXIsyyEaT wdA2k3Mnd8aR3DbMhMPxKw4nDvUl8qQR+DOb5gkYmAM36LZsnqvsIZK2eflD92ds 1etfi3RDbVA5nEuV24dsO81XajOvZ8dAu475mrzgcPaL07ifm/445bADr+2XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFuGrx8PERyCjX6a0EP4AUd6hda0wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdvMA0GCSqG SIb3DQEBCwUAA4IBAQCBZaPJ+zIfoaS6mP6Wx9G34mhgq1waiEAdn+9wgc+jieMa SgLLA/av9Heqczwqb5x4n3RoftIsYSyw9IpbCmQuumdsyIkTfT/9RdNmHkZsRA0i O+zWix8972eoFqV+zvtlZ9E2+3z3AwnwAbKD+wxruwBFklv3dSM4h1wUtEDZQAUq 8H9my6Ja150Nb2HMqgl4oeaDpeGrL35OU8hdRFY5Mfc6T+3F9pjMjAuKKQnl6Kdi WzYQIB+5u/lVtm4Yx8cSwx9/6IRfxsM5bceCGmHnka823sSObTA16P+s9l318dVx CNbp68JxiJCY3py0pp8wCKhVjeRhzWqwgxRGoD6g -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org