$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: WMurO1UBr8/MkF2o5AKCsHU++ZtjExyukJrdNwm+thg= Subject key identifier: C2:96:04:60:4D:A7:12:C1:FB:54:09:CB:5A:B4:BE:AB:FA:DD:0C:C8 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5C2BCF620BFC678D7D7B3405D24712E7847746C0 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:40 +0000 ROA not before: Tue 21 May 2024 07:57:40 +0000 ROA not after: Tue 20 May 2025 08:02:40 +0000 asID: 24525 IP address blocks: 114.199.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:2b:cf:62:0b:fc:67:8d:7d:7b:34:05:d2:47:12:e7:84:77:46:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:40 2024 GMT Not After : May 20 08:02:40 2025 GMT Subject: CN=C29604604DA712C1FB5409CB5AB4BEABFADD0CC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:21:2e:52:4a:36:ad:6f:ae:4b:8f:41:b3: 1d:9c:1b:48:88:98:d1:af:ef:df:12:94:e0:44:d6: b6:eb:20:86:b6:9a:dd:7f:65:e4:ef:b3:43:bb:c6: 4c:4e:2c:a9:4e:88:51:8e:d4:f5:28:30:5b:5a:4d: 38:b7:3d:2d:0a:a6:a2:40:94:34:2b:0a:9a:5f:61: 73:e1:79:0f:84:3a:12:b0:b5:97:0e:66:41:32:b1: 25:f9:f5:01:60:60:20:9c:75:4e:68:43:83:1a:bd: 38:6d:5e:aa:79:c4:fa:57:53:e1:09:39:11:3c:ed: 49:22:23:0f:82:16:cf:e0:fd:7c:46:09:a6:c1:a3: b3:3d:1e:2e:6b:2b:11:98:10:fb:30:b7:b1:90:51: 56:87:72:69:fe:ee:1a:b8:95:d0:33:54:f9:67:04: 3f:69:a5:cd:10:d3:eb:0c:46:a3:05:52:50:64:ff: 2c:12:da:64:42:88:aa:0e:3b:d1:42:96:24:40:b5: a6:ce:e4:32:54:1f:a9:58:22:e5:13:f4:c0:b6:08: 0f:0f:5d:e4:61:d9:8b:4e:bd:e5:05:0a:de:1c:03: 3c:dc:69:0f:30:f8:80:8b:94:dc:67:9e:70:2a:33: c0:51:7f:af:b5:d7:e4:0c:f6:9e:2a:5a:25:65:9d: 90:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:96:04:60:4D:A7:12:C1:FB:54:09:CB:5A:B4:BE:AB:FA:DD:0C:C8 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:35:26:bb:53:2d:09:86:d6:b0:bb:b3:ea:ac:2a:52:e9:b2: 2d:63:56:26:e6:05:35:19:90:72:bb:e1:db:8e:ad:67:44:39: 25:67:c0:03:0e:55:0e:76:77:a3:79:99:b6:eb:90:25:c4:91: 74:05:1e:c5:60:e8:84:6d:bb:b6:66:8e:28:c6:bc:93:99:62: b0:75:76:2b:e8:e2:9c:9a:6b:b3:5f:30:5d:ef:d2:f7:d6:54: c2:dd:f1:ff:35:c9:4a:47:87:8f:ee:53:73:4f:9b:18:e3:1f: b8:9e:40:00:87:c6:e8:9d:c9:06:86:19:60:aa:68:10:63:ba: cc:9a:ae:fb:8f:8d:c4:eb:15:af:fc:69:dd:6f:e1:78:31:70: 46:ff:09:5e:d2:23:6b:79:1b:1f:2a:9b:4f:40:fd:1e:e8:b5: 15:83:6a:88:76:8f:0d:67:51:29:16:c0:b4:7e:66:59:88:66: 2b:43:61:a5:45:43:29:bb:6e:c9:96:de:ae:12:b6:18:58:6f: ab:5b:73:2f:2b:39:7f:33:aa:db:c6:ce:07:1d:2d:ce:8d:b1: 29:a8:07:bf:fb:f3:82:74:29:74:70:b3:61:db:d4:53:ed:36: fd:1a:6f:4b:43:59:76:4e:7d:aa:70:a8:b5:96:fa:63:d7:e1: 3d:84:65:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXCvPYgv8Z419ezQF0kcS54R3RsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDBaFw0yNTA1MjAwODAyNDBaMDMxMTAvBgNV BAMTKEMyOTYwNDYwNERBNzEyQzFGQjU0MDlDQjVBQjRCRUFCRkFERDBDQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBcyEuUko2rW+uS49Bsx2cG0iI mNGv798SlOBE1rbrIIa2mt1/ZeTvs0O7xkxOLKlOiFGO1PUoMFtaTTi3PS0KpqJA lDQrCppfYXPheQ+EOhKwtZcOZkEysSX59QFgYCCcdU5oQ4MavThtXqp5xPpXU+EJ ORE87UkiIw+CFs/g/XxGCabBo7M9Hi5rKxGYEPswt7GQUVaHcmn+7hq4ldAzVPln BD9ppc0Q0+sMRqMFUlBk/ywS2mRCiKoOO9FCliRAtabO5DJUH6lYIuUT9MC2CA8P XeRh2YtOveUFCt4cAzzcaQ8w+ICLlNxnnnAqM8BRf6+11+QM9p4qWiVlnZAJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwpYEYE2nEsH7VAnLWrS+q/rdDMgwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQAaNSa7Uy0Jhtawu7PqrCpS6bItY1Ym5gU1GZByu+Hbjq1n RDklZ8ADDlUOdnejeZm265AlxJF0BR7FYOiEbbu2Zo4oxryTmWKwdXYr6OKcmmuz XzBd79L31lTC3fH/NclKR4eP7lNzT5sY4x+4nkAAh8bonckGhhlgqmgQY7rMmq77 j43E6xWv/Gndb+F4MXBG/wle0iNreRsfKptPQP0e6LUVg2qIdo8NZ1EpFsC0fmZZ iGYrQ2GlRUMpu27Jlt6uErYYWG+rW3MvKzl/M6rbxs4HHS3OjbEpqAe/+/OCdCl0 cLNh29RT7Tb9Gm9LQ1l2Tn2qcKi1lvpj1+E9hGU1 -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org