$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: OOMQKyXyCD+EK1vKg8F4Q7r5NACaV4hC9U55Y7m4RUI= Subject key identifier: C4:08:99:C6:53:A5:5F:C8:A3:8E:5D:8B:51:87:47:52:E2:40:31:94 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7E30533BCE16F0A83CD82D53F8EDE868D70A0BDE Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa Signing time: Tue 21 May 2024 07:00:01 +0000 ROA not before: Tue 21 May 2024 06:55:01 +0000 ROA not after: Tue 20 May 2025 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:30:53:3b:ce:16:f0:a8:3c:d8:2d:53:f8:ed:e8:68:d7:0a:0b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 06:55:01 2024 GMT Not After : May 20 07:00:01 2025 GMT Subject: CN=C40899C653A55FC8A38E5D8B51874752E2403194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:42:ae:f0:60:47:fd:6f:6e:53:43:8b:6f:3c: bf:5a:29:ef:bb:bb:1b:39:d5:73:c0:34:13:cc:52: 09:19:1e:c8:db:bd:80:73:f2:a3:e2:94:50:bc:48: b0:9b:79:bc:2e:55:f5:b9:bc:63:e7:32:ea:20:20: 9d:c9:ce:0f:08:c5:5b:e4:4b:18:42:1b:f7:47:5a: 4e:63:d5:ad:cb:12:3e:7a:23:01:8a:fc:89:71:20: ab:32:f7:72:a9:75:10:e6:cb:2f:9b:5d:88:fa:0f: 04:5a:c3:e8:e6:40:62:13:60:3c:a4:17:b5:58:09: 23:94:0e:3a:74:76:cc:07:fc:ed:11:db:1a:11:78: 4d:47:72:63:b1:19:c9:2a:27:0f:d8:4b:3a:64:cc: 24:6b:fc:5f:eb:25:52:1b:42:8c:78:3e:23:8b:f4: 6b:9a:e8:01:69:34:3d:ed:14:b7:ef:0c:30:ff:bb: a6:b5:cb:1b:0d:37:7e:9d:8a:9b:78:4a:f1:0c:b5: 86:58:bd:c1:1f:e4:ce:a7:f1:8b:88:9c:cd:9f:01: 16:82:0b:cd:a0:e5:eb:b5:e8:10:35:69:42:99:12: 57:03:5d:09:61:b1:f4:f2:fb:ba:65:3d:92:b9:9b: 15:57:2f:6d:0b:d3:34:0c:c6:ec:08:23:28:79:6c: b3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:08:99:C6:53:A5:5F:C8:A3:8E:5D:8B:51:87:47:52:E2:40:31:94 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/23 Signature Algorithm: sha256WithRSAEncryption 28:38:ca:bc:92:86:21:77:87:09:24:ff:9c:1c:c4:29:d7:e7: ef:84:88:8b:7e:15:d1:89:70:20:40:5f:22:96:65:d8:7a:82: 69:57:10:11:c4:ab:12:e3:aa:f9:66:2a:43:76:c4:46:a9:28: 4f:46:ae:5e:05:5f:ee:4f:db:de:e5:58:cf:28:fd:f0:49:59: 93:83:6e:0a:52:92:21:ec:8a:61:20:3d:0f:23:a7:ec:8a:03: a1:22:5b:41:52:e3:f2:00:dc:76:a4:5c:d2:f6:bf:84:17:d7: 5e:07:f0:f2:ee:76:d9:c4:67:92:47:10:75:0f:2c:9a:3b:40: 4d:18:d4:38:f9:86:41:b1:fc:cd:33:61:6f:35:0f:fe:76:e9: e4:ba:f9:5e:49:52:b9:f1:eb:44:36:97:35:b2:32:66:d2:22: bc:f1:51:fa:3a:a3:38:88:1b:43:5d:04:bf:60:45:bb:86:b6: 41:aa:1c:e3:54:da:bb:a9:b0:37:92:c1:f0:2a:e7:85:ab:d6: db:2f:7d:d4:56:dd:72:b8:02:9a:30:44:ba:2d:a0:50:e7:5b: b7:82:40:65:96:29:ae:7f:ff:c2:4f:68:70:f0:22:be:86:06: be:2b:be:cf:0e:cf:c8:15:6a:8c:5f:85:cf:26:e0:a2:0e:5e: 0a:5b:cc:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfjBTO84W8Kg82C1T+O3oaNcKC94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNjU1MDFaFw0yNTA1MjAwNzAwMDFaMDMxMTAvBgNV BAMTKEM0MDg5OUM2NTNBNTVGQzhBMzhFNUQ4QjUxODc0NzUyRTI0MDMxOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWQq7wYEf9b25TQ4tvPL9aKe+7 uxs51XPANBPMUgkZHsjbvYBz8qPilFC8SLCbebwuVfW5vGPnMuogIJ3Jzg8IxVvk SxhCG/dHWk5j1a3LEj56IwGK/IlxIKsy93KpdRDmyy+bXYj6DwRaw+jmQGITYDyk F7VYCSOUDjp0dswH/O0R2xoReE1HcmOxGckqJw/YSzpkzCRr/F/rJVIbQox4PiOL 9Gua6AFpND3tFLfvDDD/u6a1yxsNN36dipt4SvEMtYZYvcEf5M6n8YuInM2fARaC C82g5eu16BA1aUKZElcDXQlhsfTy+7plPZK5mxVXL20L0zQMxuwIIyh5bLPTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxAiZxlOlX8ijjl2LUYdHUuJAMZQwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQAoOMq8koYhd4cJJP+cHMQp1+fvhIiLfhXRiXAgQF8ilmXY eoJpVxARxKsS46r5ZipDdsRGqShPRq5eBV/uT9ve5VjPKP3wSVmTg24KUpIh7Iph ID0PI6fsigOhIltBUuPyANx2pFzS9r+EF9deB/Dy7nbZxGeSRxB1DyyaO0BNGNQ4 +YZBsfzNM2FvNQ/+dunkuvleSVK58etENpc1sjJm0iK88VH6OqM4iBtDXQS/YEW7 hrZBqhzjVNq7qbA3ksHwKueFq9bbL33UVt1yuAKaMES6LaBQ51u3gkBllimuf//C T2hw8CK+hga+K77PDs/IFWqMX4XPJuCiDl4KW8wJ -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org