$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131322e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: dp3WIJLLH6371G+ihzXX9NUvmlAbm8OsGJk5rQsXOw0= Subject key identifier: 7F:46:50:27:DF:78:2A:09:31:6B:DE:A5:77:25:74:AD:1C:62:90:D7 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2C3323EA5AAB30E8697FBC1BEADECAA96FAE7B4B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:57 +0000 ROA not before: Sat 01 Jun 2024 07:55:57 +0000 ROA not after: Sat 31 May 2025 08:00:57 +0000 asID: 24525 IP address blocks: 114.199.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:33:23:ea:5a:ab:30:e8:69:7f:bc:1b:ea:de:ca:a9:6f:ae:7b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:57 2024 GMT Not After : May 31 08:00:57 2025 GMT Subject: CN=7F465027DF782A09316BDEA5772574AD1C6290D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cb:78:c8:10:82:0f:c1:94:35:93:18:14:cf: ed:40:d2:66:fd:c5:e9:b7:f8:6d:0b:3c:e1:8c:23: 92:ea:21:af:43:77:40:4f:31:cc:84:b4:02:e5:f1: 3c:4d:b6:c3:58:3e:4d:83:b8:3a:62:b7:ab:f5:79: e0:78:26:20:c1:31:3b:99:c2:a0:23:33:59:20:93: 57:10:e1:fe:74:81:04:4d:3b:11:78:92:a6:71:aa: b0:c2:7d:7c:01:07:04:b6:b1:ec:8d:8d:b8:be:63: e9:71:8f:1b:e5:3f:02:c1:48:3a:65:c0:8b:50:70: a6:28:97:aa:06:9f:d4:5b:b4:bf:46:32:87:59:94: 21:98:c4:0e:49:59:1d:49:83:d5:a9:7f:e0:e5:74: dc:ca:a0:31:c1:d5:7b:53:88:15:e0:de:73:dc:80: 15:29:dc:2a:32:41:58:0b:4b:97:bb:7b:cc:28:17: c4:ed:ba:d2:c7:11:c6:59:e4:3f:55:78:c3:50:6d: 08:d1:1d:cd:59:33:d3:3d:da:f3:70:1a:64:5e:1a: a7:95:76:7d:86:f1:a6:6d:d1:1a:2a:a5:2e:74:31: de:28:ce:f0:57:13:5b:5e:f6:3f:bb:b6:3c:6e:9e: 81:71:a1:d9:f6:0f:59:22:38:b1:66:88:13:94:84: f6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:46:50:27:DF:78:2A:09:31:6B:DE:A5:77:25:74:AD:1C:62:90:D7 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:2d:db:ab:f1:ab:62:6a:39:29:69:6d:73:3e:30:4e:8b:03: 66:07:a1:2e:f0:7a:53:bd:79:f5:26:35:23:71:e1:ff:11:39: 15:53:aa:fe:d4:d7:ee:eb:0a:51:a6:e2:01:40:6b:62:f4:b1: 51:c9:49:11:d9:83:0b:64:22:35:b1:8f:51:15:a5:84:06:15: 9a:bb:00:83:ab:04:50:de:aa:eb:b4:fc:42:ce:e0:05:fc:c2: 76:ea:90:9b:1e:31:5a:f2:ef:2f:c3:10:6b:f5:f7:3f:e1:75: a3:14:e2:bb:1e:da:c0:80:8e:78:9c:1a:e7:16:84:e0:ef:75: ad:51:ed:5d:7b:9c:c8:6c:b8:a8:72:2c:b9:20:e2:6a:2d:62: 8b:de:bb:fe:90:c2:cc:c0:1c:a8:0b:1b:d6:fd:6c:38:9c:fc: 08:56:a5:0a:a3:37:6b:7a:c9:dd:a7:6e:e5:19:5e:d3:73:38: 7c:d4:2d:79:52:96:4a:62:8e:f7:87:d0:8b:a7:25:1c:92:b9: c2:8b:38:16:3e:61:dc:fd:55:23:c3:91:b4:7d:34:a7:90:8b: d5:c7:49:f4:a0:99:e8:be:55:77:a6:0c:d6:f1:6f:bc:23:f6: 1b:14:47:4f:fd:4c:47:8a:2c:b3:d7:dc:81:c1:53:d9:29:77: 30:db:8a:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULDMj6lqrMOhpf7wb6t7KqW+ue0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTdaFw0yNTA1MzEwODAwNTdaMDMxMTAvBgNV BAMTKDdGNDY1MDI3REY3ODJBMDkzMTZCREVBNTc3MjU3NEFEMUM2MjkwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCry3jIEIIPwZQ1kxgUz+1A0mb9 xem3+G0LPOGMI5LqIa9Dd0BPMcyEtALl8TxNtsNYPk2DuDpit6v1eeB4JiDBMTuZ wqAjM1kgk1cQ4f50gQRNOxF4kqZxqrDCfXwBBwS2seyNjbi+Y+lxjxvlPwLBSDpl wItQcKYol6oGn9RbtL9GModZlCGYxA5JWR1Jg9Wpf+DldNzKoDHB1XtTiBXg3nPc gBUp3CoyQVgLS5e7e8woF8TtutLHEcZZ5D9VeMNQbQjRHc1ZM9M92vNwGmReGqeV dn2G8aZt0RoqpS50Md4ozvBXE1te9j+7tjxunoFxodn2D1kiOLFmiBOUhPY9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUf0ZQJ994Kgkxa96ldyV0rRxikNcwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQCKLdur8atiajkpaW1zPjBOiwNmB6Eu8HpTvXn1JjUjceH/ ETkVU6r+1Nfu6wpRpuIBQGti9LFRyUkR2YMLZCI1sY9RFaWEBhWauwCDqwRQ3qrr tPxCzuAF/MJ26pCbHjFa8u8vwxBr9fc/4XWjFOK7HtrAgI54nBrnFoTg73WtUe1d e5zIbLiociy5IOJqLWKL3rv+kMLMwByoCxvW/Ww4nPwIVqUKozdresndp27lGV7T czh81C15UpZKYo73h9CLpyUckrnCizgWPmHc/VUjw5G0fTSnkIvVx0n0oJnovlV3 pgzW8W+8I/YbFEdP/UxHiiyz19yBwVPZKXcw24rt -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org