$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: X8nP5p9yrxv63UAiUEUj8/CMvaTkFF3V4PYfp4WCtiw= Subject key identifier: 15:48:DF:A5:45:C7:7F:39:85:6C:D3:0D:77:59:54:EE:2D:74:BD:CC Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 438C008D1E246BA6D81E36DA4056441B4CAF84AA Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:59 +0000 ROA not before: Sat 01 Jun 2024 07:55:59 +0000 ROA not after: Sat 31 May 2025 08:00:59 +0000 asID: 24525 IP address blocks: 114.199.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8c:00:8d:1e:24:6b:a6:d8:1e:36:da:40:56:44:1b:4c:af:84:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:59 2024 GMT Not After : May 31 08:00:59 2025 GMT Subject: CN=1548DFA545C77F39856CD30D775954EE2D74BDCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0d:f1:05:79:f1:00:e9:18:fa:ae:14:96:1c: 7a:71:ed:c8:a4:3d:db:e2:6f:b5:c8:8d:ee:ad:42: 08:2b:98:b7:ad:d0:5e:ca:25:30:4a:03:f1:83:fc: cf:bc:b5:9c:2f:1b:a4:83:1f:7f:6c:65:f9:88:78: b6:44:b3:bb:f1:35:d1:c0:18:e1:ba:3f:91:51:b7: b8:ff:c5:d5:58:b1:f1:b8:6a:7a:91:3e:8e:11:6d: 64:90:fa:18:f3:df:98:36:3f:e3:bd:ea:fd:74:d1: 3c:da:b7:2c:86:c9:ed:48:c6:18:fd:14:bd:fa:9f: 53:21:16:22:35:64:35:a4:7b:ba:01:b3:af:32:19: 6e:77:b4:b1:26:45:8a:dc:ca:ba:08:d2:42:db:70: 65:a8:96:cb:8b:7a:e5:09:5c:c2:0e:ed:74:96:f8: 81:ad:55:b4:26:59:cc:dd:b9:4f:06:2b:08:b5:29: b1:2a:e2:2c:7d:fb:88:99:b2:86:00:a0:95:5f:86: 67:00:41:ec:48:5d:72:c0:13:10:c8:f0:ea:fc:c7: e5:9c:10:59:a1:8d:c0:4b:e4:f5:b9:d5:ca:aa:c2: e4:55:20:c9:a8:68:b0:08:d6:f8:ee:f6:c4:b1:20: 63:72:ef:fe:d4:29:55:bd:d9:88:cb:d1:2a:1c:c5: 04:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:48:DF:A5:45:C7:7F:39:85:6C:D3:0D:77:59:54:EE:2D:74:BD:CC X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.114.0/24 Signature Algorithm: sha256WithRSAEncryption 79:0a:ca:ee:75:82:bd:86:54:76:32:2c:f6:3e:06:72:de:94: 50:fe:cd:57:61:55:43:6c:d4:45:b5:32:9a:3c:49:06:0f:ad: 76:79:4c:d8:4a:25:f2:a0:12:c7:bb:d8:51:d2:08:4c:8e:6c: 93:d2:6a:45:7f:c9:b4:95:03:75:22:2e:78:f3:85:55:1c:8b: 62:00:5b:67:c3:71:50:7f:64:7e:48:21:65:d5:ce:ba:84:d9: 9e:b4:b1:3c:c3:b8:9a:24:1c:fe:a7:55:d3:50:cf:29:64:14: 16:26:84:fc:5b:d0:47:0e:c3:f3:9d:ea:a7:12:5b:42:56:82: d2:7c:64:01:1f:51:98:04:35:d9:5d:7e:0b:b0:63:3f:ab:30: 84:d5:e4:89:43:59:73:41:f6:c6:56:44:7e:b6:34:bb:5b:76: 94:5b:a2:0b:d0:f9:99:25:f3:00:76:1d:0e:d5:e4:41:81:ed: 7f:f4:de:f1:5d:a0:13:ba:27:69:60:ad:c4:ea:06:2f:eb:5e: 59:c1:a7:dd:ae:25:4c:bd:0d:b2:5d:5c:67:cf:e3:9c:56:ea: aa:29:96:a7:3c:b1:42:ef:87:c6:13:0d:55:5a:fb:61:3a:c9: 5c:62:74:13:17:88:84:65:ee:45:2e:67:b1:f9:6f:09:cf:97: 68:34:19:2a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ4wAjR4ka6bYHjbaQFZEG0yvhKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTlaFw0yNTA1MzEwODAwNTlaMDMxMTAvBgNV BAMTKDE1NDhERkE1NDVDNzdGMzk4NTZDRDMwRDc3NTk1NEVFMkQ3NEJEQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8DfEFefEA6Rj6rhSWHHpx7cik Pdvib7XIje6tQggrmLet0F7KJTBKA/GD/M+8tZwvG6SDH39sZfmIeLZEs7vxNdHA GOG6P5FRt7j/xdVYsfG4anqRPo4RbWSQ+hjz35g2P+O96v100TzatyyGye1Ixhj9 FL36n1MhFiI1ZDWke7oBs68yGW53tLEmRYrcyroI0kLbcGWolsuLeuUJXMIO7XSW +IGtVbQmWczduU8GKwi1KbEq4ix9+4iZsoYAoJVfhmcAQexIXXLAExDI8Or8x+Wc EFmhjcBL5PW51cqqwuRVIMmoaLAI1vju9sSxIGNy7/7UKVW92YjL0SocxQRxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFUjfpUXHfzmFbNMNd1lU7i10vcwwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdyMA0GCSqG SIb3DQEBCwUAA4IBAQB5CsrudYK9hlR2Miz2PgZy3pRQ/s1XYVVDbNRFtTKaPEkG D612eUzYSiXyoBLHu9hR0ghMjmyT0mpFf8m0lQN1Ii5484VVHItiAFtnw3FQf2R+ SCFl1c66hNmetLE8w7iaJBz+p1XTUM8pZBQWJoT8W9BHDsPzneqnEltCVoLSfGQB H1GYBDXZXX4LsGM/qzCE1eSJQ1lzQfbGVkR+tjS7W3aUW6IL0PmZJfMAdh0O1eRB ge1/9N7xXaATuidpYK3E6gYv615ZwafdriVMvQ2yXVxnz+OcVuqqKZanPLFC74fG Ew1VWvthOslcYnQTF4iEZe5FLmex+W8Jz5doNBkq -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org