$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3131362e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: geE36hs+/Mzq5ZJ36eYNG+jr0GJ28W6kdPgw20oHA/8= Subject key identifier: B6:64:28:16:47:CE:72:C8:CF:6E:DE:88:ED:90:14:0C:52:59:3B:24 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7C1C7E0745BE2BDAFA34D8DDC7783A3F9369004E Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32322d3232203d3e203234353235.roa Signing time: Tue 21 May 2024 07:00:01 +0000 ROA not before: Tue 21 May 2024 06:55:01 +0000 ROA not after: Tue 20 May 2025 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1c:7e:07:45:be:2b:da:fa:34:d8:dd:c7:78:3a:3f:93:69:00:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 06:55:01 2024 GMT Not After : May 20 07:00:01 2025 GMT Subject: CN=B664281647CE72C8CF6EDE88ED90140C52593B24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3c:35:fa:bd:82:e4:2c:4e:69:f6:77:04:ef: a7:5c:fa:fe:96:08:dd:5a:17:3e:59:24:b4:14:72: 73:d4:c3:e9:b4:92:76:75:3e:bb:47:68:2e:77:e0: bd:fb:9d:dc:1d:2d:fc:2f:00:3f:53:0c:2f:19:b1: 3f:f2:7f:b9:8a:14:b0:d3:69:32:f6:fc:70:9f:91: 8e:a8:c4:06:02:0f:e5:68:6d:df:0d:f0:c3:7c:c0: 63:53:b2:8a:db:61:6b:92:0e:6b:ab:b4:11:a5:31: 24:7d:4b:63:65:68:56:34:88:93:70:b2:59:2b:07: b9:dc:05:a4:f8:42:d9:b6:b3:cb:88:5e:62:2c:04: 5b:5c:29:c8:ad:9f:f1:2a:d5:c1:12:44:ef:54:c4: 90:9b:9f:f5:63:fd:9b:f4:e5:05:d5:85:f6:db:83: 2b:45:b6:cb:50:74:67:ca:1c:97:a8:0c:19:a9:3b: 35:7e:48:bf:2b:80:cf:b3:5c:53:c9:6d:d0:6f:a3: 6f:77:14:d2:e0:54:ee:55:ab:46:54:b5:48:04:9f: 62:19:20:31:fa:e1:13:ff:46:2b:7c:a6:41:a8:3f: f6:1f:ef:ce:de:ab:88:eb:6d:1b:d0:74:d1:00:0e: 6b:9f:a1:ed:b7:7e:b6:07:1d:0d:0a:a8:7b:7a:dc: 75:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:64:28:16:47:CE:72:C8:CF:6E:DE:88:ED:90:14:0C:52:59:3B:24 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.116.0/22 Signature Algorithm: sha256WithRSAEncryption 15:cc:5d:bf:83:41:58:4c:2b:62:cb:51:25:d8:9a:0a:36:6a: bf:ea:ee:bc:cd:6f:80:31:67:57:3a:bd:c6:b6:5d:63:58:83: 2d:ff:c8:78:70:14:49:c1:bc:49:9f:4a:3f:de:7e:0a:72:b7: d6:2d:df:5e:72:a9:4f:e1:6f:f1:b6:2e:6c:e9:4b:f9:38:68: bf:97:0b:1b:4d:ff:7e:ba:e0:62:36:18:9f:9b:e3:b7:b2:4f: d1:29:5c:7c:8c:81:53:a2:64:4f:b2:c4:8f:f8:5b:4d:6c:bf: 5a:a2:cb:bf:14:e3:11:80:52:ee:a2:ff:e3:dd:bc:b4:52:a3: d0:d9:fd:0f:14:85:86:9c:62:3b:e3:18:c4:18:01:bb:35:f4: 93:ed:b0:f4:85:a4:6c:51:50:d6:b7:4b:cf:a8:9f:66:84:b8: 67:68:f4:ad:d7:4e:f8:c1:98:59:43:a2:85:28:90:cf:2e:23: e4:19:1e:dc:91:e0:d1:ac:89:31:f5:b8:77:d2:c5:50:30:47: b5:a9:f5:c5:15:39:ee:b9:c3:cf:9d:38:8d:31:c4:17:c1:87: ec:83:1f:fb:ad:fe:81:51:9e:05:c0:46:ec:4b:e5:90:e4:f3: c4:80:79:0d:05:e0:ee:01:d3:7a:bd:51:aa:89:3e:d2:9e:5b: 8b:9f:b2:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfBx+B0W+K9r6NNjdx3g6P5NpAE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNjU1MDFaFw0yNTA1MjAwNzAwMDFaMDMxMTAvBgNV BAMTKEI2NjQyODE2NDdDRTcyQzhDRjZFREU4OEVEOTAxNDBDNTI1OTNCMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/PDX6vYLkLE5p9ncE76dc+v6W CN1aFz5ZJLQUcnPUw+m0knZ1PrtHaC534L37ndwdLfwvAD9TDC8ZsT/yf7mKFLDT aTL2/HCfkY6oxAYCD+Vobd8N8MN8wGNTsorbYWuSDmurtBGlMSR9S2NlaFY0iJNw slkrB7ncBaT4Qtm2s8uIXmIsBFtcKcitn/Eq1cESRO9UxJCbn/Vj/Zv05QXVhfbb gytFtstQdGfKHJeoDBmpOzV+SL8rgM+zXFPJbdBvo293FNLgVO5Vq0ZUtUgEn2IZ IDH64RP/Rit8pkGoP/Yf787eq4jrbRvQdNEADmufoe23frYHHQ0KqHt63HVhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtmQoFkfOcsjPbt6I7ZAUDFJZOyQwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd0MA0GCSqG SIb3DQEBCwUAA4IBAQAVzF2/g0FYTCtiy1El2JoKNmq/6u68zW+AMWdXOr3Gtl1j WIMt/8h4cBRJwbxJn0o/3n4KcrfWLd9ecqlP4W/xti5s6Uv5OGi/lwsbTf9+uuBi Nhifm+O3sk/RKVx8jIFTomRPssSP+FtNbL9aosu/FOMRgFLuov/j3by0UqPQ2f0P FIWGnGI74xjEGAG7NfST7bD0haRsUVDWt0vPqJ9mhLhnaPSt1074wZhZQ6KFKJDP LiPkGR7ckeDRrIkx9bh30sVQMEe1qfXFFTnuucPPnTiNMcQXwYfsgx/7rf6BUZ4F wEbsS+WQ5PPEgHkNBeDuAdN6vVGqiT7SnluLn7La -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org