$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: MLtX3gSKv2ZDFPpAgDBOaYUnoB1SSx6jcrjeDbDc1bg= Subject key identifier: 88:0B:E5:F0:CD:75:FE:DF:C7:07:43:DB:80:2E:D8:5C:F6:9F:89:C5 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 66943A245E00263FC596A2B66E5F2C92C41D4559 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:01 +0000 ROA not before: Sat 01 Jun 2024 07:56:01 +0000 ROA not after: Sat 31 May 2025 08:01:01 +0000 asID: 24525 IP address blocks: 114.199.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:94:3a:24:5e:00:26:3f:c5:96:a2:b6:6e:5f:2c:92:c4:1d:45:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:01 2024 GMT Not After : May 31 08:01:01 2025 GMT Subject: CN=880BE5F0CD75FEDFC70743DB802ED85CF69F89C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4d:bc:8b:fb:7d:6d:50:8f:34:33:6a:ad:0a: 44:91:16:d4:4c:fb:82:90:03:7f:0c:ea:81:db:97: 52:cd:f6:fc:de:16:cc:3c:66:74:d8:5e:63:e5:bf: 98:b2:6b:cf:d1:89:d2:d1:09:f4:46:5f:13:a6:b7: c6:75:a7:5e:49:30:2f:65:ce:2a:00:4c:9d:95:43: 24:4e:32:2d:21:1e:61:b0:d0:48:f9:b1:ce:51:99: c7:21:c8:d0:40:49:45:e3:2a:f9:7c:83:98:68:cd: 03:c5:8e:81:e1:99:bc:03:34:e1:3c:b9:75:d6:2d: 1e:c4:34:60:e3:af:89:d9:8b:c9:e9:82:34:11:e7: 7a:71:74:ab:cd:e2:d9:7e:85:50:4a:a5:bf:ee:30: ff:40:f9:97:b0:03:10:e1:0c:4c:2f:c7:75:09:31: a5:8b:6c:5f:18:c2:71:64:9f:c6:9d:af:b2:ad:05: 69:4b:1b:3a:a5:c7:39:9b:e5:5d:a5:d9:1f:ea:95: a1:76:70:25:84:0d:0f:db:14:92:64:d7:af:99:70: 28:0b:13:7e:e0:77:43:b2:71:56:ed:7b:e3:f6:bd: 37:78:e9:db:70:8a:e6:81:7e:e6:95:0b:61:19:f2: 35:42:89:a3:ba:32:b7:e9:56:eb:26:cf:42:9e:93: a5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0B:E5:F0:CD:75:FE:DF:C7:07:43:DB:80:2E:D8:5C:F6:9F:89:C5 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.117.0/24 Signature Algorithm: sha256WithRSAEncryption 23:81:91:8d:b8:39:53:76:d3:1b:f9:cf:fa:bd:fd:c5:c0:87: 1f:4a:bc:ea:c5:ce:18:fb:c9:6f:35:d4:a1:10:a0:84:73:42: a8:c5:b9:13:79:74:43:2a:87:97:f8:5a:a4:4f:67:50:26:48: 1a:de:35:d9:5e:fb:28:99:3a:9b:6c:b0:60:dd:31:27:ef:64: 92:bd:22:aa:12:90:06:16:65:b3:99:60:ae:ba:dc:83:89:9e: e4:95:9b:f2:b4:4a:33:3c:be:99:28:84:0a:50:9a:fa:f2:f5: be:f5:33:25:a8:2c:f3:e6:53:7a:f1:0e:dc:8d:3b:41:c5:a6: 81:68:e8:d7:21:b0:fa:f0:41:db:4d:04:96:08:f1:ec:93:7b: 6e:5e:36:1a:3e:30:ef:93:4f:8a:3b:bf:08:d4:1b:de:c1:63: 0f:9d:4f:ce:2e:be:e1:44:61:57:d9:9c:a3:46:1c:26:15:a1: 31:9d:12:9a:51:95:50:95:3a:c9:3f:46:9c:aa:33:1b:1e:7b: 38:75:77:b9:c5:42:c1:18:96:5c:6a:69:13:0c:dd:b9:41:36: 14:c0:86:ed:88:1e:e0:4f:6b:ef:30:59:6d:d1:70:42:34:86: d6:28:09:fc:95:4a:db:be:8a:a9:e9:09:99:b0:05:75:e7:2e: 2f:04:25:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZpQ6JF4AJj/FlqK2bl8sksQdRVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDFaFw0yNTA1MzEwODAxMDFaMDMxMTAvBgNV BAMTKDg4MEJFNUYwQ0Q3NUZFREZDNzA3NDNEQjgwMkVEODVDRjY5Rjg5QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLTbyL+31tUI80M2qtCkSRFtRM +4KQA38M6oHbl1LN9vzeFsw8ZnTYXmPlv5iya8/RidLRCfRGXxOmt8Z1p15JMC9l zioATJ2VQyROMi0hHmGw0Ej5sc5RmcchyNBASUXjKvl8g5hozQPFjoHhmbwDNOE8 uXXWLR7ENGDjr4nZi8npgjQR53pxdKvN4tl+hVBKpb/uMP9A+ZewAxDhDEwvx3UJ MaWLbF8YwnFkn8adr7KtBWlLGzqlxzmb5V2l2R/qlaF2cCWEDQ/bFJJk16+ZcCgL E37gd0OycVbte+P2vTd46dtwiuaBfuaVC2EZ8jVCiaO6MrfpVusmz0Kek6VfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiAvl8M11/t/HB0PbgC7YXPaficUwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd1MA0GCSqG SIb3DQEBCwUAA4IBAQAjgZGNuDlTdtMb+c/6vf3FwIcfSrzqxc4Y+8lvNdShEKCE c0KoxbkTeXRDKoeX+FqkT2dQJkga3jXZXvsomTqbbLBg3TEn72SSvSKqEpAGFmWz mWCuutyDiZ7klZvytEozPL6ZKIQKUJr68vW+9TMlqCzz5lN68Q7cjTtBxaaBaOjX IbD68EHbTQSWCPHsk3tuXjYaPjDvk0+KO78I1BvewWMPnU/OLr7hRGFX2ZyjRhwm FaExnRKaUZVQlTrJP0acqjMbHns4dXe5xULBGJZcamkTDN25QTYUwIbtiB7gT2vv MFlt0XBCNIbWKAn8lUrbvoqp6QmZsAV15y4vBCVO -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org