$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: YUL10kApTyAq9tTT2mZkPF4C6Ly9DayvaEfevceQPNk= Subject key identifier: 0B:25:DE:E2:20:A0:70:4C:9E:00:34:F2:F2:5D:BF:32:DF:7D:B2:31 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 586167D512EF66C38240AF5647E5B9B17E47383F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa Signing time: Tue 21 May 2024 06:00:01 +0000 ROA not before: Tue 21 May 2024 05:55:01 +0000 ROA not after: Tue 20 May 2025 06:00:01 +0000 asID: 24525 IP address blocks: 114.199.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:61:67:d5:12:ef:66:c3:82:40:af:56:47:e5:b9:b1:7e:47:38:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 05:55:01 2024 GMT Not After : May 20 06:00:01 2025 GMT Subject: CN=0B25DEE220A0704C9E0034F2F25DBF32DF7DB231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:87:20:9f:c5:00:35:db:79:4c:d0:84:1d:93: a1:dd:0e:06:4b:e5:2c:df:bd:58:89:61:64:77:3d: 4c:17:ca:b3:c8:75:d0:f1:01:a4:d2:84:81:f7:44: 70:83:a7:51:bb:d5:b5:25:ba:15:b7:4d:11:16:40: f6:94:46:58:33:09:22:2b:6c:27:ae:d4:9e:44:bd: b4:1c:bb:f5:59:e9:1a:b7:6d:cd:f2:1a:c9:df:b6: bd:cd:59:39:e0:97:ac:6c:40:5a:57:41:e1:d3:4a: 9c:cb:85:d1:e8:95:68:4f:06:d5:4b:a7:89:17:d5: 72:79:44:a5:e8:1e:f7:51:c8:0c:fa:02:22:58:75: b4:57:47:c8:4d:33:e7:1a:49:30:4a:83:b6:d4:36: 4f:b1:8f:c9:e1:6b:e9:4a:0a:3e:70:85:6d:cd:fa: 46:3e:4c:bd:30:23:c8:d3:75:b2:b6:17:db:9a:ac: e4:f6:80:96:5b:6e:05:32:4a:a4:9f:55:d2:30:eb: e0:da:8d:0b:21:9e:77:7b:f3:6c:20:bc:9d:b5:a7: 14:82:24:91:df:6c:46:28:59:47:c0:5e:33:0d:81: 0a:1e:e4:9c:c5:ce:88:a9:3b:3c:97:f6:8f:31:f3: f9:30:0a:c8:60:06:17:d6:16:da:6c:f3:52:a7:0b: 3e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:25:DE:E2:20:A0:70:4C:9E:00:34:F2:F2:5D:BF:32:DF:7D:B2:31 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/21 Signature Algorithm: sha256WithRSAEncryption a2:b1:53:c0:5c:02:db:5e:f3:c7:58:cb:21:4e:e2:cb:e4:9c: 01:31:e3:aa:c9:39:61:fb:36:c1:0e:ac:8a:32:8e:da:de:5c: 41:09:b5:49:b4:a5:d5:c5:66:05:4a:81:2f:21:e9:d2:0a:34: e0:1d:79:1c:c6:24:35:b6:c4:64:3e:23:0b:67:6d:0e:a1:3c: 78:f4:62:f7:45:17:4d:48:a1:10:47:9e:08:ee:c5:fe:de:bd: ff:d2:38:68:71:cc:d9:f4:f5:57:7d:f1:e1:75:ce:38:7d:d9: 35:fc:3a:8a:2a:cf:6e:29:0c:81:65:ab:e8:91:a8:ef:3c:26: fb:b5:2f:08:ba:eb:0a:26:dc:42:c7:ad:29:3f:63:1c:b6:75: 40:c5:95:b1:98:cf:93:3b:5e:04:d4:fb:a6:ca:93:d3:c5:25: 32:e6:fe:fa:48:41:6c:9a:fb:e6:eb:65:1e:a1:b4:43:d3:c1: dd:27:f9:5d:e9:05:bd:3f:b6:61:5e:28:4e:a6:27:38:14:9e: 12:70:4e:db:b5:c0:f9:88:5d:21:73:6e:1d:9b:59:e6:a2:c5: bb:6e:df:97:38:16:e0:15:40:39:45:df:42:95:35:77:92:3c: fb:ce:56:73:85:9c:01:8e:ea:df:42:6b:12:d0:5f:e1:74:db: 33:32:da:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWGFn1RLvZsOCQK9WR+W5sX5HOD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNTU1MDFaFw0yNTA1MjAwNjAwMDFaMDMxMTAvBgNV BAMTKDBCMjVERUUyMjBBMDcwNEM5RTAwMzRGMkYyNURCRjMyREY3REIyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuhyCfxQA123lM0IQdk6HdDgZL 5SzfvViJYWR3PUwXyrPIddDxAaTShIH3RHCDp1G71bUluhW3TREWQPaURlgzCSIr bCeu1J5EvbQcu/VZ6Rq3bc3yGsnftr3NWTngl6xsQFpXQeHTSpzLhdHolWhPBtVL p4kX1XJ5RKXoHvdRyAz6AiJYdbRXR8hNM+caSTBKg7bUNk+xj8nha+lKCj5whW3N +kY+TL0wI8jTdbK2F9uarOT2gJZbbgUySqSfVdIw6+DajQshnnd782wgvJ21pxSC JJHfbEYoWUfAXjMNgQoe5JzFzoipOzyX9o8x8/kwCshgBhfWFtps81KnCz47AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCyXe4iCgcEyeADTy8l2/Mt99sjEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQCisVPAXALbXvPHWMshTuLL5JwBMeOqyTlh+zbBDqyKMo7a 3lxBCbVJtKXVxWYFSoEvIenSCjTgHXkcxiQ1tsRkPiMLZ20OoTx49GL3RRdNSKEQ R54I7sX+3r3/0jhocczZ9PVXffHhdc44fdk1/DqKKs9uKQyBZavokajvPCb7tS8I uusKJtxCx60pP2MctnVAxZWxmM+TO14E1PumypPTxSUy5v76SEFsmvvm62UeobRD 08HdJ/ld6QW9P7ZhXihOpic4FJ4ScE7btcD5iF0hc24dm1nmosW7bt+XOBbgFUA5 Rd9ClTV3kjz7zlZzhZwBjurfQmsS0F/hdNszMtq3 -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:17 2024 by rpki-client on console-ams.rpki-client.org