$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: TCU3+1VcJq6H5TzUUUllT50ScPoTTck5AtO5iXlicyk= Subject key identifier: 4E:B8:80:6D:9C:B0:15:2B:F4:0E:DB:44:18:30:A9:CA:C6:A0:27:BA Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2280C57A2DD5DD77450C4C0A63D852CE33A5E99B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:40 +0000 ROA not before: Tue 21 May 2024 07:57:40 +0000 ROA not after: Tue 20 May 2025 08:02:40 +0000 asID: 24525 IP address blocks: 114.199.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:80:c5:7a:2d:d5:dd:77:45:0c:4c:0a:63:d8:52:ce:33:a5:e9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:40 2024 GMT Not After : May 20 08:02:40 2025 GMT Subject: CN=4EB8806D9CB0152BF40EDB441830A9CAC6A027BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:32:e2:e7:7c:69:9b:e3:67:77:44:d0:22:61: 50:47:c3:62:ae:6a:cb:aa:e7:76:5f:da:2b:91:35: d6:a7:35:16:14:60:45:39:3f:64:c6:af:70:70:28: 0a:ac:f5:3f:9f:2d:42:5b:77:04:b6:c4:6b:80:9d: 18:66:48:44:93:1c:ed:26:53:b7:1f:c8:7d:b2:fe: aa:b0:79:e6:f0:f5:90:63:1c:09:e9:3d:4e:42:6d: 1d:19:3a:90:75:12:f6:ca:d4:4f:64:7a:9d:c3:27: 61:3f:b0:82:58:8a:96:8f:b2:14:23:df:80:e9:2e: 27:35:fa:60:ef:08:fa:85:e6:28:f9:3c:c6:71:8a: b1:46:7e:04:a4:fb:40:e8:e5:e4:5b:c3:a0:c6:e7: 3f:da:47:d5:13:61:ef:3c:bf:dc:c3:48:ff:f8:8c: 1d:03:76:3d:f1:46:f5:16:5e:71:fc:68:81:77:e2: cd:a3:06:c9:96:78:5b:29:2a:86:e7:6e:12:1c:d2: e3:84:15:b9:bf:93:2e:4e:6d:87:b7:f7:50:0e:2c: cc:a8:d0:aa:12:00:c1:c1:9d:cd:e8:6b:01:58:a1: 3b:1d:7f:e1:09:15:86:ee:b4:c7:22:67:61:34:34: 6c:89:0f:5e:57:9c:ce:08:f9:3a:8e:0b:6f:3e:5c: 22:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B8:80:6D:9C:B0:15:2B:F4:0E:DB:44:18:30:A9:CA:C6:A0:27:BA X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:c5:e8:92:b0:85:18:53:7f:01:8c:42:9f:96:db:d8:ce:03: cc:f1:ea:97:e4:6a:78:6b:fa:9e:26:62:2d:cb:98:ad:cc:e4: 77:d8:67:42:1c:31:ae:5d:d5:71:1d:3a:d0:63:b4:e4:1a:88: dd:d2:d2:13:68:10:25:2f:9b:6a:72:32:42:95:d9:c5:d1:41: 1f:b0:3d:63:75:2b:75:74:58:e4:20:c2:20:e1:38:53:3c:d1: a1:68:43:80:bf:e9:1f:9c:a4:ec:8e:b6:9d:50:6d:30:af:26: 6a:ed:16:8e:99:12:40:ab:9b:60:b2:f8:d5:f3:2e:b1:41:c1: ea:e5:f3:f6:1c:1c:0a:54:12:d8:d1:d1:38:e8:5f:ed:19:7d: 6a:73:4c:65:ff:63:8f:21:ed:62:71:87:e7:23:f4:b4:7a:33: 14:26:f1:b9:27:0e:05:b5:d3:2e:46:05:c8:05:a0:78:53:34: c3:d3:54:b4:c7:6e:af:97:9b:c2:b3:bc:74:f3:a3:01:bb:e6: 05:3c:d1:97:e5:97:81:fc:3c:97:f9:ab:b3:ad:b1:9b:86:ae: df:7f:55:8d:bc:6a:d2:c6:92:6f:ea:cf:ec:de:a5:b7:fa:cc: 0d:53:c2:91:83:e1:5b:74:e8:a9:ca:57:6d:7a:fc:4c:bf:5a: bb:a9:1a:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIoDFei3V3XdFDEwKY9hSzjOl6ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDBaFw0yNTA1MjAwODAyNDBaMDMxMTAvBgNV BAMTKDRFQjg4MDZEOUNCMDE1MkJGNDBFREI0NDE4MzBBOUNBQzZBMDI3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoMuLnfGmb42d3RNAiYVBHw2Ku asuq53Zf2iuRNdanNRYUYEU5P2TGr3BwKAqs9T+fLUJbdwS2xGuAnRhmSESTHO0m U7cfyH2y/qqweebw9ZBjHAnpPU5CbR0ZOpB1EvbK1E9kep3DJ2E/sIJYipaPshQj 34DpLic1+mDvCPqF5ij5PMZxirFGfgSk+0Do5eRbw6DG5z/aR9UTYe88v9zDSP/4 jB0Ddj3xRvUWXnH8aIF34s2jBsmWeFspKobnbhIc0uOEFbm/ky5ObYe391AOLMyo 0KoSAMHBnc3oawFYoTsdf+EJFYbutMciZ2E0NGyJD15XnM4I+TqOC28+XCLXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTriAbZywFSv0DttEGDCpysagJ7owHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQBdxeiSsIUYU38BjEKfltvYzgPM8eqX5Gp4a/qeJmIty5it zOR32GdCHDGuXdVxHTrQY7TkGojd0tITaBAlL5tqcjJCldnF0UEfsD1jdSt1dFjk IMIg4ThTPNGhaEOAv+kfnKTsjradUG0wryZq7RaOmRJAq5tgsvjV8y6xQcHq5fP2 HBwKVBLY0dE46F/tGX1qc0xl/2OPIe1icYfnI/S0ejMUJvG5Jw4FtdMuRgXIBaB4 UzTD01S0x26vl5vCs7x086MBu+YFPNGX5ZeB/DyX+auzrbGbhq7ff1WNvGrSxpJv 6s/s3qW3+swNU8KRg+FbdOipyldtevxMv1q7qRoe -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org