$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: ghdvpCnM0MCB9g4fWJEecsPeY257cMi7wMyQsFI9Hsk= Subject key identifier: 5C:41:5D:65:F8:CD:9D:3F:12:85:B2:CE:B6:90:33:37:AF:28:AC:41 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5156D44FD962E36D94A2A5ABD0E518A6DF4C777D Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:00 +0000 ROA not before: Sat 01 Jun 2024 07:56:00 +0000 ROA not after: Sat 31 May 2025 08:01:00 +0000 asID: 24525 IP address blocks: 114.199.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:56:d4:4f:d9:62:e3:6d:94:a2:a5:ab:d0:e5:18:a6:df:4c:77:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:00 2024 GMT Not After : May 31 08:01:00 2025 GMT Subject: CN=5C415D65F8CD9D3F1285B2CEB6903337AF28AC41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f9:d8:53:7b:b8:85:b2:c7:16:d7:6f:06:c9: fe:1b:5b:a3:f6:e6:3c:bd:0f:1f:dc:06:20:b0:d4: c3:71:da:7a:16:c6:c7:1b:78:60:a2:e6:e0:a2:c5: da:73:12:ae:31:83:4c:b2:a3:0c:f5:1b:1f:63:86: 26:64:71:47:19:7b:27:00:90:9d:d2:9c:0c:31:58: 64:91:9d:22:55:d0:38:cb:f3:94:8a:e9:11:6d:8a: 5d:c9:a9:49:54:31:ae:23:f6:60:8f:8a:b2:4a:08: 20:3c:26:12:ed:43:37:1b:41:cd:1f:59:13:66:c1: d0:4a:93:80:7d:75:28:15:e6:73:61:26:bf:79:8f: 77:1c:15:08:f3:54:f2:96:c9:d0:03:62:3c:d8:b1: c5:48:32:46:5a:20:bc:28:9c:35:68:48:be:d0:2d: 19:bf:bb:e2:94:56:53:96:82:09:78:17:aa:21:da: 79:8d:10:6b:cd:5e:00:b1:68:bc:6a:be:5e:7e:30: 2a:4c:c1:c0:59:43:ab:0c:52:e9:1b:58:75:e5:79: f2:27:95:b6:b1:00:85:71:c9:7c:a0:fe:85:43:ba: b5:ae:dc:63:f3:d3:b9:6d:09:67:c6:98:a6:67:09: 76:8f:f3:8c:f0:ab:d0:1e:07:7a:a7:ee:b7:5f:5b: f6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:41:5D:65:F8:CD:9D:3F:12:85:B2:CE:B6:90:33:37:AF:28:AC:41 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/24 Signature Algorithm: sha256WithRSAEncryption c1:36:10:5f:63:ce:19:3c:3d:cb:47:b6:83:13:75:ac:f9:5d: ed:0c:2a:8e:72:5a:b8:33:94:38:a6:d2:5b:e8:53:6c:9a:c8: ec:65:17:46:93:ff:1b:b6:5a:15:f6:82:37:ad:53:85:17:08: 68:3c:cb:2e:d5:f7:b0:ae:43:00:4e:6f:ae:00:c8:9f:6e:39: aa:62:b9:38:5f:a3:16:4a:a9:52:2c:2a:94:3f:90:20:59:e6: b4:00:1a:9c:d4:d0:55:f8:55:ab:8e:29:ed:20:3d:c8:fa:18: 63:39:78:a2:8e:7c:5a:a8:6a:dc:7f:91:c0:d8:f4:a0:a1:cd: e5:f0:f0:e9:1c:c1:e5:2a:e4:0a:61:d5:f6:4b:98:51:d6:98: 92:52:99:b9:56:51:fb:cf:9e:59:2a:8a:d1:30:34:a8:a5:20: 75:4a:83:ad:5e:5e:90:10:89:45:52:7f:b7:d0:a9:72:a5:de: 99:fd:4a:a0:08:f1:3a:73:0f:31:94:c0:51:b7:67:45:2a:b5: 41:20:fb:20:c6:cd:62:63:10:b0:11:b0:2f:8d:f8:56:8f:0c: 90:b4:c7:4f:67:db:8f:f5:82:c9:ba:23:81:b5:d3:3c:2b:28: 69:65:fd:ce:9e:12:6b:4a:cb:ef:a3:ae:83:b4:0f:3a:a5:93: d8:50:53:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUVbUT9li422UoqWr0OUYpt9Md30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDBaFw0yNTA1MzEwODAxMDBaMDMxMTAvBgNV BAMTKDVDNDE1RDY1RjhDRDlEM0YxMjg1QjJDRUI2OTAzMzM3QUYyOEFDNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN+dhTe7iFsscW128Gyf4bW6P2 5jy9Dx/cBiCw1MNx2noWxscbeGCi5uCixdpzEq4xg0yyowz1Gx9jhiZkcUcZeycA kJ3SnAwxWGSRnSJV0DjL85SK6RFtil3JqUlUMa4j9mCPirJKCCA8JhLtQzcbQc0f WRNmwdBKk4B9dSgV5nNhJr95j3ccFQjzVPKWydADYjzYscVIMkZaILwonDVoSL7Q LRm/u+KUVlOWggl4F6oh2nmNEGvNXgCxaLxqvl5+MCpMwcBZQ6sMUukbWHXlefIn lbaxAIVxyXyg/oVDurWu3GPz07ltCWfGmKZnCXaP84zwq9AeB3qn7rdfW/bDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXEFdZfjNnT8ShbLOtpAzN68orEEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQDBNhBfY84ZPD3LR7aDE3Ws+V3tDCqOclq4M5Q4ptJb6FNs msjsZRdGk/8btloV9oI3rVOFFwhoPMsu1fewrkMATm+uAMifbjmqYrk4X6MWSqlS LCqUP5AgWea0ABqc1NBV+FWrjintID3I+hhjOXiijnxaqGrcf5HA2PSgoc3l8PDp HMHlKuQKYdX2S5hR1piSUpm5VlH7z55ZKorRMDSopSB1SoOtXl6QEIlFUn+30Kly pd6Z/UqgCPE6cw8xlMBRt2dFKrVBIPsgxs1iYxCwEbAvjfhWjwyQtMdPZ9uP9YLJ uiOBtdM8KyhpZf3OnhJrSsvvo66DtA86pZPYUFN1 -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org