$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: uRageR5ieb6i4A7LJ7wCQ0otDFQG2t7unZBg4jdSv84= Subject key identifier: 9E:4E:09:A3:B0:7B:85:06:79:4D:E0:0C:1D:B3:F4:11:C8:86:8F:D3 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 08DE94B584EBC8B1B4840F587F9E8186A266DAD7 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:42 +0000 ROA not before: Tue 21 May 2024 07:57:42 +0000 ROA not after: Tue 20 May 2025 08:02:42 +0000 asID: 24525 IP address blocks: 114.199.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:de:94:b5:84:eb:c8:b1:b4:84:0f:58:7f:9e:81:86:a2:66:da:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:42 2024 GMT Not After : May 20 08:02:42 2025 GMT Subject: CN=9E4E09A3B07B8506794DE00C1DB3F411C8868FD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:a6:4d:fb:82:b8:a2:89:13:ff:b7:21:f4: 3c:4d:03:6b:b0:cc:87:0a:a5:8c:87:40:a6:64:c0: 26:a1:b6:98:a5:1e:e3:ae:14:7b:b2:94:7e:3e:e7: ae:4f:f8:9d:e3:b7:1d:2d:6e:82:e8:be:ee:7a:70: 92:c0:25:17:e8:27:0c:f5:dd:87:6e:84:90:85:4d: be:a2:85:d7:2f:c8:c1:88:21:34:28:94:38:fe:f6: e0:1e:2d:37:38:b6:94:25:25:98:fb:90:ef:21:36: fb:e6:24:93:de:b4:35:cf:65:65:7b:d1:93:d4:96: f9:8d:97:18:57:ba:f0:49:18:2d:99:86:9e:a8:24: c5:12:08:60:59:11:db:c9:d6:d6:93:56:db:71:9f: f7:17:9b:94:03:6e:76:9b:2a:dd:de:6b:a5:77:a9: b8:b5:52:4f:d5:e1:54:26:39:dd:a5:b2:3d:94:e6: b2:91:03:fa:be:d2:78:f6:02:00:89:84:4d:ff:93: b8:fb:95:ea:a6:89:78:9f:a7:b3:e2:a6:99:43:d5: c5:fc:2d:4f:e4:2b:9c:e2:0c:84:0d:14:66:ef:03: fe:be:76:5f:33:7c:99:0c:f8:77:f9:b5:7c:15:25: 2b:49:2f:75:fa:9c:08:ea:b9:5f:4b:63:57:21:d7: aa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4E:09:A3:B0:7B:85:06:79:4D:E0:0C:1D:B3:F4:11:C8:86:8F:D3 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.122.0/23 Signature Algorithm: sha256WithRSAEncryption b3:64:8e:29:d0:1e:27:6e:aa:dd:d3:28:3e:10:5f:43:29:0c: 05:46:e7:b8:41:82:f7:42:6c:74:bd:bb:52:96:f7:81:45:16: 96:44:c0:e9:39:43:58:40:11:2c:bd:9c:cd:a4:a3:d7:62:77: 31:ba:1c:c0:4f:3f:ed:cf:9a:38:6b:cb:ad:60:be:b6:08:84: 95:c5:e2:56:54:19:e9:d2:ec:27:fa:70:d6:aa:b6:aa:83:62: 55:79:e4:7d:79:f4:47:df:14:ee:78:ef:39:c3:bf:71:6e:4c: e4:04:e6:08:52:01:5a:fb:48:95:14:99:01:e4:ac:96:08:73: fe:40:8a:1d:d1:01:b9:a6:a9:68:a7:19:d3:2c:9d:23:5a:f1: c2:bd:14:e5:74:dc:73:83:ca:3d:1f:28:db:76:32:c7:5b:69: f4:e7:75:4e:15:44:ea:82:4e:5b:01:12:ce:ec:52:73:3e:e8: 30:62:18:17:35:fe:30:c6:45:50:78:30:62:3f:28:30:37:cc: 53:2e:01:5f:3c:89:bb:5e:4a:c7:b5:69:3c:17:d1:89:80:25: d1:c5:32:8a:68:f5:42:02:66:96:4e:87:75:af:34:a6:47:be: 40:b8:bd:5b:68:b6:d7:10:7b:0f:7b:db:e9:2e:39:a4:6c:22: a5:00:db:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCN6UtYTryLG0hA9Yf56BhqJm2tcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDJaFw0yNTA1MjAwODAyNDJaMDMxMTAvBgNV BAMTKDlFNEUwOUEzQjA3Qjg1MDY3OTRERTAwQzFEQjNGNDExQzg4NjhGRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa36ZN+4K4ookT/7ch9DxNA2uw zIcKpYyHQKZkwCahtpilHuOuFHuylH4+565P+J3jtx0tboLovu56cJLAJRfoJwz1 3YduhJCFTb6ihdcvyMGIITQolDj+9uAeLTc4tpQlJZj7kO8hNvvmJJPetDXPZWV7 0ZPUlvmNlxhXuvBJGC2Zhp6oJMUSCGBZEdvJ1taTVttxn/cXm5QDbnabKt3ea6V3 qbi1Uk/V4VQmOd2lsj2U5rKRA/q+0nj2AgCJhE3/k7j7leqmiXifp7PipplD1cX8 LU/kK5ziDIQNFGbvA/6+dl8zfJkM+Hf5tXwVJStJL3X6nAjquV9LY1ch16plAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnk4Jo7B7hQZ5TeAMHbP0EciGj9MwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd6MA0GCSqG SIb3DQEBCwUAA4IBAQCzZI4p0B4nbqrd0yg+EF9DKQwFRue4QYL3Qmx0vbtSlveB RRaWRMDpOUNYQBEsvZzNpKPXYncxuhzATz/tz5o4a8utYL62CISVxeJWVBnp0uwn +nDWqraqg2JVeeR9efRH3xTueO85w79xbkzkBOYIUgFa+0iVFJkB5KyWCHP+QIod 0QG5pqlopxnTLJ0jWvHCvRTldNxzg8o9HyjbdjLHW2n053VOFUTqgk5bARLO7FJz PugwYhgXNf4wxkVQeDBiPygwN8xTLgFfPIm7XkrHtWk8F9GJgCXRxTKKaPVCAmaW Tod1rzSmR75AuL1baLbXEHsPe9vpLjmkbCKlANsp -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org