$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: QOV4B7msP9jQpwjh211FzZLygF8E55gn0hz/U4GMFaA= Subject key identifier: F4:54:CC:75:9E:F9:69:C7:33:31:47:01:13:BC:3E:4C:2F:16:1E:5E Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 53F3D6A9A27EF9A1B9C48D4ABF68B85A9A38815F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:59 +0000 ROA not before: Sat 01 Jun 2024 07:55:59 +0000 ROA not after: Sat 31 May 2025 08:00:59 +0000 asID: 24525 IP address blocks: 114.199.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f3:d6:a9:a2:7e:f9:a1:b9:c4:8d:4a:bf:68:b8:5a:9a:38:81:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:59 2024 GMT Not After : May 31 08:00:59 2025 GMT Subject: CN=F454CC759EF969C73331470113BC3E4C2F161E5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8a:50:fc:d7:e0:6c:44:8e:b1:0d:11:e4:03: 0b:64:40:a5:88:c5:52:46:4a:ee:c2:1d:63:54:d1: 75:9f:8b:7e:4f:f7:37:38:bf:c5:bc:5a:63:49:f3: f8:8a:92:ac:35:3f:80:e8:b3:bd:64:bb:fb:54:f2: 96:6e:59:1d:8a:dc:ca:13:7b:00:b6:6c:2e:5d:dd: 05:31:bc:7e:0b:e7:3b:5a:4f:a5:5e:54:99:4d:af: fb:14:22:d8:a7:b7:4c:47:b1:5b:ba:7d:91:8b:a9: 33:d1:dc:30:1e:48:ad:9b:71:b5:61:33:5a:11:13: e4:7d:21:ee:d6:8b:a7:d8:91:65:55:af:3b:f5:e5: 56:62:38:e3:83:9e:9a:a9:c1:52:8b:e9:7f:56:f4: a9:e2:fe:50:a7:b8:87:e7:13:0d:fb:df:52:90:7d: c8:a7:34:1b:cd:0b:00:59:79:8e:39:cf:8a:65:8a: 37:3f:27:29:11:a7:2a:33:6f:3d:6e:4d:fd:32:34: ed:9b:a2:66:55:4c:dc:71:05:26:12:47:68:e1:e5: 8f:ec:23:f8:34:60:15:dd:d5:1b:ae:1f:99:a1:8c: 61:cb:7e:24:8c:ad:c4:a7:04:c5:d1:2d:61:b4:9c: 1a:ce:78:e2:49:fd:d9:ac:b9:9d:d2:49:5c:32:1e: 79:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:54:CC:75:9E:F9:69:C7:33:31:47:01:13:BC:3E:4C:2F:16:1E:5E X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.123.0/24 Signature Algorithm: sha256WithRSAEncryption 54:ab:6b:c5:9e:77:03:09:2d:c9:8a:c7:24:9e:33:2d:87:c4: b1:e8:7e:04:d9:37:91:1d:bc:a2:7d:4a:3b:66:b1:41:53:be: d0:07:b2:4e:d7:fd:30:0a:4c:c8:b1:e2:73:1d:70:da:50:2c: 96:4b:21:c3:65:60:4e:dc:d6:63:e6:a1:3b:f8:d5:e7:8b:0f: d0:4c:20:87:39:c2:60:1d:ce:9d:62:bd:7d:0e:19:67:c9:cb: f3:d4:a3:dc:c0:b8:f2:0f:91:60:2a:cd:65:7e:c2:4b:a7:ab: ed:53:41:9d:3e:b8:8c:b0:83:8a:9d:ff:47:00:36:79:c2:eb: 2b:91:70:b7:dd:e3:2e:5d:d6:74:89:00:6a:ac:8c:00:15:08: 54:fe:0f:34:8d:3b:20:0d:df:c7:fd:60:6f:e5:28:f3:83:e3: 19:a1:04:67:41:12:79:86:d6:2d:3f:38:db:1c:4a:e5:d1:3d: e6:85:ed:26:fc:99:cf:66:9d:e6:38:98:f5:1e:92:bc:2e:72: cb:17:51:21:33:ac:76:1e:80:83:fd:b2:12:9b:c9:08:c3:62: d1:61:2c:c7:31:58:cd:e5:61:d2:6d:dc:ac:7d:d1:c6:3d:cf: 55:cf:ce:81:03:28:a6:07:62:74:57:f5:49:c4:6a:8d:a1:d9: a6:23:7e:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU/PWqaJ++aG5xI1Kv2i4Wpo4gV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTlaFw0yNTA1MzEwODAwNTlaMDMxMTAvBgNV BAMTKEY0NTRDQzc1OUVGOTY5QzczMzMxNDcwMTEzQkMzRTRDMkYxNjFFNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeilD81+BsRI6xDRHkAwtkQKWI xVJGSu7CHWNU0XWfi35P9zc4v8W8WmNJ8/iKkqw1P4Dos71ku/tU8pZuWR2K3MoT ewC2bC5d3QUxvH4L5ztaT6VeVJlNr/sUItint0xHsVu6fZGLqTPR3DAeSK2bcbVh M1oRE+R9Ie7Wi6fYkWVVrzv15VZiOOODnpqpwVKL6X9W9Kni/lCnuIfnEw3731KQ fcinNBvNCwBZeY45z4plijc/JykRpyozbz1uTf0yNO2bomZVTNxxBSYSR2jh5Y/s I/g0YBXd1RuuH5mhjGHLfiSMrcSnBMXRLWG0nBrOeOJJ/dmsuZ3SSVwyHnmVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9FTMdZ75acczMUcBE7w+TC8WHl4wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd7MA0GCSqG SIb3DQEBCwUAA4IBAQBUq2vFnncDCS3JiscknjMth8Sx6H4E2TeRHbyifUo7ZrFB U77QB7JO1/0wCkzIseJzHXDaUCyWSyHDZWBO3NZj5qE7+NXniw/QTCCHOcJgHc6d Yr19Dhlnycvz1KPcwLjyD5FgKs1lfsJLp6vtU0GdPriMsIOKnf9HADZ5wusrkXC3 3eMuXdZ0iQBqrIwAFQhU/g80jTsgDd/H/WBv5Sjzg+MZoQRnQRJ5htYtPzjbHErl 0T3mhe0m/JnPZp3mOJj1HpK8LnLLF1EhM6x2HoCD/bISm8kIw2LRYSzHMVjN5WHS bdysfdHGPc9Vz86BAyimB2J0V/VJxGqNodmmI34B -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org