$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132342e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: KkIzVCC/KyXLt+HmOSTg/fph+ZSavLXFXJ5Kicnqn40= Subject key identifier: 1E:09:52:C0:40:4B:4C:5A:D7:3B:56:A4:5C:F9:49:77:16:2D:A6:5A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 02F6737A3F2CED3C2CBD2812E98B6180FA0C46EF Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:01 +0000 ROA not before: Sat 03 May 2025 08:55:01 +0000 ROA not after: Sat 02 May 2026 09:00:01 +0000 asID: 24525 IP address blocks: 114.199.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f6:73:7a:3f:2c:ed:3c:2c:bd:28:12:e9:8b:61:80:fa:0c:46:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:01 2025 GMT Not After : May 2 09:00:01 2026 GMT Subject: CN=1E0952C0404B4C5AD73B56A45CF94977162DA65A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:71:69:ce:4f:94:4d:7d:bd:ff:1b:fd:dc:0f: c7:35:61:b4:16:d3:6a:e5:ec:47:b3:cb:5f:c5:53: 5d:fc:0c:41:3a:56:e9:c1:85:7c:09:d9:2f:88:3d: db:f8:3e:7f:ec:b8:82:16:82:37:69:75:79:c9:9c: 0b:43:1d:ce:3f:1a:81:b3:6e:2c:9d:47:2e:38:58: 36:8b:52:cd:ab:52:2d:78:aa:63:7b:2b:68:ef:14: d0:65:4d:fe:be:39:7b:9e:98:76:bd:e0:49:86:44: e9:20:8a:a9:9c:be:e9:26:9f:7a:fb:7e:83:a2:bb: 60:d9:47:d7:3e:ab:03:ce:0c:e5:22:22:4c:c2:4e: 9d:9b:79:2d:f4:b7:75:fb:80:01:da:d9:1f:f6:c9: 5a:00:68:12:fc:2a:b0:97:ac:d6:8f:aa:a7:17:2a: 89:c2:19:8f:84:89:62:19:a9:e1:f3:55:34:7f:86: 5d:3b:e0:65:59:47:ee:af:4a:b7:75:87:50:4a:c8: ce:55:c1:b5:65:c9:a0:d3:e5:55:78:6c:f4:a3:3a: 73:89:08:3c:3c:2c:2e:c2:1c:84:a6:59:f0:69:7b: 0f:c2:6d:a2:26:ac:84:4c:af:2e:71:56:a3:c0:79: 73:f6:7f:26:da:94:45:55:13:ed:fa:99:e4:12:17: 2a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:09:52:C0:40:4B:4C:5A:D7:3B:56:A4:5C:F9:49:77:16:2D:A6:5A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.124.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:0e:26:64:e5:d0:ca:c0:2d:d2:68:1c:fe:dc:07:88:22:25: b7:30:15:62:46:bb:47:57:01:b1:40:75:73:6e:c4:be:ef:9e: 59:2a:80:ac:80:af:48:e7:69:31:69:f5:c6:5f:ef:90:a8:12: eb:68:05:91:0d:38:91:53:40:a2:af:73:64:ed:62:84:7a:bd: c6:85:c8:79:ef:ab:a4:cb:6f:be:e0:70:6c:a3:88:75:39:2d: 4e:61:15:fe:22:40:97:64:f2:bd:51:19:87:64:6a:6f:54:f1: 46:10:d0:65:df:e3:3a:c4:f9:d9:f6:5f:6b:f1:b9:ef:18:fe: 6a:58:bc:89:0d:56:1c:86:cc:32:69:96:4d:e3:33:01:4c:fd: f7:57:29:11:16:38:e9:11:ea:14:63:25:41:b6:08:1a:a6:3f: 14:c7:3b:ec:31:50:bc:62:1c:b8:67:82:74:b4:a7:98:b6:1e: 6e:57:2e:93:e4:78:50:36:75:64:c2:ba:3a:e0:6a:c4:fb:9a: 85:9e:2e:89:1a:c2:9d:c9:76:ac:72:46:bf:d0:d2:30:b0:27: 1c:d3:bd:66:ee:1d:f0:86:c4:2f:61:4b:41:b0:a5:03:ed:1b: 9d:a6:08:68:f5:7f:fd:52:fb:dc:16:46:d5:2f:33:af:95:9b: 32:d4:0d:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAvZzej8s7TwsvSgS6YthgPoMRu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDFaFw0yNjA1MDIwOTAwMDFaMDMxMTAvBgNV BAMTKDFFMDk1MkMwNDA0QjRDNUFENzNCNTZBNDVDRjk0OTc3MTYyREE2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNcWnOT5RNfb3/G/3cD8c1YbQW 02rl7Eezy1/FU138DEE6VunBhXwJ2S+IPdv4Pn/suIIWgjdpdXnJnAtDHc4/GoGz biydRy44WDaLUs2rUi14qmN7K2jvFNBlTf6+OXuemHa94EmGROkgiqmcvukmn3r7 foOiu2DZR9c+qwPODOUiIkzCTp2beS30t3X7gAHa2R/2yVoAaBL8KrCXrNaPqqcX KonCGY+EiWIZqeHzVTR/hl074GVZR+6vSrd1h1BKyM5VwbVlyaDT5VV4bPSjOnOJ CDw8LC7CHISmWfBpew/CbaImrIRMry5xVqPAeXP2fybalEVVE+36meQSFypfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHglSwEBLTFrXO1akXPlJdxYtplowHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd8MA0GCSqG SIb3DQEBCwUAA4IBAQBfDiZk5dDKwC3SaBz+3AeIIiW3MBViRrtHVwGxQHVzbsS+ 755ZKoCsgK9I52kxafXGX++QqBLraAWRDTiRU0Cir3Nk7WKEer3Ghch576uky2++ 4HBso4h1OS1OYRX+IkCXZPK9URmHZGpvVPFGENBl3+M6xPnZ9l9r8bnvGP5qWLyJ DVYchswyaZZN4zMBTP33VykRFjjpEeoUYyVBtggapj8UxzvsMVC8Yhy4Z4J0tKeY th5uVy6T5HhQNnVkwro64GrE+5qFni6JGsKdyXascka/0NIwsCcc071m7h3whsQv YUtBsKUD7Rudpgho9X/9UvvcFkbVLzOvlZsy1A18 -----END CERTIFICATE-----Generated at Fri Jun 6 16:56:26 2025 by rpki-client