$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: y7ngndUGXzLllo4tOw7CdtCwUNv7P1Z/m3yLBEsEHAU= Subject key identifier: B0:44:26:CD:CB:B6:12:48:B1:46:C8:E5:1F:C9:79:A7:FF:75:7D:E6 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 138A692378B59141023B186495312D76968D5B93 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:01 +0000 ROA not before: Sat 01 Jun 2024 07:56:01 +0000 ROA not after: Sat 31 May 2025 08:01:01 +0000 asID: 24525 IP address blocks: 114.199.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:8a:69:23:78:b5:91:41:02:3b:18:64:95:31:2d:76:96:8d:5b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:01 2024 GMT Not After : May 31 08:01:01 2025 GMT Subject: CN=B04426CDCBB61248B146C8E51FC979A7FF757DE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fe:e3:aa:4e:83:af:0a:e6:ab:81:c0:ef:44: 6d:ae:5c:32:d9:a7:a3:e1:48:cb:e6:54:3c:47:12: a4:d2:a1:1d:ce:ed:c7:0c:99:e7:54:af:5f:7f:96: e5:68:5c:68:e0:b6:32:a8:3b:11:5e:f0:94:c9:23: de:b9:f2:da:ed:3f:b7:1a:52:9f:f3:eb:c7:fa:3c: 5d:b5:0a:4d:cc:32:2c:c6:f6:cf:8e:c8:24:a5:25: 90:08:d7:1a:53:ee:97:ec:78:4e:64:e2:17:6c:67: 3b:f9:2e:0c:27:c6:a1:ef:c1:af:0d:2a:15:3d:80: 84:44:da:e3:9e:f0:f3:21:83:87:8a:24:d6:5a:17: cb:1b:f7:c6:03:7a:d0:a5:e2:fd:80:82:b1:99:a1: 4a:a5:8f:2d:80:f6:4c:ac:e5:2c:31:9e:8f:e7:17: fe:46:16:03:cb:0e:4d:78:be:4b:9a:40:f7:5c:a7: 25:82:19:33:e8:66:4e:9e:b8:be:b7:e1:1c:99:02: 89:e5:3f:64:18:75:0c:9e:a7:ca:ad:d7:23:97:02: cc:a1:0e:6a:e4:a9:a1:48:c7:70:53:ff:8d:dd:f4: f2:df:89:e0:b8:92:86:6d:38:c3:ff:ab:fe:31:f1: 19:ba:e4:72:fa:4d:0e:c3:49:f9:c1:3f:1b:73:5f: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:44:26:CD:CB:B6:12:48:B1:46:C8:E5:1F:C9:79:A7:FF:75:7D:E6 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.125.0/24 Signature Algorithm: sha256WithRSAEncryption 48:bd:77:e8:61:8b:12:c0:81:7c:0e:81:6e:7e:7c:d8:8e:03: c0:b7:55:f3:39:ab:7c:7b:63:b8:f2:2e:f8:a8:e9:58:a8:b1: b3:02:47:a1:4f:1f:4c:9a:a0:2e:73:3b:33:4d:ff:70:8e:6f: e8:52:38:ac:65:76:61:9a:42:d2:56:5f:6b:20:60:9f:b0:87: 9a:c8:f9:2a:45:57:76:c3:46:5f:33:af:41:19:5e:8f:ae:60: 92:90:04:86:8d:ea:de:5b:35:ca:cb:a3:57:8d:fb:27:2e:70: a2:c6:4c:73:20:95:48:58:2d:1a:98:b2:91:ab:e6:97:ad:b3: e2:f2:c3:0e:eb:f5:5d:29:01:48:8d:18:0a:76:b6:0a:09:4a: 6e:3f:81:7b:fd:d2:b5:12:e0:68:fb:4b:ae:c6:67:8c:f6:d4: 05:ad:9a:50:22:bf:74:93:65:38:3e:59:56:33:8e:78:41:37: e8:dd:0d:d4:91:31:15:3b:b1:47:ca:8d:13:e0:71:c2:af:45: 52:9e:67:e1:70:61:fa:32:bc:64:c1:13:16:30:fe:15:9b:04: 5d:03:ac:74:7d:3e:9a:06:d5:d8:bd:6e:d9:1a:43:10:26:6f: 81:be:60:5d:38:3c:c8:68:8f:f6:36:83:b7:55:b6:49:ff:76: 78:f5:ba:c9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE4ppI3i1kUECOxhklTEtdpaNW5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDFaFw0yNTA1MzEwODAxMDFaMDMxMTAvBgNV BAMTKEIwNDQyNkNEQ0JCNjEyNDhCMTQ2QzhFNTFGQzk3OUE3RkY3NTdERTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi/uOqToOvCuargcDvRG2uXDLZ p6PhSMvmVDxHEqTSoR3O7ccMmedUr19/luVoXGjgtjKoOxFe8JTJI9658trtP7ca Up/z68f6PF21Ck3MMizG9s+OyCSlJZAI1xpT7pfseE5k4hdsZzv5LgwnxqHvwa8N KhU9gIRE2uOe8PMhg4eKJNZaF8sb98YDetCl4v2AgrGZoUqljy2A9kys5Swxno/n F/5GFgPLDk14vkuaQPdcpyWCGTPoZk6euL634RyZAonlP2QYdQyep8qt1yOXAsyh DmrkqaFIx3BT/43d9PLfieC4koZtOMP/q/4x8Rm65HL6TQ7DSfnBPxtzX+8FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsEQmzcu2EkixRsjlH8l5p/91feYwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd9MA0GCSqG SIb3DQEBCwUAA4IBAQBIvXfoYYsSwIF8DoFufnzYjgPAt1XzOat8e2O48i74qOlY qLGzAkehTx9MmqAuczszTf9wjm/oUjisZXZhmkLSVl9rIGCfsIeayPkqRVd2w0Zf M69BGV6PrmCSkASGjereWzXKy6NXjfsnLnCixkxzIJVIWC0amLKRq+aXrbPi8sMO 6/VdKQFIjRgKdrYKCUpuP4F7/dK1EuBo+0uuxmeM9tQFrZpQIr90k2U4PllWM454 QTfo3Q3UkTEVO7FHyo0T4HHCr0VSnmfhcGH6MrxkwRMWMP4VmwRdA6x0fT6aBtXY vW7ZGkMQJm+BvmBdODzIaI/2NoO3VbZJ/3Z49brJ -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org