$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132362e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132362e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: LtGRWkjioAaxQEpi+kkGDeCEgwYQAyfKejqtnw248AM= Subject key identifier: C7:CA:98:02:04:7E:9C:61:4C:7D:DD:40:56:11:35:38:41:C1:53:C5 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0A7DD80A2890F982BBE1D5E04AFAF04DF3A99053 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132362e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:00 +0000 ROA not before: Sat 01 Jun 2024 07:56:00 +0000 ROA not after: Sat 31 May 2025 08:01:00 +0000 asID: 24525 IP address blocks: 114.199.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7d:d8:0a:28:90:f9:82:bb:e1:d5:e0:4a:fa:f0:4d:f3:a9:90:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:00 2024 GMT Not After : May 31 08:01:00 2025 GMT Subject: CN=C7CA9802047E9C614C7DDD405611353841C153C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7f:95:a3:71:68:60:e2:6b:d3:5e:66:6e:9d: 2a:67:d4:96:a4:26:3f:b1:db:32:e3:bb:cd:64:74: 92:c2:93:d7:27:6a:e6:01:02:06:0a:cf:9e:e2:83: be:e5:81:8c:8a:da:4e:b0:8c:44:9f:f8:66:36:59: e7:98:d3:68:43:98:a7:9a:a8:44:9e:1e:10:2c:b9: 2b:dd:8d:b3:53:ea:59:49:cf:85:0b:18:d4:15:3c: cf:05:42:02:0a:4f:5c:a9:56:c6:b6:7a:a0:d2:33: 13:26:07:da:af:c5:9f:88:34:8f:52:99:40:64:86: 76:09:ff:1a:d9:d8:75:8e:97:75:34:c9:2e:b5:28: 1d:08:93:84:99:68:6d:6f:26:e6:a5:30:f7:66:01: 8b:5c:6d:bb:be:a2:e4:e2:e7:15:97:cf:23:d1:57: 2a:07:22:f4:4a:40:3a:0c:2f:50:2e:e2:c3:29:7e: b8:2a:e9:7f:8e:8e:d6:8d:93:4c:f4:29:2e:7c:41: 1f:b8:92:4c:b3:b7:e8:0e:36:15:bd:f1:62:ba:53: c2:68:40:4d:ad:f4:b5:33:8e:09:b5:3d:c9:27:c1: 8e:4e:9e:30:c0:a8:88:ec:bc:1b:16:86:4d:77:56: f7:76:19:fc:5a:5e:d2:87:9d:ba:90:c0:48:59:c2: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:CA:98:02:04:7E:9C:61:4C:7D:DD:40:56:11:35:38:41:C1:53:C5 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132362e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.126.0/24 Signature Algorithm: sha256WithRSAEncryption 84:b5:61:5f:11:ed:97:a1:a3:c0:ab:9e:5d:64:66:48:63:ec: 3e:8d:d5:66:91:c3:b2:26:26:d2:e4:9d:ea:95:0f:25:e1:ca: b9:d9:13:fa:b5:6d:de:98:77:f3:d5:85:65:9f:35:2f:c2:da: 41:6b:36:98:2a:ae:4b:0b:37:e3:38:75:41:53:95:3a:9c:ba: db:19:f9:68:38:ab:af:5b:b0:75:94:df:89:26:3c:82:97:03: 8f:77:0c:ef:47:22:ed:7d:93:34:4b:0f:fd:cd:02:79:b3:ac: 56:9c:4d:51:fc:78:64:f3:28:a0:6c:ab:fd:de:1e:22:3a:cd: a0:9f:41:3a:c6:62:7b:49:7c:ff:ad:c9:c3:91:97:a1:00:40: 2e:c3:6e:f0:26:23:1d:b6:38:ce:e7:35:5f:16:34:aa:51:d9: b8:f4:9a:03:04:33:3d:27:7a:9b:4b:06:93:1f:16:7d:5b:96: ac:95:e3:00:3b:9d:84:e7:04:46:dd:7c:b4:c7:f7:eb:eb:48: 97:f9:10:3e:24:46:61:d6:13:da:8c:2b:4b:af:78:f2:a4:aa: db:8a:a2:06:f7:b2:03:60:5b:fc:01:df:f7:1c:f8:89:a0:67: 74:f8:d2:2f:ec:4e:48:e5:0f:54:25:4c:99:81:0b:6c:b2:dc: 3b:a3:66:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCn3YCiiQ+YK74dXgSvrwTfOpkFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDBaFw0yNTA1MzEwODAxMDBaMDMxMTAvBgNV BAMTKEM3Q0E5ODAyMDQ3RTlDNjE0QzdEREQ0MDU2MTEzNTM4NDFDMTUzQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvf5WjcWhg4mvTXmZunSpn1Jak Jj+x2zLju81kdJLCk9cnauYBAgYKz57ig77lgYyK2k6wjESf+GY2WeeY02hDmKea qESeHhAsuSvdjbNT6llJz4ULGNQVPM8FQgIKT1ypVsa2eqDSMxMmB9qvxZ+INI9S mUBkhnYJ/xrZ2HWOl3U0yS61KB0Ik4SZaG1vJualMPdmAYtcbbu+ouTi5xWXzyPR VyoHIvRKQDoML1Au4sMpfrgq6X+OjtaNk0z0KS58QR+4kkyzt+gONhW98WK6U8Jo QE2t9LUzjgm1PcknwY5OnjDAqIjsvBsWhk13Vvd2GfxaXtKHnbqQwEhZwq8ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx8qYAgR+nGFMfd1AVhE1OEHBU8UwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd+MA0GCSqG SIb3DQEBCwUAA4IBAQCEtWFfEe2XoaPAq55dZGZIY+w+jdVmkcOyJibS5J3qlQ8l 4cq52RP6tW3emHfz1YVlnzUvwtpBazaYKq5LCzfjOHVBU5U6nLrbGfloOKuvW7B1 lN+JJjyClwOPdwzvRyLtfZM0Sw/9zQJ5s6xWnE1R/Hhk8yigbKv93h4iOs2gn0E6 xmJ7SXz/rcnDkZehAEAuw27wJiMdtjjO5zVfFjSqUdm49JoDBDM9J3qbSwaTHxZ9 W5asleMAO52E5wRG3Xy0x/fr60iX+RA+JEZh1hPajCtLr3jypKrbiqIG97IDYFv8 Ad/3HPiJoGd0+NIv7E5I5Q9UJUyZgQtsstw7o2Yl -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org