$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: YlXDsBbj27Y83Dzg1b1zoV+43oAwhSZwDYXU9xpbKyE= Subject key identifier: 3A:4E:B0:55:08:41:67:92:9C:F5:C0:55:B0:6B:76:FD:90:EF:CF:90 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 4820B60D53254919E9ECECAD081FA3B5D3F2E1D8 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 07:00:01 +0000 ROA not before: Sat 01 Jun 2024 06:55:01 +0000 ROA not after: Sat 31 May 2025 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:20:b6:0d:53:25:49:19:e9:ec:ec:ad:08:1f:a3:b5:d3:f2:e1:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 06:55:01 2024 GMT Not After : May 31 07:00:01 2025 GMT Subject: CN=3A4EB055084167929CF5C055B06B76FD90EFCF90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:b4:ee:ab:7c:c2:cc:f5:7f:03:f9:d0:87: e1:68:1c:03:1c:0a:14:e3:44:54:82:ab:8b:40:c1: 7b:24:f0:64:38:0a:52:12:5f:75:d8:73:fc:e8:97: c6:25:67:c4:b1:9b:dd:a7:17:1b:43:52:f2:3c:7d: 4f:b4:ed:71:8e:28:c9:c6:8c:d5:48:7a:44:4b:d8: 66:81:b9:bf:dc:f5:83:d5:97:ab:dc:01:e3:7b:f3: 38:2b:64:01:07:74:3b:3e:4d:d1:15:d9:11:06:86: 0e:58:ec:64:e2:bd:6c:f2:b0:ec:eb:a4:ff:13:2c: f3:2d:71:2c:0d:51:45:cb:a1:cc:59:db:20:fa:46: 46:87:f2:f8:f2:83:d4:32:8b:d1:6e:fb:7f:b7:2d: 9b:c0:52:08:69:d0:05:c0:da:1e:3d:d2:56:e9:c3: b2:26:a9:69:e5:63:9f:ed:ea:cc:22:aa:a9:af:71: 4e:dd:8e:04:a2:de:0a:66:b0:71:aa:af:03:77:66: bb:24:d9:e5:f3:f2:11:1a:fe:c3:67:78:cf:41:53: 6f:e1:d6:f5:39:b0:d1:ca:3d:4f:53:95:eb:cd:e9: 40:24:d8:bb:98:b9:49:7e:bb:a4:46:40:a2:e5:55: 7b:f7:1f:f6:11:06:15:14:a9:cd:f0:47:70:b5:40: db:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4E:B0:55:08:41:67:92:9C:F5:C0:55:B0:6B:76:FD:90:EF:CF:90 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.127.0/24 Signature Algorithm: sha256WithRSAEncryption 87:7b:21:95:3d:aa:e5:4a:3b:9f:37:94:f7:4b:26:9a:60:f6: 0e:df:53:4e:2c:0e:eb:e8:37:e2:60:ad:10:fd:08:c6:9c:9e: 7b:47:ff:4b:85:7f:f6:e7:0c:49:aa:87:f9:5a:9b:37:a3:cd: e0:89:75:85:2c:6a:1f:7f:a4:6a:3f:3e:c5:89:12:5c:5b:04: 4e:1f:70:76:bd:8d:d7:db:f1:4f:f5:2f:1f:dc:64:d4:5a:e5: ec:3e:9c:af:43:bc:10:1b:ea:30:da:f7:a7:22:2c:29:3d:c6: 65:95:02:19:7c:0e:34:15:da:a1:fa:1a:65:81:23:13:8c:9b: b0:b5:f3:6e:52:8d:88:22:57:e3:52:38:fb:f1:68:3a:f9:60: 83:98:04:7e:7a:47:95:f3:8b:5c:b7:e9:60:a0:ef:33:a1:9c: 53:8c:0b:e8:92:f9:a9:dd:87:1e:66:a2:4d:d8:8f:b7:09:32: b8:5f:08:93:ed:ea:3a:5a:2d:9b:8c:c3:16:28:c8:ad:00:1b: a6:36:7b:0d:0c:ac:31:91:79:87:28:e8:99:e4:33:f4:d1:2a: 49:5d:0e:7a:73:f4:6f:6a:00:5e:f3:29:37:22:e9:87:cb:20: 3b:50:a1:21:2c:11:90:f4:8e:29:86:9b:1f:8b:1a:af:b7:b3: e0:23:a5:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSCC2DVMlSRnp7OytCB+jtdPy4dgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNjU1MDFaFw0yNTA1MzEwNzAwMDFaMDMxMTAvBgNV BAMTKDNBNEVCMDU1MDg0MTY3OTI5Q0Y1QzA1NUIwNkI3NkZEOTBFRkNGOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2M7Tuq3zCzPV/A/nQh+FoHAMc ChTjRFSCq4tAwXsk8GQ4ClISX3XYc/zol8YlZ8Sxm92nFxtDUvI8fU+07XGOKMnG jNVIekRL2GaBub/c9YPVl6vcAeN78zgrZAEHdDs+TdEV2REGhg5Y7GTivWzysOzr pP8TLPMtcSwNUUXLocxZ2yD6RkaH8vjyg9Qyi9Fu+3+3LZvAUghp0AXA2h490lbp w7ImqWnlY5/t6swiqqmvcU7djgSi3gpmsHGqrwN3Zrsk2eXz8hEa/sNneM9BU2/h 1vU5sNHKPU9TlevN6UAk2LuYuUl+u6RGQKLlVXv3H/YRBhUUqc3wR3C1QNsrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOk6wVQhBZ5Kc9cBVsGt2/ZDvz5AwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd/MA0GCSqG SIb3DQEBCwUAA4IBAQCHeyGVParlSjufN5T3SyaaYPYO31NOLA7r6DfiYK0Q/QjG nJ57R/9LhX/25wxJqof5Wps3o83giXWFLGoff6RqPz7FiRJcWwROH3B2vY3X2/FP 9S8f3GTUWuXsPpyvQ7wQG+ow2venIiwpPcZllQIZfA40Fdqh+hplgSMTjJuwtfNu Uo2IIlfjUjj78Wg6+WCDmAR+ekeV84tct+lgoO8zoZxTjAvokvmp3YceZqJN2I+3 CTK4XwiT7eo6Wi2bjMMWKMitABumNnsNDKwxkXmHKOiZ5DP00SpJXQ56c/RvagBe 8yk3IumHyyA7UKEhLBGQ9I4phpsfixqvt7PgI6W4 -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org