$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e39372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: zy//cRbz0bQxwS9F/38bbgoVbIwZ7A6FRfhz8EzT/wo= Subject key identifier: 5D:AF:52:45:3B:0F:1F:C7:13:1A:88:6C:92:AC:B4:CC:EB:8C:C7:70 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 4590740F0E032A71ABB4044E5D7F894B86850A10 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39372e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:01 +0000 ROA not before: Sat 01 Jun 2024 07:56:01 +0000 ROA not after: Sat 31 May 2025 08:01:01 +0000 asID: 24525 IP address blocks: 114.199.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:90:74:0f:0e:03:2a:71:ab:b4:04:4e:5d:7f:89:4b:86:85:0a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:01 2024 GMT Not After : May 31 08:01:01 2025 GMT Subject: CN=5DAF52453B0F1FC7131A886C92ACB4CCEB8CC770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fc:54:d6:37:7c:10:5d:71:a2:2d:ff:9d:9a: fa:ae:1b:e4:ca:42:11:a2:a4:dd:e4:de:70:75:0c: 66:fc:1c:43:55:36:73:5b:c3:1a:f6:81:44:e6:80: 12:c7:30:48:1b:c2:f9:a9:fe:d8:21:c0:48:7d:17: a9:ae:18:80:22:70:c1:65:c7:3d:de:2e:b5:8b:b2: f9:38:0f:99:72:03:af:c7:c9:14:5f:05:72:fa:6f: 6e:af:f5:ef:88:9a:f6:be:da:16:59:f2:68:3e:4f: 72:3c:bf:89:fa:f8:1f:5c:dc:d9:6d:f4:69:cc:b1: 60:ae:77:57:fb:7b:0b:10:a8:3b:8b:a2:7a:27:27: fb:54:ff:93:8d:8b:7a:28:48:41:95:6e:ab:c2:38: 7a:28:48:08:68:ee:1a:2f:62:ac:0b:bf:e9:2c:4c: 50:42:a2:dc:c0:d7:60:65:5b:6b:bd:1f:42:dc:20: d0:96:89:e2:87:62:55:73:d3:2a:4b:20:93:15:9c: 87:8f:c2:55:26:db:2b:40:9b:bf:18:ff:9b:0d:10: b5:69:65:ec:e3:4f:e6:35:71:aa:14:8c:29:56:cb: f8:44:69:73:94:48:0c:8a:53:70:16:8b:99:49:48: a6:15:80:d8:1a:e3:33:7a:84:33:85:8f:4e:52:1c: 19:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AF:52:45:3B:0F:1F:C7:13:1A:88:6C:92:AC:B4:CC:EB:8C:C7:70 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.97.0/24 Signature Algorithm: sha256WithRSAEncryption 91:bb:10:34:70:cc:5d:f6:55:af:45:7a:f2:b0:96:2f:b8:89: 43:c8:50:06:43:a9:20:f3:37:49:9a:3a:d5:89:09:4b:83:a1: b7:34:7c:1e:48:9e:c9:36:ef:21:02:08:c2:05:da:9b:b6:7e: 94:ce:85:d6:bb:de:ab:07:06:8c:fa:80:33:f2:22:e6:b9:f3: 7d:97:d2:3c:ae:38:c5:e5:22:b4:14:af:ed:4c:1c:00:2d:76: a0:50:14:13:b5:57:25:72:e0:d4:1b:ed:c5:ab:41:10:dd:9b: eb:0f:3e:f8:e6:68:5d:19:eb:63:c4:7b:e2:d7:8f:0e:81:62: 67:36:a4:a1:31:88:5f:66:e8:14:0b:ec:b0:9d:a5:bc:c9:aa: bc:c4:68:f6:90:b0:1d:0c:3e:3b:2b:38:16:20:4b:b5:b4:13: d3:31:86:a4:5b:04:e4:6f:68:1f:31:c8:0b:14:9d:23:c5:15: 06:c6:a7:a1:c4:34:e7:ac:af:4c:54:ee:4a:12:58:06:ee:62: 12:12:f2:15:e9:48:30:1c:d0:4c:c9:de:41:ad:55:aa:60:f6: 2b:1a:20:bc:c2:85:10:14:9a:51:b2:cf:2a:94:5c:37:2e:11: 33:66:5c:eb:05:b5:ea:ac:6a:0c:67:92:ea:4b:67:dd:ee:34: 0f:58:7b:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURZB0Dw4DKnGrtAROXX+JS4aFChAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDFaFw0yNTA1MzEwODAxMDFaMDMxMTAvBgNV BAMTKDVEQUY1MjQ1M0IwRjFGQzcxMzFBODg2QzkyQUNCNENDRUI4Q0M3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU/FTWN3wQXXGiLf+dmvquG+TK QhGipN3k3nB1DGb8HENVNnNbwxr2gUTmgBLHMEgbwvmp/tghwEh9F6muGIAicMFl xz3eLrWLsvk4D5lyA6/HyRRfBXL6b26v9e+Imva+2hZZ8mg+T3I8v4n6+B9c3Nlt 9GnMsWCud1f7ewsQqDuLononJ/tU/5ONi3ooSEGVbqvCOHooSAho7hovYqwLv+ks TFBCotzA12BlW2u9H0LcINCWieKHYlVz0ypLIJMVnIePwlUm2ytAm78Y/5sNELVp ZezjT+Y1caoUjClWy/hEaXOUSAyKU3AWi5lJSKYVgNga4zN6hDOFj05SHBkDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXa9SRTsPH8cTGohskqy0zOuMx3AwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHYTANBgkqhkiG 9w0BAQsFAAOCAQEAkbsQNHDMXfZVr0V68rCWL7iJQ8hQBkOpIPM3SZo61YkJS4Oh tzR8HkieyTbvIQIIwgXam7Z+lM6F1rveqwcGjPqAM/Ii5rnzfZfSPK44xeUitBSv 7UwcAC12oFAUE7VXJXLg1BvtxatBEN2b6w8++OZoXRnrY8R74tePDoFiZzakoTGI X2boFAvssJ2lvMmqvMRo9pCwHQw+Oys4FiBLtbQT0zGGpFsE5G9oHzHICxSdI8UV BsanocQ056yvTFTuShJYBu5iEhLyFelIMBzQTMneQa1VqmD2KxogvMKFEBSaUbLP KpRcNy4RM2Zc6wW16qxqDGeS6ktn3e40D1h7Fg== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:44 2024 by rpki-client on console-fra.rpki-client.org