$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e39382e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: 3PHfbMwSjlmW+3+HrnZyKMYbIK0+786IxRwYek0d0+A= Subject key identifier: 75:BD:CD:1E:4A:0A:6F:BD:75:73:A4:5C:DA:15:E8:69:35:C6:B2:C2 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 43E1AF167D66B3A8EA3F1B4BFD0533B5FCF00711 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa Signing time: Tue 21 May 2024 07:00:01 +0000 ROA not before: Tue 21 May 2024 06:55:01 +0000 ROA not after: Tue 20 May 2025 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e1:af:16:7d:66:b3:a8:ea:3f:1b:4b:fd:05:33:b5:fc:f0:07:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 06:55:01 2024 GMT Not After : May 20 07:00:01 2025 GMT Subject: CN=75BDCD1E4A0A6FBD7573A45CDA15E86935C6B2C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e1:69:eb:52:e1:5e:fb:73:6c:9a:3a:7c:06: ac:ca:34:8d:a7:5d:62:58:71:9e:4b:10:b5:c7:42: a0:97:94:8c:94:97:6d:4b:49:02:53:c6:af:c0:3d: 30:75:ca:c2:d6:83:ea:b5:c1:34:24:ec:d5:61:b3: 55:48:67:3e:16:7c:ee:48:b5:a9:ab:20:29:aa:3b: cd:87:99:76:0b:4b:73:23:5a:77:98:26:32:b0:75: 8c:85:9f:21:b5:43:36:ce:c4:ac:75:e9:8e:3d:c8: 0c:8e:a8:c7:3d:29:5c:d4:2a:08:a7:46:83:fd:fe: a5:93:88:5c:a5:e5:72:92:4b:51:9d:c3:01:3a:75: 2e:3b:eb:0e:13:3a:e3:a3:6a:0b:28:2d:c6:41:06: 8c:df:39:b0:16:68:64:23:12:33:95:3d:b8:c0:4d: b2:7e:f9:79:ab:0d:81:e4:2f:be:ed:14:ee:24:7d: a5:41:92:ee:fe:12:71:e2:05:1a:54:39:8d:a1:7d: be:11:27:98:c7:db:67:27:c4:29:ff:e4:79:5f:0f: 00:8f:60:9b:ca:ac:d6:12:b3:5d:64:39:21:77:cb: 4c:c1:98:20:03:79:df:1f:80:6d:3e:e1:e8:30:3e: 18:80:e2:49:d1:56:45:40:7c:8c:ec:3d:f8:31:0d: c6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BD:CD:1E:4A:0A:6F:BD:75:73:A4:5C:DA:15:E8:69:35:C6:B2:C2 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.98.0/23 Signature Algorithm: sha256WithRSAEncryption b4:63:9f:c2:d1:e4:0a:76:52:99:64:9a:43:22:38:b8:95:d0: ca:de:58:c9:84:34:ee:6d:0d:d9:d4:85:0c:eb:47:75:b2:71: 3d:64:00:fe:b2:4c:5d:e9:9c:46:61:11:ea:7e:b3:97:8c:e0: 26:21:17:e1:a8:f4:57:56:f9:eb:ac:c2:20:da:59:9a:58:58: e8:24:c8:ca:e3:70:90:95:cb:6e:e5:c4:37:d1:f1:ee:56:ac: 4f:c5:a1:a1:05:33:92:68:b8:94:4c:02:e0:bf:d5:f9:31:85: 9c:9b:d2:f3:3e:c6:5a:5c:95:5b:88:6b:2b:fc:f6:92:1b:fa: d8:4d:29:a3:46:f1:2f:6a:31:ef:5c:b0:69:51:b5:2b:c5:a7: 80:ee:9e:53:2a:e6:21:a7:2f:28:b3:4f:38:bf:cc:a9:59:89: 63:14:8d:ed:d3:6d:fb:bd:68:b3:d4:57:64:62:0c:30:0c:56: 97:80:c0:7c:f0:26:6d:8b:ce:cd:2d:4c:cd:bf:47:5a:d9:32: 4c:b6:66:34:80:c5:22:50:52:6d:b7:f9:ba:b9:6f:c1:29:cb: 97:42:da:c9:72:f8:3f:a5:0b:30:82:a3:4a:44:d8:df:2c:32: bd:19:20:41:a1:13:12:28:19:d2:c2:b2:2e:9d:22:46:50:b3: b0:4d:e8:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ+GvFn1ms6jqPxtL/QUztfzwBxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNjU1MDFaFw0yNTA1MjAwNzAwMDFaMDMxMTAvBgNV BAMTKDc1QkRDRDFFNEEwQTZGQkQ3NTczQTQ1Q0RBMTVFODY5MzVDNkIyQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY4WnrUuFe+3Nsmjp8BqzKNI2n XWJYcZ5LELXHQqCXlIyUl21LSQJTxq/APTB1ysLWg+q1wTQk7NVhs1VIZz4WfO5I tamrICmqO82HmXYLS3MjWneYJjKwdYyFnyG1QzbOxKx16Y49yAyOqMc9KVzUKgin RoP9/qWTiFyl5XKSS1GdwwE6dS476w4TOuOjagsoLcZBBozfObAWaGQjEjOVPbjA TbJ++XmrDYHkL77tFO4kfaVBku7+EnHiBRpUOY2hfb4RJ5jH22cnxCn/5HlfDwCP YJvKrNYSs11kOSF3y0zBmCADed8fgG0+4egwPhiA4knRVkVAfIzsPfgxDca1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdb3NHkoKb711c6Rc2hXoaTXGssIwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXLHYjANBgkqhkiG 9w0BAQsFAAOCAQEAtGOfwtHkCnZSmWSaQyI4uJXQyt5YyYQ07m0N2dSFDOtHdbJx PWQA/rJMXemcRmER6n6zl4zgJiEX4aj0V1b566zCINpZmlhY6CTIyuNwkJXLbuXE N9Hx7lasT8WhoQUzkmi4lEwC4L/V+TGFnJvS8z7GWlyVW4hrK/z2khv62E0po0bx L2ox71ywaVG1K8WngO6eUyrmIacvKLNPOL/MqVmJYxSN7dNt+71os9RXZGIMMAxW l4DAfPAmbYvOzS1Mzb9HWtkyTLZmNIDFIlBSbbf5urlvwSnLl0LayXL4P6ULMIKj SkTY3ywyvRkgQaETEigZ0sKyLp0iRlCzsE3oeQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:44 2024 by rpki-client on console-fra.rpki-client.org