$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39392e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e39392e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: O88qV43BdBNpae5yb7EeZmZsFuKBTVqyl+FH66VoDkk= Subject key identifier: C1:06:1F:6F:5E:3C:B9:EE:F8:65:3D:96:65:DE:69:C9:CD:58:7A:A2 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5892DB70ACA9B44AC770F09E3C6D479ADF266981 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39392e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:59 +0000 ROA not before: Sat 01 Jun 2024 07:55:59 +0000 ROA not after: Sat 31 May 2025 08:00:59 +0000 asID: 24525 IP address blocks: 114.199.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:92:db:70:ac:a9:b4:4a:c7:70:f0:9e:3c:6d:47:9a:df:26:69:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:59 2024 GMT Not After : May 31 08:00:59 2025 GMT Subject: CN=C1061F6F5E3CB9EEF8653D9665DE69C9CD587AA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:45:29:b7:b8:34:1a:40:90:d3:d0:63:ed:d4: 1b:b9:81:7d:e1:81:6e:74:36:89:39:86:df:bd:2b: e8:07:8c:4a:2d:6f:2c:7b:ee:c8:88:87:9e:2b:8d: 02:91:90:40:c9:cc:b6:dd:f8:ec:d7:13:85:b0:a0: e5:8f:9f:54:1e:db:39:d9:bb:b6:85:48:87:86:e2: 9b:3f:d5:af:fd:57:7e:e9:5b:ef:56:08:97:c1:3e: c1:42:23:c9:8d:6b:eb:83:8f:0f:c0:7c:1f:76:a7: b0:2d:73:b6:a4:1a:da:b8:b8:ac:51:24:2a:84:0e: e4:59:44:ec:ac:2a:99:22:55:d0:3b:20:12:90:9d: 32:4f:ab:fb:55:d7:a7:80:52:a7:df:1c:f1:8f:7b: d0:47:4e:18:d2:72:71:57:b0:f6:6e:52:ae:c2:ab: 4b:86:83:42:dd:58:fb:9b:61:46:43:df:58:3b:09: ed:3f:d8:04:ea:cf:28:d0:da:dc:a7:05:b6:1b:34: 8a:94:cd:1b:a0:a5:f0:2d:2c:e1:4e:be:62:35:ea: e7:be:b3:b1:46:1e:18:5b:f2:7a:dc:21:9f:55:6a: 49:a4:1f:2e:06:2c:db:1c:67:45:bd:65:ab:82:76: c6:e9:6d:22:59:48:97:bc:9e:69:35:b3:7f:1e:b5: 33:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:06:1F:6F:5E:3C:B9:EE:F8:65:3D:96:65:DE:69:C9:CD:58:7A:A2 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39392e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.99.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:6f:e3:f1:c8:84:ca:e7:a5:f5:8b:fb:6e:35:b0:b2:19:b6: 3b:8b:35:84:ca:5b:cb:1c:fb:27:b4:8f:b5:44:1a:46:99:0e: ad:74:e4:65:62:0c:39:06:60:18:6a:f7:a6:1d:ee:dd:9d:b0: e4:26:24:ae:b1:2a:b3:d0:92:61:9a:c0:fb:93:02:5c:13:9f: 25:b5:63:97:6d:47:32:0b:99:9c:d2:ab:a1:09:a7:31:46:4c: 1d:e6:dd:98:fe:e0:d4:c9:c6:b7:fd:94:81:fb:1e:22:17:e0: 67:02:28:15:35:1b:a9:ef:a7:17:0c:c5:89:67:a2:a0:a0:0d: 48:23:95:d4:68:e0:d4:8e:aa:15:d8:bd:9a:60:b6:a1:0f:bb: 71:44:19:c1:a0:06:3d:02:41:c1:c5:47:7b:64:e8:f7:0d:f0: cc:41:0c:7b:79:42:75:18:86:eb:a1:66:76:6e:dc:d0:b8:a5: f2:b0:43:8b:9a:41:e4:5a:c0:b0:f2:76:8f:a3:50:5f:59:5a: 40:5b:e2:7e:5e:0d:2e:a6:24:68:e1:e6:6b:d5:66:df:dc:6e: 2c:4e:53:f0:0f:71:24:1f:59:db:59:5c:f5:4b:88:7a:02:fa: 03:c2:a6:47:77:e0:76:d8:2e:3e:03:c6:0f:0d:b9:7f:05:1a: f3:09:24:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWJLbcKyptErHcPCePG1Hmt8maYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTlaFw0yNTA1MzEwODAwNTlaMDMxMTAvBgNV BAMTKEMxMDYxRjZGNUUzQ0I5RUVGODY1M0Q5NjY1REU2OUM5Q0Q1ODdBQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbRSm3uDQaQJDT0GPt1Bu5gX3h gW50Nok5ht+9K+gHjEotbyx77siIh54rjQKRkEDJzLbd+OzXE4WwoOWPn1Qe2znZ u7aFSIeG4ps/1a/9V37pW+9WCJfBPsFCI8mNa+uDjw/AfB92p7Atc7akGtq4uKxR JCqEDuRZROysKpkiVdA7IBKQnTJPq/tV16eAUqffHPGPe9BHThjScnFXsPZuUq7C q0uGg0LdWPubYUZD31g7Ce0/2ATqzyjQ2tynBbYbNIqUzRugpfAtLOFOvmI16ue+ s7FGHhhb8nrcIZ9VakmkHy4GLNscZ0W9ZauCdsbpbSJZSJe8nmk1s38etTNTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwQYfb148ue74ZT2WZd5pyc1YeqIwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHYzANBgkqhkiG 9w0BAQsFAAOCAQEALG/j8ciEyuel9Yv7bjWwshm2O4s1hMpbyxz7J7SPtUQaRpkO rXTkZWIMOQZgGGr3ph3u3Z2w5CYkrrEqs9CSYZrA+5MCXBOfJbVjl21HMguZnNKr oQmnMUZMHebdmP7g1MnGt/2UgfseIhfgZwIoFTUbqe+nFwzFiWeioKANSCOV1Gjg 1I6qFdi9mmC2oQ+7cUQZwaAGPQJBwcVHe2To9w3wzEEMe3lCdRiG66Fmdm7c0Lil 8rBDi5pB5FrAsPJ2j6NQX1laQFvifl4NLqYkaOHma9Vm39xuLE5T8A9xJB9Z21lc 9UuIegL6A8KmR3fgdtguPgPGDw25fwUa8wkkMg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:17 2024 by rpki-client on console-ams.rpki-client.org