$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: ceOF0dvX9XTdUf42gKMW+PqoxotSU0WfjkgCujFX4Tc= Subject key identifier: D8:B0:14:B2:A8:2E:33:63:BE:06:04:45:3C:6B:BF:1D:62:7D:1D:02 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 618F2613D189EFFB8F61BB8C9AFF4FB451477FE5 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:01 +0000 ROA not before: Sat 03 May 2025 08:55:01 +0000 ROA not after: Sat 02 May 2026 09:00:01 +0000 asID: 24525 IP address blocks: 114.199.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8f:26:13:d1:89:ef:fb:8f:61:bb:8c:9a:ff:4f:b4:51:47:7f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:01 2025 GMT Not After : May 2 09:00:01 2026 GMT Subject: CN=D8B014B2A82E3363BE0604453C6BBF1D627D1D02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:62:ee:e2:cc:65:14:a3:d6:63:e8:1d:89:3f: 5b:48:41:e5:f4:9e:39:b5:ea:da:a6:23:de:33:a9: 2e:e2:00:a5:1f:0e:fb:d2:14:9a:a7:c1:3d:65:4b: 3e:aa:6a:01:4f:79:8e:06:a0:dd:82:de:37:16:2d: 4f:94:a4:2a:11:01:75:04:ca:1c:54:d3:c6:cf:73: a7:de:94:8a:86:e7:30:3b:50:b3:4c:b5:e3:1a:d4: b2:ca:02:1d:dc:9e:4d:50:57:0d:83:44:e5:ad:f3: 7a:20:8a:04:ec:34:23:ff:35:a0:73:96:07:2a:84: cc:ef:c8:9a:26:2d:8a:ac:43:57:d2:b4:29:02:fc: ce:19:59:3f:c4:e4:61:d1:a9:b4:6b:fd:cc:34:10: 2e:da:9b:92:80:3b:46:6c:ed:44:40:44:b1:2b:14: 68:67:86:6e:05:23:66:58:3a:c8:de:bb:6a:ea:40: c4:9c:42:45:5e:f5:ab:12:93:7a:e8:74:fd:5a:46: 9b:0b:60:5c:3f:7f:d1:f7:47:53:cc:47:95:b7:52: 3e:21:7b:2f:cf:3f:96:c8:9f:64:e0:09:51:8f:b5: 57:53:f5:0c:ef:63:19:6b:e8:fd:62:b3:ed:f9:e7: 91:cb:3c:be:23:98:fd:56:d3:8b:87:7e:fb:bc:c5: da:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B0:14:B2:A8:2E:33:63:BE:06:04:45:3C:6B:BF:1D:62:7D:1D:02 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.101.0/24 Signature Algorithm: sha256WithRSAEncryption a7:ed:52:b4:47:9d:58:4d:7c:7d:9f:93:77:5c:2b:96:2c:fd: ef:12:9f:81:4b:32:20:af:92:6d:9b:3a:df:63:13:5b:47:20: 0d:bc:1e:14:c7:af:bc:2f:76:5c:68:c0:7d:06:d5:f9:7e:fd: 1a:17:74:ab:e9:99:2d:fe:74:08:bc:9d:38:fb:76:40:3f:96: 2c:37:33:35:da:70:5f:98:96:e9:f5:58:fc:dd:69:bd:14:a7: 73:ee:7f:e4:45:ca:47:c5:e3:67:eb:cf:40:f1:eb:fd:ce:0f: 41:b3:40:ff:a3:16:0f:71:9e:0e:49:b3:68:88:14:34:3a:9c: cf:58:76:f6:3e:af:eb:3b:b6:b3:ef:4d:a0:ec:a0:2f:85:3d: b9:13:58:ca:36:e5:cd:16:87:cd:9a:7d:1b:1b:1e:58:ff:f0: 56:a5:40:c1:b9:fb:55:0e:96:ea:2d:7f:d6:93:8e:ba:a8:09: 8b:89:25:07:94:08:2d:30:58:89:f7:9f:19:66:76:7e:80:99: f9:58:90:73:70:c6:04:7a:d3:c7:84:1a:93:2a:62:aa:45:e7: ed:b5:58:a8:78:a3:7d:61:bb:88:94:c9:0c:40:3e:16:b2:97: c7:84:6c:48:cc:31:f6:8b:b5:26:ae:47:d7:c3:ed:06:be:60: 45:2c:58:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYY8mE9GJ7/uPYbuMmv9PtFFHf+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDFaFw0yNjA1MDIwOTAwMDFaMDMxMTAvBgNV BAMTKEQ4QjAxNEIyQTgyRTMzNjNCRTA2MDQ0NTNDNkJCRjFENjI3RDFEMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMYu7izGUUo9Zj6B2JP1tIQeX0 njm16tqmI94zqS7iAKUfDvvSFJqnwT1lSz6qagFPeY4GoN2C3jcWLU+UpCoRAXUE yhxU08bPc6felIqG5zA7ULNMteMa1LLKAh3cnk1QVw2DROWt83ogigTsNCP/NaBz lgcqhMzvyJomLYqsQ1fStCkC/M4ZWT/E5GHRqbRr/cw0EC7am5KAO0Zs7URARLEr FGhnhm4FI2ZYOsjeu2rqQMScQkVe9asSk3rodP1aRpsLYFw/f9H3R1PMR5W3Uj4h ey/PP5bIn2TgCVGPtVdT9QzvYxlr6P1is+3555HLPL4jmP1W04uHfvu8xdoVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2LAUsqguM2O+BgRFPGu/HWJ9HQIwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdlMA0GCSqG SIb3DQEBCwUAA4IBAQCn7VK0R51YTXx9n5N3XCuWLP3vEp+BSzIgr5JtmzrfYxNb RyANvB4Ux6+8L3ZcaMB9BtX5fv0aF3Sr6Zkt/nQIvJ04+3ZAP5YsNzM12nBfmJbp 9Vj83Wm9FKdz7n/kRcpHxeNn689A8ev9zg9Bs0D/oxYPcZ4OSbNoiBQ0OpzPWHb2 Pq/rO7az702g7KAvhT25E1jKNuXNFofNmn0bGx5Y//BWpUDBuftVDpbqLX/Wk466 qAmLiSUHlAgtMFiJ958ZZnZ+gJn5WJBzcMYEetPHhBqTKmKqRefttVioeKN9YbuI lMkMQD4WspfHhGxIzDH2i7UmrkfXw+0GvmBFLFgY -----END CERTIFICATE-----Generated at Sun May 11 07:36:25 2025 by rpki-client