$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: BGZ5Qun+ncldOd9XCXilLXWeYTnwAaA/JLzL+gz4zQI= Subject key identifier: FC:35:72:8B:AE:03:30:7C:4F:D4:0D:89:86:3A:37:34:D3:FA:08:7F Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1F256CCEDC0EE751405543559076BE00A3182FAE Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:05 +0000 ROA not before: Sat 03 May 2025 08:55:05 +0000 ROA not after: Sat 02 May 2026 09:00:05 +0000 asID: 24525 IP address blocks: 114.199.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:25:6c:ce:dc:0e:e7:51:40:55:43:55:90:76:be:00:a3:18:2f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:05 2025 GMT Not After : May 2 09:00:05 2026 GMT Subject: CN=FC35728BAE03307C4FD40D89863A3734D3FA087F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5b:ee:1a:bc:41:cb:e4:d7:f3:9f:78:d9:7a: 41:7b:00:3d:16:3a:a7:4b:20:24:cd:3a:db:8d:d7: 40:28:fa:21:8f:cd:08:1c:bb:c0:e2:3c:1d:15:7b: 08:3a:7f:51:4a:9a:50:9c:1a:29:32:59:ea:61:e8: ae:b2:3b:ee:74:c7:5d:3d:88:91:c8:90:7a:6e:01: bb:d2:36:78:a2:71:f4:b2:e9:27:75:ca:70:11:c2: d8:40:96:83:69:ee:c0:41:c7:66:ec:28:59:7a:78: ac:7a:e4:c8:06:14:0d:9d:57:e0:47:cb:23:b9:26: ab:26:9c:bd:a1:e9:db:c6:f4:06:91:f8:15:47:ff: dc:0c:82:46:bc:73:ff:82:21:65:0d:66:93:c5:ef: 11:cc:0f:0a:9a:90:07:df:9e:f9:ce:4a:6e:69:81: cf:62:de:ba:ba:4c:2a:72:cd:45:5e:d8:77:15:cd: 21:80:90:54:7c:cf:94:47:3b:d1:83:4f:b9:47:0f: 9e:5d:07:e0:27:8b:9c:46:da:8b:04:a5:24:ea:bb: 7f:fb:d9:69:cd:78:41:10:c9:9e:89:17:be:02:27: 06:a8:ba:14:da:60:1e:e6:fc:9f:b8:f2:6a:64:9b: f4:c1:7d:56:42:54:7a:94:ad:2b:d0:2b:50:e3:f1: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:35:72:8B:AE:03:30:7C:4F:D4:0D:89:86:3A:37:34:D3:FA:08:7F X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130332e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.103.0/24 Signature Algorithm: sha256WithRSAEncryption 61:57:94:41:e2:b4:05:a9:83:6d:d6:db:59:0b:60:e4:50:bf: 4b:f3:87:f6:93:75:c5:f6:0a:d9:ca:b8:dc:b8:60:4b:87:50: f5:4a:d0:0c:42:63:98:f1:66:0a:64:37:db:bd:9d:e2:ee:6f: 0c:78:46:cb:a7:88:98:a3:a1:23:c8:90:33:03:69:91:1a:59: 54:c7:83:c2:bd:30:3a:77:08:bb:0e:05:2f:73:33:4d:65:39: d9:c7:d5:83:c2:65:d2:14:b9:37:39:63:d3:56:fa:5e:d7:f6: b3:af:74:51:09:9e:2e:c3:51:d4:06:0a:a1:71:82:ea:5a:8d: 6b:55:ad:44:4d:ab:15:48:b2:1a:c9:68:eb:d3:76:e6:c0:3b: c0:3d:fc:a9:94:df:bd:4f:65:42:eb:11:9b:ea:5e:f3:ae:d1: ba:08:2e:c7:bd:45:84:d1:77:b1:f7:75:10:be:cd:5f:5e:53: cc:ea:95:ff:d4:58:0b:25:e6:08:9c:9d:8c:2c:4d:d7:d8:45: 04:73:00:27:e0:48:b9:d9:e1:c1:65:78:4a:57:83:f7:f7:7e: 5f:34:74:37:b8:1b:24:40:c9:47:17:06:07:b4:ef:3d:b3:4e: b6:0d:d2:5e:f5:79:7b:47:9c:e9:ba:31:c3:b2:20:51:c0:9f: f0:25:35:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHyVsztwO51FAVUNVkHa+AKMYL64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDVaFw0yNjA1MDIwOTAwMDVaMDMxMTAvBgNV BAMTKEZDMzU3MjhCQUUwMzMwN0M0RkQ0MEQ4OTg2M0EzNzM0RDNGQTA4N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYW+4avEHL5Nfzn3jZekF7AD0W OqdLICTNOtuN10Ao+iGPzQgcu8DiPB0Vewg6f1FKmlCcGikyWeph6K6yO+50x109 iJHIkHpuAbvSNniicfSy6Sd1ynARwthAloNp7sBBx2bsKFl6eKx65MgGFA2dV+BH yyO5JqsmnL2h6dvG9AaR+BVH/9wMgka8c/+CIWUNZpPF7xHMDwqakAffnvnOSm5p gc9i3rq6TCpyzUVe2HcVzSGAkFR8z5RHO9GDT7lHD55dB+Ani5xG2osEpSTqu3/7 2WnNeEEQyZ6JF74CJwaouhTaYB7m/J+48mpkm/TBfVZCVHqUrSvQK1Dj8SXvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/DVyi64DMHxP1A2Jhjo3NNP6CH8wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdnMA0GCSqG SIb3DQEBCwUAA4IBAQBhV5RB4rQFqYNt1ttZC2DkUL9L84f2k3XF9grZyrjcuGBL h1D1StAMQmOY8WYKZDfbvZ3i7m8MeEbLp4iYo6EjyJAzA2mRGllUx4PCvTA6dwi7 DgUvczNNZTnZx9WDwmXSFLk3OWPTVvpe1/azr3RRCZ4uw1HUBgqhcYLqWo1rVa1E TasVSLIayWjr03bmwDvAPfyplN+9T2VC6xGb6l7zrtG6CC7HvUWE0Xex93UQvs1f XlPM6pX/1FgLJeYInJ2MLE3X2EUEcwAn4Ei52eHBZXhKV4P3935fNHQ3uBskQMlH FwYHtO89s062DdJe9Xl7R5zpujHDsiBRwJ/wJTUU -----END CERTIFICATE-----Generated at Sun May 11 07:36:18 2025 by rpki-client