$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: T4lvgpcbkwFvV8Am7NqB4bgGRwLvTW+xsrRejXJHdTw= Subject key identifier: 27:29:A4:37:9C:12:BE:64:B2:BB:D7:D2:E8:E9:C6:E3:AD:11:23:05 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5944EF8E0C12C8FE6224281D9E6EADDDB5E88823 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 07:00:01 +0000 ROA not before: Sat 03 May 2025 06:55:01 +0000 ROA not after: Sat 02 May 2026 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:44:ef:8e:0c:12:c8:fe:62:24:28:1d:9e:6e:ad:dd:b5:e8:88:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 06:55:01 2025 GMT Not After : May 2 07:00:01 2026 GMT Subject: CN=2729A4379C12BE64B2BBD7D2E8E9C6E3AD112305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d3:ff:a5:73:f9:e3:28:44:38:d9:e2:e8:5d: 38:c3:80:5b:ee:b4:37:b4:5d:71:18:b5:c0:80:b4: d3:ea:64:8e:5a:f4:f2:31:15:17:08:5c:fd:ed:fe: fb:c5:d8:cf:c4:78:ef:f8:4a:b3:17:f0:50:f0:f2: 4b:2f:0e:af:e1:19:3d:97:4e:ad:65:08:dd:b9:64: 24:58:04:b9:aa:2e:92:69:da:e2:8f:bf:65:0b:27: 3b:48:0e:2e:28:2e:b6:42:ff:ca:94:da:9b:bf:e9: 15:03:a0:df:e0:55:91:e0:d9:f2:0e:58:05:49:fd: 14:96:c9:99:68:93:fc:11:7a:46:e9:a9:b4:84:5a: a6:3a:9e:18:51:94:5c:61:0e:ab:18:e2:7a:5b:e3: 0b:a1:4a:70:0e:65:be:88:b3:8f:43:ce:7c:59:df: f0:de:f2:d4:77:89:98:9c:ac:d5:fd:de:f9:a3:b2: 0e:db:97:dc:f7:e0:72:40:36:ae:9c:e4:1c:81:ab: 91:53:29:b4:7c:f6:82:94:dc:3b:21:b2:44:ab:c1: e0:bc:0b:ea:33:d9:7a:fd:32:cc:60:30:8a:e0:7c: 01:67:4a:10:b3:a4:f7:9f:2e:c9:df:82:3c:93:68: 1f:d6:99:2c:71:81:44:05:ce:53:0b:c9:b1:de:0d: 76:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:29:A4:37:9C:12:BE:64:B2:BB:D7:D2:E8:E9:C6:E3:AD:11:23:05 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/24 Signature Algorithm: sha256WithRSAEncryption 28:73:be:b6:bd:66:9b:09:26:1b:4b:ea:4c:b9:63:62:29:13: 6f:e4:b5:a2:54:6f:59:02:97:70:5d:27:b1:af:87:c6:46:ba: 52:bd:4f:0b:2e:1e:66:70:a0:f8:16:7d:74:a8:63:b9:a4:58: a2:e7:9d:1f:b8:cc:0b:a8:18:75:71:e1:fe:2e:87:95:0c:96: 4e:ea:26:fb:d8:13:e1:fd:0f:90:ae:d9:8d:c2:a7:d6:cf:96: d0:d8:65:9a:97:59:e0:b5:bd:d5:34:f7:64:ea:a9:a4:a8:62: cd:ef:fa:45:b8:ae:d0:24:5f:74:a8:f2:7d:61:7e:65:c6:2f: 4d:9f:44:45:ea:39:95:3f:54:99:cf:c9:64:b0:4b:44:97:cc: 48:10:20:a0:6c:66:bc:c6:a8:40:1f:9c:84:f4:49:62:20:55: 5a:d5:f0:64:42:a0:85:de:5f:28:bb:20:1b:da:7a:57:e3:de: 65:18:45:d6:1c:aa:aa:6a:b9:b2:f5:f8:e5:b3:8d:ef:ee:ce: 28:a7:13:91:fb:ef:e1:59:16:d2:8b:72:ae:35:54:b7:10:ef: 7a:52:22:1c:c4:a6:1d:2e:a1:9c:13:9a:87:97:ae:08:b8:17: d9:6e:ad:ce:ed:85:61:7c:ed:4a:38:c5:fd:f5:ee:6c:71:28: fa:a6:61:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWUTvjgwSyP5iJCgdnm6t3bXoiCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwNjU1MDFaFw0yNjA1MDIwNzAwMDFaMDMxMTAvBgNV BAMTKDI3MjlBNDM3OUMxMkJFNjRCMkJCRDdEMkU4RTlDNkUzQUQxMTIzMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK0/+lc/njKEQ42eLoXTjDgFvu tDe0XXEYtcCAtNPqZI5a9PIxFRcIXP3t/vvF2M/EeO/4SrMX8FDw8ksvDq/hGT2X Tq1lCN25ZCRYBLmqLpJp2uKPv2ULJztIDi4oLrZC/8qU2pu/6RUDoN/gVZHg2fIO WAVJ/RSWyZlok/wRekbpqbSEWqY6nhhRlFxhDqsY4npb4wuhSnAOZb6Is49DznxZ 3/De8tR3iZicrNX93vmjsg7bl9z34HJANq6c5ByBq5FTKbR89oKU3DshskSrweC8 C+oz2Xr9MsxgMIrgfAFnShCzpPefLsnfgjyTaB/WmSxxgUQFzlMLybHeDXZvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJymkN5wSvmSyu9fS6OnG460RIwUwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQAoc762vWabCSYbS+pMuWNiKRNv5LWiVG9ZApdwXSexr4fG RrpSvU8LLh5mcKD4Fn10qGO5pFii550fuMwLqBh1ceH+LoeVDJZO6ib72BPh/Q+Q rtmNwqfWz5bQ2GWal1ngtb3VNPdk6qmkqGLN7/pFuK7QJF90qPJ9YX5lxi9Nn0RF 6jmVP1SZz8lksEtEl8xIECCgbGa8xqhAH5yE9EliIFVa1fBkQqCF3l8ouyAb2npX 495lGEXWHKqqarmy9fjls43v7s4opxOR++/hWRbSi3KuNVS3EO96UiIcxKYdLqGc E5qHl64IuBfZbq3O7YVhfO1KOMX99e5scSj6pmGU -----END CERTIFICATE-----Generated at Sun May 11 06:37:27 2025 by rpki-client