$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: BHhNgcTGwOOwGDX1WSUa9t0sIghNepKAYpWdJLahBSs= Subject key identifier: F8:96:00:0D:B9:A4:B6:7C:62:2F:4D:2E:84:BB:E8:15:53:E7:A1:40 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 247A20F509DDC0E676D126EE729F5C2F17645658 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:03 +0000 ROA not before: Sat 03 May 2025 08:55:03 +0000 ROA not after: Sat 02 May 2026 09:00:03 +0000 asID: 24525 IP address blocks: 114.199.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:7a:20:f5:09:dd:c0:e6:76:d1:26:ee:72:9f:5c:2f:17:64:56:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:03 2025 GMT Not After : May 2 09:00:03 2026 GMT Subject: CN=F896000DB9A4B67C622F4D2E84BBE81553E7A140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bc:17:fa:ff:cc:14:d1:cf:b4:7a:ea:36:47: d0:fa:f3:7d:9c:bc:04:e6:fb:8b:1e:b5:4e:83:2a: 28:70:3a:76:8d:67:af:ad:2d:f2:d2:cc:d3:cc:83: 58:1f:5a:24:5f:9e:da:bf:22:ff:fd:36:de:9f:7f: ab:8a:4b:16:3b:9a:12:d4:f3:96:74:e4:07:13:e9: ca:26:4f:ff:f3:21:ba:77:67:03:13:31:f1:b0:90: 68:ec:5b:1f:ff:db:84:06:69:6e:c9:41:6d:9d:25: 4c:6e:df:fc:51:44:5c:c2:76:c3:c8:fe:50:91:f3: 4c:1d:5a:80:a9:07:46:39:67:79:45:ac:12:09:c2: f7:ef:3b:64:b1:cf:87:d8:31:30:a9:ac:0b:0b:71: bb:f7:b6:35:e2:d1:67:12:1c:aa:05:cd:c9:f3:de: 38:c5:bc:78:77:7d:f5:87:62:12:2e:46:88:bf:38: 06:21:6c:0e:78:b3:57:8c:c3:84:db:b8:02:8c:2b: 98:a9:fa:d0:7e:4a:70:0d:68:9b:7e:0b:ec:52:90: 82:ea:26:f1:48:04:d3:9f:36:a4:7c:16:bd:fc:ca: 7b:e1:5a:be:65:b4:bc:07:52:5a:79:77:78:ee:39: 04:05:7f:89:71:a7:01:56:19:1c:2a:89:f9:4d:1f: d7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:96:00:0D:B9:A4:B6:7C:62:2F:4D:2E:84:BB:E8:15:53:E7:A1:40 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.105.0/24 Signature Algorithm: sha256WithRSAEncryption 90:56:29:27:50:28:ef:a9:4c:e6:3a:dd:58:3a:78:0d:e1:3c: c6:d7:97:6d:f8:ed:2d:00:67:ec:d0:25:60:f0:83:e8:14:24: 8a:5e:11:bc:60:10:5f:48:3d:f3:40:be:ed:17:69:0a:85:d2: cf:fe:93:e9:d0:dd:e0:0e:aa:09:85:11:ff:00:51:40:bc:c4: 30:2d:fd:84:b2:c2:31:ba:1b:f2:e1:90:22:cf:b4:de:e6:c6: 75:18:5d:2a:ef:7d:b5:71:98:a1:d2:4d:2d:45:79:d0:92:5a: 65:a1:67:92:23:86:94:c6:35:a7:d4:07:88:a8:b7:f6:e3:52: e1:b9:b1:82:8a:79:d7:47:7c:0e:e6:99:c6:97:6a:e9:ab:d5: 04:12:03:7b:77:11:ee:a5:ba:6c:a0:eb:83:2c:91:5e:fd:87: 13:67:1a:f1:be:33:97:fa:10:03:39:f0:88:62:a4:df:11:81: 5a:46:83:8d:c9:c9:09:d3:da:2c:ad:06:a1:88:5b:90:ac:07: 39:39:fe:a7:99:e3:aa:09:d2:0c:86:5a:81:44:02:97:83:44: 1a:97:7d:92:27:cf:9e:04:0a:4b:4b:84:c1:d9:81:d4:86:30: d1:15:d5:b2:fe:b4:bd:56:7c:82:d3:0f:c8:9e:a2:7a:88:64: d3:a4:d9:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJHog9QndwOZ20Sbucp9cLxdkVlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDNaFw0yNjA1MDIwOTAwMDNaMDMxMTAvBgNV BAMTKEY4OTYwMDBEQjlBNEI2N0M2MjJGNEQyRTg0QkJFODE1NTNFN0ExNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcvBf6/8wU0c+0euo2R9D6832c vATm+4setU6DKihwOnaNZ6+tLfLSzNPMg1gfWiRfntq/Iv/9Nt6ff6uKSxY7mhLU 85Z05AcT6comT//zIbp3ZwMTMfGwkGjsWx//24QGaW7JQW2dJUxu3/xRRFzCdsPI /lCR80wdWoCpB0Y5Z3lFrBIJwvfvO2Sxz4fYMTCprAsLcbv3tjXi0WcSHKoFzcnz 3jjFvHh3ffWHYhIuRoi/OAYhbA54s1eMw4TbuAKMK5ip+tB+SnANaJt+C+xSkILq JvFIBNOfNqR8Fr38ynvhWr5ltLwHUlp5d3juOQQFf4lxpwFWGRwqiflNH9cxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+JYADbmktnxiL00uhLvoFVPnoUAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdpMA0GCSqG SIb3DQEBCwUAA4IBAQCQViknUCjvqUzmOt1YOngN4TzG15dt+O0tAGfs0CVg8IPo FCSKXhG8YBBfSD3zQL7tF2kKhdLP/pPp0N3gDqoJhRH/AFFAvMQwLf2EssIxuhvy 4ZAiz7Te5sZ1GF0q7321cZih0k0tRXnQklploWeSI4aUxjWn1AeIqLf241LhubGC innXR3wO5pnGl2rpq9UEEgN7dxHupbpsoOuDLJFe/YcTZxrxvjOX+hADOfCIYqTf EYFaRoONyckJ09osrQahiFuQrAc5Of6nmeOqCdIMhlqBRAKXg0Qal32SJ8+eBApL S4TB2YHUhjDRFdWy/rS9VnyC0w/InqJ6iGTTpNnV -----END CERTIFICATE-----Generated at Sun May 11 07:37:35 2025 by rpki-client