$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: OvtYAKcsMIoBTbI77EHILFOoMNr3aGgEjx3VmIKZPFI= Subject key identifier: D0:E1:E2:ED:E5:BD:B1:8A:44:A3:DB:F1:09:43:59:FA:42:C4:95:06 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1C8F2DED4C369D6CAAAF9A772CE11A7B537CABBE Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:02 +0000 ROA not before: Sat 03 May 2025 08:55:02 +0000 ROA not after: Sat 02 May 2026 09:00:02 +0000 asID: 24525 IP address blocks: 114.199.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:8f:2d:ed:4c:36:9d:6c:aa:af:9a:77:2c:e1:1a:7b:53:7c:ab:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:02 2025 GMT Not After : May 2 09:00:02 2026 GMT Subject: CN=D0E1E2EDE5BDB18A44A3DBF1094359FA42C49506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7a:3f:5c:73:f3:d7:b4:cc:33:6c:e5:b5:f2: ef:39:b3:9d:d7:53:3f:99:1b:44:53:41:40:55:14: ad:11:3a:6d:23:b2:2b:10:24:1d:6e:ec:40:ae:0c: 46:ab:cb:55:78:17:46:d7:f5:f6:29:b9:3e:ef:b7: b3:4a:79:e8:7f:a2:dd:2d:6d:da:0d:d7:ac:33:3b: c5:2b:d9:81:c8:ac:28:ab:d2:79:66:9b:14:62:25: ac:ba:80:79:82:25:90:5b:6d:17:fa:a2:80:13:63: 25:ca:aa:80:8b:08:cd:ad:29:bc:f6:c1:00:9f:5a: d9:7b:74:25:a4:3d:73:76:05:f3:61:ae:6a:5a:35: 0c:83:1e:67:25:5c:18:46:84:6a:69:3d:b4:58:94: 10:5b:b5:b9:27:2c:59:a5:d3:5d:2c:7c:d2:d4:5e: 26:6e:38:61:53:2d:dd:d7:55:48:8f:29:ab:73:4a: 4a:ca:bb:8e:a1:22:6d:7b:0c:1d:b9:c0:dc:d4:de: 7a:71:a4:88:e0:c6:38:3b:57:f9:16:10:93:ab:bd: 7b:de:60:f9:1d:ff:17:42:48:ee:7e:9e:2f:eb:a5: 58:e4:24:2b:9d:3d:21:9f:49:6b:43:f0:ef:ad:a5: 86:9e:07:69:e9:fe:3b:e9:ab:87:74:1d:00:09:be: 8a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E1:E2:ED:E5:BD:B1:8A:44:A3:DB:F1:09:43:59:FA:42:C4:95:06 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.106.0/24 Signature Algorithm: sha256WithRSAEncryption c6:b9:8e:a9:92:47:75:53:a5:ff:1f:a9:90:08:95:b9:9a:20: 27:25:05:14:31:8e:29:eb:0c:73:3a:83:da:8c:b7:72:0f:6b: 46:cc:e2:89:0f:37:ff:67:c1:a4:2d:d3:0d:a2:82:78:bf:0c: d0:26:dd:e3:b6:95:d2:9b:bc:9a:f2:1a:33:f6:f0:a6:7d:00: 4c:c4:df:b2:db:bd:58:ad:50:9e:b0:cc:4a:76:7e:9a:18:00: d8:b7:8c:a0:8a:bf:81:d8:0b:33:38:c6:aa:43:8d:b2:fa:80: 65:85:67:cf:07:39:4a:e5:0d:27:dd:6c:50:05:ad:00:42:ba: b2:dc:ba:0c:3d:14:65:a2:df:ff:61:18:ef:77:33:91:be:4a: 51:af:30:90:c7:fc:39:f4:81:fe:71:d7:3c:30:86:9b:53:0f: 23:2d:8f:c9:8f:38:a6:f2:9f:75:e6:8e:c5:9a:51:1b:c1:d1: 8e:bf:82:48:83:57:ff:78:93:bd:83:4c:20:8e:00:8c:3a:38: b1:84:bb:73:82:83:7f:e4:8b:ad:84:de:3f:27:c3:79:a6:e7: a1:57:41:07:0e:ae:c0:cf:85:7c:3d:4b:21:16:cd:46:e1:4b: e4:e5:38:e2:77:3a:70:e6:aa:9a:74:72:eb:8e:89:91:65:02: 90:94:66:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHI8t7Uw2nWyqr5p3LOEae1N8q74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDJaFw0yNjA1MDIwOTAwMDJaMDMxMTAvBgNV BAMTKEQwRTFFMkVERTVCREIxOEE0NEEzREJGMTA5NDM1OUZBNDJDNDk1MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPej9cc/PXtMwzbOW18u85s53X Uz+ZG0RTQUBVFK0ROm0jsisQJB1u7ECuDEary1V4F0bX9fYpuT7vt7NKeeh/ot0t bdoN16wzO8Ur2YHIrCir0nlmmxRiJay6gHmCJZBbbRf6ooATYyXKqoCLCM2tKbz2 wQCfWtl7dCWkPXN2BfNhrmpaNQyDHmclXBhGhGppPbRYlBBbtbknLFml010sfNLU XiZuOGFTLd3XVUiPKatzSkrKu46hIm17DB25wNzU3npxpIjgxjg7V/kWEJOrvXve YPkd/xdCSO5+ni/rpVjkJCudPSGfSWtD8O+tpYaeB2np/jvpq4d0HQAJvoqbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0OHi7eW9sYpEo9vxCUNZ+kLElQYwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdqMA0GCSqG SIb3DQEBCwUAA4IBAQDGuY6pkkd1U6X/H6mQCJW5miAnJQUUMY4p6wxzOoPajLdy D2tGzOKJDzf/Z8GkLdMNooJ4vwzQJt3jtpXSm7ya8hoz9vCmfQBMxN+y271YrVCe sMxKdn6aGADYt4ygir+B2AszOMaqQ42y+oBlhWfPBzlK5Q0n3WxQBa0AQrqy3LoM PRRlot//YRjvdzORvkpRrzCQx/w59IH+cdc8MIabUw8jLY/Jjzim8p915o7FmlEb wdGOv4JIg1f/eJO9g0wgjgCMOjixhLtzgoN/5IuthN4/J8N5puehV0EHDq7Az4V8 PUshFs1G4Uvk5Tjidzpw5qqadHLrjomRZQKQlGYl -----END CERTIFICATE-----Generated at Sun May 11 07:36:26 2025 by rpki-client