$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: +EbPjYuyzY/8QailLJT3LHmFUAMjEgR4RgkPKsr1Xtg= Subject key identifier: 41:01:13:3D:B1:50:90:00:D6:DC:C6:8B:35:00:B8:2C:C3:92:54:7A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7649343A741D3D69B108F9216BCB1F3E2324F637 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:03 +0000 ROA not before: Sat 03 May 2025 08:55:03 +0000 ROA not after: Sat 02 May 2026 09:00:03 +0000 asID: 24525 IP address blocks: 114.199.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:49:34:3a:74:1d:3d:69:b1:08:f9:21:6b:cb:1f:3e:23:24:f6:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:03 2025 GMT Not After : May 2 09:00:03 2026 GMT Subject: CN=4101133DB1509000D6DCC68B3500B82CC392547A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:01:e5:3c:fe:03:86:a9:57:45:c3:fc:70:21: 44:59:c2:14:56:96:22:c1:9f:5e:59:6b:79:9a:2f: 7f:a7:6d:70:56:ac:19:e1:1f:b6:95:d2:9b:05:65: 19:b5:05:55:23:26:79:a8:dd:0a:16:77:9c:88:54: 8d:a8:4b:82:71:0b:66:b5:2f:e3:9c:c0:61:68:c8: e4:d4:f0:a7:a9:66:f9:70:e1:90:7c:68:5d:af:cf: 6e:3c:c7:2f:98:86:8f:e2:4a:0d:cd:65:34:29:4c: 79:1d:aa:40:3f:e6:d2:be:fe:7f:ef:3c:35:78:25: 69:b1:9d:fd:5b:36:1a:bd:4b:ed:e8:4d:c8:5e:09: 5b:d1:ce:91:9d:ae:db:3b:f6:97:86:f4:8d:86:21: e4:d3:bb:a6:6d:a2:c4:8c:dd:3a:d1:53:75:06:29: 74:4a:18:f4:90:f6:67:8a:a2:45:da:7c:75:f8:41: 52:58:4e:89:4d:af:0a:36:ca:47:9e:10:1d:6d:2b: 21:d3:9c:96:d2:cc:fb:a0:82:41:e2:bc:7b:a8:ab: 12:fa:07:be:78:d9:51:17:61:74:db:81:59:95:f8: 13:88:8c:61:0b:96:08:62:8a:90:a5:77:a1:94:a5: 8e:97:91:6d:ec:2b:9f:5f:39:0a:2e:4e:2f:50:79: 90:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:01:13:3D:B1:50:90:00:D6:DC:C6:8B:35:00:B8:2C:C3:92:54:7A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.107.0/24 Signature Algorithm: sha256WithRSAEncryption 45:11:51:de:43:20:29:11:1c:98:c0:bf:f9:5c:8e:dc:2e:d0: 75:0e:45:28:10:15:a4:3e:95:0c:51:c9:c3:a4:b0:19:96:6b: c7:80:87:cd:bf:3c:c9:91:36:52:21:3a:d4:9f:c1:cd:df:31: c6:08:78:bb:39:0b:06:8e:b9:03:0c:54:d8:6f:40:9a:07:c1: 79:aa:57:97:c1:45:7a:51:d4:4e:16:da:9c:63:6e:2c:5a:5a: 17:66:f5:91:c9:6e:f6:44:2b:73:d8:a3:d6:a5:70:b5:ce:ab: 3b:bf:14:01:b4:87:17:b8:85:ea:5e:22:10:70:96:0c:02:0c: bd:df:6c:a7:35:df:be:40:09:06:97:b5:99:17:5f:24:6b:81: ae:7e:fd:6a:3f:eb:a9:d2:85:a0:5d:80:78:0a:2a:5d:6c:cf: fd:aa:3d:62:23:d8:41:08:6b:a9:a3:a1:34:73:f0:af:38:e4: fb:94:ac:04:16:9e:71:43:c9:32:e2:71:90:29:f7:60:05:62: cd:25:38:44:bb:ff:87:51:3f:db:30:51:1b:26:b5:7d:87:57: 05:1b:6e:eb:9a:3d:f8:c4:88:3a:91:11:68:87:5d:e5:19:c7: 0a:ab:db:1d:3f:69:9f:74:c6:63:11:66:b6:62:88:3a:bf:55: aa:06:f7:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdkk0OnQdPWmxCPkha8sfPiMk9jcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDNaFw0yNjA1MDIwOTAwMDNaMDMxMTAvBgNV BAMTKDQxMDExMzNEQjE1MDkwMDBENkRDQzY4QjM1MDBCODJDQzM5MjU0N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeAeU8/gOGqVdFw/xwIURZwhRW liLBn15Za3maL3+nbXBWrBnhH7aV0psFZRm1BVUjJnmo3QoWd5yIVI2oS4JxC2a1 L+OcwGFoyOTU8KepZvlw4ZB8aF2vz248xy+Yho/iSg3NZTQpTHkdqkA/5tK+/n/v PDV4JWmxnf1bNhq9S+3oTcheCVvRzpGdrts79peG9I2GIeTTu6ZtosSM3TrRU3UG KXRKGPSQ9meKokXafHX4QVJYTolNrwo2ykeeEB1tKyHTnJbSzPuggkHivHuoqxL6 B7542VEXYXTbgVmV+BOIjGELlghiipCld6GUpY6XkW3sK59fOQouTi9QeZAtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQQETPbFQkADW3MaLNQC4LMOSVHowHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdrMA0GCSqG SIb3DQEBCwUAA4IBAQBFEVHeQyApERyYwL/5XI7cLtB1DkUoEBWkPpUMUcnDpLAZ lmvHgIfNvzzJkTZSITrUn8HN3zHGCHi7OQsGjrkDDFTYb0CaB8F5qleXwUV6UdRO FtqcY24sWloXZvWRyW72RCtz2KPWpXC1zqs7vxQBtIcXuIXqXiIQcJYMAgy932yn Nd++QAkGl7WZF18ka4Gufv1qP+up0oWgXYB4CipdbM/9qj1iI9hBCGupo6E0c/Cv OOT7lKwEFp5xQ8ky4nGQKfdgBWLNJThEu/+HUT/bMFEbJrV9h1cFG27rmj34xIg6 kRFoh13lGccKq9sdP2mfdMZjEWa2Yog6v1WqBvcg -----END CERTIFICATE-----Generated at Sun May 11 07:20:05 2025 by rpki-client