$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: iOyhCp4kxJafQ+QFUw1esQI8hGd+QnWVi3Tq1C5MTWQ= Subject key identifier: 74:E2:AA:7A:59:75:15:C1:3D:45:C4:17:95:35:85:01:CB:2A:DB:81 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3EF12D0F0A98B0C043697B2587C2380D918A516B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:02 +0000 ROA not before: Sat 03 May 2025 08:55:02 +0000 ROA not after: Sat 02 May 2026 09:00:02 +0000 asID: 24525 IP address blocks: 114.199.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f1:2d:0f:0a:98:b0:c0:43:69:7b:25:87:c2:38:0d:91:8a:51:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:02 2025 GMT Not After : May 2 09:00:02 2026 GMT Subject: CN=74E2AA7A597515C13D45C41795358501CB2ADB81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:45:8d:04:14:e2:de:7d:6e:80:1b:1e:e8:37: fc:59:07:89:33:a1:94:04:06:0f:82:34:02:88:a9: 2f:d7:10:2e:64:24:18:6d:06:1c:26:ca:f3:d7:aa: c7:5a:5c:29:96:42:fe:8b:df:ad:36:fe:3c:3a:dd: bc:b7:ec:cd:f5:51:e1:5a:ed:7b:e7:64:db:9e:e1: 67:65:f9:24:f0:c1:5e:e3:14:34:ed:45:04:26:87: 20:66:6b:08:ad:d1:5e:28:3e:a7:c9:f3:94:c3:e5: 27:99:00:b9:af:1b:3b:11:ea:0f:5c:70:54:ad:30: 3d:2d:1a:5c:be:b5:e7:6b:ea:55:88:f4:dc:be:89: 72:21:c4:c4:01:d2:67:96:8c:9c:5f:86:3f:80:68: 27:3a:ea:98:25:7d:b7:26:0a:b7:48:f4:c7:a5:d9: f7:3f:e6:3d:ff:18:38:a4:56:bf:9b:24:ca:a7:ce: 2d:bb:4f:3d:d0:3c:05:a2:5f:06:ec:8a:88:33:59: 13:e6:e9:67:8a:7f:e3:7d:8a:8e:3f:57:8e:5f:2b: 7c:8f:7f:7c:b1:82:fc:d7:68:ae:08:32:12:8e:aa: 47:29:e2:de:f0:f8:46:81:57:61:18:8a:07:6a:5b: 82:aa:8c:e6:46:75:ff:95:5c:ac:f1:eb:fc:e7:f1: f3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E2:AA:7A:59:75:15:C1:3D:45:C4:17:95:35:85:01:CB:2A:DB:81 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.109.0/24 Signature Algorithm: sha256WithRSAEncryption 15:c9:78:90:fa:21:29:00:94:1d:0b:39:30:29:56:ef:b6:08: b8:0d:95:9d:92:ed:42:13:93:ad:83:bc:14:0e:23:fe:89:ad: f2:aa:b7:d6:12:89:46:70:5f:14:78:31:31:99:df:6a:23:33: 74:26:b1:2b:74:6e:66:07:98:62:71:d3:9a:9f:80:30:82:f7: 2d:73:18:cc:e7:13:3b:13:f4:a8:3d:99:db:ae:8a:58:0f:87: 1c:ce:53:32:e3:64:ba:49:c9:43:3c:ca:ec:b0:d4:54:c9:a9: 87:94:cc:cf:3c:ee:81:e2:d1:d6:1a:73:1f:f7:d9:08:22:a2: 91:77:01:84:ac:de:6e:6a:07:4c:c2:99:99:a5:12:0a:29:e8: 31:47:ab:39:c3:2f:89:01:41:f6:99:96:3b:d0:9b:26:77:54: a4:37:bd:b4:07:85:1c:24:1e:0c:97:68:ef:d5:3b:7d:03:f1: db:74:39:d0:2e:3d:16:e7:92:6a:13:00:a6:0c:49:b4:e7:e7: 22:fd:d0:6f:6e:27:d2:e8:c4:1b:e4:3a:d9:b6:d7:ab:95:c8: f0:ac:fd:39:a5:39:7c:74:17:95:56:3a:ca:fc:82:c4:fa:51: 8b:04:98:e2:64:02:42:69:20:68:1c:c0:c4:66:52:1e:84:12: 28:79:f3:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPvEtDwqYsMBDaXslh8I4DZGKUWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDJaFw0yNjA1MDIwOTAwMDJaMDMxMTAvBgNV BAMTKDc0RTJBQTdBNTk3NTE1QzEzRDQ1QzQxNzk1MzU4NTAxQ0IyQURCODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzRY0EFOLefW6AGx7oN/xZB4kz oZQEBg+CNAKIqS/XEC5kJBhtBhwmyvPXqsdaXCmWQv6L3602/jw63by37M31UeFa 7XvnZNue4Wdl+STwwV7jFDTtRQQmhyBmawit0V4oPqfJ85TD5SeZALmvGzsR6g9c cFStMD0tGly+tedr6lWI9Ny+iXIhxMQB0meWjJxfhj+AaCc66pglfbcmCrdI9Mel 2fc/5j3/GDikVr+bJMqnzi27Tz3QPAWiXwbsiogzWRPm6WeKf+N9io4/V45fK3yP f3yxgvzXaK4IMhKOqkcp4t7w+EaBV2EYigdqW4KqjOZGdf+VXKzx6/zn8fPrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdOKqell1FcE9RcQXlTWFAcsq24EwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdtMA0GCSqG SIb3DQEBCwUAA4IBAQAVyXiQ+iEpAJQdCzkwKVbvtgi4DZWdku1CE5Otg7wUDiP+ ia3yqrfWEolGcF8UeDExmd9qIzN0JrErdG5mB5hicdOan4AwgvctcxjM5xM7E/So PZnbropYD4cczlMy42S6SclDPMrssNRUyamHlMzPPO6B4tHWGnMf99kIIqKRdwGE rN5uagdMwpmZpRIKKegxR6s5wy+JAUH2mZY70Jsmd1SkN720B4UcJB4Ml2jv1Tt9 A/HbdDnQLj0W55JqEwCmDEm05+ci/dBvbifS6MQb5DrZtterlcjwrP05pTl8dBeV VjrK/ILE+lGLBJjiZAJCaSBoHMDEZlIehBIoefNl -----END CERTIFICATE-----Generated at Sun May 11 07:38:36 2025 by rpki-client