$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131302e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131302e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 6rIOlbMrBX2W6WhdG3QFVN/PrV/4huWAnyG7bYn2HKQ= Subject key identifier: 71:21:C5:2F:D2:63:BB:18:05:18:B0:B4:6E:00:8F:CA:1E:5F:9C:5B Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 21652515D702FDCCC1B7BD74F36E9785DDF88985 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131302e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:02 +0000 ROA not before: Sat 03 May 2025 08:55:02 +0000 ROA not after: Sat 02 May 2026 09:00:02 +0000 asID: 24525 IP address blocks: 114.199.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:65:25:15:d7:02:fd:cc:c1:b7:bd:74:f3:6e:97:85:dd:f8:89:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:02 2025 GMT Not After : May 2 09:00:02 2026 GMT Subject: CN=7121C52FD263BB180518B0B46E008FCA1E5F9C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b0:23:7e:4b:59:be:21:da:89:bb:31:77:ac: 57:6f:e0:77:ca:2e:23:fa:eb:4c:c2:18:5d:33:cb: d3:1a:fc:2e:9d:0f:d4:92:d2:2b:d7:fd:22:8a:1f: 7b:8d:31:59:f5:ce:ee:5e:97:87:ae:44:7a:85:27: 18:df:36:33:db:fc:2d:d2:12:dc:95:19:00:19:11: 90:ba:c6:e7:c3:83:c5:25:e5:7c:de:17:56:c5:11: ff:e2:40:fd:09:a0:f8:b9:32:37:45:1f:0e:78:ee: a5:6e:a4:ac:e4:b9:d2:ef:b5:9b:d5:58:30:99:c8: 59:ec:04:cb:b2:2c:ca:9f:73:96:26:01:cb:50:b3: a6:11:9c:67:50:3f:b5:71:6c:57:41:fb:c5:cd:dc: ae:42:eb:64:44:37:e4:2e:bd:0a:0e:35:fc:83:87: 3f:a7:0d:47:17:9c:54:7d:89:47:e0:60:22:2d:10: 17:4f:b2:90:2e:f9:10:00:c7:b0:96:e8:ba:95:df: 4f:af:9e:34:27:7d:e4:04:87:93:14:68:27:2f:a8: e3:4c:b4:be:49:f0:be:63:02:e2:2e:f1:7e:71:41: 2a:74:fd:03:c2:0d:97:5a:bf:24:50:63:b8:4c:26: 96:05:d2:ae:b1:1d:67:cf:bb:83:d7:df:e5:e4:cd: e8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:21:C5:2F:D2:63:BB:18:05:18:B0:B4:6E:00:8F:CA:1E:5F:9C:5B X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131302e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.110.0/24 Signature Algorithm: sha256WithRSAEncryption 64:3a:cc:4c:6f:3d:8e:14:96:22:a8:00:2d:d1:d1:0c:6c:70: f1:62:0a:00:29:7a:a7:7a:18:50:ef:1b:b1:ac:ba:33:18:4b: 86:93:0a:65:bb:1f:70:28:6b:a3:67:75:85:a9:2a:c8:9f:8f: bc:2a:59:4e:44:df:0d:4e:60:d7:06:94:e1:d1:6e:1e:f0:6e: 4e:cc:c9:b7:fe:4b:cb:9d:df:ee:25:fc:47:01:69:ad:aa:44: d4:f7:8d:b8:38:7e:84:22:ce:93:00:aa:cc:13:c0:44:7d:15: 9d:0e:3d:49:51:3e:83:6a:89:58:ab:22:90:40:3e:58:e6:20: 6d:fd:95:83:d4:44:a4:bb:11:b2:86:e1:3c:21:e3:1b:52:2e: ce:3e:e0:41:20:58:8b:03:9d:9d:5e:5e:ee:fd:5c:f9:d0:07: 4b:79:3f:5f:dc:1f:38:a5:06:73:17:63:7f:97:c6:31:f9:a1: 82:e0:55:bb:a8:4e:91:61:df:9e:fb:99:39:72:3f:d9:25:74: 2e:32:b6:be:6f:7f:cd:f3:a8:d3:34:3b:b3:74:8f:80:e8:53: a6:91:ec:75:90:9f:6c:dc:b5:84:be:e2:b5:f0:aa:35:f0:07: 10:8a:5c:1d:65:4b:44:7d:8f:fa:43:9f:62:69:6b:52:ee:ea: 2e:b5:d2:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIWUlFdcC/czBt710826Xhd34iYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDJaFw0yNjA1MDIwOTAwMDJaMDMxMTAvBgNV BAMTKDcxMjFDNTJGRDI2M0JCMTgwNTE4QjBCNDZFMDA4RkNBMUU1RjlDNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgsCN+S1m+IdqJuzF3rFdv4HfK LiP660zCGF0zy9Ma/C6dD9SS0ivX/SKKH3uNMVn1zu5el4euRHqFJxjfNjPb/C3S EtyVGQAZEZC6xufDg8Ul5XzeF1bFEf/iQP0JoPi5MjdFHw547qVupKzkudLvtZvV WDCZyFnsBMuyLMqfc5YmActQs6YRnGdQP7VxbFdB+8XN3K5C62REN+QuvQoONfyD hz+nDUcXnFR9iUfgYCItEBdPspAu+RAAx7CW6LqV30+vnjQnfeQEh5MUaCcvqONM tL5J8L5jAuIu8X5xQSp0/QPCDZdavyRQY7hMJpYF0q6xHWfPu4PX3+XkzeipAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcSHFL9JjuxgFGLC0bgCPyh5fnFswHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsduMA0GCSqG SIb3DQEBCwUAA4IBAQBkOsxMbz2OFJYiqAAt0dEMbHDxYgoAKXqnehhQ7xuxrLoz GEuGkwplux9wKGujZ3WFqSrIn4+8KllORN8NTmDXBpTh0W4e8G5OzMm3/kvLnd/u JfxHAWmtqkTU9424OH6EIs6TAKrME8BEfRWdDj1JUT6DaolYqyKQQD5Y5iBt/ZWD 1ESkuxGyhuE8IeMbUi7OPuBBIFiLA52dXl7u/Vz50AdLeT9f3B84pQZzF2N/l8Yx +aGC4FW7qE6RYd+e+5k5cj/ZJXQuMra+b3/N86jTNDuzdI+A6FOmkex1kJ9s3LWE vuK18Ko18AcQilwdZUtEfY/6Q59iaWtS7uoutdLu -----END CERTIFICATE-----Generated at Sun May 11 07:37:21 2025 by rpki-client