$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131332e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131332e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: XhnJM4yOdhHq9z0NU/o7tv2KA0rBGZDvVidwBo+JHhw= Subject key identifier: ED:7F:C6:59:DD:7F:1E:68:15:55:3B:14:CA:C2:DE:B2:99:ED:54:38 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 17C0C9944A926BA519B705C5EDCAFA6302F5433D Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131332e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:05 +0000 ROA not before: Sat 03 May 2025 08:55:05 +0000 ROA not after: Sat 02 May 2026 09:00:05 +0000 asID: 24525 IP address blocks: 114.199.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c0:c9:94:4a:92:6b:a5:19:b7:05:c5:ed:ca:fa:63:02:f5:43:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:05 2025 GMT Not After : May 2 09:00:05 2026 GMT Subject: CN=ED7FC659DD7F1E6815553B14CAC2DEB299ED5438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6b:9c:90:a8:00:76:b5:ce:ac:73:f2:f7:20: 06:75:d8:db:82:c2:18:81:89:fa:24:5e:5d:81:40: 78:a9:2e:35:e8:d8:e7:3a:af:d6:4f:2c:46:19:ed: 76:15:64:5b:63:01:68:b1:c4:31:1b:2d:4d:e7:ef: f6:35:e3:57:7e:8e:d7:03:34:90:21:64:9f:2b:bc: e4:ef:ad:b3:f0:ed:16:0f:c4:21:03:dc:e2:9a:f7: f9:0b:37:92:05:85:ca:5d:f8:24:60:76:71:f7:63: 64:aa:d8:37:1d:f4:6d:e8:12:7a:47:9a:3a:cd:c2: a7:d1:d7:da:01:af:5c:15:1d:a9:32:1e:72:f6:02: dd:73:b1:06:e7:53:23:e6:13:65:29:55:3f:80:cd: bb:2a:18:a1:ac:0e:ad:86:23:c3:86:fb:e6:80:61: 7b:dd:78:33:e9:e9:11:25:26:e1:96:31:b1:d2:1e: dd:5a:d9:08:4b:3a:bf:80:ae:fc:3f:80:b4:19:03: af:ca:74:be:de:cf:a3:a1:51:1e:81:67:74:53:5e: c0:06:67:79:e6:32:32:7d:31:1b:e8:a1:7b:c3:00: 0b:10:e6:70:05:62:48:1a:8e:40:c9:9f:22:d2:a8: 9d:6d:4f:b6:c5:15:aa:2c:5f:0b:77:13:22:26:67: 37:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:7F:C6:59:DD:7F:1E:68:15:55:3B:14:CA:C2:DE:B2:99:ED:54:38 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131332e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.113.0/24 Signature Algorithm: sha256WithRSAEncryption 74:1c:3c:ce:7d:a1:d8:9e:d5:7c:cc:bf:c4:c0:fa:f7:42:dc: be:07:1f:6b:6e:21:08:1b:48:12:76:b7:7b:16:4d:9c:7f:14: 10:fb:47:62:b5:f4:ed:af:45:86:12:21:c4:9c:66:f3:13:72: 38:9a:a1:63:b1:03:d5:97:9a:dd:c7:ed:4f:1f:c5:e8:18:69: c1:68:cf:5f:90:01:1a:a3:ed:bb:c7:b6:ca:99:c5:81:ef:8e: 3f:01:e5:6f:9a:02:c0:25:30:3d:e3:33:57:e4:ac:5e:cf:80: 38:f6:40:6a:67:6a:ce:d5:91:1c:8e:00:6e:d1:f1:2f:69:c5: 50:9b:43:e1:bf:18:d4:58:42:a9:47:4a:d7:c8:f1:a0:43:c1: 7a:5e:15:69:67:8d:99:58:3c:5c:c6:97:1c:9f:d1:c7:1d:76: f2:02:fc:f6:9e:36:a5:77:c1:62:92:5a:03:67:0d:1e:16:f3: 35:af:79:c8:4d:3a:02:30:10:68:09:7e:a0:06:4c:d1:6a:6b: 6b:e9:32:d4:33:57:ff:fb:08:00:e3:96:e7:f2:1b:47:80:64: 1c:56:73:41:d4:f5:7a:29:0c:f6:7e:b4:67:05:1c:88:99:48: 20:56:0c:f6:38:03:60:b5:65:60:c5:21:de:dc:ad:87:e9:95: 9f:91:6f:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF8DJlEqSa6UZtwXF7cr6YwL1Qz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDVaFw0yNjA1MDIwOTAwMDVaMDMxMTAvBgNV BAMTKEVEN0ZDNjU5REQ3RjFFNjgxNTU1M0IxNENBQzJERUIyOTlFRDU0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXa5yQqAB2tc6sc/L3IAZ12NuC whiBifokXl2BQHipLjXo2Oc6r9ZPLEYZ7XYVZFtjAWixxDEbLU3n7/Y141d+jtcD NJAhZJ8rvOTvrbPw7RYPxCED3OKa9/kLN5IFhcpd+CRgdnH3Y2Sq2Dcd9G3oEnpH mjrNwqfR19oBr1wVHakyHnL2At1zsQbnUyPmE2UpVT+AzbsqGKGsDq2GI8OG++aA YXvdeDPp6RElJuGWMbHSHt1a2QhLOr+Arvw/gLQZA6/KdL7ez6OhUR6BZ3RTXsAG Z3nmMjJ9MRvooXvDAAsQ5nAFYkgajkDJnyLSqJ1tT7bFFaosXwt3EyImZzd3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7X/GWd1/HmgVVTsUysLespntVDgwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdxMA0GCSqG SIb3DQEBCwUAA4IBAQB0HDzOfaHYntV8zL/EwPr3Qty+Bx9rbiEIG0gSdrd7Fk2c fxQQ+0ditfTtr0WGEiHEnGbzE3I4mqFjsQPVl5rdx+1PH8XoGGnBaM9fkAEao+27 x7bKmcWB744/AeVvmgLAJTA94zNX5Kxez4A49kBqZ2rO1ZEcjgBu0fEvacVQm0Ph vxjUWEKpR0rXyPGgQ8F6XhVpZ42ZWDxcxpccn9HHHXbyAvz2njald8FikloDZw0e FvM1r3nITToCMBBoCX6gBkzRamtr6TLUM1f/+wgA45bn8htHgGQcVnNB1PV6KQz2 frRnBRyImUggVgz2OANgtWVgxSHe3K2H6ZWfkW+P -----END CERTIFICATE-----Generated at Sun May 11 07:30:10 2025 by rpki-client