$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: CSC/75iveW3nlaxeb1mRCO7nb/tFQB6BhcNwTO55r2Y= Subject key identifier: E9:F3:B6:51:2E:A8:BA:AE:6A:73:28:A5:6A:6B:02:CC:69:12:1B:25 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 676FEFE4660F5D832678C86DF47B1FB90198BE9B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:05 +0000 ROA not before: Sat 03 May 2025 08:55:05 +0000 ROA not after: Sat 02 May 2026 09:00:05 +0000 asID: 24525 IP address blocks: 114.199.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:6f:ef:e4:66:0f:5d:83:26:78:c8:6d:f4:7b:1f:b9:01:98:be:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:05 2025 GMT Not After : May 2 09:00:05 2026 GMT Subject: CN=E9F3B6512EA8BAAE6A7328A56A6B02CC69121B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4a:61:da:6e:67:91:d9:0d:46:8a:2b:b0:c6: e2:22:fb:c5:df:51:a6:95:3d:de:0d:c8:4b:26:8d: 74:4a:09:4c:ad:80:1c:a4:fb:05:50:fa:20:dc:eb: cb:20:d7:cf:45:56:4e:87:c5:93:f8:44:49:66:fb: 7b:f7:37:71:e5:88:01:66:24:72:00:86:bf:1e:d3: d0:a1:b9:5e:00:0d:22:b3:e9:04:e8:2f:9e:aa:1e: 4a:ba:b0:60:21:5f:44:98:1b:77:ef:f4:7a:3f:ee: 0c:f2:bd:6e:b1:4b:a8:9f:9d:67:58:05:db:34:83: 3a:25:90:41:e7:31:61:57:07:59:6f:03:c3:9e:20: 6c:38:42:9c:29:08:5e:44:56:f5:c8:42:4f:cb:5b: 4b:07:fb:78:63:76:06:c2:d9:24:12:e4:af:ce:83: 4f:c7:a7:2a:ca:b9:24:72:66:1e:83:75:89:15:2c: cb:a7:de:7f:cd:4a:ed:03:8e:82:ef:46:06:c4:87: ec:be:53:93:7a:f3:7c:d1:54:dd:b0:32:44:b9:5a: 6c:49:bc:32:67:72:92:8a:28:dc:57:04:5b:c6:0d: 43:fe:81:a1:ab:cc:1e:4d:13:87:ae:ec:7f:9c:b2: ac:41:4a:6d:cb:e4:59:2f:f7:dc:58:97:fc:f1:ea: c9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F3:B6:51:2E:A8:BA:AE:6A:73:28:A5:6A:6B:02:CC:69:12:1B:25 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.114.0/24 Signature Algorithm: sha256WithRSAEncryption b8:c8:e4:6c:44:a8:ae:26:df:43:ce:2c:a2:73:3c:c3:d5:c9: 2a:8c:1b:0b:de:a1:a3:a9:07:5d:19:8b:4a:df:31:c8:45:47: 52:6d:7c:a3:d5:00:95:88:a7:18:48:a8:74:0b:33:c9:55:b4: 52:ea:b3:78:1c:01:8d:09:1f:fe:18:75:00:67:82:0d:cf:54: af:3d:8d:07:bf:24:8d:9e:7a:6e:8a:79:33:d1:d4:98:bd:2b: cd:58:46:81:0f:c4:98:87:0d:bd:65:96:89:83:46:73:fe:1f: 42:1e:04:b7:02:d7:17:72:e7:6a:dd:ed:9b:1c:b3:1c:68:3d: a4:da:53:fc:f4:b5:ef:70:91:f3:20:2d:ba:13:c0:3a:c9:7e: e7:5f:8a:e8:68:b3:02:b2:78:16:47:55:82:0f:14:c7:22:60: 3d:52:a5:d6:8d:06:f7:07:26:13:fb:91:4f:ed:e8:cd:bc:b3: 9c:39:25:65:62:17:f2:e7:d4:5b:72:bb:e0:a4:30:a0:51:1d: 4c:ca:7b:06:a5:e1:87:ca:59:1d:ef:d8:8f:10:ff:a2:9c:be: 5b:06:6b:44:2b:06:62:0f:58:91:26:63:0e:49:ed:b8:3d:38: 41:5c:7c:10:e3:34:af:42:f2:43:74:bb:2a:97:ff:1f:c3:ba: 6b:a2:ff:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ2/v5GYPXYMmeMht9HsfuQGYvpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDVaFw0yNjA1MDIwOTAwMDVaMDMxMTAvBgNV BAMTKEU5RjNCNjUxMkVBOEJBQUU2QTczMjhBNTZBNkIwMkNDNjkxMjFCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDESmHabmeR2Q1GiiuwxuIi+8Xf UaaVPd4NyEsmjXRKCUytgByk+wVQ+iDc68sg189FVk6HxZP4RElm+3v3N3HliAFm JHIAhr8e09ChuV4ADSKz6QToL56qHkq6sGAhX0SYG3fv9Ho/7gzyvW6xS6ifnWdY Bds0gzolkEHnMWFXB1lvA8OeIGw4QpwpCF5EVvXIQk/LW0sH+3hjdgbC2SQS5K/O g0/HpyrKuSRyZh6DdYkVLMun3n/NSu0DjoLvRgbEh+y+U5N683zRVN2wMkS5WmxJ vDJncpKKKNxXBFvGDUP+gaGrzB5NE4eu7H+csqxBSm3L5Fkv99xYl/zx6snZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6fO2US6ouq5qcyilamsCzGkSGyUwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdyMA0GCSqG SIb3DQEBCwUAA4IBAQC4yORsRKiuJt9DziyiczzD1ckqjBsL3qGjqQddGYtK3zHI RUdSbXyj1QCViKcYSKh0CzPJVbRS6rN4HAGNCR/+GHUAZ4INz1SvPY0HvySNnnpu inkz0dSYvSvNWEaBD8SYhw29ZZaJg0Zz/h9CHgS3AtcXcudq3e2bHLMcaD2k2lP8 9LXvcJHzIC26E8A6yX7nX4roaLMCsngWR1WCDxTHImA9UqXWjQb3ByYT+5FP7ejN vLOcOSVlYhfy59RbcrvgpDCgUR1MynsGpeGHylkd79iPEP+inL5bBmtEKwZiD1iR JmMOSe24PThBXHwQ4zSvQvJDdLsql/8fw7prov9q -----END CERTIFICATE-----Generated at Sun May 11 15:33:39 2025 by rpki-client