$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131352e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: NBKmPz9xxTfOz2f1HZN4Fwph2+jgqLCKzycdipqL600= Subject key identifier: 7B:8A:50:39:BC:25:26:EC:C5:A0:56:81:95:F4:8C:B7:B6:9A:66:76 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 746D52E6F653E33BCC99BD006E45A9A2934FD717 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131352e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:03 +0000 ROA not before: Sat 03 May 2025 08:55:03 +0000 ROA not after: Sat 02 May 2026 09:00:03 +0000 asID: 24525 IP address blocks: 114.199.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:6d:52:e6:f6:53:e3:3b:cc:99:bd:00:6e:45:a9:a2:93:4f:d7:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:03 2025 GMT Not After : May 2 09:00:03 2026 GMT Subject: CN=7B8A5039BC2526ECC5A0568195F48CB7B69A6676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bc:39:c2:66:22:08:bf:73:78:f7:c6:8c:59: 9b:bc:09:6f:5e:2c:57:ba:85:7f:29:2c:bb:96:e5: 28:15:91:92:69:f8:6c:96:84:2d:ff:41:e3:d7:2b: cc:e5:98:82:32:51:6c:4c:ec:1b:50:5d:a0:98:f9: 06:c0:3e:0a:af:d8:7f:71:fa:ed:36:06:98:6d:3d: dc:e5:19:48:8e:55:1f:94:80:dd:6a:01:18:aa:85: 13:cd:25:2b:b6:09:3b:52:86:0f:18:2f:6e:0b:20: 45:e7:51:6a:fe:ba:04:ac:8f:5e:c8:f3:1b:9b:68: 9b:c4:0a:55:59:c4:09:3d:7a:75:80:1b:d6:68:a9: c2:0f:66:d3:57:fd:bb:7c:16:ff:eb:2f:07:6a:5e: f7:ff:ef:0a:5b:a9:cb:11:0a:b9:b1:6b:43:0c:c2: 60:21:ba:88:51:8b:99:1c:ce:ca:c8:2a:6a:62:08: 11:56:4e:98:c0:a4:29:ea:90:08:88:0c:4a:0a:2e: dc:cd:b7:b9:c6:ed:ba:78:6a:f8:3a:a9:fb:18:27: 75:f5:38:d5:fb:30:ac:a7:9a:2b:c5:9d:4b:10:46: b3:ca:f4:c8:17:08:94:e3:1f:a4:51:c8:cb:08:b0: e1:7f:74:03:87:b2:a2:19:04:2f:2d:cd:28:fd:d5: c3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8A:50:39:BC:25:26:EC:C5:A0:56:81:95:F4:8C:B7:B6:9A:66:76 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.115.0/24 Signature Algorithm: sha256WithRSAEncryption a2:15:b2:eb:66:6f:d0:20:68:0d:4b:c9:4a:dc:35:6d:01:8d: a4:62:10:74:eb:18:f9:b3:66:d9:4e:45:ae:e0:a6:b6:90:fc: 3e:19:85:41:4f:7e:4f:83:e1:4f:89:d9:62:85:e8:06:a7:dd: aa:54:4c:a2:17:97:62:fe:21:d6:e9:64:dd:ba:4e:b6:90:54: 98:9d:4d:53:96:a1:7b:45:ce:fd:cd:e5:4a:f4:fe:67:e1:e0: 6d:59:d0:98:e2:3c:47:e0:1e:1a:98:f1:3c:13:c7:ae:e9:8a: f3:f7:26:c4:a8:50:5b:08:0e:97:94:2c:4e:8c:aa:9e:cc:e5: 1f:a0:68:a0:90:69:77:da:9f:b0:2a:97:7f:b9:84:90:7f:28: 5e:16:c0:50:aa:ba:8f:9c:bd:23:96:4a:30:24:72:10:5a:34: 8b:b9:24:2e:4d:40:e5:24:e6:1c:9d:8f:2e:87:b0:d0:c1:b3: 8c:f9:a0:68:c8:f2:d5:1b:e3:a9:fe:8b:1e:01:16:32:f3:b3: 2d:c6:c0:9c:65:76:55:fd:b6:c7:49:7e:40:fa:eb:68:84:ec: 28:b8:1b:43:82:f9:9f:e0:4d:ff:e1:b7:7e:96:b9:02:8b:a5: 9b:8b:ee:54:21:80:32:16:fb:d1:94:da:e8:82:db:8e:44:be: e9:07:78:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdG1S5vZT4zvMmb0AbkWpopNP1xcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDNaFw0yNjA1MDIwOTAwMDNaMDMxMTAvBgNV BAMTKDdCOEE1MDM5QkMyNTI2RUNDNUEwNTY4MTk1RjQ4Q0I3QjY5QTY2NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMvDnCZiIIv3N498aMWZu8CW9e LFe6hX8pLLuW5SgVkZJp+GyWhC3/QePXK8zlmIIyUWxM7BtQXaCY+QbAPgqv2H9x +u02BphtPdzlGUiOVR+UgN1qARiqhRPNJSu2CTtShg8YL24LIEXnUWr+ugSsj17I 8xubaJvEClVZxAk9enWAG9ZoqcIPZtNX/bt8Fv/rLwdqXvf/7wpbqcsRCrmxa0MM wmAhuohRi5kczsrIKmpiCBFWTpjApCnqkAiIDEoKLtzNt7nG7bp4avg6qfsYJ3X1 ONX7MKynmivFnUsQRrPK9MgXCJTjH6RRyMsIsOF/dAOHsqIZBC8tzSj91cNDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe4pQObwlJuzFoFaBlfSMt7aaZnYwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdzMA0GCSqG SIb3DQEBCwUAA4IBAQCiFbLrZm/QIGgNS8lK3DVtAY2kYhB06xj5s2bZTkWu4Ka2 kPw+GYVBT35Pg+FPidlihegGp92qVEyiF5di/iHW6WTduk62kFSYnU1TlqF7Rc79 zeVK9P5n4eBtWdCY4jxH4B4amPE8E8eu6Yrz9ybEqFBbCA6XlCxOjKqezOUfoGig kGl32p+wKpd/uYSQfyheFsBQqrqPnL0jlkowJHIQWjSLuSQuTUDlJOYcnY8uh7DQ wbOM+aBoyPLVG+Op/oseARYy87MtxsCcZXZV/bbHSX5A+utohOwouBtDgvmf4E3/ 4bd+lrkCi6Wbi+5UIYAyFvvRlNrogtuORL7pB3hN -----END CERTIFICATE-----Generated at Sun May 11 12:13:33 2025 by rpki-client