$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131382e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131382e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: e/HuyXxkKAqnp9Hr9oLBiYpgPO26nhbq2t718UMOna8= Subject key identifier: 92:7E:63:87:9A:53:7A:2A:F4:3E:53:79:38:E7:EB:55:59:EE:73:C7 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 25897352FDF779D9E7CEC89951DE513B3D73AE09 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131382e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:02 +0000 ROA not before: Sat 03 May 2025 08:55:02 +0000 ROA not after: Sat 02 May 2026 09:00:02 +0000 asID: 24525 IP address blocks: 114.199.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:89:73:52:fd:f7:79:d9:e7:ce:c8:99:51:de:51:3b:3d:73:ae:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:02 2025 GMT Not After : May 2 09:00:02 2026 GMT Subject: CN=927E63879A537A2AF43E537938E7EB5559EE73C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:93:2c:ec:d1:5f:91:70:22:07:43:47:a9:da: e4:24:64:89:02:71:83:a9:c5:67:3a:43:fc:9b:df: ef:a5:58:84:1d:bf:71:bc:4e:ab:fd:af:2d:36:62: ab:02:d3:6b:01:44:11:0a:cd:36:0f:d4:5a:6a:f1: c0:53:27:68:ac:08:c7:d6:e4:98:8f:f9:2e:1b:0f: 70:85:b0:77:7c:7a:67:ed:13:f5:82:52:4d:2e:e0: 06:f6:2a:54:f4:61:bc:8f:83:a0:cc:06:a8:dc:58: cb:42:b0:74:16:c3:31:de:a5:0f:97:6f:98:bf:cb: 5d:e0:28:85:77:dd:82:2d:b6:ef:3d:b8:b3:01:d6: 85:bf:6b:2c:34:7c:a7:e7:7c:d8:ac:18:60:63:c7: 8a:6d:13:1f:76:7f:f3:12:32:5a:44:c7:ba:0a:18: 15:05:87:e6:5e:8c:cf:ee:7f:ba:fa:cc:76:97:62: 72:55:3f:61:6e:8c:ba:77:2c:35:c7:b5:44:e4:e3: 40:d4:cf:a7:e2:a2:41:5e:a2:0c:4f:3d:40:b8:e2: c5:c5:de:01:1b:e1:93:5b:cf:fc:6f:6a:23:8c:e5: 3a:b8:08:56:b3:ba:af:5f:c4:64:59:73:57:50:79: f5:20:55:32:15:ed:01:35:10:22:c1:f8:32:77:d6: a6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7E:63:87:9A:53:7A:2A:F4:3E:53:79:38:E7:EB:55:59:EE:73:C7 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131382e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.118.0/24 Signature Algorithm: sha256WithRSAEncryption 94:1e:a1:f3:2f:08:d6:7b:76:56:fd:80:a3:43:30:9b:94:ec: 1c:57:40:f8:13:df:ff:45:e7:3a:5f:1e:2d:0e:8c:f1:19:f6: 2d:f4:da:51:06:ff:01:03:25:a8:5b:2b:d8:ab:df:14:c9:e3: a0:17:c8:45:94:d1:e9:57:14:5b:c1:f0:68:a8:41:12:96:35: 25:e7:20:50:88:b3:d7:8c:21:87:4a:91:30:12:13:60:aa:cf: fe:ba:e4:ca:27:2a:1c:43:e9:4c:73:59:56:e9:b2:73:12:82: 7b:31:2e:93:09:16:42:89:fa:4d:3f:d5:4b:d3:87:9e:35:d2: 51:1f:4c:f6:de:5c:f7:5e:6a:e9:a0:20:26:ce:62:04:57:27: 95:ae:da:ca:6c:04:aa:90:c5:10:51:19:6b:0e:d0:60:ae:7e: ad:68:2c:29:96:77:1b:00:c6:8a:f4:3a:22:91:88:2d:b1:45: 58:ec:15:3e:8c:10:57:3f:a4:b6:d8:e6:4c:16:d2:85:7f:cf: 35:02:28:9b:d4:50:2f:de:fe:3e:6f:fc:4f:d6:dc:a4:89:5b: 81:57:ee:49:f0:78:ec:98:15:44:05:90:b3:9e:2f:87:02:2a: 8f:c7:d1:85:07:ef:2a:c0:e7:91:a5:3e:18:2f:d2:4b:62:10: b3:a1:b0:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJYlzUv33ednnzsiZUd5ROz1zrgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDJaFw0yNjA1MDIwOTAwMDJaMDMxMTAvBgNV BAMTKDkyN0U2Mzg3OUE1MzdBMkFGNDNFNTM3OTM4RTdFQjU1NTlFRTczQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzkyzs0V+RcCIHQ0ep2uQkZIkC cYOpxWc6Q/yb3++lWIQdv3G8Tqv9ry02YqsC02sBRBEKzTYP1Fpq8cBTJ2isCMfW 5JiP+S4bD3CFsHd8emftE/WCUk0u4Ab2KlT0YbyPg6DMBqjcWMtCsHQWwzHepQ+X b5i/y13gKIV33YIttu89uLMB1oW/ayw0fKfnfNisGGBjx4ptEx92f/MSMlpEx7oK GBUFh+ZejM/uf7r6zHaXYnJVP2FujLp3LDXHtUTk40DUz6fiokFeogxPPUC44sXF 3gEb4ZNbz/xvaiOM5Tq4CFazuq9fxGRZc1dQefUgVTIV7QE1ECLB+DJ31qYnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkn5jh5pTeir0PlN5OOfrVVnuc8cwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd2MA0GCSqG SIb3DQEBCwUAA4IBAQCUHqHzLwjWe3ZW/YCjQzCblOwcV0D4E9//Rec6Xx4tDozx GfYt9NpRBv8BAyWoWyvYq98UyeOgF8hFlNHpVxRbwfBoqEESljUl5yBQiLPXjCGH SpEwEhNgqs/+uuTKJyocQ+lMc1lW6bJzEoJ7MS6TCRZCifpNP9VL04eeNdJRH0z2 3lz3XmrpoCAmzmIEVyeVrtrKbASqkMUQURlrDtBgrn6taCwplncbAMaK9DoikYgt sUVY7BU+jBBXP6S22OZMFtKFf881Aiib1FAv3v4+b/xP1tykiVuBV+5J8HjsmBVE BZCzni+HAiqPx9GFB+8qwOeRpT4YL9JLYhCzobAv -----END CERTIFICATE-----Generated at Sun May 11 07:36:35 2025 by rpki-client