$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131392e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131392e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: L0Vw2GvmQv5+OD/T7d3oNXiFg7xQaUlDBJI+0RJdSpo= Subject key identifier: 06:88:A9:E3:BB:BB:28:52:FD:C8:61:2B:BC:45:30:7B:2B:71:13:C8 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 299339364E8A03325ADECB5D2980CCA1019F1423 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131392e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:01 +0000 ROA not before: Sat 03 May 2025 08:55:01 +0000 ROA not after: Sat 02 May 2026 09:00:01 +0000 asID: 24525 IP address blocks: 114.199.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:93:39:36:4e:8a:03:32:5a:de:cb:5d:29:80:cc:a1:01:9f:14:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:01 2025 GMT Not After : May 2 09:00:01 2026 GMT Subject: CN=0688A9E3BBBB2852FDC8612BBC45307B2B7113C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4d:ae:4e:a9:a6:2c:85:79:32:a0:54:52:30: 83:85:b5:08:79:86:f0:4e:d2:db:c9:fb:a1:f8:a6: 85:5e:13:e6:e2:ec:d9:18:c2:39:7d:10:2d:d3:e8: c5:8a:ec:6c:56:fb:8b:94:53:b5:c5:bc:44:c6:2f: 38:2f:6d:27:8c:74:19:92:8d:dc:80:58:8e:88:de: ca:c0:10:f8:b9:59:7d:ab:96:db:78:c2:06:3d:0a: 9b:44:9e:eb:d8:fd:af:49:47:bb:2a:b9:a8:1c:c0: 3f:ce:bc:ff:86:ff:87:b0:74:ee:39:30:f9:9b:db: 97:32:e4:25:6c:dc:fb:a5:8c:b4:13:9a:80:b6:0d: 3d:52:3d:25:3e:e2:32:4f:ad:c3:5b:8b:18:5c:f1: e4:f3:96:8b:44:0d:53:81:a6:b9:e0:af:51:f6:15: 41:79:53:e8:2d:a6:f5:e6:94:d1:e8:22:ea:37:b0: 7f:b0:3a:82:14:8e:d8:74:0f:69:da:51:40:dd:71: 91:d0:42:b7:bd:d7:aa:79:25:a2:d6:d0:f2:80:0b: 9e:47:42:02:30:81:24:aa:f9:22:d7:e6:1a:a5:02: 84:06:23:36:f7:a4:f5:ad:38:4c:9b:3f:f7:68:8d: ab:6a:75:90:f9:ad:a1:12:04:83:d1:50:f0:87:9c: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:88:A9:E3:BB:BB:28:52:FD:C8:61:2B:BC:45:30:7B:2B:71:13:C8 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131392e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.119.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:6d:9d:5e:07:49:77:9c:4a:65:b6:cb:56:44:29:33:05:02: f9:6b:30:bd:7d:a1:ef:2f:50:f6:c8:56:c0:7c:24:e2:fb:d4: a5:a2:8d:5c:84:3f:ab:d9:34:6c:99:68:74:1e:8c:1b:a9:ed: c4:84:0c:38:02:2d:5c:98:91:6b:b2:34:98:36:e8:0e:ba:35: 70:63:25:dd:67:07:be:8e:29:12:39:ea:44:6e:d1:c1:e7:dc: 46:8b:ef:4c:c2:00:4c:5b:d3:62:39:2c:3d:4b:6a:d8:f7:4c: 65:5a:9e:b0:d7:45:07:51:c4:e4:4e:32:e1:36:0c:80:d0:24: 6c:8e:69:e9:95:6b:0a:7b:b1:c0:0e:a0:12:79:ff:16:12:1f: f3:b5:69:da:97:25:8c:25:9f:63:ea:c9:b0:98:da:ef:40:20: 8a:3e:fa:a7:ee:f1:30:58:77:13:a7:21:a8:02:9c:9c:b8:63: 3e:15:c3:41:20:dc:ff:1c:b5:1d:ae:f0:90:2e:44:c5:c5:92: 22:3f:e5:e6:fe:8e:f3:17:1e:0d:68:9d:af:84:92:25:43:d8: 36:71:c3:d1:3e:9a:af:64:49:6a:02:c1:ed:d6:f6:a4:6b:c0: 57:db:03:62:02:ff:c3:7b:69:b3:cf:ea:1f:9d:d8:9d:39:1b: d4:99:27:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKZM5Nk6KAzJa3stdKYDMoQGfFCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDFaFw0yNjA1MDIwOTAwMDFaMDMxMTAvBgNV BAMTKDA2ODhBOUUzQkJCQjI4NTJGREM4NjEyQkJDNDUzMDdCMkI3MTEzQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoTa5OqaYshXkyoFRSMIOFtQh5 hvBO0tvJ+6H4poVeE+bi7NkYwjl9EC3T6MWK7GxW+4uUU7XFvETGLzgvbSeMdBmS jdyAWI6I3srAEPi5WX2rltt4wgY9CptEnuvY/a9JR7squagcwD/OvP+G/4ewdO45 MPmb25cy5CVs3PuljLQTmoC2DT1SPSU+4jJPrcNbixhc8eTzlotEDVOBprngr1H2 FUF5U+gtpvXmlNHoIuo3sH+wOoIUjth0D2naUUDdcZHQQre916p5JaLW0PKAC55H QgIwgSSq+SLX5hqlAoQGIzb3pPWtOEybP/dojatqdZD5raESBIPRUPCHnP1XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBoip47u7KFL9yGErvEUweytxE8gwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd3MA0GCSqG SIb3DQEBCwUAA4IBAQCPbZ1eB0l3nEpltstWRCkzBQL5azC9faHvL1D2yFbAfCTi +9Sloo1chD+r2TRsmWh0Howbqe3EhAw4Ai1cmJFrsjSYNugOujVwYyXdZwe+jikS OepEbtHB59xGi+9MwgBMW9NiOSw9S2rY90xlWp6w10UHUcTkTjLhNgyA0CRsjmnp lWsKe7HADqASef8WEh/ztWnalyWMJZ9j6smwmNrvQCCKPvqn7vEwWHcTpyGoApyc uGM+FcNBINz/HLUdrvCQLkTFxZIiP+Xm/o7zFx4NaJ2vhJIlQ9g2ccPRPpqvZElq AsHt1vaka8BX2wNiAv/De2mzz+ofndidORvUmSdk -----END CERTIFICATE-----Generated at Sun May 11 07:36:30 2025 by rpki-client