$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: hhic7mVPn/eWd4lTzD4LDpV0h01U5jbI+eIg7FuaROU= Subject key identifier: DE:1A:E4:59:53:FB:42:73:4D:33:63:B8:A0:34:3B:E1:64:ED:E2:C6 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 55594B582486EFA6F96D9A3764C854F932EE6490 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:47 +0000 ROA not before: Tue 22 Apr 2025 07:58:47 +0000 ROA not after: Tue 21 Apr 2026 08:03:47 +0000 asID: 24525 IP address blocks: 114.199.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:59:4b:58:24:86:ef:a6:f9:6d:9a:37:64:c8:54:f9:32:ee:64:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:47 2025 GMT Not After : Apr 21 08:03:47 2026 GMT Subject: CN=DE1AE45953FB42734D3363B8A0343BE164EDE2C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:65:18:6c:de:5c:59:b7:47:bc:20:0b:78: 0c:93:68:1f:9b:57:31:45:23:ad:a4:8c:a8:f4:b5: 1b:f7:ee:47:21:4a:33:bb:37:62:e9:92:cc:c0:30: 58:b1:e2:52:76:bd:0b:47:19:0f:51:e6:c7:96:d3: 7f:94:5a:6a:15:c4:46:8a:f8:75:f6:88:ec:e5:1d: 03:ea:39:fd:00:38:b6:5c:05:16:18:5b:0c:55:0b: 85:25:12:cf:26:ea:0c:d7:0d:1d:39:68:57:ad:c5: 38:83:33:11:d7:55:77:00:fa:17:ae:58:c0:cc:83: b3:67:b1:b8:a9:58:8c:b0:c4:2d:73:ca:d0:bf:d3: 0e:90:fd:d8:90:af:0a:74:53:10:01:f8:99:12:4f: 15:77:17:56:63:b5:c7:32:1d:f1:37:82:5c:f1:23: a0:97:f7:22:db:4e:2e:f6:57:e1:31:64:97:62:db: a9:c0:2e:b7:e6:3c:61:cd:86:e0:27:67:8f:ac:a1: ea:da:23:63:46:a2:ff:4a:ea:77:9e:65:93:4f:5a: 51:a3:9e:f1:83:fc:ad:c9:1e:fb:7b:e6:a1:fa:76: 7f:03:99:9e:64:75:8c:4e:ee:25:45:de:8c:7a:bc: 7a:54:e5:93:37:a5:2d:f7:76:5d:93:bc:fd:34:e6: d2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1A:E4:59:53:FB:42:73:4D:33:63:B8:A0:34:3B:E1:64:ED:E2:C6 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:66:65:3d:19:cc:7f:27:2b:ec:bc:fa:dd:ba:d3:28:69:52: a8:ed:89:fd:2f:ed:b4:bb:0e:dd:71:21:2c:df:7f:1c:14:95: 82:f2:51:76:0a:c6:a4:30:be:12:5c:fa:04:1d:4c:06:1a:3f: 4c:bd:e1:df:e4:b9:84:e1:aa:13:23:6f:55:6c:c9:bf:82:fb: 3e:40:24:d1:4c:e3:58:33:3e:e3:55:0a:1b:b3:70:d5:a1:80: 42:3a:47:b9:06:d2:06:59:50:27:44:7a:31:c9:c4:20:9c:e0: de:5b:b0:15:88:b2:4e:20:06:0a:de:4c:de:e7:d0:62:80:8e: 86:d4:09:9c:0a:b1:be:0b:43:b3:99:4f:39:d9:58:29:4d:45: c2:9d:62:92:2d:b2:b3:f3:e3:56:c2:cb:ad:d3:f9:fc:47:df: f8:5a:6a:9d:13:5c:39:42:e5:e9:ac:be:4d:8e:ec:2b:bc:42: e3:fd:12:98:0c:48:6d:6b:52:d3:74:6d:cd:be:ee:69:cb:91: 42:8b:c4:c0:3b:29:1b:f2:e8:f8:86:03:6e:34:b0:0c:09:8c: 5c:2b:bf:02:b5:2c:7d:9e:32:14:19:58:ae:8e:a6:f2:a6:5f: c1:d7:83:cd:7b:77:c0:69:6c:74:0c:59:99:7d:99:ae:c8:c8: 25:d1:96:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVVlLWCSG76b5bZo3ZMhU+TLuZJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDdaFw0yNjA0MjEwODAzNDdaMDMxMTAvBgNV BAMTKERFMUFFNDU5NTNGQjQyNzM0RDMzNjNCOEEwMzQzQkUxNjRFREUyQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzEWUYbN5cWbdHvCALeAyTaB+b VzFFI62kjKj0tRv37kchSjO7N2LpkszAMFix4lJ2vQtHGQ9R5seW03+UWmoVxEaK +HX2iOzlHQPqOf0AOLZcBRYYWwxVC4UlEs8m6gzXDR05aFetxTiDMxHXVXcA+heu WMDMg7NnsbipWIywxC1zytC/0w6Q/diQrwp0UxAB+JkSTxV3F1ZjtccyHfE3glzx I6CX9yLbTi72V+ExZJdi26nALrfmPGHNhuAnZ4+soeraI2NGov9K6neeZZNPWlGj nvGD/K3JHvt75qH6dn8DmZ5kdYxO7iVF3ox6vHpU5ZM3pS33dl2TvP005tJXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3hrkWVP7QnNNM2O4oDQ74WTt4sYwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQA6ZmU9Gcx/JyvsvPrdutMoaVKo7Yn9L+20uw7dcSEs338c FJWC8lF2CsakML4SXPoEHUwGGj9MveHf5LmE4aoTI29VbMm/gvs+QCTRTONYMz7j VQobs3DVoYBCOke5BtIGWVAnRHoxycQgnODeW7AViLJOIAYK3kze59BigI6G1Amc CrG+C0OzmU852VgpTUXCnWKSLbKz8+NWwsut0/n8R9/4WmqdE1w5QuXprL5Njuwr vELj/RKYDEhta1LTdG3Nvu5py5FCi8TAOykb8uj4hgNuNLAMCYxcK78CtSx9njIU GViujqbypl/B14PNe3fAaWx0DFmZfZmuyMgl0Zay -----END CERTIFICATE-----Generated at Sun May 11 08:46:30 2025 by rpki-client