$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: YRWXFwEY4/jAu49tqIw01DP0lPEgeh1Yw9cL6r8APpk= Subject key identifier: C2:32:2F:00:D6:39:E7:9C:A0:C8:C9:CD:95:F4:79:52:C3:AB:F9:53 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 6FAFA34D9A2F2E9CEAA872BE24D9BF6C19387EC5 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:03 +0000 ROA not before: Sat 03 May 2025 08:55:03 +0000 ROA not after: Sat 02 May 2026 09:00:03 +0000 asID: 24525 IP address blocks: 114.199.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:af:a3:4d:9a:2f:2e:9c:ea:a8:72:be:24:d9:bf:6c:19:38:7e:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:03 2025 GMT Not After : May 2 09:00:03 2026 GMT Subject: CN=C2322F00D639E79CA0C8C9CD95F47952C3ABF953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b5:7b:32:cb:c1:9d:e4:97:28:20:ab:a8:be: 6c:be:16:ee:6e:9e:15:cb:da:d2:54:99:49:0e:7e: 19:6a:bc:a1:eb:06:61:b7:98:46:4d:32:03:57:b3: bc:58:c1:5f:31:ce:9a:f2:d0:65:03:25:62:73:39: 19:c7:53:fd:9b:d9:fe:09:95:ed:5e:4a:33:30:d5: 6d:81:cd:f3:a0:9f:60:14:a2:80:f7:08:65:fc:0c: f0:87:76:b0:26:76:c9:7e:50:a6:f2:fc:3d:f8:d7: bd:85:b8:a4:70:f9:76:6e:24:f5:4b:1b:82:23:4c: 5d:60:e7:10:c7:8c:e4:4a:75:d0:8b:db:90:fc:0f: db:70:54:af:4f:26:03:7d:00:ef:17:b6:b0:1f:74: 22:33:d8:34:6b:df:f8:d5:a6:12:e4:87:a2:90:a6: c8:07:ba:96:5f:e9:6b:8a:4e:a1:ca:0a:50:f5:c8: 6e:0f:fa:89:7c:8e:97:7a:24:01:1e:4d:cd:0e:17: 8c:8b:6b:18:9f:60:6c:f3:11:82:a0:d2:4a:f1:95: 40:e2:8b:50:21:44:7d:c3:57:e4:ea:62:15:e5:9f: a5:7f:e4:50:a3:53:9b:16:12:96:eb:aa:6f:e8:6c: 3f:7e:99:e7:75:5e:d7:6f:de:48:4e:2c:c7:95:be: 66:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:32:2F:00:D6:39:E7:9C:A0:C8:C9:CD:95:F4:79:52:C3:AB:F9:53 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.123.0/24 Signature Algorithm: sha256WithRSAEncryption 30:b7:5a:69:2b:90:12:05:21:fd:ae:c5:ee:88:93:31:52:ec: 05:08:58:64:08:08:5a:ef:ea:45:33:f9:53:3b:a7:96:f2:04: 1b:1f:ff:f3:73:b5:c5:41:4f:8f:03:99:73:54:bb:a8:91:9a: 14:80:79:ba:6d:e1:4e:d9:83:a8:5c:73:56:8a:4b:d1:7f:f4: 11:72:1f:b9:7f:92:88:8a:5d:33:ec:4c:89:b0:2a:aa:c2:9d: 48:44:ca:cd:fa:3a:49:06:c5:c1:2d:7e:54:5d:40:ce:fd:22: 4b:a3:9b:55:6f:c0:fe:03:2a:c0:1a:85:3c:1c:a1:e7:b0:48: dd:1c:cb:47:77:7b:48:a1:1c:0a:e7:f1:82:53:d2:58:36:f2: c2:be:f5:e1:20:48:6a:2b:cd:e8:bf:aa:30:eb:e2:93:6d:9c: b9:5a:fa:5c:b8:d7:92:74:6c:c6:4a:c8:08:66:1a:10:8b:97: 06:af:04:5f:bd:46:ab:25:d7:30:39:49:a8:69:5b:4e:d2:3b: ca:c7:21:3b:3b:05:ee:38:2d:ff:40:99:72:ed:43:da:98:37: 6e:3b:bc:09:07:8d:23:18:5f:27:f0:3e:66:8b:c7:f1:49:45: 10:73:48:ff:96:5f:6e:d7:4b:e7:61:84:5b:f2:df:f4:24:ba: a6:ef:b5:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb6+jTZovLpzqqHK+JNm/bBk4fsUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDNaFw0yNjA1MDIwOTAwMDNaMDMxMTAvBgNV BAMTKEMyMzIyRjAwRDYzOUU3OUNBMEM4QzlDRDk1RjQ3OTUyQzNBQkY5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCltXsyy8Gd5JcoIKuovmy+Fu5u nhXL2tJUmUkOfhlqvKHrBmG3mEZNMgNXs7xYwV8xzpry0GUDJWJzORnHU/2b2f4J le1eSjMw1W2BzfOgn2AUooD3CGX8DPCHdrAmdsl+UKby/D34172FuKRw+XZuJPVL G4IjTF1g5xDHjORKddCL25D8D9twVK9PJgN9AO8XtrAfdCIz2DRr3/jVphLkh6KQ psgHupZf6WuKTqHKClD1yG4P+ol8jpd6JAEeTc0OF4yLaxifYGzzEYKg0krxlUDi i1AhRH3DV+TqYhXln6V/5FCjU5sWEpbrqm/obD9+med1Xtdv3khOLMeVvmZNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwjIvANY555ygyMnNlfR5UsOr+VMwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd7MA0GCSqG SIb3DQEBCwUAA4IBAQAwt1ppK5ASBSH9rsXuiJMxUuwFCFhkCAha7+pFM/lTO6eW 8gQbH//zc7XFQU+PA5lzVLuokZoUgHm6beFO2YOoXHNWikvRf/QRch+5f5KIil0z 7EyJsCqqwp1IRMrN+jpJBsXBLX5UXUDO/SJLo5tVb8D+AyrAGoU8HKHnsEjdHMtH d3tIoRwK5/GCU9JYNvLCvvXhIEhqK83ov6ow6+KTbZy5WvpcuNeSdGzGSsgIZhoQ i5cGrwRfvUarJdcwOUmoaVtO0jvKxyE7OwXuOC3/QJly7UPamDduO7wJB40jGF8n 8D5mi8fxSUUQc0j/ll9u10vnYYRb8t/0JLqm77Xl -----END CERTIFICATE-----Generated at Sun May 11 06:34:21 2025 by rpki-client