$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: Z4tTRhh/fgbjn7gAYmEPhhYQR66+Y7Gy9LII2g7dqy8= Subject key identifier: E9:16:CE:4E:2C:7A:25:0A:08:5F:B3:A1:CB:B6:7E:89:F1:E9:C0:50 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 09B253EBB2C48A5E13D51F5DC471CE85DF36F6D4 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 07:00:01 +0000 ROA not before: Sat 03 May 2025 06:55:01 +0000 ROA not after: Sat 02 May 2026 07:00:01 +0000 asID: 24525 IP address blocks: 114.199.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:b2:53:eb:b2:c4:8a:5e:13:d5:1f:5d:c4:71:ce:85:df:36:f6:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 06:55:01 2025 GMT Not After : May 2 07:00:01 2026 GMT Subject: CN=E916CE4E2C7A250A085FB3A1CBB67E89F1E9C050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fe:86:ab:cb:35:89:6b:10:01:3c:fa:2f:99: 21:9e:dc:e2:6a:af:0e:83:00:c4:68:e2:14:0a:fa: dc:f8:84:1e:f7:49:35:79:fb:45:81:f4:02:0a:87: d6:32:54:45:c3:31:81:a7:10:e4:4a:b7:01:80:08: 72:b8:9a:68:3e:0f:d2:6a:04:0e:96:31:f5:d0:4f: fb:6b:b6:3b:bc:11:d8:d8:b4:ca:23:bd:50:86:c0: 98:45:cb:93:02:b2:63:b8:15:74:0b:a8:a7:b4:19: 0d:00:a9:26:e9:9f:4d:c9:c5:80:3f:3c:a3:21:71: 81:c2:44:81:03:30:3d:d7:20:62:85:83:41:50:3f: e8:c2:5f:ec:23:4d:9c:26:04:bb:6c:ed:0f:65:38: f5:12:fd:39:9e:ed:cf:c8:4e:7b:70:91:30:0a:a0: 46:9e:34:9e:cc:0a:0e:7a:63:5a:d2:79:8a:f2:8f: e2:bb:bb:50:d6:2e:3d:5a:25:1e:4f:07:61:b2:1a: 03:63:d2:0e:84:ea:fc:07:fd:39:e2:b1:84:01:e9: 91:48:cb:20:7a:47:c3:52:71:b1:c5:1a:96:dd:75: 0a:94:4d:8f:1c:4e:8d:6d:af:84:c4:46:2d:cc:a6: 5b:1c:13:1d:39:62:8a:ad:a0:a8:71:7f:78:cf:e1: e1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:16:CE:4E:2C:7A:25:0A:08:5F:B3:A1:CB:B6:7E:89:F1:E9:C0:50 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.127.0/24 Signature Algorithm: sha256WithRSAEncryption 32:14:2a:e0:dc:86:93:f4:d0:e5:cc:28:bc:90:40:e5:f4:e4: 03:b9:b8:f6:bd:49:92:36:dd:0f:e1:92:13:c9:50:01:47:d6: ab:ac:da:8f:c6:e0:b7:be:4d:c7:ce:32:59:ac:15:d6:76:8d: d6:ae:cf:c9:ec:0d:36:f9:d2:2e:4a:79:97:34:33:67:50:90: 61:08:06:d5:4f:6d:80:ab:d8:be:4f:b6:c7:3c:f2:c3:1d:5b: a2:f2:5c:40:da:6e:50:bc:bc:c0:6f:73:5b:76:97:d1:5b:07: 80:a0:34:41:5a:92:9d:67:cd:2b:06:8c:99:31:53:f7:6e:22: d7:94:f9:01:b4:24:7b:f2:67:3d:d5:df:17:8e:06:2d:f5:5f: f4:b3:44:29:3c:47:2f:6c:74:56:55:e4:e3:a6:c4:20:62:dc: 39:79:23:b5:6d:50:18:b2:cf:12:97:20:2e:61:ff:d1:84:7e: 3a:6f:cd:3b:71:42:c6:27:fa:3d:41:ac:51:b1:4d:65:46:c4: 28:7d:9f:6a:aa:29:75:db:4c:4d:09:d2:43:7d:d8:b4:d5:4d: ca:3b:5e:c6:fc:d7:c4:26:c7:bd:0e:c4:2a:7f:10:76:72:da: 33:43:42:16:1f:ad:52:a9:ae:76:de:06:27:f8:f5:7d:a4:26: 52:17:7e:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCbJT67LEil4T1R9dxHHOhd829tQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwNjU1MDFaFw0yNjA1MDIwNzAwMDFaMDMxMTAvBgNV BAMTKEU5MTZDRTRFMkM3QTI1MEEwODVGQjNBMUNCQjY3RTg5RjFFOUMwNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV/oaryzWJaxABPPovmSGe3OJq rw6DAMRo4hQK+tz4hB73STV5+0WB9AIKh9YyVEXDMYGnEORKtwGACHK4mmg+D9Jq BA6WMfXQT/trtju8EdjYtMojvVCGwJhFy5MCsmO4FXQLqKe0GQ0AqSbpn03JxYA/ PKMhcYHCRIEDMD3XIGKFg0FQP+jCX+wjTZwmBLts7Q9lOPUS/Tme7c/ITntwkTAK oEaeNJ7MCg56Y1rSeYryj+K7u1DWLj1aJR5PB2GyGgNj0g6E6vwH/TnisYQB6ZFI yyB6R8NScbHFGpbddQqUTY8cTo1tr4TERi3MplscEx05YoqtoKhxf3jP4eHjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6RbOTix6JQoIX7Ohy7Z+ifHpwFAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd/MA0GCSqG SIb3DQEBCwUAA4IBAQAyFCrg3IaT9NDlzCi8kEDl9OQDubj2vUmSNt0P4ZITyVAB R9arrNqPxuC3vk3HzjJZrBXWdo3Wrs/J7A02+dIuSnmXNDNnUJBhCAbVT22Aq9i+ T7bHPPLDHVui8lxA2m5QvLzAb3NbdpfRWweAoDRBWpKdZ80rBoyZMVP3biLXlPkB tCR78mc91d8XjgYt9V/0s0QpPEcvbHRWVeTjpsQgYtw5eSO1bVAYss8SlyAuYf/R hH46b807cULGJ/o9QaxRsU1lRsQofZ9qqil120xNCdJDfdi01U3KO17G/NfEJse9 DsQqfxB2ctozQ0IWH61Sqa523gYn+PV9pCZSF35y -----END CERTIFICATE-----Generated at Sun May 11 06:28:12 2025 by rpki-client