$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39392e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e39392e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 5MLXMxwu8QQzE6iomzK0vGKVaGi3A/5zOF/EjH9TnA8= Subject key identifier: 93:34:18:46:A4:41:58:F4:95:9A:38:16:CD:BA:7A:46:E9:52:23:75 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 050BF11BA5DF9BC0395C99E117D622AA002934B4 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39392e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:04 +0000 ROA not before: Sat 03 May 2025 08:55:04 +0000 ROA not after: Sat 02 May 2026 09:00:04 +0000 asID: 24525 IP address blocks: 114.199.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:0b:f1:1b:a5:df:9b:c0:39:5c:99:e1:17:d6:22:aa:00:29:34:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:04 2025 GMT Not After : May 2 09:00:04 2026 GMT Subject: CN=93341846A44158F4959A3816CDBA7A46E9522375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8b:b2:48:c8:21:dd:a7:da:ab:02:14:99:ff: f5:c1:fd:19:20:a7:b7:df:30:c4:e1:cf:b3:ef:60: 80:dd:b8:68:7a:40:19:20:8d:8c:d6:0b:b4:3a:29: de:5f:e2:d5:64:4b:04:ee:63:bf:84:7d:95:23:9e: e3:c7:2e:e5:ff:39:7e:fe:69:37:d5:2b:19:8a:76: a0:f8:41:dd:dd:e8:b9:de:61:cb:e5:a3:9d:e8:b3: 29:c8:c4:c1:f8:9b:6d:f6:d4:37:63:79:7c:bd:b6: d0:da:ae:57:d2:06:40:65:49:29:b5:86:1f:b7:0d: 1a:21:b4:4e:26:2e:c5:79:b9:93:20:7b:28:8b:68: f9:2f:a3:32:4c:71:e7:e8:7e:59:a0:4a:45:87:71: 8b:3d:9d:e3:1d:bb:5b:dc:27:c7:e2:1b:12:99:74: 4b:ee:af:ec:d7:4f:f0:67:9d:c8:90:a9:eb:35:13: db:40:12:eb:7d:fe:2b:fe:7d:d8:96:cf:ec:05:7e: 7e:bb:a3:ca:98:f2:b5:38:b3:60:99:c6:6b:14:56: 98:3f:12:37:21:3e:05:84:1d:18:40:16:76:a2:4b: 45:30:db:9f:d1:84:87:b1:df:c1:b9:93:81:56:00: e8:c5:27:43:35:f7:8e:2f:f4:73:67:d3:9a:37:d8: 4d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:34:18:46:A4:41:58:F4:95:9A:38:16:CD:BA:7A:46:E9:52:23:75 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39392e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.99.0/24 Signature Algorithm: sha256WithRSAEncryption 21:6c:54:d5:17:3f:df:2a:a9:3c:d5:e6:c9:2a:19:ae:37:59: 17:30:95:08:aa:8b:d5:0c:e4:90:7f:ab:ee:cd:75:fb:22:b0: 9f:1a:aa:a5:30:20:a8:fe:4d:b9:7b:dc:0c:25:c5:a4:04:ff: f4:a8:b9:42:d5:c6:f1:a1:be:03:ef:e7:18:e3:79:d2:b4:52: dd:53:30:d4:25:c6:91:1e:49:99:26:ff:eb:82:c7:e7:50:c2: 25:59:c1:21:75:1b:06:b7:14:7c:58:69:24:46:4c:e3:0e:ab: 99:d6:d9:dd:ef:51:8b:c3:e9:f5:08:ee:f8:f4:c4:f6:5e:f3: 73:d5:92:4a:89:c6:aa:50:d7:ea:20:ab:4b:4a:c4:4e:d0:ac: aa:12:9d:ce:c2:74:d8:aa:c8:ba:98:b2:7c:25:92:b1:8c:46: a8:33:68:9a:b9:26:54:80:d6:1f:7e:fb:fc:2e:b2:8a:e9:b9: ea:7c:1d:0a:d1:67:5d:99:2c:2a:32:93:a8:3f:c1:9e:27:2b: 27:c8:41:67:81:ba:36:b4:02:e3:a7:2d:99:86:14:05:1d:0e: 4c:35:11:46:0f:ea:41:12:11:fb:e9:d0:25:f0:02:4d:e0:25: b8:1e:3c:f1:84:c8:58:62:63:a9:e0:5e:f9:00:8d:c7:19:c4: bb:da:dc:2a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBQvxG6Xfm8A5XJnhF9YiqgApNLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDRaFw0yNjA1MDIwOTAwMDRaMDMxMTAvBgNV BAMTKDkzMzQxODQ2QTQ0MTU4RjQ5NTlBMzgxNkNEQkE3QTQ2RTk1MjIzNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCii7JIyCHdp9qrAhSZ//XB/Rkg p7ffMMThz7PvYIDduGh6QBkgjYzWC7Q6Kd5f4tVkSwTuY7+EfZUjnuPHLuX/OX7+ aTfVKxmKdqD4Qd3d6LneYcvlo53osynIxMH4m2321DdjeXy9ttDarlfSBkBlSSm1 hh+3DRohtE4mLsV5uZMgeyiLaPkvozJMcefoflmgSkWHcYs9neMdu1vcJ8fiGxKZ dEvur+zXT/BnnciQqes1E9tAEut9/iv+fdiWz+wFfn67o8qY8rU4s2CZxmsUVpg/ EjchPgWEHRhAFnaiS0Uw25/RhIex38G5k4FWAOjFJ0M1944v9HNn05o32E31AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkzQYRqRBWPSVmjgWzbp6RulSI3UwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHYzANBgkqhkiG 9w0BAQsFAAOCAQEAIWxU1Rc/3yqpPNXmySoZrjdZFzCVCKqL1QzkkH+r7s11+yKw nxqqpTAgqP5NuXvcDCXFpAT/9Ki5QtXG8aG+A+/nGON50rRS3VMw1CXGkR5JmSb/ 64LH51DCJVnBIXUbBrcUfFhpJEZM4w6rmdbZ3e9Ri8Pp9Qju+PTE9l7zc9WSSonG qlDX6iCrS0rETtCsqhKdzsJ02KrIupiyfCWSsYxGqDNomrkmVIDWH377/C6yium5 6nwdCtFnXZksKjKTqD/BnicrJ8hBZ4G6NrQC46ctmYYUBR0OTDURRg/qQRIR++nQ JfACTeAluB488YTIWGJjqeBe+QCNxxnEu9rcKg== -----END CERTIFICATE-----Generated at Sun May 11 06:37:27 2025 by rpki-client