$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa File: 3132312e35322e3133362e302f32312d3231203d3e203535363939.roa (raw, json) Hash identifier: g6nTqqZfA9DfYBl1fepzKBYJ/Nj2JjpkNCR+2Q2oHqM= Subject key identifier: 0B:C8:82:87:CE:2E:9E:8B:1E:DC:63:D4:14:FF:74:D5:7E:14:C0:51 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 0A76C211C1D34B243E43E203270871B0ADDC64AA Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa Signing time: Mon 31 Jul 2023 00:06:17 +0000 ROA not before: Mon 31 Jul 2023 00:01:17 +0000 ROA not after: Mon 29 Jul 2024 00:06:17 +0000 asID: 55699 IP address blocks: 121.52.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:76:c2:11:c1:d3:4b:24:3e:43:e2:03:27:08:71:b0:ad:dc:64:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 31 00:01:17 2023 GMT Not After : Jul 29 00:06:17 2024 GMT Subject: CN=0BC88287CE2E9E8B1EDC63D414FF74D57E14C051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cc:0e:76:ac:73:67:17:58:91:b5:02:f1:7b: 8f:bc:60:30:ca:62:eb:cf:d5:d3:96:1c:c8:7d:f8: 5d:84:60:54:39:cd:d1:47:a3:3e:22:74:60:0c:b8: be:0e:7d:b9:61:2e:07:a2:24:a3:cc:53:5c:ce:d5: 7c:25:30:01:2b:5a:fa:ee:b5:45:e6:a4:25:fd:85: e5:03:4c:9e:ba:3e:c5:8e:ff:7e:3e:cd:77:66:13: 66:e7:7c:13:02:2f:e4:c6:fd:e0:51:a4:eb:e1:ee: b9:51:41:ed:c0:04:90:70:b4:51:d1:20:96:66:56: 9e:3d:3a:7a:b7:f4:9c:e3:8e:26:f7:3d:52:e8:48: cf:40:8f:59:f9:b0:e5:44:99:09:d7:7e:37:2f:7e: d7:7a:59:42:38:0c:37:26:22:ef:5f:2d:72:68:ca: d8:68:73:a2:e7:5d:2b:7e:82:e2:d1:16:46:7f:2c: 77:5f:a6:9a:3e:0f:a7:2b:44:3c:76:dd:59:7d:f3: 32:ff:64:ce:36:b0:dd:6d:db:11:a5:80:e3:3a:36: 38:db:1e:c4:e3:09:5c:89:af:7a:5a:fe:4d:61:9a: 52:bd:b8:36:e8:39:0e:75:e1:de:3f:98:86:9e:e3: 7f:98:4f:85:88:4d:a5:9d:b0:df:25:ac:a5:b3:a8: d8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C8:82:87:CE:2E:9E:8B:1E:DC:63:D4:14:FF:74:D5:7E:14:C0:51 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.52.136.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:f4:34:17:26:b9:41:20:c8:29:2b:69:ef:9f:49:9b:f3:39: 1c:8d:86:ab:2c:9e:8b:79:ad:c8:9e:d6:31:7e:35:6f:28:ba: 22:93:3b:a8:6a:aa:0e:76:91:40:26:39:09:e8:d2:fd:c5:d4: 7f:f2:56:09:93:27:0e:05:f8:6d:52:b6:94:31:91:e2:de:2f: a0:7f:4a:8f:14:85:72:43:d3:73:a3:93:94:6f:93:a4:59:93: ee:02:62:99:6e:86:25:8a:10:ec:cb:6a:2a:63:39:6f:3b:30: e4:90:b1:a9:86:c9:a2:89:8b:b2:93:14:66:9e:6f:10:0e:08: 8f:d9:f7:f8:31:31:12:62:d1:51:ab:06:cd:b2:f8:53:c1:d4: a0:e9:ba:c3:34:4e:05:bb:34:ce:95:58:89:28:b8:34:ae:20: 04:ca:ba:c9:ea:11:b0:90:3e:6b:52:8b:91:cf:95:82:bc:47: b3:cf:7d:81:77:bf:45:0a:26:65:c0:b1:cc:f8:b3:3d:e5:61: 19:42:46:cf:32:f5:d1:06:31:e6:2f:0a:e9:41:d9:24:dc:1e: 03:c3:b4:e2:d6:a0:c6:4b:ac:bc:94:a6:44:63:4f:51:76:b8: 7f:6a:fb:20:69:b0:7e:71:d2:2a:86:d3:b1:23:91:af:5d:b3: 3b:f3:08:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCnbCEcHTSyQ+Q+IDJwhxsK3cZKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yMzA3MzEwMDAxMTdaFw0yNDA3MjkwMDA2MTdaMDMxMTAvBgNV BAMTKDBCQzg4Mjg3Q0UyRTlFOEIxRURDNjNENDE0RkY3NEQ1N0UxNEMwNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBzA52rHNnF1iRtQLxe4+8YDDK YuvP1dOWHMh9+F2EYFQ5zdFHoz4idGAMuL4OfblhLgeiJKPMU1zO1XwlMAErWvru tUXmpCX9heUDTJ66PsWO/34+zXdmE2bnfBMCL+TG/eBRpOvh7rlRQe3ABJBwtFHR IJZmVp49Onq39Jzjjib3PVLoSM9Aj1n5sOVEmQnXfjcvftd6WUI4DDcmIu9fLXJo ythoc6LnXSt+guLRFkZ/LHdfppo+D6crRDx23Vl98zL/ZM42sN1t2xGlgOM6Njjb HsTjCVyJr3pa/k1hmlK9uDboOQ514d4/mIae43+YT4WITaWdsN8lrKWzqNgxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUC8iCh84unose3GPUFP901X4UwFEwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzIzMTJlMzUzMjJlMzEzMzM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3k0iDANBgkqhkiG 9w0BAQsFAAOCAQEACvQ0Fya5QSDIKStp759Jm/M5HI2Gqyyei3mtyJ7WMX41byi6 IpM7qGqqDnaRQCY5CejS/cXUf/JWCZMnDgX4bVK2lDGR4t4voH9KjxSFckPTc6OT lG+TpFmT7gJimW6GJYoQ7MtqKmM5bzsw5JCxqYbJoomLspMUZp5vEA4Ij9n3+DEx EmLRUasGzbL4U8HUoOm6wzROBbs0zpVYiSi4NK4gBMq6yeoRsJA+a1KLkc+VgrxH s899gXe/RQomZcCxzPizPeVhGUJGzzL10QYx5i8K6UHZJNweA8O04tagxkusvJSm RGNPUXa4f2r7IGmwfnHSKobTsSORr12zO/MI6A== -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org