$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa File: 3132302e32392e3135322e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: J9LMzNjTfq8117LmMgk4XK1mYRtXVZzkGAU9iFEulaM= Subject key identifier: E9:21:87:4F:D8:F7:27:61:B0:89:C3:3A:5E:61:B8:02:27:BB:06:CC Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 2441FD36D4F8D7DCCD8654E5CB710A5A59D803DA Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa Signing time: Mon 01 Jul 2024 00:02:12 +0000 ROA not before: Sun 30 Jun 2024 23:57:12 +0000 ROA not after: Mon 30 Jun 2025 00:02:12 +0000 asID: 38758 IP address blocks: 120.29.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:41:fd:36:d4:f8:d7:dc:cd:86:54:e5:cb:71:0a:5a:59:d8:03:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jun 30 23:57:12 2024 GMT Not After : Jun 30 00:02:12 2025 GMT Subject: CN=E921874FD8F72761B089C33A5E61B80227BB06CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a7:86:e2:1d:60:80:0e:51:82:72:b7:cd:67: 59:61:d0:96:c7:c3:3a:ac:3b:0d:a0:b0:ba:b1:0d: 01:1e:ee:6a:3d:91:8f:b7:e1:cf:61:ef:c1:99:6c: e1:b1:db:59:19:17:34:fb:31:81:b2:b0:76:85:9d: ae:63:dc:ac:de:d1:f6:4e:bb:fe:43:6f:09:79:ad: 84:75:39:8f:5f:0c:08:c1:3d:43:e7:32:89:38:b4: 4d:29:a8:79:cf:67:6a:5c:96:c2:5f:09:a2:fa:77: 59:f5:cd:33:28:99:c0:5f:5e:2e:ef:66:7b:27:fb: e5:f8:29:f0:ae:c1:31:1a:94:53:e6:1b:8d:ea:73: be:e9:90:e7:9b:c4:13:f4:29:5a:44:35:50:5f:3b: 11:26:bf:ac:74:75:c5:9b:cd:8a:e7:03:37:cb:ee: 43:4d:29:34:f4:89:40:29:cf:1a:be:cb:7b:cb:73: 2e:87:10:30:f6:9a:dd:36:bb:9a:48:88:61:40:b7: 61:61:f2:24:8a:b8:52:a6:03:ab:9f:81:59:07:a8: 97:c4:1b:f3:2f:3f:8f:76:c1:e3:37:39:d0:16:d6: 8b:75:ec:c8:0a:b3:35:96:06:aa:f6:94:b7:84:c6: 95:5f:c0:36:bd:3c:dc:25:dd:38:c4:84:ac:82:26: fd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:21:87:4F:D8:F7:27:61:B0:89:C3:3A:5E:61:B8:02:27:BB:06:CC X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.152.0/21 Signature Algorithm: sha256WithRSAEncryption ab:76:56:f7:ba:c1:1a:59:4e:83:1c:53:67:54:72:da:2b:b3: 55:82:97:28:50:07:79:eb:bd:22:88:75:ff:57:08:57:54:22: 81:80:0a:8a:14:7b:0a:9a:55:7f:d7:08:61:69:c4:ea:ca:9b: 44:c3:dc:16:69:c2:89:22:44:89:80:aa:b5:0d:7e:f5:93:1b: 25:b7:6b:11:a6:8e:5d:34:cf:ab:c1:9c:2b:9d:a8:8a:3b:dd: f9:7e:b8:84:8f:23:74:31:ba:5d:0b:2e:39:9f:24:c9:9a:c0: 1e:e0:8a:6c:e2:85:6a:a7:51:88:f4:ca:72:5e:ae:59:dd:18: d3:53:b7:c2:f2:d5:fb:ad:ad:52:5a:22:02:fe:4e:4c:72:93: e5:96:12:f1:6a:95:a4:d2:b7:50:a5:b9:2e:22:ec:de:1a:9a: 3c:f5:6f:0d:e0:98:44:00:12:24:d8:7d:c6:f0:af:cc:a9:02: a7:17:86:88:a7:65:30:19:c3:2e:95:a6:e3:52:dc:b0:54:c1: b3:71:a1:c6:64:5d:de:7b:7e:8e:31:3a:a8:3a:56:05:93:80: e6:a5:bf:c9:c0:7e:89:d1:3a:03:15:eb:a7:e5:cd:94:50:a4: 59:26:c6:6e:df:67:7e:4b:eb:dc:8f:10:33:d4:1e:58:9f:d5: 17:17:b7:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJEH9NtT419zNhlTly3EKWlnYA9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yNDA2MzAyMzU3MTJaFw0yNTA2MzAwMDAyMTJaMDMxMTAvBgNV BAMTKEU5MjE4NzRGRDhGNzI3NjFCMDg5QzMzQTVFNjFCODAyMjdCQjA2Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/p4biHWCADlGCcrfNZ1lh0JbH wzqsOw2gsLqxDQEe7mo9kY+34c9h78GZbOGx21kZFzT7MYGysHaFna5j3Kze0fZO u/5Dbwl5rYR1OY9fDAjBPUPnMok4tE0pqHnPZ2pclsJfCaL6d1n1zTMomcBfXi7v Znsn++X4KfCuwTEalFPmG43qc77pkOebxBP0KVpENVBfOxEmv6x0dcWbzYrnAzfL 7kNNKTT0iUApzxq+y3vLcy6HEDD2mt02u5pIiGFAt2Fh8iSKuFKmA6ufgVkHqJfE G/MvP492weM3OdAW1ot17MgKszWWBqr2lLeExpVfwDa9PNwl3TjEhKyCJv1NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6SGHT9j3J2GwicM6XmG4Aie7BswwHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMDJlMzIzOTJlMzEzNTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3gdmDANBgkqhkiG 9w0BAQsFAAOCAQEAq3ZW97rBGllOgxxTZ1Ry2iuzVYKXKFAHeeu9Ioh1/1cIV1Qi gYAKihR7CppVf9cIYWnE6sqbRMPcFmnCiSJEiYCqtQ1+9ZMbJbdrEaaOXTTPq8Gc K52oijvd+X64hI8jdDG6XQsuOZ8kyZrAHuCKbOKFaqdRiPTKcl6uWd0Y01O3wvLV +62tUloiAv5OTHKT5ZYS8WqVpNK3UKW5LiLs3hqaPPVvDeCYRAASJNh9xvCvzKkC pxeGiKdlMBnDLpWm41LcsFTBs3GhxmRd3nt+jjE6qDpWBZOA5qW/ycB+idE6AxXr p+XNlFCkWSbGbt9nfkvr3I8QM9QeWJ/VFxe3lw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:00:43 2024 by rpki-client on console-fra.rpki-client.org