$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3232362e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: UN0NCYVujIp/qu34FQUrBo2LMocWK6K1f7LxsvSm0hk= Subject key identifier: 22:13:1C:F1:B9:8F:6B:9F:09:E4:5A:D9:84:5B:03:52:6D:40:09:AD Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 359245C6ED4A7647DC5F28799E87E02CCFE4CC38 Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa Signing time: Wed 20 Mar 2024 10:02:07 +0000 ROA not before: Wed 20 Mar 2024 09:57:07 +0000 ROA not after: Wed 19 Mar 2025 10:02:07 +0000 asID: 38764 IP address blocks: 120.29.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:92:45:c6:ed:4a:76:47:dc:5f:28:79:9e:87:e0:2c:cf:e4:cc:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Mar 20 09:57:07 2024 GMT Not After : Mar 19 10:02:07 2025 GMT Subject: CN=22131CF1B98F6B9F09E45AD9845B03526D4009AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:11:23:9c:da:e0:3e:95:ed:43:ad:76:09:dc: 2a:23:fa:55:72:56:96:ad:2b:05:da:3a:a6:2f:0f: 23:fc:db:28:da:d5:c6:14:40:d1:e5:d4:9b:6a:02: e9:a0:6c:31:d3:1a:69:ac:d6:c0:d0:27:3a:86:27: 84:3c:a4:86:a6:b0:58:3d:50:2e:3b:3b:05:d0:44: a0:1a:11:24:6b:4a:5a:2b:e9:78:63:e2:a1:e4:a6: b0:40:68:db:c2:82:ea:12:37:e6:b8:f6:3d:c1:e1: 0b:70:31:18:d0:c7:65:b6:f1:b9:8b:79:91:76:cb: 81:fa:aa:f6:45:03:cc:57:7f:c8:ba:f0:b3:8e:3a: 77:20:d8:88:ab:8b:f1:95:3a:06:ac:a0:80:c8:57: b8:14:36:43:f7:2e:d9:46:75:42:ee:0d:8d:21:b7: dc:4c:30:e5:ff:7d:ca:84:74:33:c5:c6:ee:6f:56: fa:41:dc:c2:80:31:48:79:98:c2:ac:66:f8:ec:81: 96:13:5c:4f:4c:29:4b:c6:98:99:60:d8:76:85:0e: bc:0f:c0:10:1c:bd:16:c5:19:8b:03:38:18:b3:92: f5:81:30:75:e4:0a:c5:80:21:ec:d3:a8:b3:e4:4f: c6:99:69:81:26:0f:61:bd:ef:3b:6c:b1:2a:cf:a7: c7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:13:1C:F1:B9:8F:6B:9F:09:E4:5A:D9:84:5B:03:52:6D:40:09:AD X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.226.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:16:3a:02:c9:4f:ad:8e:4b:dc:10:4f:c3:02:ca:c3:d9:ce: f8:e9:63:53:cc:04:83:75:83:e6:08:8d:b3:2f:d4:14:18:0b: d9:69:1e:2f:02:af:d9:da:5d:b1:f3:d0:2e:4a:37:e1:3e:9d: df:9f:a9:43:a6:7d:92:04:19:5c:c1:54:d5:1b:d2:0b:ec:d7: 43:bb:25:67:3d:fc:cf:e7:3c:90:0b:a4:c0:1f:c5:67:c0:d8: 8a:f2:ce:cc:9d:76:6f:90:b7:00:bd:65:19:0f:ef:45:6e:f5: 32:41:f6:c5:d6:a3:e7:17:8f:93:81:a5:be:d9:74:51:03:28: 0d:60:ca:f2:f5:0e:9b:2a:54:04:bd:a1:3c:ba:f9:9a:ad:9e: 31:7f:ff:67:99:71:98:c2:6a:f1:60:90:7a:a8:26:bc:5f:61: a7:50:5f:30:f7:3d:35:fb:8c:db:ab:d6:87:c4:82:45:8c:4d: d5:e3:b6:9d:98:e1:56:53:50:92:37:6a:19:db:d9:ee:29:3f: 87:5d:e0:15:f8:a2:cc:6c:04:ef:5f:29:13:d6:8a:f5:31:2c: bf:8f:7c:8b:be:a9:0c:1a:4a:5d:d2:88:58:cb:c4:36:81:2a: f3:43:0e:ca:8b:fc:ab:bd:ed:98:00:74:89:3d:c4:1c:f7:be: 57:41:1f:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNZJFxu1KdkfcXyh5nofgLM/kzDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNDAzMjAwOTU3MDdaFw0yNTAzMTkxMDAyMDdaMDMxMTAvBgNV BAMTKDIyMTMxQ0YxQjk4RjZCOUYwOUU0NUFEOTg0NUIwMzUyNkQ0MDA5QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaESOc2uA+le1DrXYJ3Coj+lVy VpatKwXaOqYvDyP82yja1cYUQNHl1JtqAumgbDHTGmms1sDQJzqGJ4Q8pIamsFg9 UC47OwXQRKAaESRrSlor6Xhj4qHkprBAaNvCguoSN+a49j3B4QtwMRjQx2W28bmL eZF2y4H6qvZFA8xXf8i68LOOOncg2Iiri/GVOgasoIDIV7gUNkP3LtlGdULuDY0h t9xMMOX/fcqEdDPFxu5vVvpB3MKAMUh5mMKsZvjsgZYTXE9MKUvGmJlg2HaFDrwP wBAcvRbFGYsDOBizkvWBMHXkCsWAIezTqLPkT8aZaYEmD2G97ztssSrPp8fnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIhMc8bmPa58J5FrZhFsDUm1ACa0wHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd4jANBgkqhkiG 9w0BAQsFAAOCAQEAXBY6AslPrY5L3BBPwwLKw9nO+OljU8wEg3WD5giNsy/UFBgL 2WkeLwKv2dpdsfPQLko34T6d35+pQ6Z9kgQZXMFU1RvSC+zXQ7slZz38z+c8kAuk wB/FZ8DYivLOzJ12b5C3AL1lGQ/vRW71MkH2xdaj5xePk4Glvtl0UQMoDWDK8vUO mypUBL2hPLr5mq2eMX//Z5lxmMJq8WCQeqgmvF9hp1BfMPc9NfuM26vWh8SCRYxN 1eO2nZjhVlNQkjdqGdvZ7ik/h13gFfiizGwE718pE9aK9TEsv498i76pDBpKXdKI WMvENoEq80MOyov8q73tmAB0iT3EHPe+V0EfFg== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org