$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233302e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3233302e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: 1J6jGWgVogKQtYs6/NmHB+yspYKVU7ZdBvWeMjJNpqA= Subject key identifier: 5D:01:AB:ED:70:65:51:17:0D:6E:DD:6A:F3:65:B0:46:79:E1:D3:A9 Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 29F6F2742C53C6C034404696925251805FC32C6B Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233302e302f32342d3234203d3e203338373634.roa Signing time: Wed 20 Mar 2024 10:02:06 +0000 ROA not before: Wed 20 Mar 2024 09:57:06 +0000 ROA not after: Wed 19 Mar 2025 10:02:06 +0000 asID: 38764 IP address blocks: 120.29.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f6:f2:74:2c:53:c6:c0:34:40:46:96:92:52:51:80:5f:c3:2c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Mar 20 09:57:06 2024 GMT Not After : Mar 19 10:02:06 2025 GMT Subject: CN=5D01ABED706551170D6EDD6AF365B04679E1D3A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d7:db:dd:5b:56:c1:55:31:6c:53:07:e2:74: 33:8c:0a:15:ea:d9:aa:2e:fb:3f:13:2b:49:01:7c: dd:6d:3b:bd:28:59:c9:c0:ae:6c:6a:fd:3e:13:64: f2:56:bc:98:c4:58:4f:6e:93:45:34:7b:b1:6d:82: 04:db:ad:d7:48:ac:1d:41:28:7f:e9:6f:89:78:d9: f1:23:14:30:71:fa:1e:4b:cf:82:35:7e:6f:c9:ed: ae:f5:4b:79:91:c4:6d:62:78:8e:de:98:4f:db:03: b0:a8:ff:7e:e0:6a:ef:33:78:89:e0:be:61:0f:4b: 91:1a:08:e5:ed:02:e3:c3:4e:5f:00:56:a6:24:42: 87:a2:31:06:93:9b:c8:b1:cd:f0:28:21:1f:cf:b8: b5:9c:a8:a8:c8:62:42:dd:a0:e8:38:3d:e0:68:4e: be:4a:34:07:41:cc:48:70:71:29:1b:1f:c7:18:10: 61:9d:f4:7e:bf:4b:e7:30:cf:2f:ea:b1:b8:0b:b1: 09:20:e5:68:ed:62:31:c5:1a:5d:b2:c5:36:27:6f: 1b:c6:bf:f7:a2:de:3c:bc:2f:16:56:d4:c9:e2:ae: ed:5c:fc:51:95:16:59:a7:e4:6f:46:40:4f:fa:b8: 22:8b:b3:6c:cd:8e:a9:3a:77:24:28:06:06:e3:ff: c7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:01:AB:ED:70:65:51:17:0D:6E:DD:6A:F3:65:B0:46:79:E1:D3:A9 X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233302e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.230.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:4d:33:65:3a:61:67:3e:1c:17:f7:b4:46:5b:d0:7a:c7:2a: 93:7b:a6:01:a0:cf:0c:ee:d2:ac:cd:8c:54:38:f6:f6:43:0e: fe:9c:4c:e2:0a:0d:e5:9b:5f:53:67:21:39:23:8c:d8:d6:ab: ea:d7:89:ed:9c:0d:55:da:ca:36:1e:37:c6:c6:e2:6d:17:76: 79:03:db:8e:79:bf:45:48:7a:7c:02:0b:43:0b:b6:2d:77:a0: 80:cd:6f:cc:ec:03:d4:2d:09:2e:71:83:6f:c6:fc:ea:f8:5a: d9:db:f3:6a:eb:85:0f:79:7d:fb:4d:29:22:e8:3c:7e:dd:ae: 11:5d:4a:ef:89:f7:2e:42:63:95:ad:08:21:7b:4b:c4:7a:ce: 89:33:b8:b5:c7:d1:b2:59:8f:92:c3:d0:a8:94:78:e5:11:2b: 7d:91:25:98:70:52:40:20:d9:67:d3:30:6f:3c:b1:0b:0f:60: 5d:d9:3b:fd:de:11:95:c8:e4:39:76:54:bb:5d:be:2d:0f:08: 86:bb:3c:ac:15:fb:5f:dd:e1:92:dc:0f:6f:5d:8b:72:01:b5: 1b:2a:46:16:b1:88:5b:83:45:b4:35:7d:c3:7d:ae:27:a6:6f: ad:ac:7f:5d:d0:06:89:4b:81:31:02:35:1c:a3:3a:26:a4:66: fd:66:8c:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKfbydCxTxsA0QEaWklJRgF/DLGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNDAzMjAwOTU3MDZaFw0yNTAzMTkxMDAyMDZaMDMxMTAvBgNV BAMTKDVEMDFBQkVENzA2NTUxMTcwRDZFREQ2QUYzNjVCMDQ2NzlFMUQzQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb19vdW1bBVTFsUwfidDOMChXq 2aou+z8TK0kBfN1tO70oWcnArmxq/T4TZPJWvJjEWE9uk0U0e7FtggTbrddIrB1B KH/pb4l42fEjFDBx+h5Lz4I1fm/J7a71S3mRxG1ieI7emE/bA7Co/37gau8zeIng vmEPS5EaCOXtAuPDTl8AVqYkQoeiMQaTm8ixzfAoIR/PuLWcqKjIYkLdoOg4PeBo Tr5KNAdBzEhwcSkbH8cYEGGd9H6/S+cwzy/qsbgLsQkg5WjtYjHFGl2yxTYnbxvG v/ei3jy8LxZW1Mniru1c/FGVFlmn5G9GQE/6uCKLs2zNjqk6dyQoBgbj/8fBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXQGr7XBlURcNbt1q82WwRnnh06kwHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd5jANBgkqhkiG 9w0BAQsFAAOCAQEAPE0zZTphZz4cF/e0RlvQescqk3umAaDPDO7SrM2MVDj29kMO /pxM4goN5ZtfU2chOSOM2Nar6teJ7ZwNVdrKNh43xsbibRd2eQPbjnm/RUh6fAIL Qwu2LXeggM1vzOwD1C0JLnGDb8b86vha2dvzauuFD3l9+00pIug8ft2uEV1K74n3 LkJjla0IIXtLxHrOiTO4tcfRslmPksPQqJR45RErfZElmHBSQCDZZ9MwbzyxCw9g Xdk7/d4RlcjkOXZUu12+LQ8Ihrs8rBX7X93hktwPb12LcgG1GypGFrGIW4NFtDV9 w32uJ6Zvrax/XdAGiUuBMQI1HKM6JqRm/WaMqQ== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org