$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa File: 3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa (raw, json) Hash identifier: 8ldm32XUyMOpRp5JNArSyW9JE1SCy0cuIiKGzA0ySxg= Subject key identifier: 79:D0:7D:0F:50:62:F6:09:D1:A4:86:F8:1C:E1:FD:1E:21:1C:F7:EA Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 5CC3B443079434BA857AA67015EB4DBA66A2B196 Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa Signing time: Mon 01 Jul 2024 01:04:02 +0000 ROA not before: Mon 01 Jul 2024 00:59:02 +0000 ROA not after: Mon 30 Jun 2025 01:04:02 +0000 asID: 131706 IP address blocks: 121.101.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c3:b4:43:07:94:34:ba:85:7a:a6:70:15:eb:4d:ba:66:a2:b1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Jul 1 00:59:02 2024 GMT Not After : Jun 30 01:04:02 2025 GMT Subject: CN=79D07D0F5062F609D1A486F81CE1FD1E211CF7EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:34:c0:1f:ed:14:0c:17:23:e6:14:ff:33:6c: ef:1d:c5:0a:91:3c:0e:f0:97:3b:f5:97:03:db:32: 3e:33:a4:0e:6f:af:a6:f0:4c:be:86:db:a3:87:74: b3:2a:52:01:54:1e:f9:17:e9:5c:6e:59:4e:63:35: 88:b5:ec:92:cb:c9:01:0b:87:71:86:7f:d5:79:f4: 6b:4a:9f:4b:85:52:c4:45:05:77:85:bb:6b:64:03: 5e:44:ad:20:9c:8b:ab:8e:a8:30:f7:f2:0d:29:e5: d6:c6:6b:5f:ce:b1:d4:f7:9d:5d:ab:1b:4e:b8:27: 67:5d:77:aa:83:f7:e9:00:ee:ff:7f:05:b3:61:b2: 07:99:e3:b8:bc:7d:7c:1a:68:06:35:58:3e:7d:3d: 3e:a5:5c:ff:58:4b:a0:25:80:1f:a8:cd:c8:1b:02: 42:33:cc:13:1e:df:e6:66:c1:b2:21:25:e1:0a:d7: 76:93:4d:1e:c1:f6:8a:6b:ff:cf:1f:2e:3f:40:2a: f7:78:8f:da:ef:5d:ee:0e:fe:41:dd:38:1f:db:57: 1e:57:62:b1:63:9e:7f:3e:08:e4:7a:2a:f5:55:bc: d2:c2:7e:9b:bf:4e:7a:74:63:c7:9f:07:36:ba:e4: 27:a5:9a:d0:f5:d5:83:71:9e:af:da:e6:cc:62:c0: 08:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D0:7D:0F:50:62:F6:09:D1:A4:86:F8:1C:E1:FD:1E:21:1C:F7:EA X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.128.0/21 Signature Algorithm: sha256WithRSAEncryption aa:95:47:1e:d9:5d:1c:83:34:20:7f:65:79:10:b0:53:86:59: 33:76:f1:06:b1:b7:14:33:75:73:c9:ad:83:1e:b8:99:c2:1f: ae:75:4c:11:5c:42:7a:9a:69:41:4f:c2:3b:56:70:b7:4b:4a: 18:57:12:4c:4d:bd:21:b8:d3:d6:bb:84:e2:38:42:f6:c7:27: bf:97:68:41:22:7f:00:74:a5:47:b5:77:f1:d6:2a:4f:65:7c: 75:a9:da:85:6b:4d:ff:c7:86:0f:e7:3c:05:99:a5:7d:0b:87: 12:70:62:5c:1b:00:6a:37:ed:b3:cc:0e:c7:b4:8e:78:4f:7c: 6c:db:e7:de:14:07:a2:f7:4d:ab:98:f7:6b:69:db:27:35:07: 21:70:39:7d:c9:35:2e:c1:0d:d2:14:69:2e:20:a3:5e:f6:a6: c9:72:d5:65:6e:50:3d:36:59:32:76:9a:b7:a5:d7:de:64:65: 3d:d8:48:c3:8b:82:70:4a:59:10:9f:93:dd:39:86:4a:e4:f6: a8:cf:e8:ff:94:0d:36:70:44:74:2c:b2:2d:45:66:3d:54:32: 72:76:43:c7:41:33:92:ba:79:1c:7a:8b:b6:13:5a:d5:80:d9: 1b:5b:9a:7c:11:00:bd:5b:5f:07:ec:d3:40:a7:89:3e:2c:5e: b5:e2:c5:cc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXMO0QweUNLqFeqZwFetNumaisZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yNDA3MDEwMDU5MDJaFw0yNTA2MzAwMTA0MDJaMDMxMTAvBgNV BAMTKDc5RDA3RDBGNTA2MkY2MDlEMUE0ODZGODFDRTFGRDFFMjExQ0Y3RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNMAf7RQMFyPmFP8zbO8dxQqR PA7wlzv1lwPbMj4zpA5vr6bwTL6G26OHdLMqUgFUHvkX6VxuWU5jNYi17JLLyQEL h3GGf9V59GtKn0uFUsRFBXeFu2tkA15ErSCci6uOqDD38g0p5dbGa1/OsdT3nV2r G064J2ddd6qD9+kA7v9/BbNhsgeZ47i8fXwaaAY1WD59PT6lXP9YS6AlgB+ozcgb AkIzzBMe3+ZmwbIhJeEK13aTTR7B9opr/88fLj9AKvd4j9rvXe4O/kHdOB/bVx5X YrFjnn8+COR6KvVVvNLCfpu/Tnp0Y8efBza65CelmtD11YNxnq/a5sxiwAgFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUedB9D1Bi9gnRpIb4HOH9HiEc9+owHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzIzMTJlMzEzMDMxMmUzMTMyMzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN5ZYAwDQYJ KoZIhvcNAQELBQADggEBAKqVRx7ZXRyDNCB/ZXkQsFOGWTN28QaxtxQzdXPJrYMe uJnCH651TBFcQnqaaUFPwjtWcLdLShhXEkxNvSG409a7hOI4QvbHJ7+XaEEifwB0 pUe1d/HWKk9lfHWp2oVrTf/Hhg/nPAWZpX0LhxJwYlwbAGo37bPMDse0jnhPfGzb 594UB6L3TauY92tp2yc1ByFwOX3JNS7BDdIUaS4go172psly1WVuUD02WTJ2mrel 195kZT3YSMOLgnBKWRCfk905hkrk9qjP6P+UDTZwRHQssi1FZj1UMnJ2Q8dBM5K6 eRx6i7YTWtWA2RtbmnwRAL1bXwfs00CniT4sXrXixcw= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org