$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: RP7rUocoC3D/j1TwADshI6ZpMeqAmaI5nGcmRaAlwtE= Subject key identifier: 20:25:82:57:42:98:DC:2F:38:14:68:F2:B8:24:29:18:8F:72:46:DE Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 2CC3F71AA510D0F290CB2DED28A259947189DC25 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:17:14 +0000 ROA not before: Thu 02 May 2024 04:12:14 +0000 ROA not after: Thu 01 May 2025 04:17:14 +0000 asID: 38785 IP address blocks: 121.101.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c3:f7:1a:a5:10:d0:f2:90:cb:2d:ed:28:a2:59:94:71:89:dc:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:12:14 2024 GMT Not After : May 1 04:17:14 2025 GMT Subject: CN=202582574298DC2F381468F2B82429188F7246DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:8d:09:e9:7b:47:cc:20:56:8c:4b:55:52: cd:65:e8:90:2e:99:43:e6:1c:a5:43:21:2b:77:70: 10:d5:db:de:7e:76:74:5b:bd:d1:69:43:42:2d:bf: c9:a8:06:a1:ec:99:d6:7d:aa:34:97:5c:53:e3:56: cc:4e:8d:f8:54:25:3d:19:f6:02:39:6c:08:71:2c: b9:19:c9:d7:b2:90:2a:47:ee:da:b5:cf:18:e3:8c: ee:78:2c:06:08:4d:1a:4e:9b:52:0f:ac:f8:b2:da: f6:89:1d:21:e6:49:8f:bf:bf:0e:2a:2b:e1:24:da: 36:01:e5:f2:c2:cc:3c:82:f7:34:3e:cb:2b:ed:71: 51:73:39:0a:03:26:cf:64:a8:4e:ce:af:13:bd:a3: 5f:b5:a3:81:d3:db:76:32:2e:8b:1d:cd:cf:89:74: c8:dd:19:45:0a:9e:a0:ec:b3:83:3f:61:7d:cf:cd: 51:29:70:74:58:aa:91:45:ce:38:00:64:73:96:47: 42:c3:20:ce:c7:a2:1d:b8:d7:78:48:02:84:cc:1e: b1:3d:94:b7:bb:d2:7b:c3:9b:6e:2d:ef:d2:15:cc: 86:8b:0d:3e:b0:33:78:40:76:5f:ca:ad:08:75:ff: a4:a3:33:03:bf:7e:43:1c:06:8a:a2:e3:7b:16:dd: 2c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:25:82:57:42:98:DC:2F:38:14:68:F2:B8:24:29:18:8F:72:46:DE X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.184.0/24 Signature Algorithm: sha256WithRSAEncryption ae:22:bf:d8:4f:c7:d8:97:7d:b7:3e:68:e8:5a:a2:8b:ec:b3: b7:16:6d:46:e5:d9:0d:23:d7:b9:d3:a6:93:47:c8:29:16:d1: eb:06:ad:9a:00:ec:e3:5d:4d:e6:8e:5d:da:13:29:ec:4d:ff: ea:74:5c:c5:f6:fc:8e:58:db:c8:7b:d0:4a:84:5b:59:8c:ce: 5b:17:b0:66:2e:bd:f5:2a:4b:8d:c3:13:6f:25:fb:b4:42:74: 95:60:44:cb:2e:fd:8a:d4:b0:82:6d:e6:07:7c:3b:6e:76:80: 86:f3:e1:0d:2e:bd:ca:d3:8c:8c:e5:61:b2:b0:7e:cd:9b:1e: ed:58:f8:bb:ae:6a:0a:d4:20:8a:aa:99:f2:66:2b:a7:a2:9c: c4:d8:e7:ae:1f:0c:75:27:f8:86:9a:8a:a6:d2:99:76:9a:68: 41:50:f9:7d:91:64:09:b3:66:d1:1c:2b:c6:83:d9:cb:34:3c: e5:7e:c7:02:5a:b8:25:9a:a4:85:c3:d4:cc:fb:93:18:4b:df: bc:84:14:81:d2:ca:75:59:8a:de:0d:ab:e5:69:06:48:53:41: 51:3c:e6:24:95:13:4f:9c:e7:34:54:8d:ee:ec:f6:1a:87:16: dd:9b:93:a0:12:d5:1e:f7:a6:80:e6:ea:4e:11:6e:11:0e:88: 9a:9f:cf:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULMP3GqUQ0PKQyy3tKKJZlHGJ3CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEyMTRaFw0yNTA1MDEwNDE3MTRaMDMxMTAvBgNV BAMTKDIwMjU4MjU3NDI5OERDMkYzODE0NjhGMkI4MjQyOTE4OEY3MjQ2REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9t40J6XtHzCBWjEtVUs1l6JAu mUPmHKVDISt3cBDV295+dnRbvdFpQ0Itv8moBqHsmdZ9qjSXXFPjVsxOjfhUJT0Z 9gI5bAhxLLkZydeykCpH7tq1zxjjjO54LAYITRpOm1IPrPiy2vaJHSHmSY+/vw4q K+Ek2jYB5fLCzDyC9zQ+yyvtcVFzOQoDJs9kqE7OrxO9o1+1o4HT23YyLosdzc+J dMjdGUUKnqDss4M/YX3PzVEpcHRYqpFFzjgAZHOWR0LDIM7Hoh2413hIAoTMHrE9 lLe70nvDm24t79IVzIaLDT6wM3hAdl/KrQh1/6SjMwO/fkMcBoqi43sW3SyJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUICWCV0KY3C84FGjyuCQpGI9yRt4wHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW4MA0GCSqG SIb3DQEBCwUAA4IBAQCuIr/YT8fYl323PmjoWqKL7LO3Fm1G5dkNI9e506aTR8gp FtHrBq2aAOzjXU3mjl3aEynsTf/qdFzF9vyOWNvIe9BKhFtZjM5bF7BmLr31KkuN wxNvJfu0QnSVYETLLv2K1LCCbeYHfDtudoCG8+ENLr3K04yM5WGysH7Nmx7tWPi7 rmoK1CCKqpnyZiunopzE2OeuHwx1J/iGmoqm0pl2mmhBUPl9kWQJs2bRHCvGg9nL NDzlfscCWrglmqSFw9TM+5MYS9+8hBSB0sp1WYreDavlaQZIU0FRPOYklRNPnOc0 VI3u7PYahxbdm5OgEtUe96aA5upOEW4RDoian8/i -----END CERTIFICATE-----Generated at Sat Jun 22 16:30:38 2024 by rpki-client on console-fra.rpki-client.org