$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: dHGjsmtyNiK8srSzYwGL3Hg8o303N6ZWYYsYI6Ez2Y4= Subject key identifier: 85:18:2F:62:1E:92:AD:41:89:90:0D:81:0C:8F:30:B9:2F:E4:EE:BD Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 74C6F7FB26EFC41C902ADFA0DC8F0A7541CE1445 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:17:47 +0000 ROA not before: Thu 02 May 2024 04:12:47 +0000 ROA not after: Thu 01 May 2025 04:17:47 +0000 asID: 38785 IP address blocks: 121.101.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c6:f7:fb:26:ef:c4:1c:90:2a:df:a0:dc:8f:0a:75:41:ce:14:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:12:47 2024 GMT Not After : May 1 04:17:47 2025 GMT Subject: CN=85182F621E92AD4189900D810C8F30B92FE4EEBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cd:11:c8:74:a3:65:46:29:3e:e4:37:ed:dd: 76:d2:9d:00:f1:33:01:40:fc:ee:f6:f9:ab:08:5c: 76:87:9e:59:7f:52:22:41:27:26:c4:02:6d:9a:df: 32:3d:52:d1:df:91:4a:e7:e6:4b:ef:c2:98:cb:12: d2:0c:89:d2:39:11:9f:23:c7:40:8d:dd:3e:1d:98: 26:e9:c8:f9:70:78:43:a5:3e:e6:11:5f:9e:2b:56: 7d:33:bb:a5:3d:9a:58:0b:b9:54:86:7a:c6:fd:62: 7a:b7:3e:35:a5:8e:05:60:ab:d6:08:88:8c:23:a4: 74:c1:fa:91:6f:86:c0:2c:6b:c2:e6:4c:cf:88:79: 97:b0:89:13:f5:12:6d:75:89:c9:8c:dc:48:19:28: f8:94:72:31:df:ba:fc:cd:b0:f6:4a:a9:dc:e8:09: f4:02:a1:da:08:41:2a:a6:d4:29:45:fb:cf:cd:52: 75:05:4b:97:a5:4e:3b:8f:a1:82:ae:9f:2c:d4:e8: 59:b3:b1:47:5c:99:11:29:68:38:9a:bc:cf:5f:21: 2e:2c:27:15:94:83:6c:36:13:91:6a:bf:7d:c8:f2: 87:00:a1:3a:5e:0c:a1:bb:b1:e7:94:93:4f:fb:9a: 16:c7:5e:a9:0a:22:86:7f:9f:3b:c0:88:7a:f2:d4: ba:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:18:2F:62:1E:92:AD:41:89:90:0D:81:0C:8F:30:B9:2F:E4:EE:BD X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.185.0/24 Signature Algorithm: sha256WithRSAEncryption b7:de:da:02:60:35:57:a5:35:61:a6:d5:fe:e7:2f:80:25:c4: a2:05:d7:df:a7:91:2a:2d:97:65:a0:d0:b0:7e:0c:51:cd:18: e1:37:a0:a3:bd:5c:6e:e5:b1:6f:0d:c5:f4:1d:b5:d2:57:87: 67:fc:da:a4:55:3a:5f:e3:43:a6:74:aa:a4:95:d1:2b:3d:1b: ed:ff:ae:2d:bb:01:2e:73:37:16:b5:2b:64:1f:36:ba:ce:af: ff:75:fe:c0:75:bd:89:90:96:53:c9:12:b7:5a:d9:c2:dc:8d: 3e:0e:8e:2b:f4:c3:ac:c1:3a:52:c7:3e:e5:92:06:08:1f:55: 66:a4:0d:ff:15:0b:0d:14:85:7a:5f:25:9a:6e:64:a5:31:03: 66:9d:1e:be:e4:47:12:74:9c:8b:a2:cf:9d:5a:11:c1:d3:e4: b0:e9:37:2c:95:e2:55:4c:5d:5f:00:bf:a8:04:b1:29:7e:97: 3f:d6:a3:3d:5e:6e:91:10:9f:c4:29:1f:46:05:2c:02:0f:9a: 0b:a5:45:b3:20:86:7c:d8:72:8b:0c:9f:71:83:25:e5:3e:3d: 59:1d:b0:6d:1a:a0:39:87:4c:f2:17:8c:46:ee:20:10:c1:55: 0a:a8:09:4c:cc:1a:1c:50:bb:61:49:fe:02:81:2f:68:e5:26: ac:8b:e9:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdMb3+ybvxByQKt+g3I8KdUHOFEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEyNDdaFw0yNTA1MDEwNDE3NDdaMDMxMTAvBgNV BAMTKDg1MTgyRjYyMUU5MkFENDE4OTkwMEQ4MTBDOEYzMEI5MkZFNEVFQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVzRHIdKNlRik+5Dft3XbSnQDx MwFA/O72+asIXHaHnll/UiJBJybEAm2a3zI9UtHfkUrn5kvvwpjLEtIMidI5EZ8j x0CN3T4dmCbpyPlweEOlPuYRX54rVn0zu6U9mlgLuVSGesb9Ynq3PjWljgVgq9YI iIwjpHTB+pFvhsAsa8LmTM+IeZewiRP1Em11icmM3EgZKPiUcjHfuvzNsPZKqdzo CfQCodoIQSqm1ClF+8/NUnUFS5elTjuPoYKunyzU6FmzsUdcmREpaDiavM9fIS4s JxWUg2w2E5Fqv33I8ocAoTpeDKG7seeUk0/7mhbHXqkKIoZ/nzvAiHry1LrzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhRgvYh6SrUGJkA2BDI8wuS/k7r0wHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW5MA0GCSqG SIb3DQEBCwUAA4IBAQC33toCYDVXpTVhptX+5y+AJcSiBdffp5EqLZdloNCwfgxR zRjhN6CjvVxu5bFvDcX0HbXSV4dn/NqkVTpf40OmdKqkldErPRvt/64tuwEuczcW tStkHza6zq//df7Adb2JkJZTyRK3WtnC3I0+Do4r9MOswTpSxz7lkgYIH1VmpA3/ FQsNFIV6XyWabmSlMQNmnR6+5EcSdJyLos+dWhHB0+Sw6TcsleJVTF1fAL+oBLEp fpc/1qM9Xm6REJ/EKR9GBSwCD5oLpUWzIIZ82HKLDJ9xgyXlPj1ZHbBtGqA5h0zy F4xG7iAQwVUKqAlMzBocULthSf4CgS9o5Sasi+lc -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org