$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: VlPySr1z7+TkmzqDg9LkNmufmjg7AcW+Dqxto5/JHQ0= Subject key identifier: F5:E2:88:1D:A6:7F:71:18:AF:91:3D:52:C8:29:1B:18:D3:07:A2:CD Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 76C38D01B3D0254497BA79D2083B05868A9DD0B4 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:17:38 +0000 ROA not before: Thu 02 May 2024 04:12:38 +0000 ROA not after: Thu 01 May 2025 04:17:38 +0000 asID: 38785 IP address blocks: 121.101.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c3:8d:01:b3:d0:25:44:97:ba:79:d2:08:3b:05:86:8a:9d:d0:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:12:38 2024 GMT Not After : May 1 04:17:38 2025 GMT Subject: CN=F5E2881DA67F7118AF913D52C8291B18D307A2CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:a4:8f:f0:3b:9a:87:8c:52:07:44:27:f7: f3:03:08:3e:16:bf:00:ab:27:13:5f:94:52:2f:57: 5b:2a:ac:9e:c2:93:bc:c3:90:a3:32:62:d1:be:91: ca:c9:5b:e0:24:84:a8:07:f5:a5:f2:20:38:d8:68: 79:20:a4:b6:33:47:96:3e:8b:4b:01:b6:d9:e8:ec: bf:4e:87:79:1c:e2:97:9a:ec:3f:63:ac:30:21:cc: 0f:03:59:36:d7:36:ac:8c:bd:50:2e:11:f6:7c:5e: de:30:a8:36:a1:7b:90:a0:db:42:fa:2a:4e:74:eb: 45:68:c8:46:bf:d0:74:d0:50:0c:b7:98:99:d6:00: f3:3a:74:25:3d:2e:72:ef:cb:93:23:18:61:cc:ee: 2c:85:96:9c:db:d0:28:2a:a3:91:f5:5d:43:07:eb: 00:fc:5b:17:1a:2d:04:3e:ff:79:ac:10:69:d1:be: 9a:52:1c:f9:b4:a7:61:90:36:d1:e3:9d:19:15:69: 54:32:1c:06:99:63:c3:2e:83:ea:ca:71:3e:c8:82: 16:d7:de:5c:ef:fd:27:3a:e6:d2:22:de:5e:a6:c2: 5b:c1:59:dd:2f:24:53:39:ec:63:15:de:b9:b1:df: 11:fc:39:03:0a:ff:09:0b:f6:6b:d9:2c:bd:4a:0e: 6a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E2:88:1D:A6:7F:71:18:AF:91:3D:52:C8:29:1B:18:D3:07:A2:CD X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.186.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:47:89:cf:7d:85:b5:31:b6:c1:f9:49:97:4e:89:79:ea:f0: d8:4f:90:73:0d:13:39:a5:d5:ab:b3:36:b5:8c:c1:a1:c1:5e: c5:84:17:b9:da:7e:f8:04:78:b1:34:a1:9d:d0:13:f9:a2:fc: 32:6e:8b:25:af:63:44:a3:52:08:40:b8:86:de:e4:75:02:56: a5:dc:32:f5:22:16:e4:3a:b0:30:13:bd:5b:df:27:db:ea:11: fb:77:99:61:a0:79:e1:02:c9:c2:85:9e:25:65:4a:15:63:f7: ce:b1:7f:61:4b:72:f7:95:82:cc:e0:79:38:e4:14:ab:46:e6: ca:4a:cf:e5:52:cb:e9:bd:cd:6f:22:9a:e9:27:f3:85:9f:3c: d4:8b:11:e9:b9:f1:91:e8:17:2c:ae:e8:a4:ea:3b:5c:d4:a2: 8f:fb:9b:55:a3:76:f8:60:ee:57:d4:4d:97:da:db:95:86:f5: ea:e8:9c:89:bf:3d:bf:5d:0f:34:66:19:f4:75:36:5b:12:b0: 64:0c:07:b8:a6:f1:01:c3:bf:81:8d:6e:52:9e:f0:ce:04:91: b7:1e:6c:18:ad:51:ce:af:94:49:79:dc:fd:8d:a6:46:92:2e: f5:7c:47:5b:81:88:64:60:9e:0f:49:1e:2b:77:ba:b2:5a:db: a0:36:03:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdsONAbPQJUSXunnSCDsFhoqd0LQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEyMzhaFw0yNTA1MDEwNDE3MzhaMDMxMTAvBgNV BAMTKEY1RTI4ODFEQTY3RjcxMThBRjkxM0Q1MkM4MjkxQjE4RDMwN0EyQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/v6SP8Duah4xSB0Qn9/MDCD4W vwCrJxNflFIvV1sqrJ7Ck7zDkKMyYtG+kcrJW+AkhKgH9aXyIDjYaHkgpLYzR5Y+ i0sBttno7L9Oh3kc4pea7D9jrDAhzA8DWTbXNqyMvVAuEfZ8Xt4wqDahe5Cg20L6 Kk5060VoyEa/0HTQUAy3mJnWAPM6dCU9LnLvy5MjGGHM7iyFlpzb0Cgqo5H1XUMH 6wD8WxcaLQQ+/3msEGnRvppSHPm0p2GQNtHjnRkVaVQyHAaZY8Mug+rKcT7IghbX 3lzv/Sc65tIi3l6mwlvBWd0vJFM57GMV3rmx3xH8OQMK/wkL9mvZLL1KDmrLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9eKIHaZ/cRivkT1SyCkbGNMHos0wHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW6MA0GCSqG SIb3DQEBCwUAA4IBAQBqR4nPfYW1MbbB+UmXTol56vDYT5BzDRM5pdWrsza1jMGh wV7FhBe52n74BHixNKGd0BP5ovwyboslr2NEo1IIQLiG3uR1Alal3DL1IhbkOrAw E71b3yfb6hH7d5lhoHnhAsnChZ4lZUoVY/fOsX9hS3L3lYLM4Hk45BSrRubKSs/l Usvpvc1vIprpJ/OFnzzUixHpufGR6Bcsruik6jtc1KKP+5tVo3b4YO5X1E2X2tuV hvXq6JyJvz2/XQ80Zhn0dTZbErBkDAe4pvEBw7+BjW5SnvDOBJG3HmwYrVHOr5RJ edz9jaZGki71fEdbgYhkYJ4PSR4rd7qyWtugNgOf -----END CERTIFICATE-----Generated at Sat Jun 22 17:13:22 2024 by rpki-client on console-ams.rpki-client.org