$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: n84lQxFjMaL3Y9UQU8GKoerRQT4fOqmo8MdPg5kVYsQ= Subject key identifier: 75:AB:E3:01:68:A9:2B:00:0D:66:65:40:EB:F0:0A:39:E6:C0:C3:65 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 663620B566AD8E27297EC5024EC44AAADFC14C95 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:17:55 +0000 ROA not before: Thu 02 May 2024 04:12:55 +0000 ROA not after: Thu 01 May 2025 04:17:55 +0000 asID: 38785 IP address blocks: 121.101.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:36:20:b5:66:ad:8e:27:29:7e:c5:02:4e:c4:4a:aa:df:c1:4c:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:12:55 2024 GMT Not After : May 1 04:17:55 2025 GMT Subject: CN=75ABE30168A92B000D666540EBF00A39E6C0C365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:98:a1:5e:ce:e8:fe:46:80:58:5d:45:a0: c3:a9:7f:2c:44:58:24:b8:1a:9e:a9:cf:9b:2b:09: ef:09:f6:5b:bf:ad:59:02:8b:fa:95:98:bd:ab:d8: dc:cb:ab:f7:2c:10:05:82:ee:76:2f:56:87:54:77: 74:b9:a6:9e:92:7a:68:ca:96:63:5e:da:5b:31:9a: 5d:4f:00:b9:01:e7:99:e3:7c:b2:92:9b:60:a2:65: 72:35:ae:b8:4a:44:40:8f:a0:18:6d:cb:d3:b2:04: ba:4c:e2:76:c6:d4:30:62:b6:73:60:10:ec:da:f6: ed:a7:7d:15:d7:9e:4f:de:85:85:af:d8:c0:b7:3d: 51:99:11:e0:68:ea:c2:ab:8f:03:67:af:8c:0c:25: 85:3f:02:71:39:a0:05:99:47:9b:4b:6f:2e:3e:35: 30:78:f1:ea:e8:4b:aa:e9:a6:18:c2:54:02:62:92: 1b:40:f3:25:3f:41:86:c3:6b:8b:de:fc:ac:1a:30: eb:2f:10:32:7d:65:12:27:7b:67:fb:ca:49:d0:e5: 00:c0:f4:6b:15:83:ab:e6:c6:8a:c2:0b:2d:46:84: 52:08:85:88:ba:f8:7d:16:ac:1a:61:d5:db:00:19: 80:20:24:a3:01:c5:e0:a8:0e:d7:1b:0d:68:a8:8b: 82:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AB:E3:01:68:A9:2B:00:0D:66:65:40:EB:F0:0A:39:E6:C0:C3:65 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.187.0/24 Signature Algorithm: sha256WithRSAEncryption 54:15:61:10:1e:fe:10:c1:35:c6:0c:00:e7:1e:54:52:29:ca: 0d:4f:df:d0:bd:ba:8b:0f:f0:88:86:0e:e4:93:7f:be:4f:d3: 3a:9a:2d:52:14:a9:6d:5c:26:0c:8f:6e:93:71:21:f2:3e:3a: ce:86:61:c5:51:a7:4a:27:e9:5b:99:4b:da:98:25:8d:16:5e: e0:c6:cd:b0:86:8e:06:3a:d9:fd:41:36:fa:0c:18:99:6f:77: 9b:5c:d4:95:7c:96:52:f5:ba:7d:7e:93:5b:0b:13:6f:c6:d6: 87:87:d0:6a:c8:dc:08:0c:7b:16:38:aa:76:f1:9a:32:a3:11: 23:e7:0d:90:44:05:48:cb:9f:48:71:23:60:18:b0:97:0d:f0: 6f:2b:fa:ce:99:ab:e6:ea:b1:c6:6f:1b:a2:d9:2b:38:25:6d: 65:8f:36:7a:78:68:25:42:ae:50:94:70:64:13:01:9d:c3:df: 39:b2:35:fa:a2:3f:cc:ad:6f:d5:59:2f:72:95:ac:a9:85:a1: 10:cf:03:9f:07:40:fe:fb:e3:39:60:08:41:51:bd:a0:84:a5: 17:f1:f3:e2:d5:d4:18:01:34:a2:9b:81:1c:b2:07:b8:ae:d5: 59:db:4d:ac:91:da:2b:ed:fe:e3:d2:dc:0d:01:46:e1:36:f7: d1:d9:52:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZjYgtWatjicpfsUCTsRKqt/BTJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEyNTVaFw0yNTA1MDEwNDE3NTVaMDMxMTAvBgNV BAMTKDc1QUJFMzAxNjhBOTJCMDAwRDY2NjU0MEVCRjAwQTM5RTZDMEMzNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxGZihXs7o/kaAWF1FoMOpfyxE WCS4Gp6pz5srCe8J9lu/rVkCi/qVmL2r2NzLq/csEAWC7nYvVodUd3S5pp6SemjK lmNe2lsxml1PALkB55njfLKSm2CiZXI1rrhKRECPoBhty9OyBLpM4nbG1DBitnNg EOza9u2nfRXXnk/ehYWv2MC3PVGZEeBo6sKrjwNnr4wMJYU/AnE5oAWZR5tLby4+ NTB48eroS6rpphjCVAJikhtA8yU/QYbDa4ve/KwaMOsvEDJ9ZRIne2f7yknQ5QDA 9GsVg6vmxorCCy1GhFIIhYi6+H0WrBph1dsAGYAgJKMBxeCoDtcbDWioi4LnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdavjAWipKwANZmVA6/AKOebAw2UwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW7MA0GCSqG SIb3DQEBCwUAA4IBAQBUFWEQHv4QwTXGDADnHlRSKcoNT9/QvbqLD/CIhg7kk3++ T9M6mi1SFKltXCYMj26TcSHyPjrOhmHFUadKJ+lbmUvamCWNFl7gxs2who4GOtn9 QTb6DBiZb3ebXNSVfJZS9bp9fpNbCxNvxtaHh9BqyNwIDHsWOKp28ZoyoxEj5w2Q RAVIy59IcSNgGLCXDfBvK/rOmavm6rHGbxui2Ss4JW1ljzZ6eGglQq5QlHBkEwGd w985sjX6oj/MrW/VWS9ylayphaEQzwOfB0D+++M5YAhBUb2ghKUX8fPi1dQYATSi m4Ecsge4rtVZ202skdor7f7j0twNAUbhNvfR2VK1 -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org