$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: UmEBU3Sgynao9lbw1JJMUo4viflFWrDSm3vbkMs9u64= Subject key identifier: 71:B3:14:CB:0B:08:7A:D6:B9:11:C2:3F:64:B8:FD:3F:72:31:01:EE Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 41A368DBB9CBB54DF7B5AC18B30F8255EC2DD848 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:18:13 +0000 ROA not before: Thu 02 May 2024 04:13:13 +0000 ROA not after: Thu 01 May 2025 04:18:13 +0000 asID: 38785 IP address blocks: 121.101.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a3:68:db:b9:cb:b5:4d:f7:b5:ac:18:b3:0f:82:55:ec:2d:d8:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:13:13 2024 GMT Not After : May 1 04:18:13 2025 GMT Subject: CN=71B314CB0B087AD6B911C23F64B8FD3F723101EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:84:73:b6:83:df:0c:d0:17:4c:b0:39:25:74: 9a:11:48:87:ad:7c:c9:95:70:13:de:18:27:5f:22: 23:b3:80:68:10:f4:20:7d:95:1a:4f:e0:8d:c3:53: 43:2d:a1:89:01:59:41:05:eb:f5:65:e1:7b:69:db: 8f:2e:90:11:19:66:5a:04:ae:d1:3d:5b:94:de:21: bf:3d:b4:68:5a:1f:eb:33:6b:ce:98:e1:e0:cb:94: 94:1f:0e:54:da:1d:6a:7e:f7:3f:b8:0c:94:34:e7: 12:43:6e:64:72:eb:42:a4:4f:6f:bf:ac:b7:4d:9d: 36:dd:a4:67:b1:9d:3e:e7:a3:3b:fa:c7:39:0f:1b: a2:8e:d8:dc:5f:65:0a:05:be:2a:04:b8:30:f6:12: cb:e2:ed:4e:04:f2:bd:5b:94:65:ed:eb:36:58:df: 15:eb:4c:6b:ed:e0:10:2f:ff:38:e1:7e:bb:f6:6a: d5:d3:11:91:c1:f0:d9:5d:78:ef:72:b8:65:f9:f2: 68:a7:ef:99:5f:a8:fc:0a:8a:a6:25:f3:4c:48:86: 61:c0:ea:3f:7b:7f:df:d3:45:49:d0:98:f3:e5:84: 5a:b1:1c:3b:52:91:ac:1a:9f:86:35:61:f7:1a:20: ce:e6:b2:16:f9:63:95:7d:bf:49:e3:7e:92:d7:d7: 63:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B3:14:CB:0B:08:7A:D6:B9:11:C2:3F:64:B8:FD:3F:72:31:01:EE X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.189.0/24 Signature Algorithm: sha256WithRSAEncryption ba:6f:f0:60:3b:fb:a5:09:23:c7:67:87:bd:e5:16:9f:ce:4c: 44:63:bb:83:be:bc:87:05:c2:63:98:2c:d8:90:87:55:ff:9d: 5f:4c:7b:88:55:0a:11:67:67:fc:10:9f:1f:be:ce:e9:bc:a8: 94:41:31:b1:d2:39:9a:cb:a7:ee:b1:3d:05:0e:7c:58:36:15: 24:74:6a:42:c3:83:83:a4:72:7d:3b:7d:5a:5c:d9:5a:8e:86: 53:fa:31:7b:8a:91:58:66:2d:b3:96:83:18:0d:88:8f:32:27: 55:f7:81:cd:83:e1:18:ab:72:22:9f:41:4a:df:38:a7:ff:5d: 3f:62:35:38:15:d6:a9:90:d0:29:29:6d:43:64:4c:a5:da:8a: ed:26:4c:ad:b5:b3:f3:c3:87:9d:84:5a:86:4d:9c:ac:72:d4: 87:cd:ba:5e:60:78:67:02:8e:89:3e:84:69:56:0e:0d:0a:97: 18:63:6d:d1:ce:0b:94:2c:96:d3:f8:5f:2f:a8:50:92:b1:6d: b9:9f:f4:e6:76:fd:ca:08:ea:71:ea:98:61:7e:85:a4:e2:7e: 75:a5:ce:e8:a2:f3:48:f3:f4:7f:de:13:9b:ec:dd:9f:ee:95: 3c:4f:d9:ac:e8:3d:6f:7d:0d:04:ab:70:62:81:4b:d8:4f:f9: 34:0b:29:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQaNo27nLtU33tawYsw+CVewt2EgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEzMTNaFw0yNTA1MDEwNDE4MTNaMDMxMTAvBgNV BAMTKDcxQjMxNENCMEIwODdBRDZCOTExQzIzRjY0QjhGRDNGNzIzMTAxRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGhHO2g98M0BdMsDkldJoRSIet fMmVcBPeGCdfIiOzgGgQ9CB9lRpP4I3DU0MtoYkBWUEF6/Vl4Xtp248ukBEZZloE rtE9W5TeIb89tGhaH+sza86Y4eDLlJQfDlTaHWp+9z+4DJQ05xJDbmRy60KkT2+/ rLdNnTbdpGexnT7nozv6xzkPG6KO2NxfZQoFvioEuDD2Esvi7U4E8r1blGXt6zZY 3xXrTGvt4BAv/zjhfrv2atXTEZHB8NldeO9yuGX58min75lfqPwKiqYl80xIhmHA 6j97f9/TRUnQmPPlhFqxHDtSkawan4Y1YfcaIM7mshb5Y5V9v0njfpLX12PLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcbMUywsIeta5EcI/ZLj9P3IxAe4wHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW9MA0GCSqG SIb3DQEBCwUAA4IBAQC6b/BgO/ulCSPHZ4e95RafzkxEY7uDvryHBcJjmCzYkIdV /51fTHuIVQoRZ2f8EJ8fvs7pvKiUQTGx0jmay6fusT0FDnxYNhUkdGpCw4ODpHJ9 O31aXNlajoZT+jF7ipFYZi2zloMYDYiPMidV94HNg+EYq3Iin0FK3zin/10/YjU4 FdapkNApKW1DZEyl2ortJkyttbPzw4edhFqGTZysctSHzbpeYHhnAo6JPoRpVg4N CpcYY23RzguULJbT+F8vqFCSsW25n/Tmdv3KCOpx6phhfoWk4n51pc7oovNI8/R/ 3hOb7N2f7pU8T9ms6D1vfQ0Eq3BigUvYT/k0CykD -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org