$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: y0Ec6JrQKxzntUk48Us/rCX52IJwb03iB7KaQZ7Fux0= Subject key identifier: 19:07:CE:7F:94:B8:FB:05:40:C0:6D:21:77:99:25:35:57:DF:A3:1B Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 7C170EDEDB6B3796E9C14564B30FD63233E5D8B8 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:18:19 +0000 ROA not before: Thu 02 May 2024 04:13:19 +0000 ROA not after: Thu 01 May 2025 04:18:19 +0000 asID: 38785 IP address blocks: 121.101.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:17:0e:de:db:6b:37:96:e9:c1:45:64:b3:0f:d6:32:33:e5:d8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:13:19 2024 GMT Not After : May 1 04:18:19 2025 GMT Subject: CN=1907CE7F94B8FB0540C06D217799253557DFA31B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bd:53:53:e0:fd:4e:fb:09:f7:dc:15:5e:a0: 54:f5:12:68:1b:3a:be:72:d9:a1:54:ec:e8:99:7e: 00:46:ef:f8:84:b5:a6:8d:b5:2d:5b:b3:7d:0a:b3: ad:7a:ae:4e:55:1e:34:2f:9e:51:b9:04:ee:da:bc: ee:bd:1c:ea:7e:9a:cc:1c:28:a7:69:79:d5:ef:e1: c7:41:3e:c7:e7:4a:61:02:8a:9e:ec:dd:2f:d4:dd: 7a:0c:fd:9a:36:94:96:0f:02:79:bd:53:a9:fa:5f: 13:41:c2:3c:ee:4a:3b:33:0a:3c:e8:e8:05:65:77: 6e:5c:90:e2:2b:e6:ca:de:3d:9c:27:3e:a1:9d:1d: 75:22:f9:c4:77:45:ef:18:7a:5d:20:2d:c6:78:da: cf:76:c9:dd:d7:f6:dc:87:b4:50:29:09:c5:59:56: dc:88:0d:cd:9d:21:14:89:59:a8:09:37:46:b0:53: 5b:ac:ee:0c:33:b2:b6:49:bf:b0:42:39:13:9e:32: 20:fd:57:12:1e:3d:f9:87:f7:1d:d9:25:6a:a5:fb: a4:82:3c:ed:b1:c7:28:fd:2e:c1:85:1e:cd:00:26: 91:df:cc:7d:8a:16:41:8e:85:94:a8:61:2e:ec:43: 8a:82:aa:b0:d6:3e:2a:4f:9b:2d:6d:86:16:2c:4b: 82:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:07:CE:7F:94:B8:FB:05:40:C0:6D:21:77:99:25:35:57:DF:A3:1B X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.190.0/24 Signature Algorithm: sha256WithRSAEncryption 77:19:c3:f9:c4:4b:c3:91:10:a6:b3:79:6c:8a:f0:a2:fa:41: 5b:5b:d1:c8:2e:07:b9:f8:27:2a:a6:df:2b:87:1c:e6:f0:cf: bf:ee:d6:b6:3e:f7:1f:7b:de:02:98:48:cb:b9:f0:42:08:86: 4c:00:c8:9b:a9:bd:4b:b3:6e:69:dd:c4:26:ea:09:40:5e:65: e6:e1:1f:7c:12:fa:06:e7:8e:8e:e4:0f:46:4e:ae:9a:d9:8f: 63:31:d8:f7:87:2b:88:32:f4:05:1c:d5:22:64:a2:cf:d0:d7: d0:36:43:0f:af:a6:28:02:db:a6:72:83:98:07:3f:7b:a3:ec: 50:2a:e9:32:84:ba:ce:20:58:b3:59:99:de:dd:93:c2:a8:f1: 2e:5e:cc:85:cb:a7:1d:97:6c:22:76:e2:88:3b:63:a5:a8:4a: 6e:58:a0:53:93:86:51:44:c3:56:e8:27:a8:e4:18:5f:13:87: 7b:f4:9b:69:1b:fb:2e:8d:1e:3b:57:de:09:af:f6:1a:b4:c2: 9c:45:6c:86:8d:38:ab:c0:34:c2:c0:4d:90:45:9a:fb:04:6c: 43:0f:ee:b6:6d:bb:81:ee:b1:dd:2e:5b:25:ef:73:ab:9f:0f: 0e:bd:5d:1d:44:0a:a7:69:4c:2d:42:04:99:f0:cc:c3:26:ef: 76:26:3b:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfBcO3ttrN5bpwUVksw/WMjPl2LgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEzMTlaFw0yNTA1MDEwNDE4MTlaMDMxMTAvBgNV BAMTKDE5MDdDRTdGOTRCOEZCMDU0MEMwNkQyMTc3OTkyNTM1NTdERkEzMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmvVNT4P1O+wn33BVeoFT1Emgb Or5y2aFU7OiZfgBG7/iEtaaNtS1bs30Ks616rk5VHjQvnlG5BO7avO69HOp+mswc KKdpedXv4cdBPsfnSmECip7s3S/U3XoM/Zo2lJYPAnm9U6n6XxNBwjzuSjszCjzo 6AVld25ckOIr5srePZwnPqGdHXUi+cR3Re8Yel0gLcZ42s92yd3X9tyHtFApCcVZ VtyIDc2dIRSJWagJN0awU1us7gwzsrZJv7BCOROeMiD9VxIePfmH9x3ZJWql+6SC PO2xxyj9LsGFHs0AJpHfzH2KFkGOhZSoYS7sQ4qCqrDWPipPmy1thhYsS4IZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGQfOf5S4+wVAwG0hd5klNVffoxswHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW+MA0GCSqG SIb3DQEBCwUAA4IBAQB3GcP5xEvDkRCms3lsivCi+kFbW9HILge5+Ccqpt8rhxzm 8M+/7ta2Pvcfe94CmEjLufBCCIZMAMibqb1Ls25p3cQm6glAXmXm4R98EvoG546O 5A9GTq6a2Y9jMdj3hyuIMvQFHNUiZKLP0NfQNkMPr6YoAtumcoOYBz97o+xQKuky hLrOIFizWZne3ZPCqPEuXsyFy6cdl2widuKIO2OlqEpuWKBTk4ZRRMNW6Ceo5Bhf E4d79JtpG/sujR47V94Jr/YatMKcRWyGjTirwDTCwE2QRZr7BGxDD+62bbuB7rHd Llsl73Ornw8OvV0dRAqnaUwtQgSZ8MzDJu92Jjsv -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org