$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: NVHsn6xcnGPEYPmwwXLF9Ee2xqv4swX+J8kRowDTzVU= Subject key identifier: BF:22:D2:D8:CF:92:C4:2C:DC:F5:B4:16:55:C6:AB:A2:FE:91:15:67 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 7A8B133DA9649383C769D155B6F743A6531B02CC Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa Signing time: Thu 02 May 2024 04:18:27 +0000 ROA not before: Thu 02 May 2024 04:13:27 +0000 ROA not after: Thu 01 May 2025 04:18:27 +0000 asID: 38785 IP address blocks: 121.101.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:8b:13:3d:a9:64:93:83:c7:69:d1:55:b6:f7:43:a6:53:1b:02:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 2 04:13:27 2024 GMT Not After : May 1 04:18:27 2025 GMT Subject: CN=BF22D2D8CF92C42CDCF5B41655C6ABA2FE911567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:18:01:f6:5d:42:51:25:5d:7a:26:f6:fb:10: bd:07:7b:86:59:c5:4a:87:f2:f1:76:6e:0b:89:b5: 13:24:c7:9a:05:96:e7:13:68:de:0b:2b:5e:51:cf: 28:95:cd:4f:ad:d7:e6:81:a3:8e:c3:61:f3:57:b5: 4d:57:d2:47:71:ff:37:9b:0f:12:2f:06:02:81:3b: d9:92:6a:30:d4:d2:a9:d8:12:50:d5:da:e5:e1:fb: 15:31:1d:0e:63:41:bb:c7:22:3b:17:52:32:51:a6: d5:f7:2a:be:82:92:c8:44:ac:04:18:d1:97:e0:24: 3f:5f:f0:ac:f3:13:f4:84:da:f2:31:68:31:bf:27: f9:4c:39:35:5d:f5:c2:25:d9:2c:e6:9c:6e:2e:c2: 0d:d5:52:1d:78:69:98:ea:ac:37:80:f1:4e:ac:9e: 15:3e:66:86:99:4f:f3:32:35:4a:1a:ba:36:92:07: 33:13:e1:77:14:f7:9d:8e:64:99:2d:b8:61:4a:a5: 9c:c5:81:09:c5:8a:f8:c9:87:91:1b:45:6b:b2:85: db:3a:31:39:8b:7f:f9:fa:4e:89:f8:4e:ae:c4:23: e7:ba:75:7e:fd:15:ea:1f:2f:e2:c0:04:71:bb:e7: df:4e:2b:05:89:92:22:0d:2b:d9:f8:4d:ec:11:a4: 1e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:22:D2:D8:CF:92:C4:2C:DC:F5:B4:16:55:C6:AB:A2:FE:91:15:67 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.191.0/24 Signature Algorithm: sha256WithRSAEncryption c7:38:bd:ac:b2:8a:92:d4:68:00:f8:4f:7d:25:62:53:9a:8f: 0d:0d:cb:1a:bb:b3:6f:98:a7:4f:23:02:97:0b:88:34:34:0e: 90:a2:94:3e:ba:d9:07:c6:4b:60:de:52:05:c4:4d:f0:41:f4: 68:51:2f:61:44:8e:91:2d:37:06:cc:87:8b:54:1c:52:33:0e: 24:ff:dc:d5:f8:5e:47:ea:22:eb:e5:ac:8e:dd:23:eb:1d:3e: ad:96:5e:54:b6:1e:02:67:31:a3:93:2a:33:a3:de:f0:db:b2: 6a:d4:72:82:c9:01:5d:27:7a:3a:42:ea:90:a3:5a:0e:bf:94: 64:fa:26:f0:7b:35:ad:aa:4b:71:30:b4:a3:32:57:cd:ff:8c: 77:26:84:37:8e:3a:18:e9:7b:67:4f:90:69:58:b4:81:23:ed: 87:c7:70:e3:2b:4e:7f:b2:7b:34:08:36:b7:12:95:22:b4:c9: 97:e0:a7:d1:9b:4a:c7:cd:f3:81:12:0a:65:41:da:35:e7:12: 3e:90:0a:13:59:a9:c9:65:e3:25:8e:0f:0c:9f:c6:76:94:af: 2b:d0:a0:20:da:a5:5a:5a:de:e7:16:c6:42:17:07:ef:96:53: 70:41:c0:ff:8a:b8:40:04:01:7f:06:39:3a:98:04:db:bd:98: 1b:83:78:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeosTPalkk4PHadFVtvdDplMbAswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNDA1MDIwNDEzMjdaFw0yNTA1MDEwNDE4MjdaMDMxMTAvBgNV BAMTKEJGMjJEMkQ4Q0Y5MkM0MkNEQ0Y1QjQxNjU1QzZBQkEyRkU5MTE1NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWGAH2XUJRJV16Jvb7EL0He4ZZ xUqH8vF2bguJtRMkx5oFlucTaN4LK15RzyiVzU+t1+aBo47DYfNXtU1X0kdx/zeb DxIvBgKBO9mSajDU0qnYElDV2uXh+xUxHQ5jQbvHIjsXUjJRptX3Kr6CkshErAQY 0ZfgJD9f8KzzE/SE2vIxaDG/J/lMOTVd9cIl2SzmnG4uwg3VUh14aZjqrDeA8U6s nhU+ZoaZT/MyNUoaujaSBzMT4XcU952OZJktuGFKpZzFgQnFivjJh5EbRWuyhds6 MTmLf/n6Ton4Tq7EI+e6dX79FeofL+LABHG7599OKwWJkiINK9n4TewRpB6fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvyLS2M+SxCzc9bQWVcarov6RFWcwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW/MA0GCSqG SIb3DQEBCwUAA4IBAQDHOL2ssoqS1GgA+E99JWJTmo8NDcsau7NvmKdPIwKXC4g0 NA6QopQ+utkHxktg3lIFxE3wQfRoUS9hRI6RLTcGzIeLVBxSMw4k/9zV+F5H6iLr 5ayO3SPrHT6tll5Uth4CZzGjkyozo97w27Jq1HKCyQFdJ3o6QuqQo1oOv5Rk+ibw ezWtqktxMLSjMlfN/4x3JoQ3jjoY6XtnT5BpWLSBI+2Hx3DjK05/sns0CDa3EpUi tMmX4KfRm0rHzfOBEgplQdo15xI+kAoTWanJZeMljg8Mn8Z2lK8r0KAg2qVaWt7n FsZCFwfvllNwQcD/irhABAF/Bjk6mATbvZgbg3iq -----END CERTIFICATE-----Generated at Sat Jun 22 17:13:22 2024 by rpki-client on console-ams.rpki-client.org