$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa File: 3132312e35322e3133362e302f32312d3231203d3e203535363939.roa (raw, json) Hash identifier: y1d0G8T+Y3oi/U7zYsXxsMEdHM9mWNptYCytl+n7OUQ= Subject key identifier: 2C:0A:00:F6:98:49:DD:64:16:AA:DA:78:9D:C9:04:27:B2:1D:8F:B1 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 230005CFD4BF703DF2A881979F6C9BE5A0973522 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:04 +0000 ROA not before: Mon 01 Jul 2024 00:59:04 +0000 ROA not after: Mon 30 Jun 2025 01:04:04 +0000 asID: 55699 IP address blocks: 121.52.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:00:05:cf:d4:bf:70:3d:f2:a8:81:97:9f:6c:9b:e5:a0:97:35:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:04 2024 GMT Not After : Jun 30 01:04:04 2025 GMT Subject: CN=2C0A00F69849DD6416AADA789DC90427B21D8FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f5:cd:9f:08:c7:14:6b:a0:f4:c7:31:28:e6: f8:bf:b9:58:a6:c4:d0:02:5c:d7:41:d4:ad:7a:ef: 39:20:68:2c:95:8a:92:35:70:d4:ef:fc:ca:4a:c1: fd:01:4a:83:9b:28:f2:4a:04:b8:63:d0:a7:41:ab: b2:43:4f:6f:ef:57:7a:c3:c2:85:6b:ef:11:98:ce: e4:bf:90:18:cc:ea:71:6e:a5:09:9c:ae:fa:76:eb: b9:a6:4d:94:25:75:23:7f:37:f2:b3:c5:a6:10:8c: 93:90:8f:6a:6c:14:0e:82:e4:9e:3e:90:71:64:4c: 46:7e:71:33:f6:5c:2f:57:16:5a:be:1f:07:96:d1: 71:58:12:78:fe:8b:be:42:40:29:39:ab:18:77:14: 07:eb:52:82:14:55:bf:25:c5:46:29:08:c1:4f:8b: a5:8f:30:87:66:a5:78:9b:68:12:d2:9d:87:0b:18: ad:6a:5e:e7:7c:22:4b:e5:cc:a6:b0:5e:15:ed:a7: d8:ba:bb:60:d6:6b:9c:58:66:c8:00:b6:75:b8:27: b2:68:62:9e:76:46:21:ca:a3:69:04:c2:5e:1c:7c: fb:e3:ea:56:29:eb:fa:df:30:c7:3c:51:67:b1:07: 86:a7:4d:4e:c3:b7:8a:c7:f5:d1:b6:da:b2:98:30: 37:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0A:00:F6:98:49:DD:64:16:AA:DA:78:9D:C9:04:27:B2:1D:8F:B1 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.52.136.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:43:1d:fe:3d:12:ce:0a:5d:ad:60:61:5c:f5:0d:64:f0:80: 52:5c:23:22:9a:b5:b3:64:54:07:e3:d5:a6:e9:bb:f8:27:91: bb:1c:e5:1e:dc:46:49:ed:59:a6:2e:99:44:b2:54:a4:18:f0: c6:10:e5:85:9f:28:88:c4:e3:d3:67:91:c4:92:34:a9:52:97: a2:03:6c:1d:3d:9d:21:56:03:6e:83:42:ad:2c:d6:62:53:1e: 6b:75:f5:03:42:6f:d2:01:e7:f4:58:73:c4:4c:76:29:81:fc: 2a:f2:82:c7:40:f6:cf:fa:ae:6e:90:b8:95:a5:7b:4f:de:34: 5d:a3:5b:b4:b4:9d:5e:dc:ba:db:2d:69:ba:0d:0b:29:2f:a8: 1c:68:15:3e:93:75:6d:7e:70:5f:ea:5d:34:62:86:a2:10:3e: a2:ce:12:78:22:a6:fd:78:39:20:0a:16:8d:9e:a8:6b:8f:cd: 61:b5:a0:5f:db:d9:e6:f9:ef:7e:5f:b4:1e:1a:19:4e:23:74: 58:ad:50:e8:dd:f2:11:63:57:eb:9d:ea:8e:f7:07:eb:cd:35: 5c:ea:35:04:2b:20:82:ac:fe:f7:ef:8f:d1:5a:07:08:20:b4: 8f:c3:a0:25:f0:29:10:90:46:56:1f:ea:b7:29:8d:fd:c5:23: 18:36:13:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIwAFz9S/cD3yqIGXn2yb5aCXNSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDRaFw0yNTA2MzAwMTA0MDRaMDMxMTAvBgNV BAMTKDJDMEEwMEY2OTg0OURENjQxNkFBREE3ODlEQzkwNDI3QjIxRDhGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ9c2fCMcUa6D0xzEo5vi/uVim xNACXNdB1K167zkgaCyVipI1cNTv/MpKwf0BSoObKPJKBLhj0KdBq7JDT2/vV3rD woVr7xGYzuS/kBjM6nFupQmcrvp267mmTZQldSN/N/KzxaYQjJOQj2psFA6C5J4+ kHFkTEZ+cTP2XC9XFlq+HweW0XFYEnj+i75CQCk5qxh3FAfrUoIUVb8lxUYpCMFP i6WPMIdmpXibaBLSnYcLGK1qXud8IkvlzKawXhXtp9i6u2DWa5xYZsgAtnW4J7Jo Yp52RiHKo2kEwl4cfPvj6lYp6/rfMMc8UWexB4anTU7Dt4rH9dG22rKYMDfJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULAoA9phJ3WQWqtp4nckEJ7Idj7EwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzIzMTJlMzUzMjJlMzEzMzM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3k0iDANBgkqhkiG 9w0BAQsFAAOCAQEAG0Md/j0SzgpdrWBhXPUNZPCAUlwjIpq1s2RUB+PVpum7+CeR uxzlHtxGSe1Zpi6ZRLJUpBjwxhDlhZ8oiMTj02eRxJI0qVKXogNsHT2dIVYDboNC rSzWYlMea3X1A0Jv0gHn9FhzxEx2KYH8KvKCx0D2z/qubpC4laV7T940XaNbtLSd Xty62y1pug0LKS+oHGgVPpN1bX5wX+pdNGKGohA+os4SeCKm/Xg5IAoWjZ6oa4/N YbWgX9vZ5vnvfl+0HhoZTiN0WK1Q6N3yEWNX653qjvcH6801XOo1BCsggqz+9++P 0VoHCCC0j8OgJfApEJBGVh/qtymN/cUjGDYTEg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org