$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: EmNpzz7R2+m2IErhMcnSBenoeegQcKP/UugF8erJR24= Subject key identifier: 42:05:52:AD:E4:99:69:65:45:3B:DF:72:A5:77:CA:F5:F7:9F:21:D3 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 61920840B6A0E1EDCCA12E041A7C2CA4F117831E Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa Signing time: Mon 31 Jul 2023 00:05:28 +0000 ROA not before: Mon 31 Jul 2023 00:00:28 +0000 ROA not after: Mon 29 Jul 2024 00:05:28 +0000 asID: 131745 IP address blocks: 210.247.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:92:08:40:b6:a0:e1:ed:cc:a1:2e:04:1a:7c:2c:a4:f1:17:83:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 31 00:00:28 2023 GMT Not After : Jul 29 00:05:28 2024 GMT Subject: CN=420552ADE4996965453BDF72A577CAF5F79F21D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:04:01:36:3d:25:62:72:b5:18:e2:11:e9:61: ac:10:89:d7:8d:2f:ca:00:27:63:e3:f7:a7:10:ca: 77:cf:2a:19:fe:45:32:7d:64:3a:7e:ca:c1:89:e4: b0:7e:af:26:fb:e9:7a:27:54:38:fb:f5:e2:2b:95: cb:9b:81:9e:36:f2:98:24:cd:54:80:db:14:b8:17: b3:f9:fa:3f:4e:ba:08:8d:ea:f0:79:83:b1:53:4e: c9:7c:7f:36:8a:95:77:a1:4f:f4:f6:fc:22:47:6e: 75:52:82:ac:4d:04:92:e0:30:48:14:ce:dd:fe:b9: 91:b2:cd:86:55:b4:5c:db:92:00:90:9d:b4:4b:3e: 4a:0a:15:bd:a9:77:04:c4:62:17:b8:88:dc:92:5a: 81:d3:bd:6b:ea:41:7e:a2:22:ec:06:4b:0b:9c:70: 46:f5:42:b7:7f:bc:cd:4e:28:7b:31:a9:43:5f:c2: f9:ee:9a:b8:3a:da:f8:04:ab:bf:af:7d:3a:25:df: d6:66:02:f0:bf:b0:92:64:a2:65:66:12:63:0a:23: 72:67:f8:40:ba:4a:a7:56:6c:e8:89:ee:6c:7a:4c: 0a:61:65:4f:02:61:e7:ae:b8:25:77:02:d6:3a:30: 52:7d:06:eb:b1:8d:05:ec:97:95:74:1b:06:4a:da: ad:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:05:52:AD:E4:99:69:65:45:3B:DF:72:A5:77:CA:F5:F7:9F:21:D3 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.240.0/24 Signature Algorithm: sha256WithRSAEncryption b8:20:5c:05:cd:12:85:b9:37:70:9a:85:7c:44:5e:5a:b9:88: d8:18:7e:b0:46:6c:86:59:67:6b:36:6f:29:fb:54:ec:23:84: 33:a5:41:1f:7a:a1:ae:e7:61:74:76:38:e3:e3:36:37:75:3e: ab:b5:a2:b9:6a:8b:e8:f5:4a:2b:41:22:dc:33:55:a9:88:d1: 2a:39:c3:c6:ba:d4:8c:bc:ad:d1:b9:2b:5e:d7:e9:1e:2a:f0: 0e:6e:12:dc:5d:d2:3e:94:a8:58:0a:0a:05:19:e3:75:82:35: 53:57:35:02:98:3a:fa:3a:dc:bd:b5:a6:38:eb:6b:18:dc:60: 38:d2:a8:f2:b0:1b:02:11:b0:65:c9:ba:2a:c7:c1:be:d1:37: e1:15:ac:c9:e7:b4:c5:41:e8:4e:49:95:d4:98:ed:c2:21:dc: 55:f5:60:fa:99:3c:70:22:ba:4e:e2:4f:3b:8d:44:83:3a:ad: 02:77:69:e8:c8:88:1b:d1:fe:4b:39:2d:6c:94:7c:68:31:a7: 37:14:f9:db:06:ea:a7:fe:77:ea:07:25:e6:4a:78:4c:4d:f6: 11:75:27:09:fa:4b:7a:d9:88:fe:c7:25:8e:77:a5:7e:ce:43: 6b:80:0f:6c:60:38:18:55:56:4a:11:70:01:e2:8d:14:32:e0: 17:ad:13:23 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYZIIQLag4e3MoS4EGnwspPEXgx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzA3MzEwMDAwMjhaFw0yNDA3MjkwMDA1MjhaMDMxMTAvBgNV BAMTKDQyMDU1MkFERTQ5OTY5NjU0NTNCREY3MkE1NzdDQUY1Rjc5RjIxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMBAE2PSVicrUY4hHpYawQideN L8oAJ2Pj96cQynfPKhn+RTJ9ZDp+ysGJ5LB+ryb76XonVDj79eIrlcubgZ428pgk zVSA2xS4F7P5+j9OugiN6vB5g7FTTsl8fzaKlXehT/T2/CJHbnVSgqxNBJLgMEgU zt3+uZGyzYZVtFzbkgCQnbRLPkoKFb2pdwTEYhe4iNySWoHTvWvqQX6iIuwGSwuc cEb1Qrd/vM1OKHsxqUNfwvnumrg62vgEq7+vfTol39ZmAvC/sJJkomVmEmMKI3Jn +EC6SqdWbOiJ7mx6TAphZU8CYeeuuCV3AtY6MFJ9BuuxjQXsl5V0GwZK2q0/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQgVSreSZaWVFO99ypXfK9fefIdMwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/AwDQYJ KoZIhvcNAQELBQADggEBALggXAXNEoW5N3CahXxEXlq5iNgYfrBGbIZZZ2s2byn7 VOwjhDOlQR96oa7nYXR2OOPjNjd1Pqu1orlqi+j1SitBItwzVamI0So5w8a61Iy8 rdG5K17X6R4q8A5uEtxd0j6UqFgKCgUZ43WCNVNXNQKYOvo63L21pjjraxjcYDjS qPKwGwIRsGXJuirHwb7RN+EVrMnntMVB6E5JldSY7cIh3FX1YPqZPHAiuk7iTzuN RIM6rQJ3aejIiBvR/ks5LWyUfGgxpzcU+dsG6qf+d+oHJeZKeExN9hF1Jwn6S3rZ iP7HJY53pX7OQ2uAD2xgOBhVVkoRcAHijRQy4BetEyM= -----END CERTIFICATE-----Generated at Thu Apr 25 06:16:25 2024 by rpki-client on console-ams.rpki-client.org