$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234322e302f32342d3234203d3e20313430343035.roa File: 3231302e3234372e3234322e302f32342d3234203d3e20313430343035.roa (raw, json) Hash identifier: iwHOOcZCf9PniJG5FNPQXYypCkz+Sc2M+pZ4oDnk2sQ= Subject key identifier: BF:AB:6C:07:AF:9A:5F:A1:3C:54:35:5B:70:F8:3B:80:5B:36:26:18 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 5E5B75A1B756515817A1F3072D7927AD449B138B Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234322e302f32342d3234203d3e20313430343035.roa Signing time: Tue 14 Nov 2023 02:00:00 +0000 ROA not before: Tue 14 Nov 2023 01:55:00 +0000 ROA not after: Tue 12 Nov 2024 02:00:00 +0000 asID: 140405 IP address blocks: 210.247.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 16:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5b:75:a1:b7:56:51:58:17:a1:f3:07:2d:79:27:ad:44:9b:13:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Nov 14 01:55:00 2023 GMT Not After : Nov 12 02:00:00 2024 GMT Subject: CN=BFAB6C07AF9A5FA13C54355B70F83B805B362618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:e6:80:19:07:c0:76:a4:ef:74:04:26:83: e8:0b:fb:bc:de:f0:a6:27:cc:85:c9:03:d1:9a:24: 8c:8c:fb:ba:71:a0:25:00:bc:55:e9:2c:68:9c:33: f0:1a:cf:02:6e:73:4c:4c:80:24:ce:bd:db:9e:64: 99:07:d3:fb:eb:49:d3:6f:4a:ce:87:33:fb:80:be: f3:b9:cc:98:eb:c1:ae:86:09:94:2a:21:03:8d:19: d1:31:53:89:66:c4:42:d9:f1:fa:6f:d0:30:a0:94: 83:8a:44:5c:58:4d:eb:6d:85:f9:69:1e:f1:43:48: 04:a2:a2:0e:c5:55:19:80:1e:30:72:b2:52:81:ad: 87:b4:5a:6f:f2:c2:4b:9d:4a:ff:c9:db:0b:ef:c2: 7c:14:58:cc:19:f9:f3:e3:bf:9e:8a:4d:19:9b:84: 10:b3:11:b1:74:d7:3b:6b:4d:1f:9f:f3:03:67:db: 3b:0e:07:be:fb:69:14:bf:3b:a3:f5:32:e1:ce:d6: b0:26:7e:7c:34:dc:37:6e:08:15:5b:ef:e5:4f:2c: 86:19:cf:10:ba:71:ff:27:c7:59:85:ae:e4:b5:76: e3:32:88:26:e3:bd:02:5d:13:3f:77:c4:e2:35:5c: 64:ca:1d:e4:0f:2e:74:5c:ea:d8:6e:4e:ed:92:b4: 3f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:AB:6C:07:AF:9A:5F:A1:3C:54:35:5B:70:F8:3B:80:5B:36:26:18 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234322e302f32342d3234203d3e20313430343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.242.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:49:90:4d:95:e8:d3:c2:0c:2d:90:b6:3c:62:90:89:d3:7f: 82:08:56:0a:53:53:d3:e3:84:39:07:94:ab:93:47:66:d3:7d: d8:88:d9:c5:f3:f4:8d:54:f2:ad:18:75:87:19:0a:54:fb:2c: a8:8c:58:c8:08:1b:56:d3:89:e6:cf:73:18:77:31:58:32:b3: 11:b7:9a:3e:b9:ee:2b:4f:a0:d9:31:f5:9d:7c:5f:82:b8:19: df:b7:d5:bd:51:69:2a:b1:95:d3:88:0a:e7:65:39:c6:8a:71: 70:6a:18:65:c6:78:50:c2:b0:11:70:2f:e9:e4:1c:93:68:6f: 5e:5e:13:bf:d3:cd:b4:e0:48:a1:e6:a2:04:e3:6a:44:8d:30: 74:0d:d5:3e:68:8a:78:c0:c6:2e:2c:39:20:d7:94:33:24:80: 49:82:c4:7a:5d:ed:c4:f4:1e:9c:1c:54:88:9f:d7:65:16:af: 47:77:26:40:fd:22:37:b6:28:fa:37:ae:50:e6:c7:5d:25:43: d5:bd:dd:67:b6:78:e3:c5:ed:46:0c:87:9f:3e:2a:92:5d:20: 75:eb:a9:3a:cc:85:14:06:28:a6:68:0f:0d:6c:85:10:75:06: 51:00:51:95:cc:e2:aa:15:dd:33:ed:ab:dc:9f:1f:15:e5:5c: c0:ed:28:e7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXlt1obdWUVgXofMHLXknrUSbE4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzExMTQwMTU1MDBaFw0yNDExMTIwMjAwMDBaMDMxMTAvBgNV BAMTKEJGQUI2QzA3QUY5QTVGQTEzQzU0MzU1QjcwRjgzQjgwNUIzNjI2MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1SOaAGQfAdqTvdAQmg+gL+7ze 8KYnzIXJA9GaJIyM+7pxoCUAvFXpLGicM/AazwJuc0xMgCTOvdueZJkH0/vrSdNv Ss6HM/uAvvO5zJjrwa6GCZQqIQONGdExU4lmxELZ8fpv0DCglIOKRFxYTetthflp HvFDSASiog7FVRmAHjByslKBrYe0Wm/ywkudSv/J2wvvwnwUWMwZ+fPjv56KTRmb hBCzEbF01ztrTR+f8wNn2zsOB777aRS/O6P1MuHO1rAmfnw03DduCBVb7+VPLIYZ zxC6cf8nx1mFruS1duMyiCbjvQJdEz93xOI1XGTKHeQPLnRc6thuTu2StD+3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv6tsB6+aX6E8VDVbcPg7gFs2JhgwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/IwDQYJ KoZIhvcNAQELBQADggEBAEpJkE2V6NPCDC2QtjxikInTf4IIVgpTU9PjhDkHlKuT R2bTfdiI2cXz9I1U8q0YdYcZClT7LKiMWMgIG1bTiebPcxh3MVgysxG3mj657itP oNkx9Z18X4K4Gd+31b1RaSqxldOICudlOcaKcXBqGGXGeFDCsBFwL+nkHJNob15e E7/TzbTgSKHmogTjakSNMHQN1T5oinjAxi4sOSDXlDMkgEmCxHpd7cT0HpwcVIif 12UWr0d3JkD9Ije2KPo3rlDmx10lQ9W93We2eOPF7UYMh58+KpJdIHXrqTrMhRQG KKZoDw1shRB1BlEAUZXM4qoV3TPtq9yfHxXlXMDtKOc= -----END CERTIFICATE-----Generated at Fri May 17 16:04:26 2024 by rpki-client on console-fra.rpki-client.org