$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234332e302f32342d3234203d3e20313430343035.roa File: 3231302e3234372e3234332e302f32342d3234203d3e20313430343035.roa (raw, json) Hash identifier: PY7JTUxdVIRBYDI455xMELX4+DiF3I+THJrJk8m4rQk= Subject key identifier: 86:4C:A2:57:68:4D:50:76:F8:DB:77:B6:35:8D:8E:83:F6:66:28:D8 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 281A6B4A98606BD7D07E7E9A29A0685E3A133F2F Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234332e302f32342d3234203d3e20313430343035.roa Signing time: Mon 31 Jul 2023 00:05:28 +0000 ROA not before: Mon 31 Jul 2023 00:00:28 +0000 ROA not after: Mon 29 Jul 2024 00:05:28 +0000 asID: 140405 IP address blocks: 210.247.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 15:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1a:6b:4a:98:60:6b:d7:d0:7e:7e:9a:29:a0:68:5e:3a:13:3f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 31 00:00:28 2023 GMT Not After : Jul 29 00:05:28 2024 GMT Subject: CN=864CA257684D5076F8DB77B6358D8E83F66628D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:80:df:0a:1c:e3:2a:10:7c:76:08:99:81:e5: 9a:dc:ce:82:56:b2:83:87:f3:d4:cb:dd:95:c5:ac: f7:cd:90:fc:5c:d9:a8:eb:04:45:62:77:4b:32:37: 68:c3:39:99:bc:f5:5d:d9:8f:3c:8d:c4:58:97:45: a3:ba:8d:38:a7:28:88:46:c3:0a:6b:3d:c0:d2:4d: 28:58:33:ed:96:00:73:04:84:a2:44:e6:6d:1b:ce: cf:97:cc:35:53:df:7c:8f:1b:b6:29:d1:5f:f2:3c: 59:36:4b:17:b8:cb:3b:69:28:57:89:b7:44:fb:c5: a3:76:69:30:b6:a9:59:e4:5b:59:8f:e2:ab:bc:b6: b7:5b:de:69:60:db:a4:e3:0f:74:c0:20:e5:fa:7d: f6:3d:22:4e:af:e5:0e:cd:e8:4f:4f:37:4f:ca:05: 83:d2:27:bd:5d:5a:9f:8b:4f:a3:5a:ba:91:4d:99: 3c:f1:53:f5:38:8e:53:b9:18:34:0e:f1:2d:b5:99: c7:e6:fd:31:de:c1:bf:a5:f3:d4:e9:3c:f4:af:f7: c9:f3:4a:84:a9:cf:f0:5a:59:2d:99:0c:b9:e0:20: 49:a7:db:40:f0:b2:67:74:33:9d:e5:9c:37:ab:68: d0:91:5d:d9:18:37:7a:f2:e4:4a:5f:31:62:98:15: 3b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4C:A2:57:68:4D:50:76:F8:DB:77:B6:35:8D:8E:83:F6:66:28:D8 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234332e302f32342d3234203d3e20313430343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.243.0/24 Signature Algorithm: sha256WithRSAEncryption a4:6c:9e:2f:a0:0f:3e:a0:f6:49:0f:d4:fb:3f:9d:88:ab:19: a3:7b:da:d5:4c:07:d5:bb:75:87:5b:ec:98:da:77:d5:6d:64: 57:a9:ec:44:d4:dc:6a:a5:cb:41:90:7f:08:dc:a4:42:cc:4c: 19:c6:3c:6d:c2:c5:2f:cc:dd:66:6c:0b:3c:37:c4:d2:63:4d: da:fe:a0:39:26:fb:a9:d3:6c:e7:bd:e5:cc:6c:cd:2a:9d:54: 3c:d3:75:59:d4:61:50:41:b3:b9:fa:81:9e:89:12:a7:3e:61: 5f:36:7e:bc:bf:1e:cf:64:85:44:e2:c7:0d:37:ae:05:a1:fc: b3:d2:d4:85:4f:d1:0e:fa:55:d8:3d:42:2c:ef:d5:00:01:af: 13:27:e1:7a:d2:f4:d7:43:08:4a:2c:92:62:48:7c:bc:94:a2: a8:2c:07:a8:d8:ec:2e:d7:fa:68:c3:66:91:ae:4e:cc:1e:44: dc:5c:ae:6f:a7:6d:4e:67:5e:d1:a6:07:02:9e:0c:68:3f:88: 57:ff:dd:6d:16:a2:87:d1:c7:d7:92:44:c5:e5:a5:b8:92:1c: a4:42:3e:9e:94:76:df:f7:d1:0a:bf:77:f7:08:77:c6:64:23: a8:ce:3d:1c:cb:22:83:cd:7f:ce:a1:80:28:a4:ba:76:07:49: 93:2a:d2:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKBprSphga9fQfn6aKaBoXjoTPy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzA3MzEwMDAwMjhaFw0yNDA3MjkwMDA1MjhaMDMxMTAvBgNV BAMTKDg2NENBMjU3Njg0RDUwNzZGOERCNzdCNjM1OEQ4RTgzRjY2NjI4RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDgN8KHOMqEHx2CJmB5ZrczoJW soOH89TL3ZXFrPfNkPxc2ajrBEVid0syN2jDOZm89V3ZjzyNxFiXRaO6jTinKIhG wwprPcDSTShYM+2WAHMEhKJE5m0bzs+XzDVT33yPG7Yp0V/yPFk2Sxe4yztpKFeJ t0T7xaN2aTC2qVnkW1mP4qu8trdb3mlg26TjD3TAIOX6ffY9Ik6v5Q7N6E9PN0/K BYPSJ71dWp+LT6NaupFNmTzxU/U4jlO5GDQO8S21mcfm/THewb+l89TpPPSv98nz SoSpz/BaWS2ZDLngIEmn20Dwsmd0M53lnDeraNCRXdkYN3ry5EpfMWKYFTvnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhkyiV2hNUHb423e2NY2Og/ZmKNgwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/MwDQYJ KoZIhvcNAQELBQADggEBAKRsni+gDz6g9kkP1Ps/nYirGaN72tVMB9W7dYdb7Jja d9VtZFep7ETU3Gqly0GQfwjcpELMTBnGPG3CxS/M3WZsCzw3xNJjTdr+oDkm+6nT bOe95cxszSqdVDzTdVnUYVBBs7n6gZ6JEqc+YV82fry/Hs9khUTixw03rgWh/LPS 1IVP0Q76Vdg9Qizv1QABrxMn4XrS9NdDCEoskmJIfLyUoqgsB6jY7C7X+mjDZpGu TsweRNxcrm+nbU5nXtGmBwKeDGg/iFf/3W0WoofRx9eSRMXlpbiSHKRCPp6Udt/3 0Qq/d/cId8ZkI6jOPRzLIoPNf86hgCikunYHSZMq0oQ= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:47 2024 by rpki-client on console-fra.rpki-client.org