$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: t0uFp006ulY6TxsI49FKdRXKoSQqAMlzQk0oK9ftj9k= Subject key identifier: 63:7B:97:75:39:66:7A:45:A8:B7:49:23:4B:FF:18:21:35:AF:43:24 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 346AD5BB3A8F8716675C607DE495104C853D7E3A Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa Signing time: Mon 31 Jul 2023 00:05:28 +0000 ROA not before: Mon 31 Jul 2023 00:00:28 +0000 ROA not after: Mon 29 Jul 2024 00:05:28 +0000 asID: 131745 IP address blocks: 210.247.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 06:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6a:d5:bb:3a:8f:87:16:67:5c:60:7d:e4:95:10:4c:85:3d:7e:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 31 00:00:28 2023 GMT Not After : Jul 29 00:05:28 2024 GMT Subject: CN=637B977539667A45A8B749234BFF182135AF4324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:80:3f:9f:17:06:27:90:16:0e:16:1d:24:c5: 9c:fa:95:ad:32:69:a0:d6:70:28:a7:de:df:21:93: be:3f:11:a8:0a:19:47:5e:bf:c9:2f:41:b7:82:e9: 01:e6:ce:a6:34:fe:a8:e8:cd:e1:eb:00:eb:11:b7: 73:04:e6:00:91:f7:f1:be:a0:d0:d1:9b:84:d4:01: af:4a:55:a3:d1:92:39:d0:e7:6c:77:d4:e7:47:93: 92:b5:ae:b6:f8:e1:d9:7b:29:e1:8b:38:20:6e:2c: cb:d9:cb:66:b3:22:46:8f:d6:58:35:f9:30:c5:f0: 6b:a1:63:54:eb:02:a2:4b:e2:a2:44:77:db:71:37: b3:6c:58:16:1a:c9:8a:3f:f1:85:26:a2:c6:09:19: f7:f4:7e:5a:1b:ee:43:8c:51:6c:69:52:d1:31:ac: b1:6a:85:c0:2e:86:39:a6:46:9c:f2:e9:02:79:f5: b5:3d:5b:23:a3:63:cf:eb:7e:62:3f:af:7d:de:1a: ad:28:40:2f:92:5c:b2:c6:27:88:cc:f7:6b:d7:8a: 52:3f:13:f5:07:c7:ed:e1:3b:8a:d6:02:01:83:83: 9a:3e:4a:3a:06:75:08:97:34:ec:95:f0:d7:e8:61: 6a:7e:92:ed:97:b7:4d:dc:93:1b:ee:61:cf:1d:9e: 78:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7B:97:75:39:66:7A:45:A8:B7:49:23:4B:FF:18:21:35:AF:43:24 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.245.0/24 Signature Algorithm: sha256WithRSAEncryption 64:3c:f2:3a:52:8a:ea:c4:e0:a0:7a:29:01:25:db:bd:46:98: fa:f0:92:53:84:ec:f7:3b:74:8b:6d:f9:6b:38:74:e4:f8:62: c1:fa:f0:f1:52:c5:3d:1f:ae:c4:5e:9c:cc:82:12:fc:a4:8c: a0:50:ad:f7:54:d0:2b:35:05:7e:24:2a:25:c7:a9:5e:fb:eb: 77:03:f8:32:bf:18:e3:3a:24:74:a8:21:8b:a5:03:f5:55:b7: da:b9:d0:dd:53:cd:b9:13:42:6a:d9:09:e0:2d:3e:f0:e4:36: 26:96:f7:2d:01:df:d2:5d:91:f5:17:17:c3:1c:1c:de:d9:7d: 06:0b:98:1b:98:de:bc:c2:52:8d:d4:bc:50:63:14:ab:2d:52: 0b:db:e8:18:d4:b3:18:6c:a9:8c:dd:b7:e4:cb:72:27:73:24: d2:9f:e8:9f:6d:aa:e2:3b:ff:11:ff:7b:6b:0e:d7:59:7b:73: 9d:cb:e7:83:80:c7:9d:da:b7:15:e0:65:14:bf:69:84:15:2b: bc:01:7e:dd:4a:8d:6f:0c:be:1e:0b:54:93:ff:80:39:c8:a5: 9f:ac:76:ab:2a:69:55:a2:61:5e:c7:15:38:59:94:52:38:18: 24:7f:97:3a:55:02:be:53:f9:bd:44:6b:d4:36:76:6c:e0:a3: aa:b9:95:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNGrVuzqPhxZnXGB95JUQTIU9fjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzA3MzEwMDAwMjhaFw0yNDA3MjkwMDA1MjhaMDMxMTAvBgNV BAMTKDYzN0I5Nzc1Mzk2NjdBNDVBOEI3NDkyMzRCRkYxODIxMzVBRjQzMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlgD+fFwYnkBYOFh0kxZz6la0y aaDWcCin3t8hk74/EagKGUdev8kvQbeC6QHmzqY0/qjozeHrAOsRt3ME5gCR9/G+ oNDRm4TUAa9KVaPRkjnQ52x31OdHk5K1rrb44dl7KeGLOCBuLMvZy2azIkaP1lg1 +TDF8GuhY1TrAqJL4qJEd9txN7NsWBYayYo/8YUmosYJGff0flob7kOMUWxpUtEx rLFqhcAuhjmmRpzy6QJ59bU9WyOjY8/rfmI/r33eGq0oQC+SXLLGJ4jM92vXilI/ E/UHx+3hO4rWAgGDg5o+SjoGdQiXNOyV8NfoYWp+ku2Xt03ckxvuYc8dnngnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUY3uXdTlmekWot0kjS/8YITWvQyQwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/UwDQYJ KoZIhvcNAQELBQADggEBAGQ88jpSiurE4KB6KQEl271GmPrwklOE7Pc7dItt+Ws4 dOT4YsH68PFSxT0frsRenMyCEvykjKBQrfdU0Cs1BX4kKiXHqV7763cD+DK/GOM6 JHSoIYulA/VVt9q50N1TzbkTQmrZCeAtPvDkNiaW9y0B39JdkfUXF8McHN7ZfQYL mBuY3rzCUo3UvFBjFKstUgvb6BjUsxhsqYzdt+TLcidzJNKf6J9tquI7/xH/e2sO 11l7c53L54OAx53atxXgZRS/aYQVK7wBft1KjW8Mvh4LVJP/gDnIpZ+sdqsqaVWi YV7HFThZlFI4GCR/lzpVAr5T+b1Ea9Q2dmzgo6q5lRk= -----END CERTIFICATE-----Generated at Fri Apr 19 02:41:43 2024 by rpki-client on console-fra.rpki-client.org