$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: ZDC/KQS7Mp6OF2PElsN/aL3hiqj++OoaQZd7aP/5Jio= Subject key identifier: 0E:02:25:9F:4D:A0:BA:73:69:2E:D2:52:E7:2B:F4:AA:A9:4E:E7:4E Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 3BD63500284527E389584A04EDB79F646C7FC3EC Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa Signing time: Mon 31 Jul 2023 00:05:29 +0000 ROA not before: Mon 31 Jul 2023 00:00:29 +0000 ROA not after: Mon 29 Jul 2024 00:05:29 +0000 asID: 131745 IP address blocks: 210.247.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 15:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:d6:35:00:28:45:27:e3:89:58:4a:04:ed:b7:9f:64:6c:7f:c3:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 31 00:00:29 2023 GMT Not After : Jul 29 00:05:29 2024 GMT Subject: CN=0E02259F4DA0BA73692ED252E72BF4AAA94EE74E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:16:4e:3b:c9:85:49:fa:be:88:b9:39:5d:97: 6e:19:86:16:24:3e:fa:95:76:0e:a3:e1:ca:61:49: 3a:36:7a:b4:75:65:b5:28:48:28:dc:3d:90:c3:4d: b1:0e:32:95:46:9c:7c:50:53:8b:f8:f4:b3:ca:68: bf:e9:35:6f:14:80:13:0d:ff:f2:50:3d:60:9a:9d: 09:f1:1f:f6:40:36:09:e1:22:9d:9b:df:43:40:e7: 4d:8b:d2:8c:4d:63:33:55:42:be:bc:8c:0e:02:0d: 18:ff:a3:46:1e:ca:d4:07:2e:8b:2a:91:e7:f1:62: 14:9d:e3:63:c0:e0:70:a7:8f:a0:45:da:69:47:2f: 4f:56:b0:ed:ff:f1:d2:ad:36:a4:b0:7a:82:9e:66: da:a3:f0:e9:66:a3:1f:eb:35:39:13:11:31:92:9d: 39:05:31:f3:9c:32:16:01:33:53:e3:cf:45:78:18: 3a:64:54:eb:4e:9f:8f:97:b7:0e:78:c8:af:7c:c6: 83:bc:32:6d:a8:a6:4d:c5:a2:27:79:b4:6f:15:7d: d6:fe:d8:3a:e3:42:37:dd:7f:e8:88:b3:1d:fa:fb: 23:df:85:49:05:06:be:db:14:f6:dc:50:8a:ae:c1: 59:9d:ca:dc:27:ce:1a:e7:0b:57:8a:e4:db:02:5a: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:02:25:9F:4D:A0:BA:73:69:2E:D2:52:E7:2B:F4:AA:A9:4E:E7:4E X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.250.0/24 Signature Algorithm: sha256WithRSAEncryption 04:5a:0f:aa:a6:b4:59:7e:d1:cd:e4:a0:f6:af:c6:b1:1b:e0: 37:a0:fc:cd:34:fb:da:fe:26:34:e9:b2:6c:5e:af:1e:a3:83: c1:15:f8:be:8d:d0:38:0b:b2:dd:d5:55:4b:f3:a7:48:a1:ff: 13:bc:a6:ce:4a:ad:f9:67:f5:99:37:f0:53:fd:14:c5:ad:d1: de:82:9a:54:4e:b5:f4:99:9b:b3:9b:4a:f2:d7:35:98:ae:14: f6:b0:de:3a:44:f5:7b:0c:11:15:a0:6f:7e:fe:71:a3:60:d0: b7:e1:47:0c:e6:d2:9c:e9:53:e3:50:17:24:22:e5:b8:0c:3a: ea:fe:7c:0f:45:ff:8d:08:0c:88:eb:9c:4e:a3:59:de:ac:dc: 35:14:f3:b2:7b:d9:b9:56:fe:94:fb:c3:61:15:7e:81:bf:6d: 1f:94:b7:3b:d0:d6:7b:5c:6c:ab:a8:49:e9:26:86:3e:a0:c5: 94:ac:93:7d:82:eb:02:4c:f0:43:59:e5:7d:46:15:4a:5b:52: bb:3c:a9:37:71:54:03:fc:44:60:a9:0f:69:dd:bf:27:ab:e9: ff:10:4b:cd:27:d4:e8:f1:51:cb:88:09:ed:8d:32:1d:5e:ab: dd:19:8d:81:4d:bc:6e:26:5c:68:e3:dc:db:2e:9e:42:c3:06: a3:e5:f5:98 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO9Y1AChFJ+OJWEoE7befZGx/w+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzA3MzEwMDAwMjlaFw0yNDA3MjkwMDA1MjlaMDMxMTAvBgNV BAMTKDBFMDIyNTlGNERBMEJBNzM2OTJFRDI1MkU3MkJGNEFBQTk0RUU3NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzFk47yYVJ+r6IuTldl24ZhhYk PvqVdg6j4cphSTo2erR1ZbUoSCjcPZDDTbEOMpVGnHxQU4v49LPKaL/pNW8UgBMN //JQPWCanQnxH/ZANgnhIp2b30NA502L0oxNYzNVQr68jA4CDRj/o0YeytQHLosq kefxYhSd42PA4HCnj6BF2mlHL09WsO3/8dKtNqSweoKeZtqj8Olmox/rNTkTETGS nTkFMfOcMhYBM1Pjz0V4GDpkVOtOn4+Xtw54yK98xoO8Mm2opk3Foid5tG8Vfdb+ 2DrjQjfdf+iIsx36+yPfhUkFBr7bFPbcUIquwVmdytwnzhrnC1eK5NsCWopBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDgIln02gunNpLtJS5yv0qqlO504wHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/owDQYJ KoZIhvcNAQELBQADggEBAARaD6qmtFl+0c3koPavxrEb4Deg/M00+9r+JjTpsmxe rx6jg8EV+L6N0DgLst3VVUvzp0ih/xO8ps5Krfln9Zk38FP9FMWt0d6CmlROtfSZ m7ObSvLXNZiuFPaw3jpE9XsMERWgb37+caNg0LfhRwzm0pzpU+NQFyQi5bgMOur+ fA9F/40IDIjrnE6jWd6s3DUU87J72blW/pT7w2EVfoG/bR+UtzvQ1ntcbKuoSekm hj6gxZSsk32C6wJM8ENZ5X1GFUpbUrs8qTdxVAP8RGCpD2ndvyer6f8QS80n1Ojx UcuICe2NMh1eq90ZjYFNvG4mXGjj3NsunkLDBqPl9Zg= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:47 2024 by rpki-client on console-fra.rpki-client.org