$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: Yyo36Dqg7KtPljnZ4zUD/dGagfGudAirRvs8/0fs37s= Subject key identifier: C7:DD:C9:89:CC:9C:8C:BC:32:C7:4F:17:15:CC:4D:19:2B:22:FD:50 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 215ECAC80288386B5F2F1D2C11A74AFBA07BB035 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Oct 2023 02:00:00 +0000 ROA not before: Tue 24 Oct 2023 01:55:00 +0000 ROA not after: Tue 22 Oct 2024 02:00:00 +0000 asID: 131745 IP address blocks: 210.247.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:5e:ca:c8:02:88:38:6b:5f:2f:1d:2c:11:a7:4a:fb:a0:7b:b0:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Oct 24 01:55:00 2023 GMT Not After : Oct 22 02:00:00 2024 GMT Subject: CN=C7DDC989CC9C8CBC32C74F1715CC4D192B22FD50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:e2:cf:92:0a:8f:52:c3:69:e7:f3:95:24: cd:c1:24:2c:ff:c9:c6:a3:9c:c5:9b:dc:6d:69:16: 17:18:26:81:64:23:08:8c:7f:be:fd:be:fc:72:a2: 5c:e8:1a:28:eb:b1:6d:af:2a:0b:8f:69:f8:33:da: 32:55:81:5a:f8:af:bb:26:ee:8b:65:4a:d3:6d:6b: 36:64:0b:82:ba:42:cf:cb:25:ca:cf:32:08:fc:c1: 40:51:a7:e4:42:61:11:c6:80:53:24:b2:6a:2e:1f: dd:b5:57:36:f3:b8:11:0d:41:d7:07:63:b6:4d:d4: 0e:01:cb:a5:0c:67:c5:55:18:4c:0f:b0:66:97:df: d5:48:9d:05:69:7c:91:74:86:f6:27:81:47:e3:5c: 8a:ca:cf:3b:0f:ff:4d:49:f5:ff:7f:ec:a0:85:93: 95:de:0a:79:77:58:74:29:1f:11:26:65:28:b9:70: 16:1f:76:ce:b1:de:b4:cf:ce:4e:51:d9:3b:69:86: 5d:85:e2:0e:58:c9:d5:00:eb:aa:2e:8b:e8:60:d3: ed:ed:82:ab:90:08:df:15:61:d2:e5:81:96:14:0c: 94:da:d2:02:38:35:f5:7c:e5:82:cd:eb:7b:51:db: c7:9f:bb:ac:dc:4b:19:d7:c7:e8:5b:1c:c1:68:32: 72:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:DD:C9:89:CC:9C:8C:BC:32:C7:4F:17:15:CC:4D:19:2B:22:FD:50 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.252.0/24 Signature Algorithm: sha256WithRSAEncryption 14:f1:78:3f:0e:14:d8:6f:d6:92:4b:58:59:3a:33:c2:be:e1: 94:16:59:36:12:b1:b4:24:ce:1f:19:85:a3:00:4d:18:41:10: 0b:5f:84:ca:0c:aa:b6:a3:67:a8:b7:f8:7f:8c:57:29:5e:33: bc:7f:71:31:ba:c4:cf:db:7c:e0:33:f1:37:8a:f4:13:73:0a: a4:4d:e4:2b:ed:9f:c3:cf:66:ef:a3:04:88:98:82:ed:a6:b1: a6:49:5a:0b:ad:5b:d0:89:6e:15:6d:0e:7c:c6:db:7c:f5:c1: 95:c7:fd:94:dd:f2:7e:eb:61:8a:6d:a7:5c:8b:2d:b8:4d:b3: 8d:52:5e:8c:41:1b:8c:6b:27:6f:fc:21:46:5d:6d:8c:be:58: 4e:2a:d3:25:39:86:3b:d8:7a:ff:9c:d0:d7:29:79:37:9f:6d: 20:79:10:fd:dd:d9:8d:66:ef:2c:8e:ea:98:a6:27:6d:5b:68: 44:e9:36:65:d5:0b:50:77:fd:f8:9e:44:d5:6a:db:0b:11:fc: c9:f5:10:9c:62:58:cc:df:7c:7d:ee:c7:ad:df:a6:a1:96:e6: f4:02:12:70:9e:58:f9:52:40:9a:e3:63:5c:d5:cf:74:40:7a: 9b:bd:16:c6:3a:dd:7e:b7:10:b4:02:56:f3:27:34:2f:bb:62: 7b:b7:39:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIV7KyAKIOGtfLx0sEadK+6B7sDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzEwMjQwMTU1MDBaFw0yNDEwMjIwMjAwMDBaMDMxMTAvBgNV BAMTKEM3RERDOTg5Q0M5QzhDQkMzMkM3NEYxNzE1Q0M0RDE5MkIyMkZENTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzuLPkgqPUsNp5/OVJM3BJCz/ ycajnMWb3G1pFhcYJoFkIwiMf779vvxyolzoGijrsW2vKguPafgz2jJVgVr4r7sm 7otlStNtazZkC4K6Qs/LJcrPMgj8wUBRp+RCYRHGgFMksmouH921VzbzuBENQdcH Y7ZN1A4By6UMZ8VVGEwPsGaX39VInQVpfJF0hvYngUfjXIrKzzsP/01J9f9/7KCF k5XeCnl3WHQpHxEmZSi5cBYfds6x3rTPzk5R2Ttphl2F4g5YydUA66oui+hg0+3t gquQCN8VYdLlgZYUDJTa0gI4NfV85YLN63tR28efu6zcSxnXx+hbHMFoMnLPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUx93JicycjLwyx08XFcxNGSsi/VAwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/wwDQYJ KoZIhvcNAQELBQADggEBABTxeD8OFNhv1pJLWFk6M8K+4ZQWWTYSsbQkzh8ZhaMA TRhBEAtfhMoMqrajZ6i3+H+MVyleM7x/cTG6xM/bfOAz8TeK9BNzCqRN5Cvtn8PP Zu+jBIiYgu2msaZJWgutW9CJbhVtDnzG23z1wZXH/ZTd8n7rYYptp1yLLbhNs41S XoxBG4xrJ2/8IUZdbYy+WE4q0yU5hjvYev+c0NcpeTefbSB5EP3d2Y1m7yyO6pim J21baETpNmXVC1B3/fieRNVq2wsR/Mn1EJxiWMzffH3ux63fpqGW5vQCEnCeWPlS QJrjY1zVz3RAepu9FsY63X63ELQCVvMnNC+7Ynu3OTY= -----END CERTIFICATE-----Generated at Mon May 6 14:38:42 2024 by rpki-client on console-fra.rpki-client.org