$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: OatBnr7M0bE23jXsKX6rLI2f3wcCggK2k12zldXzFZI= Subject key identifier: A5:46:97:20:D4:7B:DC:4D:26:F8:18:C0:42:D8:94:63:69:24:64:12 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 4539FA5C133D396829248EC034C43E103838121D Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Oct 2023 02:00:00 +0000 ROA not before: Tue 24 Oct 2023 01:55:00 +0000 ROA not after: Tue 22 Oct 2024 02:00:00 +0000 asID: 131745 IP address blocks: 210.247.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:39:fa:5c:13:3d:39:68:29:24:8e:c0:34:c4:3e:10:38:38:12:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Oct 24 01:55:00 2023 GMT Not After : Oct 22 02:00:00 2024 GMT Subject: CN=A5469720D47BDC4D26F818C042D8946369246412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:6c:79:14:d2:a9:39:3a:53:00:3a:31:cb: f7:cc:ac:1c:10:8c:ac:12:5e:0d:97:73:3b:f4:33: d9:57:e1:ab:f8:39:c3:1a:aa:b5:b9:c4:27:78:f9: fb:1e:98:55:29:18:95:6e:74:27:98:1a:9a:02:c9: c4:83:1b:52:ed:98:4c:19:d6:e5:bb:86:09:3b:19: ee:7d:d9:e9:4d:8d:70:84:c2:ae:ce:30:98:ae:38: 6c:74:14:69:49:b1:e8:33:37:e7:4c:8e:0d:f4:c4: 9f:2c:4f:65:47:ed:d5:a7:6e:29:df:27:1b:8a:1d: 5d:4e:38:dc:7e:e2:e9:1f:e7:9e:a2:48:9b:b8:07: 68:8d:de:a7:1c:fe:37:6e:95:2c:02:44:7f:bd:f8: 74:b3:16:78:ba:75:6e:5a:c7:de:b3:2a:b4:30:d6: 34:50:ce:65:c3:ed:c2:b9:05:ee:9f:f1:96:df:08: 3e:d7:54:2f:dc:d8:08:26:fe:92:f0:9d:d3:62:2b: 18:ec:3f:58:a4:ce:c1:52:d4:8f:4a:20:5d:8c:77: 5e:f5:ae:ba:88:93:84:da:76:78:c0:03:c6:6c:c5: 16:9b:b8:b5:04:8c:c1:6d:21:16:21:d7:38:69:55: dd:53:17:ed:73:79:db:68:be:c5:da:c3:32:6d:bd: 3d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:46:97:20:D4:7B:DC:4D:26:F8:18:C0:42:D8:94:63:69:24:64:12 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.253.0/24 Signature Algorithm: sha256WithRSAEncryption 96:dc:5a:aa:48:5a:b7:cc:fb:b6:a9:a2:ef:2f:0c:70:07:9c: a9:0f:1f:0c:17:7a:4e:22:9d:30:d9:95:14:f7:63:7b:4f:c1: 10:ef:b0:7d:53:de:92:4c:5b:d5:92:27:ac:b3:1d:9b:58:31: 41:9c:c5:79:df:5a:ef:b3:88:a0:1c:65:bb:f3:74:33:7b:5e: 54:80:92:a6:92:34:bc:16:c7:d6:b6:df:16:c6:d4:a5:50:9a: 3f:d6:a1:76:ec:6d:f1:b5:37:7f:69:50:f0:92:1f:28:7d:9b: 0f:3e:48:e1:b6:3d:ae:3c:48:39:04:69:49:27:fe:4a:ea:bd: ed:95:35:c1:29:aa:b3:17:fc:bd:ab:2e:45:4c:94:43:67:95: 54:66:02:4f:df:f8:92:e8:0f:aa:4c:94:37:b6:74:f3:82:0f: f9:cb:9c:11:4c:39:ef:06:6c:88:42:3a:93:7c:6a:af:a8:e6: 9c:85:4e:14:5c:5e:9e:a9:a9:a9:46:ca:c7:db:6a:87:90:1a: 09:d3:dc:59:b7:57:88:7d:bf:15:db:36:45:7f:9c:54:a7:5b: b2:6f:b7:9b:48:cb:8a:10:c2:7f:8d:17:c0:d2:37:b5:ad:c8: 51:49:bc:ca:26:1b:18:83:c0:92:ae:93:7a:ea:08:9e:af:ef: 3f:9f:e0:5b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURTn6XBM9OWgpJI7ANMQ+EDg4Eh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzEwMjQwMTU1MDBaFw0yNDEwMjIwMjAwMDBaMDMxMTAvBgNV BAMTKEE1NDY5NzIwRDQ3QkRDNEQyNkY4MThDMDQyRDg5NDYzNjkyNDY0MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC19mx5FNKpOTpTADoxy/fMrBwQ jKwSXg2Xczv0M9lX4av4OcMaqrW5xCd4+fsemFUpGJVudCeYGpoCycSDG1LtmEwZ 1uW7hgk7Ge592elNjXCEwq7OMJiuOGx0FGlJsegzN+dMjg30xJ8sT2VH7dWnbinf JxuKHV1OONx+4ukf556iSJu4B2iN3qcc/jdulSwCRH+9+HSzFni6dW5ax96zKrQw 1jRQzmXD7cK5Be6f8ZbfCD7XVC/c2Agm/pLwndNiKxjsP1ikzsFS1I9KIF2Md171 rrqIk4TadnjAA8ZsxRabuLUEjMFtIRYh1zhpVd1TF+1zedtovsXawzJtvT3XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpUaXINR73E0m+BjAQtiUY2kkZBIwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/0wDQYJ KoZIhvcNAQELBQADggEBAJbcWqpIWrfM+7apou8vDHAHnKkPHwwXek4inTDZlRT3 Y3tPwRDvsH1T3pJMW9WSJ6yzHZtYMUGcxXnfWu+ziKAcZbvzdDN7XlSAkqaSNLwW x9a23xbG1KVQmj/WoXbsbfG1N39pUPCSHyh9mw8+SOG2Pa48SDkEaUkn/krqve2V NcEpqrMX/L2rLkVMlENnlVRmAk/f+JLoD6pMlDe2dPOCD/nLnBFMOe8GbIhCOpN8 aq+o5pyFThRcXp6pqalGysfbaoeQGgnT3Fm3V4h9vxXbNkV/nFSnW7Jvt5tIy4oQ wn+NF8DSN7WtyFFJvMomGxiDwJKuk3rqCJ6v7z+f4Fs= -----END CERTIFICATE-----Generated at Mon May 6 12:36:44 2024 by rpki-client on console-ams.rpki-client.org