$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: baFhaK6Qx2zfajCNQ5WRcPrRdogukgMZ3xMzHr7tNAg= Subject key identifier: E1:25:11:31:90:D2:07:E1:06:37:E0:AC:4E:E0:62:A5:05:3E:70:DB Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 1BC87FE6797F053F05362C26FAE0031008B73062 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Oct 2023 02:00:01 +0000 ROA not before: Tue 24 Oct 2023 01:55:01 +0000 ROA not after: Tue 22 Oct 2024 02:00:01 +0000 asID: 131745 IP address blocks: 210.247.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c8:7f:e6:79:7f:05:3f:05:36:2c:26:fa:e0:03:10:08:b7:30:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Oct 24 01:55:01 2023 GMT Not After : Oct 22 02:00:01 2024 GMT Subject: CN=E125113190D207E10637E0AC4EE062A5053E70DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8b:67:c2:e4:75:4c:1b:63:6c:ef:b6:2a:79: 66:3a:09:3d:54:79:c4:a5:b2:e9:29:34:f0:16:f0: 9c:af:c0:ac:f6:eb:cb:fa:01:d3:8a:ca:86:2c:f5: ce:c0:22:6b:45:d7:e0:ab:d9:9b:cc:ba:34:89:7c: 26:cd:ec:6a:cb:01:5e:13:d0:25:b2:32:4b:75:96: 5d:c2:69:f9:a2:16:6a:4f:22:39:38:67:e4:35:0a: 3b:46:f3:06:0c:68:03:c3:54:7e:01:f1:10:18:10: 6f:d4:2f:b6:27:58:25:b4:f5:17:10:75:b1:ca:74: 9a:bc:4e:1a:96:6a:1a:52:7c:c7:78:0b:c9:af:03: 73:e6:ce:11:aa:8e:91:b0:4d:ec:e5:b3:37:e3:2a: ee:3a:8e:44:92:95:2f:98:3c:e4:20:29:7d:8a:5b: 94:b1:ac:6b:b5:df:d6:f1:1b:7b:89:98:b6:22:3b: db:c7:5e:70:36:be:d9:26:df:50:9c:11:7c:8d:84: 53:53:c9:30:b9:1e:13:b8:13:b5:c7:83:0a:f5:bc: 0a:50:e4:4d:67:47:d1:82:34:17:41:04:e1:66:25: 35:18:f0:d3:06:65:70:cd:52:c1:b4:dc:50:f7:80: e8:4e:dc:61:d5:50:b0:ac:93:3f:cb:7c:db:9d:06: 8e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:25:11:31:90:D2:07:E1:06:37:E0:AC:4E:E0:62:A5:05:3E:70:DB X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.254.0/24 Signature Algorithm: sha256WithRSAEncryption b7:73:dc:e3:e0:c4:f1:68:37:c2:a5:d8:fc:6e:29:69:a5:70: 9b:23:e2:d3:8e:2f:6e:3a:84:ac:02:e0:a5:47:40:ec:06:c9: 72:da:77:7a:ef:7b:54:1a:27:c0:19:b7:07:10:51:3d:01:61: cc:85:e7:5e:ee:6c:1b:17:af:c7:b1:a1:4d:71:be:71:a8:ca: ab:0e:e5:4b:80:6f:13:5f:eb:02:6d:d0:68:9a:a4:d0:1e:b4: cd:b7:1d:b1:6c:17:85:61:ac:38:70:cf:5f:79:f2:fc:cb:cd: 3a:86:a3:98:3b:f6:fe:0a:6c:a3:28:03:05:f2:ee:8c:e3:73: de:4d:35:a5:5b:f3:33:20:07:36:43:57:01:8a:4c:23:98:b8: b0:32:2b:5d:1f:04:49:56:8c:5f:a2:5f:34:16:b4:0b:15:dc: 8b:64:99:f7:12:86:7a:32:9e:07:36:78:1b:1a:74:e2:14:09: 5e:06:ff:0b:fd:e5:37:45:9c:60:f9:0e:81:53:6a:55:e4:ec: ca:c3:33:57:dc:16:9b:94:bf:e7:08:9b:10:35:21:38:88:93: 42:71:2c:bf:9a:27:fc:ae:c0:17:3c:58:d8:8c:9f:67:e6:ce: b6:04:26:0a:c7:87:09:a6:b2:92:98:c3:83:52:84:cd:9e:92: a7:7f:30:69 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG8h/5nl/BT8FNiwm+uADEAi3MGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzEwMjQwMTU1MDFaFw0yNDEwMjIwMjAwMDFaMDMxMTAvBgNV BAMTKEUxMjUxMTMxOTBEMjA3RTEwNjM3RTBBQzRFRTA2MkE1MDUzRTcwREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1i2fC5HVMG2Ns77YqeWY6CT1U ecSlsukpNPAW8JyvwKz268v6AdOKyoYs9c7AImtF1+Cr2ZvMujSJfCbN7GrLAV4T 0CWyMkt1ll3CafmiFmpPIjk4Z+Q1CjtG8wYMaAPDVH4B8RAYEG/UL7YnWCW09RcQ dbHKdJq8ThqWahpSfMd4C8mvA3PmzhGqjpGwTezlszfjKu46jkSSlS+YPOQgKX2K W5SxrGu139bxG3uJmLYiO9vHXnA2vtkm31CcEXyNhFNTyTC5HhO4E7XHgwr1vApQ 5E1nR9GCNBdBBOFmJTUY8NMGZXDNUsG03FD3gOhO3GHVULCskz/LfNudBo5xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4SURMZDSB+EGN+CsTuBipQU+cNswHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/4wDQYJ KoZIhvcNAQELBQADggEBALdz3OPgxPFoN8Kl2PxuKWmlcJsj4tOOL246hKwC4KVH QOwGyXLad3rve1QaJ8AZtwcQUT0BYcyF517ubBsXr8exoU1xvnGoyqsO5UuAbxNf 6wJt0GiapNAetM23HbFsF4VhrDhwz1958vzLzTqGo5g79v4KbKMoAwXy7ozjc95N NaVb8zMgBzZDVwGKTCOYuLAyK10fBElWjF+iXzQWtAsV3ItkmfcShnoyngc2eBsa dOIUCV4G/wv95TdFnGD5DoFTalXk7MrDM1fcFpuUv+cImxA1ITiIk0JxLL+aJ/yu wBc8WNiMn2fmzrYEJgrHhwmmspKYw4NShM2ekqd/MGk= -----END CERTIFICATE-----Generated at Mon May 6 14:38:42 2024 by rpki-client on console-fra.rpki-client.org