$ rpki-client -vvf repo-rpki.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/3231302e37392e3134312e302f32342d3234203d3e20313532303438.roa File: 3231302e37392e3134312e302f32342d3234203d3e20313532303438.roa (raw, json) Hash identifier: ZJ83A8Bc0PE4yZLYxFCZBSb8MhHQthKCMAtJAy92tfI= Subject key identifier: 95:CF:25:3A:66:B3:4F:FF:C9:97:20:F5:53:02:83:0F:DB:46:BE:8F Certificate issuer: /CN=99807F9B6904D604FC55188D6AFE03013E0CB07A Certificate serial: 7B26879989B9CDE87FA2B69FFD614B9228969759 Authority key identifier: 99:80:7F:9B:69:04:D6:04:FC:55:18:8D:6A:FE:03:01:3E:0C:B0:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99807F9B6904D604FC55188D6AFE03013E0CB07A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/3231302e37392e3134312e302f32342d3234203d3e20313532303438.roa Signing time: Wed 20 Nov 2024 08:00:01 +0000 ROA not before: Wed 20 Nov 2024 07:55:01 +0000 ROA not after: Wed 19 Nov 2025 08:00:01 +0000 asID: 152048 IP address blocks: 210.79.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/99807F9B6904D604FC55188D6AFE03013E0CB07A.crl rsync://repo-rpki.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/99807F9B6904D604FC55188D6AFE03013E0CB07A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99807F9B6904D604FC55188D6AFE03013E0CB07A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:26:87:99:89:b9:cd:e8:7f:a2:b6:9f:fd:61:4b:92:28:96:97:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99807F9B6904D604FC55188D6AFE03013E0CB07A Validity Not Before: Nov 20 07:55:01 2024 GMT Not After : Nov 19 08:00:01 2025 GMT Subject: CN=95CF253A66B34FFFC99720F55302830FDB46BE8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9c:f7:a4:5d:71:f5:15:a7:99:bc:71:fd:4b: f7:71:47:99:cd:77:06:ac:b7:da:62:20:2a:ae:1c: 1e:75:77:76:b8:ad:8f:b2:3a:28:97:9d:69:10:17: f2:b0:01:48:d4:78:a6:19:46:ac:13:94:58:e2:e5: c5:96:31:cc:ff:66:b1:64:70:08:e8:86:a9:49:1d: 9c:88:15:2d:b5:ff:3d:1e:92:4b:80:dd:39:a5:2e: c3:f3:e2:da:01:93:e1:22:66:41:cc:8b:65:7f:8d: 3d:af:33:c3:9b:fe:b6:0d:e0:f1:8e:9a:ff:5e:ee: 02:91:09:32:8e:96:d8:95:9f:a1:0a:08:37:e8:5a: cc:50:de:9d:e8:17:ac:56:7a:3b:cf:ea:17:46:7a: b0:60:1e:e3:0d:fe:de:8b:88:1e:4d:7b:b0:23:83: 54:29:b3:21:15:d2:1b:48:b8:f8:c1:a2:79:4d:12: cc:98:e0:d3:06:65:18:6a:f4:90:74:d1:f4:9c:ea: 67:59:7b:d2:08:10:3e:93:3d:9c:5a:65:31:d6:f5: 9a:f9:54:ee:b7:00:5b:13:b5:6a:61:ab:bb:dd:7b: e6:41:d0:36:27:69:dd:11:95:aa:8c:6f:d6:21:52: fb:5e:22:00:82:fb:27:81:24:e8:5a:0e:ab:6f:a0: 1e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CF:25:3A:66:B3:4F:FF:C9:97:20:F5:53:02:83:0F:DB:46:BE:8F X509v3 Authority Key Identifier: keyid:99:80:7F:9B:69:04:D6:04:FC:55:18:8D:6A:FE:03:01:3E:0C:B0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/99807F9B6904D604FC55188D6AFE03013E0CB07A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99807F9B6904D604FC55188D6AFE03013E0CB07A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/3231302e37392e3134312e302f32342d3234203d3e20313532303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.141.0/24 Signature Algorithm: sha256WithRSAEncryption 64:e2:d6:2c:40:89:a3:25:53:d6:db:d3:6c:4a:be:56:28:d9: 20:fd:f7:c0:51:78:db:0d:7e:42:f9:d0:04:6c:96:cd:9e:86: 04:a8:22:14:70:d5:07:b9:aa:24:05:51:3f:f1:56:0d:46:31: 17:8e:85:4e:cb:42:db:6a:ee:fd:c5:52:03:59:b0:74:be:1a: 34:0f:fa:a0:43:e3:89:aa:66:39:d7:ee:57:bb:d2:b2:e0:82: 1c:85:9a:66:95:50:34:d4:69:7f:5e:0b:53:0a:88:50:ef:1f: 0f:fb:99:a4:f6:91:91:94:96:9f:ef:60:9d:96:bc:f4:a5:01: 8d:40:96:e9:5d:2d:3f:72:82:37:1b:61:e3:b1:08:bc:2d:8e: a3:6d:9a:1a:42:e6:b9:02:a4:41:a2:0b:6d:03:c2:28:dd:cd: af:cd:14:ca:06:87:67:68:77:48:32:6c:09:73:92:bf:17:7d: 9b:6b:41:ad:b6:0d:3c:d4:d5:df:44:22:9b:5e:09:c8:d6:fb: 9f:a2:e5:d2:fc:fd:6a:09:63:db:df:cf:b1:08:43:b8:df:b0: 8c:cc:5b:cf:a9:70:7e:8e:93:84:3c:69:72:19:6e:dc:9b:78: ad:d8:d3:1a:8a:ae:fb:87:14:0d:21:39:f4:f6:ce:34:fe:72: 39:16:e7:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeyaHmYm5zeh/oraf/WFLkiiWl1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk4MDdGOUI2OTA0RDYwNEZDNTUxODhENkFGRTAzMDEz RTBDQjA3QTAeFw0yNDExMjAwNzU1MDFaFw0yNTExMTkwODAwMDFaMDMxMTAvBgNV BAMTKDk1Q0YyNTNBNjZCMzRGRkZDOTk3MjBGNTUzMDI4MzBGREI0NkJFOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVnPekXXH1FaeZvHH9S/dxR5nN dwast9piICquHB51d3a4rY+yOiiXnWkQF/KwAUjUeKYZRqwTlFji5cWWMcz/ZrFk cAjohqlJHZyIFS21/z0ekkuA3TmlLsPz4toBk+EiZkHMi2V/jT2vM8Ob/rYN4PGO mv9e7gKRCTKOltiVn6EKCDfoWsxQ3p3oF6xWejvP6hdGerBgHuMN/t6LiB5Ne7Aj g1QpsyEV0htIuPjBonlNEsyY4NMGZRhq9JB00fSc6mdZe9IIED6TPZxaZTHW9Zr5 VO63AFsTtWphq7vde+ZB0DYnad0RlaqMb9YhUvteIgCC+yeBJOhaDqtvoB6ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlc8lOmazT//JlyD1UwKDD9tGvo8wHwYDVR0j BBgwFoAUmYB/m2kE1gT8VRiNav4DAT4MsHowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2Q3ZDI5Yi1kZDFjLTQxZGQtYmVlZi01NjQyODY0ZTg2YWUvMC85OTgwN0Y5QjY5 MDRENjA0RkM1NTE4OEQ2QUZFMDMwMTNFMENCMDdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTk4MDdGOUI2OTA0RDYwNEZDNTUxODhENkFGRTAzMDEzRTBD QjA3QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjZDdkMjliLWRkMWMtNDFkZC1i ZWVmLTU2NDI4NjRlODZhZS8wLzMyMzEzMDJlMzczOTJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0k+NMA0GCSqG SIb3DQEBCwUAA4IBAQBk4tYsQImjJVPW29NsSr5WKNkg/ffAUXjbDX5C+dAEbJbN noYEqCIUcNUHuaokBVE/8VYNRjEXjoVOy0Lbau79xVIDWbB0vho0D/qgQ+OJqmY5 1+5Xu9Ky4IIchZpmlVA01Gl/XgtTCohQ7x8P+5mk9pGRlJaf72Cdlrz0pQGNQJbp XS0/coI3G2HjsQi8LY6jbZoaQua5AqRBogttA8Io3c2vzRTKBodnaHdIMmwJc5K/ F32ba0Gttg081NXfRCKbXgnI1vufouXS/P1qCWPb38+xCEO437CMzFvPqXB+jpOE PGlyGW7cm3it2NMaiq77hxQNITn09s40/nI5FucY -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:12 2024 by rpki-client on console-fra.rpki-client.org