$ rpki-client -vvf repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa File: 3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa (raw, json) Hash identifier: fPmATf3p519D1nsuyIU7bMDgC3vCa3u+pQyHo3JelLE= Subject key identifier: 97:14:CE:F7:C2:A9:00:30:0E:C8:77:82:ED:FF:37:A7:66:EF:8D:32 Certificate issuer: /CN=52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B Certificate serial: 5AA46742BFA7C32498AB421103DD93D1915A3A1E Authority key identifier: 52:FA:38:C2:2C:A0:98:7C:E4:8A:3B:D5:19:1F:FD:A2:AD:39:DB:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa Signing time: Sun 30 Jun 2024 07:24:31 +0000 ROA not before: Sun 30 Jun 2024 07:19:31 +0000 ROA not after: Sun 29 Jun 2025 07:24:31 +0000 asID: 152064 IP address blocks: 210.87.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.crl rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 21:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:a4:67:42:bf:a7:c3:24:98:ab:42:11:03:dd:93:d1:91:5a:3a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B Validity Not Before: Jun 30 07:19:31 2024 GMT Not After : Jun 29 07:24:31 2025 GMT Subject: CN=9714CEF7C2A900300EC87782EDFF37A766EF8D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c7:5c:cd:37:92:47:3f:48:d4:44:69:8d:01: ef:52:3b:06:69:48:cf:b7:d5:40:64:85:e9:f2:e5: 58:db:08:c3:f9:57:93:23:16:97:b1:a9:97:0e:c7: 24:2e:f7:aa:b2:10:f9:0d:6c:75:04:dd:7c:25:8c: cc:5b:cb:86:01:8b:c1:32:ac:66:91:db:62:fa:e3: d2:17:03:c2:31:4b:2c:0c:d1:b0:21:db:9f:fa:6d: 55:fb:f8:95:85:b0:26:8a:d7:60:67:b2:ad:c5:7e: 6b:5b:48:c7:62:35:c7:fa:3c:ec:3b:6b:5d:94:80: f7:f0:69:2c:5d:08:90:db:78:2d:a0:6a:66:81:99: f0:a9:d1:65:df:e4:b9:70:98:77:e7:fa:3e:92:89: 4c:4e:a1:e1:e1:89:5d:ce:95:f9:e6:75:3f:ba:f8: 15:3b:89:3f:10:4f:b4:a9:fd:dd:c2:b7:09:4d:0c: 00:8a:e9:a1:88:0b:20:60:cb:fa:67:bf:50:9f:78: 55:d0:92:34:82:4f:c3:9f:44:1a:c7:7e:51:ff:42: 80:8b:e2:b7:9c:f9:ae:19:80:79:5e:32:73:35:d8: 6c:a8:4c:9c:8c:76:00:34:3b:55:cc:06:1a:67:fd: ee:db:8e:31:39:e4:0e:1a:fe:82:c1:a0:3b:9c:06: c5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:14:CE:F7:C2:A9:00:30:0E:C8:77:82:ED:FF:37:A7:66:EF:8D:32 X509v3 Authority Key Identifier: keyid:52:FA:38:C2:2C:A0:98:7C:E4:8A:3B:D5:19:1F:FD:A2:AD:39:DB:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.123.0/24 Signature Algorithm: sha256WithRSAEncryption 59:0e:41:9c:39:bd:ec:dc:7a:e2:e4:f4:5c:0e:d8:f5:1d:77: 2e:89:8b:45:f2:11:36:11:0f:db:1d:7d:1b:df:21:52:bb:32: a7:99:a0:ce:d3:9d:cd:2b:44:1a:48:95:72:88:5d:67:7d:62: cb:56:c6:d9:d4:7e:13:fb:51:a0:7f:c2:85:5c:82:57:9f:3b: c1:b1:47:82:5b:55:f1:46:32:6e:26:f4:5d:7c:f1:1d:a9:e1: 23:95:31:8d:6b:2f:11:5d:21:4e:38:7b:0b:60:d3:3f:c9:1e: 16:d5:60:55:4f:26:d8:8b:09:c9:43:db:3d:19:4b:33:09:76: a3:5b:18:46:23:c4:3e:49:ea:75:44:4e:39:05:62:f5:c3:bf: 0d:32:56:d4:10:a0:0b:03:14:24:80:a1:01:2d:fc:46:cc:4f: 43:96:1e:0f:fd:6b:1d:d8:85:3d:4c:9a:e5:13:8a:3f:98:14: 3d:55:f5:29:66:0e:11:c0:fe:f9:fc:5f:12:b7:23:b7:e1:94: cb:df:f0:1e:be:4b:04:36:2b:4e:c0:92:da:14:a0:ea:07:41: 16:c1:e4:30:e0:f4:b4:9f:fe:58:98:1f:ad:38:d6:12:d0:63: dc:35:2f:c9:2d:1f:a1:15:62:24:fe:ac:16:c3:43:9a:fe:c9: 61:bb:21:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWqRnQr+nwySYq0IRA92T0ZFaOh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJGQTM4QzIyQ0EwOTg3Q0U0OEEzQkQ1MTkxRkZEQTJB RDM5REIzQjAeFw0yNDA2MzAwNzE5MzFaFw0yNTA2MjkwNzI0MzFaMDMxMTAvBgNV BAMTKDk3MTRDRUY3QzJBOTAwMzAwRUM4Nzc4MkVERkYzN0E3NjZFRjhEMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBx1zNN5JHP0jURGmNAe9SOwZp SM+31UBkheny5VjbCMP5V5MjFpexqZcOxyQu96qyEPkNbHUE3XwljMxby4YBi8Ey rGaR22L649IXA8IxSywM0bAh25/6bVX7+JWFsCaK12Bnsq3FfmtbSMdiNcf6POw7 a12UgPfwaSxdCJDbeC2gamaBmfCp0WXf5LlwmHfn+j6SiUxOoeHhiV3OlfnmdT+6 +BU7iT8QT7Sp/d3CtwlNDACK6aGICyBgy/pnv1CfeFXQkjSCT8OfRBrHflH/QoCL 4rec+a4ZgHleMnM12GyoTJyMdgA0O1XMBhpn/e7bjjE55A4a/oLBoDucBsXvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlxTO98KpADAOyHeC7f83p2bvjTIwHwYDVR0j BBgwFoAUUvo4wiygmHzkijvVGR/9oq052zswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTIyNDI0Ny0zNDdmLTRhNTctYTc5YS1jYjJjMjFjOTE3MGUvMC81MkZBMzhDMjJD QTA5ODdDRTQ4QTNCRDUxOTFGRkRBMkFEMzlEQjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJGQTM4QzIyQ0EwOTg3Q0U0OEEzQkQ1MTkxRkZEQTJBRDM5 REIzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxMjI0MjQ3LTM0N2YtNGE1Ny1h NzlhLWNiMmMyMWM5MTcwZS8wLzMyMzEzMDJlMzgzNzJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0ld7MA0GCSqG SIb3DQEBCwUAA4IBAQBZDkGcOb3s3Hri5PRcDtj1HXcuiYtF8hE2EQ/bHX0b3yFS uzKnmaDO053NK0QaSJVyiF1nfWLLVsbZ1H4T+1Ggf8KFXIJXnzvBsUeCW1XxRjJu JvRdfPEdqeEjlTGNay8RXSFOOHsLYNM/yR4W1WBVTybYiwnJQ9s9GUszCXajWxhG I8Q+Sep1RE45BWL1w78NMlbUEKALAxQkgKEBLfxGzE9Dlh4P/Wsd2IU9TJrlE4o/ mBQ9VfUpZg4RwP75/F8StyO34ZTL3/AevksENitOwJLaFKDqB0EWweQw4PS0n/5Y mB+tONYS0GPcNS/JLR+hFWIk/qwWw0Oa/slhuyEy -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org