$ rpki-client -vvf repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa File: 3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa (raw, json) Hash identifier: aoPmhOo2lxE9LPO1NFc5xx/iR8dBhA/U5fwNzf3UdOU= Subject key identifier: E2:AC:2A:EB:C4:5F:22:BE:1A:1A:4B:D7:23:17:C1:F2:03:59:78:C0 Certificate issuer: /CN=98BF0C90429CA12CE1425374F5765263297D61F1 Certificate serial: 1760D41B85A7E9D476E4373AA250645027A0F1C9 Authority key identifier: 98:BF:0C:90:42:9C:A1:2C:E1:42:53:74:F5:76:52:63:29:7D:61:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98BF0C90429CA12CE1425374F5765263297D61F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa Signing time: Fri 12 Jan 2024 07:40:26 +0000 ROA not before: Fri 12 Jan 2024 07:35:26 +0000 ROA not after: Fri 10 Jan 2025 07:40:26 +0000 asID: 152045 IP address blocks: 210.79.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/98BF0C90429CA12CE1425374F5765263297D61F1.crl rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/98BF0C90429CA12CE1425374F5765263297D61F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98BF0C90429CA12CE1425374F5765263297D61F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:60:d4:1b:85:a7:e9:d4:76:e4:37:3a:a2:50:64:50:27:a0:f1:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98BF0C90429CA12CE1425374F5765263297D61F1 Validity Not Before: Jan 12 07:35:26 2024 GMT Not After : Jan 10 07:40:26 2025 GMT Subject: CN=E2AC2AEBC45F22BE1A1A4BD72317C1F2035978C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:cf:f1:fd:44:66:dc:58:1b:cb:53:4e:a0: 0b:f4:82:e7:b4:b8:d3:5a:39:4d:03:66:61:97:17: 8c:f1:90:bd:40:98:d2:ec:0e:08:2e:3f:0d:16:7f: 08:04:d4:ec:c0:f9:b6:12:bd:e1:32:f1:88:24:77: 74:d7:d3:52:24:fd:7f:98:87:84:48:76:48:46:7a: d7:21:09:a0:3c:a3:36:f5:1d:26:80:ac:f8:5b:ca: b1:5f:c7:45:e0:c4:f2:61:4c:13:68:1d:e3:f2:7b: a2:d1:26:81:ef:1b:cb:81:6d:e5:c5:4c:92:19:96: 4b:5c:8b:8f:0e:91:f9:40:6b:80:6c:56:55:d2:98: f6:11:d2:be:74:14:00:2e:71:64:58:30:0d:61:7f: 81:b4:ef:c4:2c:bf:3b:65:bb:b8:52:7e:c8:f1:d5: 45:c5:a7:db:c8:a4:b4:c8:e6:9c:c6:6d:20:48:a5: 11:ef:ce:e0:ec:0e:c1:95:97:f5:85:48:25:e2:c8: 0a:24:df:c9:66:72:9f:36:e0:e4:1e:a3:16:dc:0b: b4:6b:22:a9:02:9a:3a:c8:3d:2f:37:62:52:ad:fb: 9e:3a:69:a6:55:52:85:61:0a:35:e1:15:bb:35:d0: 7e:18:e3:99:98:ae:c5:97:0f:4b:a8:4b:79:76:8a: 57:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:AC:2A:EB:C4:5F:22:BE:1A:1A:4B:D7:23:17:C1:F2:03:59:78:C0 X509v3 Authority Key Identifier: keyid:98:BF:0C:90:42:9C:A1:2C:E1:42:53:74:F5:76:52:63:29:7D:61:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/98BF0C90429CA12CE1425374F5765263297D61F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98BF0C90429CA12CE1425374F5765263297D61F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.146.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:be:96:5c:67:1a:04:4f:2e:6a:06:f0:0a:29:cf:a9:74:a4: 5f:69:51:44:62:89:70:39:c4:d0:82:da:d9:c8:5b:d5:4e:bd: 9f:da:e5:54:6a:f2:bf:d4:c1:27:3e:b7:37:98:8d:f2:f7:9d: de:0e:3c:71:63:97:5e:ba:a8:5a:5d:4e:48:7f:00:36:11:3a: 1d:19:07:66:57:77:0c:a7:29:d1:40:af:50:be:00:a0:f5:30: a5:b6:87:50:57:b3:fd:7c:87:9d:9b:76:1b:1a:b9:91:e3:db: 51:c6:fd:17:5a:ee:ae:c3:ba:8a:96:6d:6f:d9:ab:42:5e:0a: ce:4e:bf:78:46:b7:84:a3:90:9b:51:61:1f:5d:67:88:6c:10: b2:30:0e:6e:45:e9:d5:f8:db:04:6b:9a:30:24:76:31:49:ae: 4b:3a:55:e2:a1:54:a3:9c:f0:ec:e6:cf:15:e9:5c:85:ae:d7: 3e:91:2a:47:47:41:54:0e:dc:99:78:b0:53:47:72:bc:14:c7: f3:d0:ab:0e:f7:52:0f:75:84:84:7a:b9:e1:0a:fd:4d:e9:19: e1:5a:a8:0c:d0:af:68:c0:7b:17:4b:39:2c:8f:82:aa:d5:b5: 43:94:98:17:39:55:73:9d:8f:8b:f7:75:4d:b9:61:43:5b:49: db:cb:7e:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF2DUG4Wn6dR25Dc6olBkUCeg8ckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThCRjBDOTA0MjlDQTEyQ0UxNDI1Mzc0RjU3NjUyNjMy OTdENjFGMTAeFw0yNDAxMTIwNzM1MjZaFw0yNTAxMTAwNzQwMjZaMDMxMTAvBgNV BAMTKEUyQUMyQUVCQzQ1RjIyQkUxQTFBNEJENzIzMTdDMUYyMDM1OTc4QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1XM/x/URm3Fgby1NOoAv0gue0 uNNaOU0DZmGXF4zxkL1AmNLsDgguPw0WfwgE1OzA+bYSveEy8Ygkd3TX01Ik/X+Y h4RIdkhGetchCaA8ozb1HSaArPhbyrFfx0XgxPJhTBNoHePye6LRJoHvG8uBbeXF TJIZlktci48OkflAa4BsVlXSmPYR0r50FAAucWRYMA1hf4G078Qsvztlu7hSfsjx 1UXFp9vIpLTI5pzGbSBIpRHvzuDsDsGVl/WFSCXiyAok38lmcp824OQeoxbcC7Rr IqkCmjrIPS83YlKt+546aaZVUoVhCjXhFbs10H4Y45mYrsWXD0uoS3l2ilfDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4qwq68RfIr4aGkvXIxfB8gNZeMAwHwYDVR0j BBgwFoAUmL8MkEKcoSzhQlN09XZSYyl9YfEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWJiNjZkMC1hOTMzLTQxMTAtYTA5My0wMzhkYTllYzhiN2UvMC85OEJGMEM5MDQy OUNBMTJDRTE0MjUzNzRGNTc2NTI2MzI5N0Q2MUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThCRjBDOTA0MjlDQTEyQ0UxNDI1Mzc0RjU3NjUyNjMyOTdE NjFGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxYmI2NmQwLWE5MzMtNDExMC1h MDkzLTAzOGRhOWVjOGI3ZS8wLzMyMzEzMDJlMzczOTJlMzEzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0k+SMA0GCSqG SIb3DQEBCwUAA4IBAQArvpZcZxoETy5qBvAKKc+pdKRfaVFEYolwOcTQgtrZyFvV Tr2f2uVUavK/1MEnPrc3mI3y953eDjxxY5deuqhaXU5IfwA2ETodGQdmV3cMpynR QK9QvgCg9TCltodQV7P9fIedm3YbGrmR49tRxv0XWu6uw7qKlm1v2atCXgrOTr94 RreEo5CbUWEfXWeIbBCyMA5uRenV+NsEa5owJHYxSa5LOlXioVSjnPDs5s8V6VyF rtc+kSpHR0FUDtyZeLBTR3K8FMfz0KsO91IPdYSEernhCv1N6RnhWqgM0K9owHsX Szksj4Kq1bVDlJgXOVVznY+L93VNuWFDW0nby37t -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org