$ rpki-client -vvf repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa File: 3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa (raw, json) Hash identifier: iejxaYyFvMMKWvCTzKAcnIXg83Nbl1/MEoXIN4VzYRY= Subject key identifier: 73:21:B5:B1:37:1E:EF:C0:5B:0B:F6:98:6C:84:74:F8:C6:11:E9:00 Certificate issuer: /CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313 Certificate serial: 28ED940C51AA5FF5A6B854FE013AEEE63578B369 Authority key identifier: C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa Signing time: Wed 06 Mar 2024 03:54:15 +0000 ROA not before: Wed 06 Mar 2024 03:49:15 +0000 ROA not after: Wed 05 Mar 2025 03:54:15 +0000 asID: 141607 IP address blocks: 210.79.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ed:94:0c:51:aa:5f:f5:a6:b8:54:fe:01:3a:ee:e6:35:78:b3:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313 Validity Not Before: Mar 6 03:49:15 2024 GMT Not After : Mar 5 03:54:15 2025 GMT Subject: CN=7321B5B1371EEFC05B0BF6986C8474F8C611E900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2e:e0:ce:b7:ac:41:91:c3:15:60:a5:87:3a: 3e:59:53:ee:7d:b8:e1:73:a1:1b:5f:be:6d:fb:d9: 51:73:5a:5c:bf:aa:49:d9:30:b9:ab:93:6d:d9:42: ed:c3:a9:a5:8b:55:7a:13:7d:57:c3:38:3c:0b:ab: 44:d8:af:e6:11:be:6b:43:52:e4:7f:8a:ff:c0:2e: 95:83:a1:b2:cd:65:3b:9e:2d:3a:5e:f9:52:4f:d7: a0:d9:74:3c:81:70:de:37:24:b9:2f:ae:f8:43:e2: 2f:0f:fd:5e:4f:61:c9:8e:7b:03:54:ec:96:ed:75: a7:e8:78:ae:56:34:80:13:0b:0d:80:b5:89:f0:f6: 6e:4c:fe:a2:9a:da:bc:39:ba:1f:3e:66:55:cf:54: eb:bf:92:3c:a9:3a:32:9a:04:87:b0:d0:63:04:76: 2d:1f:2f:6c:ed:f7:28:32:3a:95:e5:9d:0d:21:ac: 52:f0:91:6f:20:e5:49:ab:0f:ea:3d:1b:62:e6:ea: 15:00:c3:55:46:ac:4e:56:03:11:0c:ce:5e:a7:49: 8a:72:e5:99:f7:72:1d:73:b4:bc:28:71:29:d0:5d: 50:83:e8:98:a2:63:19:2d:7f:da:e0:d5:fe:16:7a: 5d:cf:98:a0:4d:44:14:4e:ec:b6:2c:0c:83:08:07: 56:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:21:B5:B1:37:1E:EF:C0:5B:0B:F6:98:6C:84:74:F8:C6:11:E9:00 X509v3 Authority Key Identifier: keyid:C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.142.0/23 Signature Algorithm: sha256WithRSAEncryption 47:83:b0:fd:32:c7:46:14:be:d5:fe:b3:b4:5a:3c:cc:a9:2a: c2:41:f7:5b:29:17:6b:5e:24:3d:7a:ab:a7:6d:8d:47:2f:2e: 73:52:c7:b0:f4:ec:8f:db:36:99:a7:ca:94:0d:6b:51:1b:cd: 80:5f:6b:f4:b0:3f:0a:c2:b0:76:37:de:a1:f1:62:6f:bb:e0: 2c:30:b6:f0:b9:05:a2:af:8b:44:82:f6:63:02:77:cf:b8:d8: 4b:7a:36:cf:b9:5b:8a:a1:d6:e0:8b:61:2d:79:67:af:62:4b: 7d:38:ca:7c:b2:9e:f7:61:6a:fe:d7:1b:75:80:ef:e1:fb:4f: 60:ed:6a:54:6b:ab:a7:c0:50:f6:e3:c8:a8:17:a5:e6:7f:44: 71:96:c6:e3:53:74:fb:b5:5c:10:88:13:3a:10:e8:13:f0:77: 0c:d2:4a:7f:58:50:29:09:e5:ff:b0:e3:78:46:05:0b:9b:5c: 7c:45:3e:fa:2e:88:49:6a:2b:4e:88:ad:b1:7d:6f:7b:69:1e: 38:20:5f:f2:11:8c:28:9b:c3:da:ca:ed:b2:84:50:d2:42:ee: 66:33:00:42:51:06:82:0e:18:29:c0:17:74:be:17:76:02:a4: 6a:a0:65:b2:e7:ca:fd:4a:8c:b0:01:0a:64:4e:db:bf:72:35: fe:36:06:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKO2UDFGqX/WmuFT+ATru5jV4s2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMzNTlCRUJGMEMxNUM5RDQ3MzlDRTg4QkZCMjE0MkQx NUE5OTMxMzAeFw0yNDAzMDYwMzQ5MTVaFw0yNTAzMDUwMzU0MTVaMDMxMTAvBgNV BAMTKDczMjFCNUIxMzcxRUVGQzA1QjBCRjY5ODZDODQ3NEY4QzYxMUU5MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaLuDOt6xBkcMVYKWHOj5ZU+59 uOFzoRtfvm372VFzWly/qknZMLmrk23ZQu3DqaWLVXoTfVfDODwLq0TYr+YRvmtD UuR/iv/ALpWDobLNZTueLTpe+VJP16DZdDyBcN43JLkvrvhD4i8P/V5PYcmOewNU 7JbtdafoeK5WNIATCw2AtYnw9m5M/qKa2rw5uh8+ZlXPVOu/kjypOjKaBIew0GME di0fL2zt9ygyOpXlnQ0hrFLwkW8g5UmrD+o9G2Lm6hUAw1VGrE5WAxEMzl6nSYpy 5Zn3ch1ztLwocSnQXVCD6JiiYxktf9rg1f4Wel3PmKBNRBRO7LYsDIMIB1ZrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcyG1sTce78BbC/aYbIR0+MYR6QAwHwYDVR0j BBgwFoAUwzWb6/DBXJ1HOc6Iv7IULRWpkxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NDM4ZjZhYS1mMjdkLTQ5MDYtOTUxZS1mMDJkODkxYmYxZWQvMC9DMzM1OUJFQkYw QzE1QzlENDczOUNFODhCRkIyMTQyRDE1QTk5MzEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzMzNTlCRUJGMEMxNUM5RDQ3MzlDRTg4QkZCMjE0MkQxNUE5 OTMxMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0MzhmNmFhLWYyN2QtNDkwNi05 NTFlLWYwMmQ4OTFiZjFlZC8wLzMyMzEzMDJlMzczOTJlMzEzNDMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0k+OMA0GCSqG SIb3DQEBCwUAA4IBAQBHg7D9MsdGFL7V/rO0WjzMqSrCQfdbKRdrXiQ9equnbY1H Ly5zUsew9OyP2zaZp8qUDWtRG82AX2v0sD8KwrB2N96h8WJvu+AsMLbwuQWir4tE gvZjAnfPuNhLejbPuVuKodbgi2EteWevYkt9OMp8sp73YWr+1xt1gO/h+09g7WpU a6unwFD248ioF6Xmf0RxlsbjU3T7tVwQiBM6EOgT8HcM0kp/WFApCeX/sON4RgUL m1x8RT76LohJaitOiK2xfW97aR44IF/yEYwom8Payu2yhFDSQu5mMwBCUQaCDhgp wBd0vhd2AqRqoGWy58r9SoywAQpkTtu/cjX+NgZr -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:32 2024 by rpki-client on console-ams.rpki-client.org