$ rpki-client -vvf repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa File: 3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: iftSu6sjtbzug57pNbvyMk9TMV/wqmVLaLEktvfScgo= Subject key identifier: D2:C7:93:CB:38:D4:0F:3E:2B:8B:24:8C:36:DA:9B:A0:69:EE:C1:5D Certificate issuer: /CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313 Certificate serial: 2633E65A8F0E2E05AA5F33F6747223A3E616FA6C Authority key identifier: C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa Signing time: Wed 06 Mar 2024 04:15:50 +0000 ROA not before: Wed 06 Mar 2024 04:10:50 +0000 ROA not after: Wed 05 Mar 2025 04:15:50 +0000 asID: 141607 IP address blocks: 210.79.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 11:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:33:e6:5a:8f:0e:2e:05:aa:5f:33:f6:74:72:23:a3:e6:16:fa:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313 Validity Not Before: Mar 6 04:10:50 2024 GMT Not After : Mar 5 04:15:50 2025 GMT Subject: CN=D2C793CB38D40F3E2B8B248C36DA9BA069EEC15D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:64:14:13:2e:09:a4:40:a7:74:67:0c:14: 2d:e6:77:ff:49:b5:f2:bf:a2:6f:58:10:ca:40:18: b8:b3:13:14:1f:6e:54:19:13:04:bf:33:d4:80:25: 74:32:7d:3a:8c:4b:b3:9f:dc:61:fb:5f:36:9f:92: 89:47:43:d2:49:47:e6:15:78:e6:23:ca:a1:3d:3d: cd:b4:b6:6c:f9:63:9c:35:a0:23:84:fe:3a:26:b2: 24:19:d8:ae:c3:ac:8c:85:88:ba:0d:bd:89:27:8d: ee:39:e1:e0:90:0e:b7:35:ca:06:5d:4e:a9:c8:a6: 81:1d:4d:04:bd:ee:06:7d:f2:c7:28:e1:50:b1:86: ab:ac:85:f5:b4:52:09:0e:05:7c:05:be:90:05:54: 8b:81:64:b1:ad:48:d1:6f:a2:51:dc:17:3e:be:5c: d0:e5:b6:ca:e0:49:a1:bc:f7:62:ab:cb:ee:0c:40: 9f:9d:f7:34:e5:55:15:23:ab:e3:6e:36:c7:03:76: 06:75:90:7a:f1:49:3e:42:e8:d2:b2:58:ab:4a:ab: e4:dd:f5:aa:98:7a:6c:cc:82:db:59:ea:6e:9e:36: c2:61:25:0e:cb:f1:03:15:8e:64:e7:d2:db:02:9c: 4c:57:3d:dd:3c:2d:36:83:44:3f:8d:db:b9:1b:92: 1a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C7:93:CB:38:D4:0F:3E:2B:8B:24:8C:36:DA:9B:A0:69:EE:C1:5D X509v3 Authority Key Identifier: keyid:C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.142.0/24 Signature Algorithm: sha256WithRSAEncryption 88:77:90:05:7e:22:96:5d:03:6b:71:08:dc:3e:9a:57:2a:fd: d7:0b:50:c5:be:11:de:07:bf:c4:a6:48:90:9f:ca:f2:59:2b: 6d:c4:2e:25:b5:2f:54:22:63:c3:a5:0e:86:2b:06:99:b3:f1: f4:f5:3f:a3:d0:e6:c6:e1:89:48:19:93:6b:7e:66:74:2f:06: fa:25:e7:bd:fd:37:26:bc:52:96:e3:c5:09:6d:f1:3d:5d:9c: d6:35:45:3c:6f:30:82:f3:0e:c0:f6:f7:16:9c:9d:02:1a:5a: 64:20:55:aa:0f:af:35:0a:24:9c:49:52:30:af:97:f5:fe:c4: b3:57:07:1a:76:5f:d2:dc:aa:8e:77:12:98:5e:8c:a7:72:ff: e8:01:c8:4c:9a:4b:34:c9:4d:02:f9:57:36:53:e8:4a:22:d9: 42:18:39:f9:3c:fb:d7:a7:30:9c:cd:08:f0:b9:3f:fa:13:ab: 00:3d:50:2d:f5:d5:26:eb:ee:43:eb:47:3b:bf:06:72:75:e6: b5:d6:0d:91:4d:5b:68:d0:be:fd:e2:75:0c:6e:d8:47:16:62: 73:7a:b7:13:7a:5a:54:13:06:f0:a4:1c:46:70:05:d6:09:37: 84:a3:a9:5c:66:0b:ad:f9:8f:c4:56:f4:7d:47:f9:2d:da:55: 91:bb:0e:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJjPmWo8OLgWqXzP2dHIjo+YW+mwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMzNTlCRUJGMEMxNUM5RDQ3MzlDRTg4QkZCMjE0MkQx NUE5OTMxMzAeFw0yNDAzMDYwNDEwNTBaFw0yNTAzMDUwNDE1NTBaMDMxMTAvBgNV BAMTKEQyQzc5M0NCMzhENDBGM0UyQjhCMjQ4QzM2REE5QkEwNjlFRUMxNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvrmQUEy4JpECndGcMFC3md/9J tfK/om9YEMpAGLizExQfblQZEwS/M9SAJXQyfTqMS7Of3GH7XzafkolHQ9JJR+YV eOYjyqE9Pc20tmz5Y5w1oCOE/jomsiQZ2K7DrIyFiLoNvYknje454eCQDrc1ygZd TqnIpoEdTQS97gZ98sco4VCxhqushfW0UgkOBXwFvpAFVIuBZLGtSNFvolHcFz6+ XNDltsrgSaG892Kry+4MQJ+d9zTlVRUjq+NuNscDdgZ1kHrxST5C6NKyWKtKq+Td 9aqYemzMgttZ6m6eNsJhJQ7L8QMVjmTn0tsCnExXPd08LTaDRD+N27kbkho1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0seTyzjUDz4riySMNtqboGnuwV0wHwYDVR0j BBgwFoAUwzWb6/DBXJ1HOc6Iv7IULRWpkxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NDM4ZjZhYS1mMjdkLTQ5MDYtOTUxZS1mMDJkODkxYmYxZWQvMC9DMzM1OUJFQkYw QzE1QzlENDczOUNFODhCRkIyMTQyRDE1QTk5MzEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzMzNTlCRUJGMEMxNUM5RDQ3MzlDRTg4QkZCMjE0MkQxNUE5 OTMxMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0MzhmNmFhLWYyN2QtNDkwNi05 NTFlLWYwMmQ4OTFiZjFlZC8wLzMyMzEzMDJlMzczOTJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0k+OMA0GCSqG SIb3DQEBCwUAA4IBAQCId5AFfiKWXQNrcQjcPppXKv3XC1DFvhHeB7/EpkiQn8ry WSttxC4ltS9UImPDpQ6GKwaZs/H09T+j0ObG4YlIGZNrfmZ0Lwb6Jee9/TcmvFKW 48UJbfE9XZzWNUU8bzCC8w7A9vcWnJ0CGlpkIFWqD681CiScSVIwr5f1/sSzVwca dl/S3KqOdxKYXoyncv/oAchMmks0yU0C+Vc2U+hKItlCGDn5PPvXpzCczQjwuT/6 E6sAPVAt9dUm6+5D60c7vwZydea11g2RTVto0L794nUMbthHFmJzercTelpUEwbw pBxGcAXWCTeEo6lcZgut+Y/EVvR9R/kt2lWRuw59 -----END CERTIFICATE-----Generated at Wed May 1 04:48:05 2024 by rpki-client on console-ams.rpki-client.org