$ rpki-client -vvf repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa File: 3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa (raw, json) Hash identifier: JJn8SaSEdyLlsSnCh1fgYIIfjbbeg3PlOVnbaVd8Tpo= Subject key identifier: 4C:35:88:28:BE:E4:4A:03:AA:88:8A:C6:0A:E5:BE:9D:C7:92:2F:9E Certificate issuer: /CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Certificate serial: 5B1F2B7AFFD7B23F5F0838A9725B00C11B0C61B0 Authority key identifier: 84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa Signing time: Thu 15 Feb 2024 09:55:46 +0000 ROA not before: Thu 15 Feb 2024 09:50:46 +0000 ROA not after: Thu 13 Feb 2025 09:55:46 +0000 asID: 152059 IP address blocks: 210.87.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1f:2b:7a:ff:d7:b2:3f:5f:08:38:a9:72:5b:00:c1:1b:0c:61:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Validity Not Before: Feb 15 09:50:46 2024 GMT Not After : Feb 13 09:55:46 2025 GMT Subject: CN=4C358828BEE44A03AA888AC60AE5BE9DC7922F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c7:e5:10:69:6c:21:c1:e4:79:d2:8d:9d:9e: a4:e0:f1:d9:07:4b:76:81:05:7c:11:17:ce:6f:2d: c6:1b:5e:53:76:8e:d2:76:f5:64:b3:64:59:95:df: 07:4d:bf:cf:f5:0d:b2:f6:aa:fb:ca:f7:57:c4:29: ef:ee:11:a8:17:df:94:ff:98:9d:58:29:98:fd:ef: b4:d4:56:58:1d:aa:73:15:91:31:7d:5e:66:58:55: f5:6d:75:db:f9:d5:ab:82:d7:fc:32:1d:3b:51:6e: 8b:b3:d3:d9:62:5e:89:b6:28:0d:7b:75:3b:1a:1a: b4:e2:0c:b4:07:66:84:22:97:22:87:b0:21:c8:d2: f4:c6:4c:2a:21:4a:ad:d6:7f:7c:66:50:24:c6:0f: ab:ef:33:0e:8b:13:cd:54:55:e6:16:ed:56:c1:2f: 58:9c:c0:3d:a0:e7:5a:0a:0c:52:dc:5d:e2:18:7d: 7d:19:31:49:4d:3b:d4:fe:8b:b4:b1:92:cf:6a:8c: 98:d9:7d:a2:6e:3b:84:47:fe:28:df:7f:02:74:c3: ba:b1:f2:1b:0c:2a:5d:ee:99:34:a6:80:e1:c3:e5: 39:76:d4:7a:b5:45:b3:11:92:6c:20:ba:89:b6:f5: 7e:e2:bd:c5:1c:f0:32:c6:b9:03:d5:da:09:eb:79: ac:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:35:88:28:BE:E4:4A:03:AA:88:8A:C6:0A:E5:BE:9D:C7:92:2F:9E X509v3 Authority Key Identifier: keyid:84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.124.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:e6:48:2a:16:7d:51:8c:4e:ee:78:78:58:40:b3:67:c0:ce: 0f:30:8e:e4:b5:44:99:72:c6:9d:1c:d3:e0:73:a3:82:57:57: b1:36:6b:38:74:da:92:0c:d6:1a:b1:d5:87:65:df:83:a7:2d: 26:8e:f4:84:4d:df:27:a9:21:5b:79:6c:01:26:52:a5:94:3b: 4c:24:9a:74:65:8c:aa:8e:50:0c:55:93:3d:06:db:98:7e:01: 72:88:8d:36:3b:3c:79:7a:57:ed:1b:42:aa:7e:3c:48:b5:c2: 62:0f:7a:39:80:95:3f:6d:ab:9c:ff:b0:8b:b5:63:31:e5:b7: 2e:18:c0:c2:ea:5c:45:f2:c6:d1:ea:ba:b4:a6:4d:3b:27:13: b7:c8:12:69:18:17:93:09:2f:50:52:a7:9e:96:32:82:fa:09: ea:91:88:fb:92:19:70:23:7b:47:eb:06:a3:2f:97:66:02:bc: 5b:dc:79:5c:b7:f2:1c:6f:1a:24:e3:5c:5f:a1:05:5f:29:97: d2:c8:b3:8e:24:a7:84:6c:6e:98:f8:76:f8:77:6e:e2:b6:8e: cd:4a:a0:4f:96:44:f5:e0:17:d6:75:e8:0a:04:c4:49:a7:bf: 74:ff:a6:24:8e:b9:4f:e3:72:df:83:8b:5a:c5:d8:82:d1:7d: de:16:b5:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWx8rev/Xsj9fCDipclsAwRsMYbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUw QTIxMDg3MDAeFw0yNDAyMTUwOTUwNDZaFw0yNTAyMTMwOTU1NDZaMDMxMTAvBgNV BAMTKDRDMzU4ODI4QkVFNDRBMDNBQTg4OEFDNjBBRTVCRTlEQzc5MjJGOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQx+UQaWwhweR50o2dnqTg8dkH S3aBBXwRF85vLcYbXlN2jtJ29WSzZFmV3wdNv8/1DbL2qvvK91fEKe/uEagX35T/ mJ1YKZj977TUVlgdqnMVkTF9XmZYVfVtddv51auC1/wyHTtRbouz09liXom2KA17 dTsaGrTiDLQHZoQilyKHsCHI0vTGTCohSq3Wf3xmUCTGD6vvMw6LE81UVeYW7VbB L1icwD2g51oKDFLcXeIYfX0ZMUlNO9T+i7Sxks9qjJjZfaJuO4RH/ijffwJ0w7qx 8hsMKl3umTSmgOHD5Tl21Hq1RbMRkmwguom29X7ivcUc8DLGuQPV2gnreax3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTDWIKL7kSgOqiIrGCuW+nceSL54wHwYDVR0j BBgwFoAUhD/fMqUtEXlbv7CRir+SbgohCHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2JlOGI3Yy0yMzJmLTQ3ZTgtOWNkZC04ODE3ZDM5YjcwZWEvMC84NDNGREYzMkE1 MkQxMTc5NUJCRkIwOTE4QUJGOTI2RTBBMjEwODcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUwQTIx MDg3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3YmU4YjdjLTIzMmYtNDdlOC05 Y2RkLTg4MTdkMzliNzBlYS8wLzMyMzEzMDJlMzgzNzJlMzEzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0ld8MA0GCSqG SIb3DQEBCwUAA4IBAQAM5kgqFn1RjE7ueHhYQLNnwM4PMI7ktUSZcsadHNPgc6OC V1exNms4dNqSDNYasdWHZd+Dpy0mjvSETd8nqSFbeWwBJlKllDtMJJp0ZYyqjlAM VZM9BtuYfgFyiI02Ozx5elftG0KqfjxItcJiD3o5gJU/bauc/7CLtWMx5bcuGMDC 6lxF8sbR6rq0pk07JxO3yBJpGBeTCS9QUqeeljKC+gnqkYj7khlwI3tH6wajL5dm Arxb3Hlct/Icbxok41xfoQVfKZfSyLOOJKeEbG6Y+Hb4d27ito7NSqBPlkT14BfW degKBMRJp790/6YkjrlP43Lfg4taxdiC0X3eFrVu -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org