$ rpki-client -vvf repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa File: 3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa (raw, json) Hash identifier: j+CyFIuraCaP7XdAAvelfvPzeQbJ7B/dxtW4CXtgmjo= Subject key identifier: 68:5E:C5:27:FE:03:DB:49:08:9D:08:D7:13:65:53:49:5F:45:54:CA Certificate issuer: /CN=CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C Certificate serial: 542567D84314D527DE0BA75A6A92FDEA9B9DB2FF Authority key identifier: CC:0A:27:1E:0A:AF:32:4F:93:71:7C:5B:CF:43:C7:AE:42:B3:0B:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa Signing time: Wed 13 Nov 2024 08:00:01 +0000 ROA not before: Wed 13 Nov 2024 07:55:01 +0000 ROA not after: Wed 12 Nov 2025 08:00:01 +0000 asID: 152055 IP address blocks: 210.79.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.crl rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:25:67:d8:43:14:d5:27:de:0b:a7:5a:6a:92:fd:ea:9b:9d:b2:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C Validity Not Before: Nov 13 07:55:01 2024 GMT Not After : Nov 12 08:00:01 2025 GMT Subject: CN=685EC527FE03DB49089D08D7136553495F4554CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7c:b0:4f:dc:22:4a:ae:10:72:80:cc:ee:3d: 5e:b7:2f:35:fa:5b:1d:e4:ff:9d:69:11:f4:29:eb: 80:d9:ca:58:ed:fc:ef:db:7a:42:28:87:24:c0:72: ce:b6:cc:8d:8d:e9:c5:3e:bb:bf:87:95:06:9a:31: 65:d9:2c:04:6c:21:47:e7:85:77:65:7e:68:76:58: 13:d7:0e:89:34:27:c8:4a:69:e4:d1:7a:c6:45:67: b2:d4:e5:18:ff:80:16:b0:01:dc:fa:22:1d:fb:2c: 71:a1:d9:8b:e5:79:43:4b:c9:e4:45:99:b1:c2:6c: e4:c8:b5:0b:92:d4:f3:f9:58:0c:39:d2:c3:e1:20: ab:62:52:6e:1c:3b:66:d8:f3:62:2f:1a:89:08:cd: dd:34:93:84:f8:b2:ca:da:f8:b5:f0:e6:90:63:26: 15:83:a8:0d:47:dd:ae:b4:3d:84:70:77:9b:7c:16: de:de:4f:d0:cd:56:45:f1:22:19:14:2d:2e:43:66: 79:9b:64:42:da:ef:62:1d:f9:90:51:33:bd:e4:fc: 3e:1b:63:5b:74:6b:1c:8c:06:28:a1:8b:97:b2:06: 75:97:ec:1d:e8:87:20:3c:a4:80:5e:7d:7e:8e:f0: 71:9c:e7:1c:86:77:32:0b:65:9a:4c:68:93:b0:7c: d5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5E:C5:27:FE:03:DB:49:08:9D:08:D7:13:65:53:49:5F:45:54:CA X509v3 Authority Key Identifier: keyid:CC:0A:27:1E:0A:AF:32:4F:93:71:7C:5B:CF:43:C7:AE:42:B3:0B:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.138.0/23 Signature Algorithm: sha256WithRSAEncryption 07:11:b9:da:e6:2c:46:73:1e:6a:da:0b:4e:f0:b1:61:22:76: 40:77:7f:6c:98:6b:86:d9:e8:51:03:1d:ba:8f:10:d8:b6:89: 29:0b:27:ff:3b:ef:f3:df:65:4e:1e:73:ad:d0:be:fd:ff:6f: c1:39:61:ca:07:27:48:7f:16:21:35:3a:ec:6a:9c:b4:c6:1b: b2:06:c3:5e:72:61:48:ba:33:22:00:9e:09:b7:b8:2e:31:10: 0b:5a:50:27:1f:7a:75:0b:c2:03:a7:ad:df:9c:35:0c:8f:05: e6:75:c7:6a:62:a6:a7:6e:09:4f:80:70:7c:4a:be:c9:ba:85: 70:fc:ad:54:c3:2b:f7:5c:00:f5:67:e6:32:2b:98:06:43:c0: da:14:f3:7f:79:05:ab:93:9f:0a:4c:1e:f0:bd:64:90:59:e5: da:25:b9:21:d2:5b:69:3e:d6:84:4c:92:d3:cf:15:96:c9:ac: 44:d3:c4:57:bc:e8:fa:cc:6e:21:81:71:1a:23:e9:a8:ed:65: 15:b8:d4:a9:ab:0b:e8:18:29:fe:d9:ac:78:f9:36:9e:c1:e9: 99:e7:e6:d6:2e:7b:89:39:c9:fe:86:58:88:83:8a:33:7d:19: b5:3f:c4:da:0b:a6:12:e8:93:64:af:d3:eb:36:5f:7e:c5:71: 31:3c:03:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVCVn2EMU1SfeC6daapL96pudsv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MwQTI3MUUwQUFGMzI0RjkzNzE3QzVCQ0Y0M0M3QUU0 MkIzMEI1QzAeFw0yNDExMTMwNzU1MDFaFw0yNTExMTIwODAwMDFaMDMxMTAvBgNV BAMTKDY4NUVDNTI3RkUwM0RCNDkwODlEMDhENzEzNjU1MzQ5NUY0NTU0Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1fLBP3CJKrhBygMzuPV63LzX6 Wx3k/51pEfQp64DZyljt/O/bekIohyTAcs62zI2N6cU+u7+HlQaaMWXZLARsIUfn hXdlfmh2WBPXDok0J8hKaeTResZFZ7LU5Rj/gBawAdz6Ih37LHGh2YvleUNLyeRF mbHCbOTItQuS1PP5WAw50sPhIKtiUm4cO2bY82IvGokIzd00k4T4ssra+LXw5pBj JhWDqA1H3a60PYRwd5t8Ft7eT9DNVkXxIhkULS5DZnmbZELa72Id+ZBRM73k/D4b Y1t0axyMBiihi5eyBnWX7B3ohyA8pIBefX6O8HGc5xyGdzILZZpMaJOwfNWTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaF7FJ/4D20kInQjXE2VTSV9FVMowHwYDVR0j BBgwFoAUzAonHgqvMk+TcXxbz0PHrkKzC1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTUzMjhkOC04NjdlLTQyMzItYjVlMS02NWFiMGJjMDQ4OTYvMC9DQzBBMjcxRTBB QUYzMjRGOTM3MTdDNUJDRjQzQzdBRTQyQjMwQjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MwQTI3MUUwQUFGMzI0RjkzNzE3QzVCQ0Y0M0M3QUU0MkIz MEI1Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTMyOGQ4LTg2N2UtNDIzMi1i NWUxLTY1YWIwYmMwNDg5Ni8wLzMyMzEzMDJlMzczOTJlMzEzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0k+KMA0GCSqG SIb3DQEBCwUAA4IBAQAHEbna5ixGcx5q2gtO8LFhInZAd39smGuG2ehRAx26jxDY tokpCyf/O+/z32VOHnOt0L79/2/BOWHKBydIfxYhNTrsapy0xhuyBsNecmFIujMi AJ4Jt7guMRALWlAnH3p1C8IDp63fnDUMjwXmdcdqYqanbglPgHB8Sr7JuoVw/K1U wyv3XAD1Z+YyK5gGQ8DaFPN/eQWrk58KTB7wvWSQWeXaJbkh0ltpPtaETJLTzxWW yaxE08RXvOj6zG4hgXEaI+mo7WUVuNSpqwvoGCn+2ax4+TaewemZ5+bWLnuJOcn+ hliIg4ozfRm1P8TaC6YS6JNkr9PrNl9+xXExPAP9 -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:16 2024 by rpki-client on console-ams.rpki-client.org