$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 5z4EVyXkxyXnhxl5JH3Pz2dy7K+1+d6O34E8YEu6Oo0= Subject key identifier: FB:F9:34:73:B7:A2:1B:16:0B:EF:5F:20:A8:7A:26:B0:D0:44:31:6B Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 4758FA90A988FC59D4C940E5D876F21E12E6C38F Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:36 +0000 ROA not before: Mon 01 Jul 2024 00:58:36 +0000 ROA not after: Mon 30 Jun 2025 01:03:36 +0000 asID: 131745 IP address blocks: 210.247.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:58:fa:90:a9:88:fc:59:d4:c9:40:e5:d8:76:f2:1e:12:e6:c3:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:36 2024 GMT Not After : Jun 30 01:03:36 2025 GMT Subject: CN=FBF93473B7A21B160BEF5F20A87A26B0D044316B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c2:42:34:ae:47:57:5b:f1:6e:ac:db:84:f4: 35:f1:4b:4f:93:84:ba:df:63:24:03:af:af:46:8b: 16:05:9d:34:be:27:0b:d6:ac:71:88:dc:4f:8b:4d: 8d:7c:29:47:a0:44:5b:a9:25:af:c6:05:45:54:ad: 9c:0c:81:bf:00:fb:78:dd:d2:c6:c3:b7:15:eb:2c: 48:fe:1a:d3:de:f0:d8:d5:3c:ab:f0:db:3c:39:3a: 75:a1:dd:6a:dd:f8:7e:b3:43:6d:16:8b:61:53:3d: a0:33:8f:e9:d4:09:cf:9a:c6:ad:d1:c2:be:25:3d: 13:05:05:13:28:8b:5f:c4:fb:ce:7e:bb:e9:00:c0: 16:35:a9:d9:75:c6:07:72:7f:06:be:14:d0:cc:76: d1:80:0c:b4:fb:7e:70:2a:94:7a:b4:99:95:3d:4a: fb:33:a4:67:63:85:51:bf:d8:40:c6:41:5e:24:b5: d0:c3:48:4f:15:f3:78:4f:54:c2:6b:22:fb:22:f5: 3c:e9:df:7a:34:07:ed:7a:27:21:fb:fd:f4:32:a3: 87:ba:17:d0:6d:ee:36:35:04:b7:1d:c2:76:c7:65: 74:c4:85:07:29:07:75:57:b6:ef:30:66:39:2a:22: c9:9a:48:ad:f7:9e:01:1e:5b:34:95:e4:44:bb:46: 3f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F9:34:73:B7:A2:1B:16:0B:EF:5F:20:A8:7A:26:B0:D0:44:31:6B X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.240.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:03:46:62:5c:73:92:99:eb:34:b8:be:6f:d5:11:8c:1d:5f: 3d:7a:a0:27:e2:d6:31:03:75:32:1d:0f:2f:d5:76:39:89:45: 55:64:7f:48:c5:f5:b0:f3:4f:2d:3a:c9:bc:6b:77:0b:44:10: 7a:ca:55:57:c1:55:e2:e5:ba:f7:cd:9d:80:08:d6:05:21:8d: 1f:26:0d:5a:fe:cc:f2:e9:1b:97:98:97:9d:d9:fd:a5:2e:8e: 5a:b6:ce:dc:b2:29:77:ed:24:e7:a7:d7:5c:33:b2:1c:44:18: 18:97:ac:51:21:79:50:ea:a6:43:9f:1e:ab:c6:7e:b3:76:33: 27:f3:1c:08:36:44:cb:59:e3:6b:7b:d7:c5:50:e0:33:b0:a4: 40:25:6a:92:16:7d:15:7b:c8:27:98:8e:8a:3f:f3:95:80:c0: fc:61:3b:73:0e:05:17:5e:da:ed:ab:82:2a:8f:7b:c2:e8:69: c3:a1:ad:24:a2:96:45:b3:46:c3:97:22:0f:0d:91:e8:c4:5a: db:b4:f1:47:df:9a:87:d1:e8:eb:17:58:70:4b:af:e1:b7:5b: 9c:47:7a:2f:61:eb:85:38:e1:7e:7e:b7:21:1e:e3:a2:b8:80: b0:57:8a:41:b4:29:c8:67:79:3b:cf:7f:24:ab:34:34:e4:1a: d5:34:e6:6e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR1j6kKmI/FnUyUDl2HbyHhLmw48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzZaFw0yNTA2MzAwMTAzMzZaMDMxMTAvBgNV BAMTKEZCRjkzNDczQjdBMjFCMTYwQkVGNUYyMEE4N0EyNkIwRDA0NDMxNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcwkI0rkdXW/FurNuE9DXxS0+T hLrfYyQDr69GixYFnTS+JwvWrHGI3E+LTY18KUegRFupJa/GBUVUrZwMgb8A+3jd 0sbDtxXrLEj+GtPe8NjVPKvw2zw5OnWh3Wrd+H6zQ20Wi2FTPaAzj+nUCc+axq3R wr4lPRMFBRMoi1/E+85+u+kAwBY1qdl1xgdyfwa+FNDMdtGADLT7fnAqlHq0mZU9 SvszpGdjhVG/2EDGQV4ktdDDSE8V83hPVMJrIvsi9Tzp33o0B+16JyH7/fQyo4e6 F9Bt7jY1BLcdwnbHZXTEhQcpB3VXtu8wZjkqIsmaSK33ngEeWzSV5ES7Rj+DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+/k0c7eiGxYL718gqHomsNBEMWswHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/AwDQYJ KoZIhvcNAQELBQADggEBAFsDRmJcc5KZ6zS4vm/VEYwdXz16oCfi1jEDdTIdDy/V djmJRVVkf0jF9bDzTy06ybxrdwtEEHrKVVfBVeLluvfNnYAI1gUhjR8mDVr+zPLp G5eYl53Z/aUujlq2ztyyKXftJOen11wzshxEGBiXrFEheVDqpkOfHqvGfrN2Myfz HAg2RMtZ42t718VQ4DOwpEAlapIWfRV7yCeYjoo/85WAwPxhO3MOBRde2u2rgiqP e8LoacOhrSSilkWzRsOXIg8NkejEWtu08UffmofR6OsXWHBLr+G3W5xHei9h64U4 4X5+tyEe46K4gLBXikG0KchneTvPfySrNDTkGtU05m4= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org