$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa File: 3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa (raw, json) Hash identifier: gD3qH0CL5kDWzLn1NnDdXaxbwmPWUV8Kvspy5PDfTJA= Subject key identifier: 4D:9A:DC:9A:2F:FA:B2:14:99:A0:A4:D7:49:89:19:57:18:56:2F:6A Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 78EA9CA64F4930A42D835DB4162C633495E48E4D Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa Signing time: Tue 31 Dec 2024 00:00:01 +0000 ROA not before: Mon 30 Dec 2024 23:55:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:01 +0000 asID: 140405 IP address blocks: 210.247.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ea:9c:a6:4f:49:30:a4:2d:83:5d:b4:16:2c:63:34:95:e4:8e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Dec 30 23:55:01 2024 GMT Not After : Dec 30 00:00:01 2025 GMT Subject: CN=4D9ADC9A2FFAB21499A0A4D74989195718562F6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4c:c1:e4:2f:76:7c:25:b3:d6:fc:52:97:1b: 39:fd:d5:c7:92:dd:1c:ed:6e:60:fd:36:d4:75:c4: 83:0c:de:a2:b5:52:0b:ab:2f:66:bc:00:f2:69:fe: d4:92:cb:7b:da:a5:1d:be:ed:5c:f6:ea:49:6f:00: 65:79:2d:15:19:6c:12:f9:71:6d:83:1d:72:74:dd: f1:a7:80:c0:94:fd:8e:97:26:6d:45:97:14:fd:55: ba:91:55:8f:a4:0c:9e:54:f1:f5:c4:63:2e:b0:40: c3:89:0c:e3:1b:43:4b:d7:2b:95:ef:fa:b6:64:41: b3:06:8f:47:0b:4f:2a:fe:65:10:f3:86:54:55:4d: 4c:8e:ee:47:3a:04:27:99:71:59:c7:c0:90:6a:86: 70:11:e7:ef:4f:f7:d7:52:e3:2d:ef:2e:b4:47:60: c8:ff:67:0c:5b:42:03:8d:00:ae:c4:41:a5:f8:38: df:74:7f:31:a1:b3:d4:bd:31:ce:da:06:fc:b6:e0: 83:d5:fe:28:93:9f:37:f8:a2:72:46:75:a1:04:bb: 40:ce:86:0f:03:c3:3b:f6:9e:82:6c:be:62:fe:9d: 00:f8:c9:eb:0b:cc:ea:53:b7:92:6a:91:74:eb:94: 6a:7d:3d:b2:64:48:6a:7f:3b:0f:7a:72:c4:5f:47: 0b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9A:DC:9A:2F:FA:B2:14:99:A0:A4:D7:49:89:19:57:18:56:2F:6A X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.241.0/24 Signature Algorithm: sha256WithRSAEncryption 43:ab:9d:ab:e5:cc:7b:3f:af:bb:3d:ca:8f:1b:4c:5b:fc:06: 81:3e:02:1d:48:74:c5:f6:2b:04:96:25:6c:cb:25:db:26:6d: d3:8e:f2:51:bf:84:8f:6d:f0:ab:e4:63:47:aa:6e:5e:62:c4: 2d:d3:1d:41:c0:1e:a1:b8:05:29:86:a4:f9:72:7b:4b:16:e9: 87:d8:41:0d:fc:6a:71:8b:39:39:66:88:0c:69:e1:e6:7d:48: b8:ea:ec:d6:c9:a0:9f:7f:6b:57:0f:29:ab:fa:ad:da:34:a5: ff:2f:7c:44:e9:35:37:1e:60:d5:2c:5f:c5:4e:d9:f1:21:fe: 6e:20:6b:31:f3:b9:b4:b6:12:bf:d6:cc:31:28:bc:53:24:0b: 0b:63:ba:a1:e4:16:de:c1:eb:00:f3:09:2d:a3:77:50:3f:f0: 5d:ce:24:52:39:e8:72:ee:97:a1:1e:3c:f5:a3:a8:e4:e1:84: 72:6d:e3:73:eb:51:ed:92:56:0b:33:74:77:50:1f:b8:45:20: 19:a8:ad:fa:44:ad:4d:8e:2f:f7:7f:2f:83:db:74:73:68:4d: b6:c4:6d:f4:ac:f0:a1:7e:33:9b:e6:2c:e6:6a:e5:a6:f7:82: ae:05:a5:db:68:98:b2:bb:d0:e5:df:9c:8b:2e:79:a3:13:b8: 21:12:fc:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeOqcpk9JMKQtg120FixjNJXkjk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDEyMzAyMzU1MDFaFw0yNTEyMzAwMDAwMDFaMDMxMTAvBgNV BAMTKDREOUFEQzlBMkZGQUIyMTQ5OUEwQTRENzQ5ODkxOTU3MTg1NjJGNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZTMHkL3Z8JbPW/FKXGzn91ceS 3RztbmD9NtR1xIMM3qK1UgurL2a8APJp/tSSy3vapR2+7Vz26klvAGV5LRUZbBL5 cW2DHXJ03fGngMCU/Y6XJm1FlxT9VbqRVY+kDJ5U8fXEYy6wQMOJDOMbQ0vXK5Xv +rZkQbMGj0cLTyr+ZRDzhlRVTUyO7kc6BCeZcVnHwJBqhnAR5+9P99dS4y3vLrRH YMj/ZwxbQgONAK7EQaX4ON90fzGhs9S9Mc7aBvy24IPV/iiTnzf4onJGdaEEu0DO hg8Dwzv2noJsvmL+nQD4yesLzOpTt5JqkXTrlGp9PbJkSGp/Ow96csRfRwt7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTZrcmi/6shSZoKTXSYkZVxhWL2owHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/EwDQYJ KoZIhvcNAQELBQADggEBAEOrnavlzHs/r7s9yo8bTFv8BoE+Ah1IdMX2KwSWJWzL JdsmbdOO8lG/hI9t8KvkY0eqbl5ixC3THUHAHqG4BSmGpPlye0sW6YfYQQ38anGL OTlmiAxp4eZ9SLjq7NbJoJ9/a1cPKav6rdo0pf8vfETpNTceYNUsX8VO2fEh/m4g azHzubS2Er/WzDEovFMkCwtjuqHkFt7B6wDzCS2jd1A/8F3OJFI56HLul6EePPWj qOThhHJt43PrUe2SVgszdHdQH7hFIBmorfpErU2OL/d/L4PbdHNoTbbEbfSs8KF+ M5vmLOZq5ab3gq4FpdtomLK70OXfnIsueaMTuCES/Cc= -----END CERTIFICATE-----Generated at Sun Apr 6 09:04:11 2025 by rpki-client