$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa File: 3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa (raw, json) Hash identifier: oDLrqVF+zX4sloo1UqPx5WH57hqDamnMIF+wXyHLkzo= Subject key identifier: AF:1B:FC:04:11:AE:00:D1:64:5E:0C:FB:CB:35:C6:3C:F7:D0:B9:37 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 616566056D0B73A2125E52292018774289897A90 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa Signing time: Tue 30 Jan 2024 00:00:00 +0000 ROA not before: Mon 29 Jan 2024 23:55:00 +0000 ROA not after: Tue 28 Jan 2025 00:00:00 +0000 asID: 140405 IP address blocks: 210.247.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:65:66:05:6d:0b:73:a2:12:5e:52:29:20:18:77:42:89:89:7a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jan 29 23:55:00 2024 GMT Not After : Jan 28 00:00:00 2025 GMT Subject: CN=AF1BFC0411AE00D1645E0CFBCB35C63CF7D0B937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:21:c9:b0:a8:c7:27:73:9f:93:32:4e:a5: 2a:97:35:1e:f0:aa:b4:15:06:ca:aa:7a:66:85:17: 5c:26:15:16:ea:01:36:85:a5:f9:68:d6:6a:4b:fc: 32:c8:08:b6:ce:8f:4e:cd:5d:e9:c4:3f:c9:0e:fd: 39:50:a9:ba:0b:ca:db:67:77:4d:13:25:7d:0f:3c: 3a:9a:fb:62:17:ad:e3:c1:6a:e8:b4:10:ef:8a:cc: 8a:47:ff:64:fd:b2:63:1d:fb:58:09:61:42:bf:17: 2a:cd:b1:95:33:a7:c9:9c:f0:dd:78:85:32:66:e8: 5f:12:0a:47:99:c6:86:fa:72:22:06:2a:4a:c8:91: 4c:37:bb:62:d2:16:1e:5a:8d:c9:b3:39:fe:16:42: 58:32:68:e2:ba:8f:57:fb:a0:3e:20:72:87:ab:23: 9a:c4:e0:c2:df:dc:7d:dc:85:be:40:49:e5:77:60: 69:ec:e6:72:43:9a:7b:1d:4b:e0:3c:3e:43:b3:7c: c5:ac:f1:09:e5:2f:ee:ff:ce:d1:61:05:a8:08:96: 9e:d4:41:e5:b0:13:8e:8f:60:07:68:e7:41:b3:b1: 7d:90:ac:65:10:e5:b8:c0:8f:da:9b:bb:2f:ff:1f: c2:6e:39:81:3d:f0:15:8c:f0:ff:9e:f7:e8:01:fe: 7e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1B:FC:04:11:AE:00:D1:64:5E:0C:FB:CB:35:C6:3C:F7:D0:B9:37 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234312e302f32342d3234203d3e20313430343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.241.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:67:fc:7c:ec:30:97:97:aa:0f:21:b2:89:96:7e:df:69:1d: aa:d6:6e:95:79:f9:cd:81:34:bf:e0:21:50:b4:e3:91:35:55: 23:2b:c2:09:46:03:7a:d1:dd:89:cb:2b:59:2b:b2:64:9b:38: 0f:34:4b:4f:05:f2:c7:34:08:2f:17:b8:4c:30:b3:93:e4:87: 62:ae:e1:39:e3:70:99:2a:45:bb:b2:94:88:c0:61:53:e1:14: 1d:4d:a3:aa:2b:37:52:3f:5e:87:14:1e:56:28:12:09:e3:1c: 27:c3:73:6c:ca:d8:8d:7a:69:39:29:bf:bb:1a:ff:08:f6:93: 92:03:3a:a5:ef:8b:c2:00:81:4f:cc:cf:ed:a7:52:d2:b9:ed: 6b:48:67:e5:8f:e0:0d:6c:8d:4b:18:80:08:e2:bf:5c:39:c4: 44:55:c4:62:11:ab:c4:90:b1:4c:4c:e9:40:c3:e7:8a:17:02: 11:40:72:33:83:30:c9:12:64:a1:90:79:aa:9a:bd:7e:2a:21: 43:cf:91:6a:bb:00:76:30:da:bb:bc:18:f2:25:3a:7d:5a:e1: 33:8b:0f:09:60:66:31:97:0f:d0:de:a5:bf:a4:e1:7a:e4:7d: 20:f2:44:c7:f9:a3:26:dc:fd:25:a5:33:d9:bb:87:07:75:9b: 42:e2:53:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYWVmBW0Lc6ISXlIpIBh3QomJepAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDAxMjkyMzU1MDBaFw0yNTAxMjgwMDAwMDBaMDMxMTAvBgNV BAMTKEFGMUJGQzA0MTFBRTAwRDE2NDVFMENGQkNCMzVDNjNDRjdEMEI5MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2qSHJsKjHJ3OfkzJOpSqXNR7w qrQVBsqqemaFF1wmFRbqATaFpflo1mpL/DLICLbOj07NXenEP8kO/TlQqboLyttn d00TJX0PPDqa+2IXrePBaui0EO+KzIpH/2T9smMd+1gJYUK/FyrNsZUzp8mc8N14 hTJm6F8SCkeZxob6ciIGKkrIkUw3u2LSFh5ajcmzOf4WQlgyaOK6j1f7oD4gcoer I5rE4MLf3H3chb5ASeV3YGns5nJDmnsdS+A8PkOzfMWs8QnlL+7/ztFhBagIlp7U QeWwE46PYAdo50GzsX2QrGUQ5bjAj9qbuy//H8JuOYE98BWM8P+e9+gB/n7hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrxv8BBGuANFkXgz7yzXGPPfQuTcwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/EwDQYJ KoZIhvcNAQELBQADggEBAFtn/HzsMJeXqg8hsomWft9pHarWbpV5+c2BNL/gIVC0 45E1VSMrwglGA3rR3YnLK1krsmSbOA80S08F8sc0CC8XuEwws5Pkh2Ku4TnjcJkq RbuylIjAYVPhFB1No6orN1I/XocUHlYoEgnjHCfDc2zK2I16aTkpv7sa/wj2k5ID OqXvi8IAgU/Mz+2nUtK57WtIZ+WP4A1sjUsYgAjiv1w5xERVxGIRq8SQsUxM6UDD 54oXAhFAcjODMMkSZKGQeaqavX4qIUPPkWq7AHYw2ru8GPIlOn1a4TOLDwlgZjGX D9Depb+k4XrkfSDyRMf5oybc/SWlM9m7hwd1m0LiU3M= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org