$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234332e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234332e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: q5exjX9sipnlgCr446gNBKp3hcZ5p+bSP3uX63/NcUU= Subject key identifier: 4B:37:EC:F3:2F:65:5A:9C:4F:AB:61:B0:0A:0D:04:EF:BF:62:DF:12 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 7BD1E50DF672C8D90051FE65B1FB083A0770FC36 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234332e302f32342d3234203d3e20313331373435.roa Signing time: Sun 04 Aug 2024 00:08:35 +0000 ROA not before: Sun 04 Aug 2024 00:03:35 +0000 ROA not after: Sun 03 Aug 2025 00:08:35 +0000 asID: 131745 IP address blocks: 210.247.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d1:e5:0d:f6:72:c8:d9:00:51:fe:65:b1:fb:08:3a:07:70:fc:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Aug 4 00:03:35 2024 GMT Not After : Aug 3 00:08:35 2025 GMT Subject: CN=4B37ECF32F655A9C4FAB61B00A0D04EFBF62DF12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f5:90:ab:0a:f0:ef:5a:3e:01:d6:5f:76:f2: 2f:ab:19:4b:9a:49:65:15:bf:48:2c:db:d0:8d:94: 2b:81:7b:79:4e:6e:c0:12:f4:3e:d5:00:4e:d5:91: d8:db:d2:cf:2f:25:45:1c:e7:24:a6:63:fd:81:d8: ab:b9:96:fc:78:2e:38:4f:e7:85:04:d9:91:e9:73: 19:61:70:9a:31:db:b2:53:22:19:63:f6:5a:97:78: 62:d6:a4:b4:b9:ca:3e:60:5e:ce:51:0f:36:3a:30: a6:3f:13:16:cf:e3:80:ea:28:27:c2:b9:36:79:76: 84:42:21:a3:2f:2f:bb:3d:98:9b:a3:dc:68:87:03: 09:14:8c:f5:59:a3:e3:88:28:9b:83:52:18:de:c7: cc:17:20:81:c8:8d:91:fc:0e:f4:14:05:15:5c:16: 0b:cc:5c:df:93:72:97:e5:67:5b:44:18:d5:de:d6: 9c:80:4b:7d:ac:0c:ba:48:42:46:7e:68:93:ad:fd: e7:38:e8:72:bd:69:97:3a:ee:6c:06:fd:3a:c6:2c: e7:ce:df:c8:f2:97:cf:31:28:61:10:f0:b7:4b:a1: 36:29:7e:b4:f6:64:d7:1d:65:61:b3:7f:53:fa:51: e3:16:f2:5e:db:00:37:08:c4:3e:96:2a:09:29:12: 74:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:37:EC:F3:2F:65:5A:9C:4F:AB:61:B0:0A:0D:04:EF:BF:62:DF:12 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234332e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.243.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:d1:2f:6a:48:ff:13:a2:67:de:cb:8d:9b:85:66:93:2d:ad: 54:de:fb:eb:58:68:22:12:fd:96:e3:e5:d3:27:f6:68:96:96: fd:99:a1:45:40:a0:fc:1c:34:8f:76:b7:e7:d0:4c:62:8d:15: 2a:76:c8:86:a2:0c:13:34:ec:cf:1d:10:98:f5:9f:47:14:83: 9e:e2:d3:12:54:ac:e8:0b:41:17:b8:60:f2:79:c5:15:ba:37: 6d:11:a2:3a:76:46:2c:24:dd:a1:32:f0:31:55:95:81:f3:97: 9c:f7:42:d9:aa:c6:37:9b:36:78:3f:01:cc:c3:2f:ac:82:1f: 1b:73:f4:15:f9:ac:f0:1d:4f:26:a3:a7:e7:bc:6a:60:89:3b: b2:97:3c:26:33:34:27:80:91:c6:48:ae:b4:f5:43:25:37:13: 7f:d6:0f:95:84:8f:94:00:e3:eb:87:a8:fd:cf:31:e5:bb:15: da:46:77:b8:06:53:62:20:39:4e:92:c8:ba:9b:98:46:63:26: d2:98:7e:60:90:3b:27:b7:79:03:b0:f9:ff:39:be:36:4d:4d: 13:16:49:e6:2d:76:ab:83:03:72:28:27:4a:99:63:13:b3:a6: dd:ee:a2:e3:73:9d:ff:c5:bc:58:fb:34:0b:e5:04:75:ae:7d: da:45:e8:09 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe9HlDfZyyNkAUf5lsfsIOgdw/DYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA4MDQwMDAzMzVaFw0yNTA4MDMwMDA4MzVaMDMxMTAvBgNV BAMTKDRCMzdFQ0YzMkY2NTVBOUM0RkFCNjFCMDBBMEQwNEVGQkY2MkRGMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX9ZCrCvDvWj4B1l928i+rGUua SWUVv0gs29CNlCuBe3lObsAS9D7VAE7Vkdjb0s8vJUUc5ySmY/2B2Ku5lvx4LjhP 54UE2ZHpcxlhcJox27JTIhlj9lqXeGLWpLS5yj5gXs5RDzY6MKY/ExbP44DqKCfC uTZ5doRCIaMvL7s9mJuj3GiHAwkUjPVZo+OIKJuDUhjex8wXIIHIjZH8DvQUBRVc FgvMXN+TcpflZ1tEGNXe1pyAS32sDLpIQkZ+aJOt/ec46HK9aZc67mwG/TrGLOfO 38jyl88xKGEQ8LdLoTYpfrT2ZNcdZWGzf1P6UeMW8l7bADcIxD6WKgkpEnTfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSzfs8y9lWpxPq2GwCg0E779i3xIwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/MwDQYJ KoZIhvcNAQELBQADggEBAHzRL2pI/xOiZ97LjZuFZpMtrVTe++tYaCIS/Zbj5dMn 9miWlv2ZoUVAoPwcNI92t+fQTGKNFSp2yIaiDBM07M8dEJj1n0cUg57i0xJUrOgL QRe4YPJ5xRW6N20Rojp2Riwk3aEy8DFVlYHzl5z3QtmqxjebNng/AczDL6yCHxtz 9BX5rPAdTyajp+e8amCJO7KXPCYzNCeAkcZIrrT1QyU3E3/WD5WEj5QA4+uHqP3P MeW7FdpGd7gGU2IgOU6SyLqbmEZjJtKYfmCQOye3eQOw+f85vjZNTRMWSeYtdquD A3IoJ0qZYxOzpt3uouNznf/FvFj7NAvlBHWufdpF6Ak= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org