$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 1tp2p0lmzVYvYN9LyCd/jXojPSljtaqZldm282NgTBI= Subject key identifier: 44:AA:AF:0D:7A:1F:90:E6:A2:64:B7:31:14:EA:B3:B6:5E:7D:82:36 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 5E9919408FBFB2947845DEDCF454BB34F2416F1E Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:36 +0000 ROA not before: Mon 01 Jul 2024 00:58:36 +0000 ROA not after: Mon 30 Jun 2025 01:03:36 +0000 asID: 131745 IP address blocks: 210.247.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:99:19:40:8f:bf:b2:94:78:45:de:dc:f4:54:bb:34:f2:41:6f:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:36 2024 GMT Not After : Jun 30 01:03:36 2025 GMT Subject: CN=44AAAF0D7A1F90E6A264B73114EAB3B65E7D8236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:06:f3:1b:41:5c:94:04:0e:20:b5:be:8b:6d: 12:72:9e:c6:80:a2:96:5b:e8:02:c6:4c:a5:fe:f4: 74:61:37:63:bf:e7:9a:7e:39:ba:20:17:a3:82:4e: 8d:01:e9:84:3b:ca:57:ea:38:d0:4b:68:43:e2:79: b4:71:e2:7d:9e:f1:3b:3c:ef:f3:8a:c0:f4:51:31: e2:68:f7:09:9d:bb:e1:33:d6:ce:f9:6c:9d:64:04: 38:28:6a:d0:70:5d:e4:21:01:6d:3c:c0:c5:9f:4d: c1:f9:82:50:33:26:25:61:01:97:ea:74:f8:c2:e8: f5:e0:03:a5:91:fe:84:ea:73:72:2b:61:cc:ad:85: e6:30:cb:5c:2a:e6:d2:f4:b1:75:bb:d5:18:bf:5a: 30:a4:fe:26:21:65:3e:d1:98:d8:13:f3:28:a7:c2: 58:17:c4:08:ed:fa:ce:cb:22:f7:75:60:13:da:b9: 05:27:24:a1:fe:f5:58:5b:7c:55:ba:f7:a5:4b:01: 03:c0:5d:bc:bb:a4:da:bf:f8:8a:4a:b8:2c:e2:58: 16:4c:1a:d1:e7:00:2d:2e:a1:f1:49:3e:00:c9:26: 33:b4:57:34:2b:24:9d:e8:4a:92:30:09:8c:0b:f9: 6f:a3:65:0b:ab:91:f6:34:35:a8:66:bd:90:b9:c3: 96:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:AA:AF:0D:7A:1F:90:E6:A2:64:B7:31:14:EA:B3:B6:5E:7D:82:36 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.245.0/24 Signature Algorithm: sha256WithRSAEncryption 44:64:d4:59:e9:64:1b:6b:74:1c:fc:11:92:0e:56:d9:d1:e4: f7:9b:08:83:86:50:51:5a:4f:96:20:5a:64:5e:8b:0f:58:f9: 6e:92:19:a1:fd:71:de:fb:b8:39:22:93:b2:59:7a:c5:47:70: f3:4f:25:a1:a1:dd:ec:b9:9f:37:12:33:b4:10:5e:06:22:0d: fe:30:2e:8d:23:9c:4f:64:4d:1f:48:38:f2:e8:cd:91:64:ca: be:30:0a:95:5b:71:bd:42:45:75:85:6f:9e:dd:fd:4d:5a:f3: 82:77:22:11:86:2f:cf:59:ad:89:8a:2b:d6:1d:70:e2:e7:17: 67:7f:c8:ed:d1:a5:a0:0f:15:3a:2f:ba:b5:2e:10:2b:29:85: 77:d7:ac:9e:59:9e:3e:b8:7a:56:52:f1:fa:9a:57:ca:f4:a0: 9b:2b:e3:95:ca:ed:3f:30:3b:65:8f:73:ee:b1:3f:85:8a:98: f9:d7:0f:36:1d:6e:da:51:fa:dd:7f:92:ea:dd:fb:b9:ec:42: e4:59:9f:97:62:05:ac:70:61:db:4b:75:b1:fa:92:69:47:3a: 26:90:d7:f7:e7:95:e8:90:be:e3:ef:9f:c3:46:82:4f:4c:74: c2:8a:1f:a3:12:78:2a:e3:e8:3f:55:c6:5b:f0:2f:b2:87:36: 1b:47:8f:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXpkZQI+/spR4Rd7c9FS7NPJBbx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzZaFw0yNTA2MzAwMTAzMzZaMDMxMTAvBgNV BAMTKDQ0QUFBRjBEN0ExRjkwRTZBMjY0QjczMTE0RUFCM0I2NUU3RDgyMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDABvMbQVyUBA4gtb6LbRJynsaA opZb6ALGTKX+9HRhN2O/55p+ObogF6OCTo0B6YQ7ylfqONBLaEPiebRx4n2e8Ts8 7/OKwPRRMeJo9wmdu+Ez1s75bJ1kBDgoatBwXeQhAW08wMWfTcH5glAzJiVhAZfq dPjC6PXgA6WR/oTqc3IrYcytheYwy1wq5tL0sXW71Ri/WjCk/iYhZT7RmNgT8yin wlgXxAjt+s7LIvd1YBPauQUnJKH+9VhbfFW696VLAQPAXby7pNq/+IpKuCziWBZM GtHnAC0uofFJPgDJJjO0VzQrJJ3oSpIwCYwL+W+jZQurkfY0NahmvZC5w5arAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURKqvDXofkOaiZLcxFOqztl59gjYwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/UwDQYJ KoZIhvcNAQELBQADggEBAERk1FnpZBtrdBz8EZIOVtnR5PebCIOGUFFaT5YgWmRe iw9Y+W6SGaH9cd77uDkik7JZesVHcPNPJaGh3ey5nzcSM7QQXgYiDf4wLo0jnE9k TR9IOPLozZFkyr4wCpVbcb1CRXWFb57d/U1a84J3IhGGL89ZrYmKK9YdcOLnF2d/ yO3RpaAPFTovurUuECsphXfXrJ5Znj64elZS8fqaV8r0oJsr45XK7T8wO2WPc+6x P4WKmPnXDzYdbtpR+t1/kurd+7nsQuRZn5diBaxwYdtLdbH6kmlHOiaQ1/fnleiQ vuPvn8NGgk9MdMKKH6MSeCrj6D9VxlvwL7KHNhtHjxI= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:08 2024 by rpki-client on console-ams.rpki-client.org