$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: f/UXoSDfbRkGf1lUmUNbaOYccjPXICPU6lcajtxcZik= Subject key identifier: CC:34:97:B7:8A:CA:55:52:AF:78:08:E4:78:68:FE:4F:AB:FF:45:F3 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 6A4E13DE4C444AF8B5BC6B960C01A01A987E9252 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:36 +0000 ROA not before: Mon 01 Jul 2024 00:58:36 +0000 ROA not after: Mon 30 Jun 2025 01:03:36 +0000 asID: 131745 IP address blocks: 210.247.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 05:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:4e:13:de:4c:44:4a:f8:b5:bc:6b:96:0c:01:a0:1a:98:7e:92:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:36 2024 GMT Not After : Jun 30 01:03:36 2025 GMT Subject: CN=CC3497B78ACA5552AF7808E47868FE4FABFF45F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:05:45:41:d3:01:33:34:13:71:2b:81:d5:ac: 2c:fe:f9:30:44:3b:70:0f:22:40:dd:29:7c:2e:78: 59:55:9d:9a:1d:01:fa:ce:cc:80:e2:c2:80:87:35: b5:ff:50:3c:9f:3b:ed:cb:88:c4:7d:ed:eb:e2:4b: 03:69:44:2e:5b:3c:8b:cd:22:e1:b2:47:21:40:7b: 8d:ed:d7:2c:8b:3c:19:a6:eb:32:62:67:76:a3:6f: b8:14:d3:1c:b5:f0:69:d1:65:33:57:49:30:42:88: 23:a8:22:99:fb:7a:1d:c1:40:d2:16:82:82:9d:7b: 66:f7:05:16:9d:c2:ba:e2:2c:87:8e:a2:e9:90:eb: 2f:c6:bf:45:ad:f9:a8:89:b5:2b:bc:9b:f7:e8:c4: d3:6d:cf:b0:0d:cf:fc:0f:56:62:10:03:8e:6a:ba: 14:16:8c:8a:98:f6:be:95:20:a2:a1:72:c9:d5:4e: 68:24:d7:5f:d5:9c:7d:6a:1f:91:40:00:b6:b2:39: 6b:b2:c0:39:53:67:66:eb:cd:6b:a8:9c:9b:a9:62: 23:c0:63:06:92:a8:2f:ba:e8:8e:51:e6:31:5c:80: a0:d3:07:40:fc:38:61:c4:bb:95:8c:00:a9:b0:07: d2:db:d5:3f:af:75:34:32:d4:95:61:3f:1d:ed:ea: e3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:34:97:B7:8A:CA:55:52:AF:78:08:E4:78:68:FE:4F:AB:FF:45:F3 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.247.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:0e:d1:4e:9d:43:00:cd:be:e4:aa:6b:e4:02:5b:08:5e:c6: 72:3a:68:af:6f:2a:bd:62:21:e5:0e:51:82:bb:04:74:13:f0: 90:11:66:c3:74:cd:50:73:52:1a:df:0f:44:63:f1:40:c8:e7: 69:e3:2a:37:c8:04:2d:c7:9c:b8:a0:e6:29:99:87:eb:89:fd: 8b:9a:52:78:83:57:d4:d5:f7:7d:a6:d7:6b:df:71:e7:3c:42: 58:3f:3e:a0:5c:7f:0a:d6:7a:25:c9:7a:c9:57:d2:ff:e1:dd: 36:ef:34:5b:92:b9:7a:de:f0:1f:87:16:fd:08:70:29:9a:97: bc:f6:be:0c:3d:09:8c:a6:c2:e6:5b:99:83:64:10:04:6e:cf: 75:fe:5b:44:bf:6d:6f:a2:4a:46:7b:0f:e5:ba:21:07:ae:a8: 33:e2:a1:9a:60:51:0c:12:7a:ac:d1:c5:da:51:e8:5e:7b:56: da:c1:55:03:11:b5:70:e6:6a:54:17:85:26:66:b8:2c:e1:0c: 0e:48:cf:07:66:31:03:0a:6d:71:23:5b:90:b6:2b:80:d5:40: 39:de:1a:ce:b5:35:c9:a2:b7:5d:8b:ef:0a:16:a3:7a:ba:28: 3e:a0:b3:47:5d:a4:78:d4:e0:dd:da:a8:cf:fa:65:30:3c:02: da:29:f2:6a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUak4T3kxESvi1vGuWDAGgGph+klIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzZaFw0yNTA2MzAwMTAzMzZaMDMxMTAvBgNV BAMTKENDMzQ5N0I3OEFDQTU1NTJBRjc4MDhFNDc4NjhGRTRGQUJGRjQ1RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGBUVB0wEzNBNxK4HVrCz++TBE O3APIkDdKXwueFlVnZodAfrOzIDiwoCHNbX/UDyfO+3LiMR97eviSwNpRC5bPIvN IuGyRyFAe43t1yyLPBmm6zJiZ3ajb7gU0xy18GnRZTNXSTBCiCOoIpn7eh3BQNIW goKde2b3BRadwrriLIeOoumQ6y/Gv0Wt+aiJtSu8m/foxNNtz7ANz/wPVmIQA45q uhQWjIqY9r6VIKKhcsnVTmgk11/VnH1qH5FAALayOWuywDlTZ2brzWuonJupYiPA YwaSqC+66I5R5jFcgKDTB0D8OGHEu5WMAKmwB9Lb1T+vdTQy1JVhPx3t6uNRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzDSXt4rKVVKveAjkeGj+T6v/RfMwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/cwDQYJ KoZIhvcNAQELBQADggEBAIwO0U6dQwDNvuSqa+QCWwhexnI6aK9vKr1iIeUOUYK7 BHQT8JARZsN0zVBzUhrfD0Rj8UDI52njKjfIBC3HnLig5imZh+uJ/YuaUniDV9TV 932m12vfcec8Qlg/PqBcfwrWeiXJeslX0v/h3TbvNFuSuXre8B+HFv0IcCmal7z2 vgw9CYymwuZbmYNkEARuz3X+W0S/bW+iSkZ7D+W6IQeuqDPioZpgUQwSeqzRxdpR 6F57VtrBVQMRtXDmalQXhSZmuCzhDA5IzwdmMQMKbXEjW5C2K4DVQDneGs61Ncmi t12L7woWo3q6KD6gs0ddpHjU4N3aqM/6ZTA8Atop8mo= -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:00 2025 by rpki-client