$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: ee3hb82wlCfvRHJv/Z0BLwZrijit1p8khM33Y7zMuT4= Subject key identifier: DC:BB:92:8B:9E:8E:F4:37:AA:79:85:62:9B:BE:AA:99:9A:47:7B:5A Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 1938A7E0FAAF23F7A4351E1CF30789259B0D417E Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:35 +0000 ROA not before: Mon 01 Jul 2024 00:58:35 +0000 ROA not after: Mon 30 Jun 2025 01:03:35 +0000 asID: 131745 IP address blocks: 210.247.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:38:a7:e0:fa:af:23:f7:a4:35:1e:1c:f3:07:89:25:9b:0d:41:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:35 2024 GMT Not After : Jun 30 01:03:35 2025 GMT Subject: CN=DCBB928B9E8EF437AA7985629BBEAA999A477B5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3b:b8:a7:71:65:4e:3d:70:f2:de:9e:96:09: 4e:63:79:1b:2c:18:f0:b9:89:cf:13:cf:da:d9:1c: 55:88:82:ae:3d:42:ed:e3:e4:49:2c:b9:04:40:cc: fc:fb:6c:5f:75:45:9a:bb:fe:88:19:0e:e4:5e:78: 26:0c:1c:c3:c9:28:d6:96:98:83:a6:d6:71:07:e9: 09:e3:9c:9c:f1:62:bc:ce:43:30:1b:4f:64:49:2b: 2b:3a:b7:fb:f1:d5:9e:f9:10:90:e5:2c:e0:40:43: de:a6:8b:01:99:c5:a6:ae:8c:de:f5:7d:1b:8e:c7: 74:bf:d0:c2:4f:41:fc:5d:b1:e8:3a:ad:23:0d:7d: 63:94:4d:e6:49:49:c7:54:0a:22:a6:4e:69:23:49: a1:94:a6:19:78:d1:cc:7b:4b:bf:e4:8a:95:03:e0: 62:ae:1e:74:16:1e:bd:58:e1:98:fe:0d:64:06:81: df:8c:3b:4c:00:76:be:ed:93:a8:79:ef:14:88:59: 73:78:06:8b:9f:53:59:fd:91:31:76:10:e4:b1:6c: e4:4f:2d:d3:60:68:b1:a8:e0:2d:73:0d:6c:b1:5d: 1f:eb:43:e5:14:44:c7:12:6f:ab:c1:ce:0b:41:ba: 2b:48:bc:2d:b8:f2:fb:86:bd:03:20:aa:3b:2a:1d: fe:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BB:92:8B:9E:8E:F4:37:AA:79:85:62:9B:BE:AA:99:9A:47:7B:5A X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.248.0/24 Signature Algorithm: sha256WithRSAEncryption 96:60:fd:b3:f0:85:50:89:62:20:27:e0:f0:34:ac:58:15:c1: a4:b5:cd:4b:04:5e:9f:38:7f:2b:4d:a1:4a:97:48:65:73:b8: cb:f8:ec:3f:f3:3a:79:0f:61:63:52:5f:bd:59:0a:9f:cd:e2: 16:0f:c1:d3:e5:70:1c:ee:92:3c:ef:b5:21:25:5f:7e:7c:46: dd:a9:f4:2d:53:de:36:fc:25:4e:1e:54:e6:41:bb:65:00:a8: 68:79:05:56:00:f7:36:bf:c2:f9:5c:b9:d6:ac:13:45:52:69: a4:2f:22:bb:35:ce:45:d4:9f:4a:39:9f:f3:93:a0:0a:af:62: 64:32:78:b1:00:c3:71:5d:e8:a3:a1:3d:be:cf:89:03:c7:0a: e3:ca:9a:0c:8a:fd:8c:93:6d:e8:ae:29:c3:0f:a4:5c:68:84: 51:0c:81:7c:24:7c:d2:c6:6e:08:db:1b:af:90:10:2e:e7:39: 36:c9:e3:04:86:92:a0:2f:4d:f3:ac:00:8c:0b:52:e8:00:6c: 19:32:b3:ec:41:76:ed:21:2c:3e:98:ad:50:93:37:98:c4:96: 48:8d:6a:63:9e:f1:f5:a5:c6:d9:16:51:62:23:cd:ea:46:41: 43:10:45:ef:63:67:b3:f4:09:1e:3a:44:6d:52:b8:4e:cd:61: fd:b7:2d:c5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGTin4PqvI/ekNR4c8weJJZsNQX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzVaFw0yNTA2MzAwMTAzMzVaMDMxMTAvBgNV BAMTKERDQkI5MjhCOUU4RUY0MzdBQTc5ODU2MjlCQkVBQTk5OUE0NzdCNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/O7incWVOPXDy3p6WCU5jeRss GPC5ic8Tz9rZHFWIgq49Qu3j5EksuQRAzPz7bF91RZq7/ogZDuReeCYMHMPJKNaW mIOm1nEH6QnjnJzxYrzOQzAbT2RJKys6t/vx1Z75EJDlLOBAQ96miwGZxaaujN71 fRuOx3S/0MJPQfxdseg6rSMNfWOUTeZJScdUCiKmTmkjSaGUphl40cx7S7/kipUD 4GKuHnQWHr1Y4Zj+DWQGgd+MO0wAdr7tk6h57xSIWXN4BoufU1n9kTF2EOSxbORP LdNgaLGo4C1zDWyxXR/rQ+UURMcSb6vBzgtBuitIvC248vuGvQMgqjsqHf4BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3LuSi56O9DeqeYVim76qmZpHe1owHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/gwDQYJ KoZIhvcNAQELBQADggEBAJZg/bPwhVCJYiAn4PA0rFgVwaS1zUsEXp84fytNoUqX SGVzuMv47D/zOnkPYWNSX71ZCp/N4hYPwdPlcBzukjzvtSElX358Rt2p9C1T3jb8 JU4eVOZBu2UAqGh5BVYA9za/wvlcudasE0VSaaQvIrs1zkXUn0o5n/OToAqvYmQy eLEAw3Fd6KOhPb7PiQPHCuPKmgyK/YyTbeiuKcMPpFxohFEMgXwkfNLGbgjbG6+Q EC7nOTbJ4wSGkqAvTfOsAIwLUugAbBkys+xBdu0hLD6YrVCTN5jElkiNamOe8fWl xtkWUWIjzepGQUMQRe9jZ7P0CR46RG1SuE7NYf23LcU= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org