$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: ZfF3KZtk2dhQe1TSXKb5jkKHdT8hFQeAF+Yp3HxE2X8= Subject key identifier: F2:CC:AC:38:5C:B8:4E:F3:3A:8C:AC:A1:FE:D4:F4:C7:72:35:5D:0B Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 511DC17A5C4DD31E5C82BF5C723F5B86BCF54936 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:36 +0000 ROA not before: Mon 01 Jul 2024 00:58:36 +0000 ROA not after: Mon 30 Jun 2025 01:03:36 +0000 asID: 131745 IP address blocks: 210.247.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:1d:c1:7a:5c:4d:d3:1e:5c:82:bf:5c:72:3f:5b:86:bc:f5:49:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:36 2024 GMT Not After : Jun 30 01:03:36 2025 GMT Subject: CN=F2CCAC385CB84EF33A8CACA1FED4F4C772355D0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:ac:6d:b7:14:18:72:c0:a5:bd:bf:b6:75: 8c:bf:00:8c:dc:6b:22:ae:b3:75:ce:96:9d:9f:c0: 25:0c:e3:1e:06:7d:e6:ed:2b:1c:64:46:db:6f:8a: 63:ed:23:e9:62:b9:7d:30:f0:71:cd:e8:e8:18:3d: 5a:07:24:2d:b4:c2:2b:01:87:c5:67:29:e6:7d:84: 81:f4:6d:ef:4e:ef:39:ba:89:fe:5c:47:d2:7c:58: 5b:2b:18:44:ba:a7:b9:f9:16:8d:fa:a5:9a:57:2e: 5f:e6:74:5d:8e:54:11:27:68:54:27:37:84:da:59: 66:a7:76:ab:ed:c6:1f:6e:79:66:64:ef:9f:19:69: 0a:09:c4:e7:8e:11:06:2e:b3:3a:49:77:55:65:68: 34:68:17:54:21:3a:ba:27:87:02:92:ae:ce:60:cf: c2:6c:9b:75:38:32:ae:b7:ea:92:6d:44:db:e3:25: 06:76:1d:a8:b5:23:70:33:ab:1d:49:49:9f:3f:65: b2:ec:cf:9d:c0:29:3e:93:0d:b2:27:82:9b:b7:da: 26:38:e2:5d:f7:40:e2:b7:45:90:0b:53:59:cd:0f: 45:78:7f:db:a6:30:1d:eb:ca:06:fd:99:2f:e3:42: 10:a3:d4:ae:5f:94:50:65:b2:1b:a1:84:ec:bc:e9: 61:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CC:AC:38:5C:B8:4E:F3:3A:8C:AC:A1:FE:D4:F4:C7:72:35:5D:0B X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.249.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:95:3a:db:8a:70:92:06:6c:c0:63:bc:d2:8d:fb:05:d3:29: b9:49:2d:1e:6b:f1:ea:9f:66:e3:1f:83:89:00:68:d0:cf:8c: d8:03:fe:e3:6b:a9:4b:85:46:81:83:9b:ca:44:f4:ca:77:83: 3b:19:e7:ad:be:14:1c:45:7d:bb:11:4e:b3:89:ce:97:5e:b3: 6e:43:43:07:77:24:6d:97:6c:ea:58:60:61:01:49:dd:99:dd: 36:0e:e6:6d:5d:59:52:45:e3:d6:cb:df:89:9d:9d:1f:6b:48: bd:73:df:cb:f0:51:3f:f5:7f:dc:82:79:9f:fb:4c:6c:29:fa: d0:79:de:aa:4a:50:a1:ef:85:06:7c:a9:e0:28:3c:67:55:c7: 93:68:96:c4:6a:d4:2e:fe:ca:c2:ac:29:b7:be:1e:d3:9a:63: 5f:52:24:a3:5c:82:51:5f:9b:66:a3:a7:c2:7a:4b:c5:87:4c: 28:f4:cb:f1:2c:b1:52:dd:af:64:27:7a:79:10:39:f6:67:cb: a6:b4:b9:07:2e:bc:04:75:04:c6:61:d0:ad:be:75:28:65:d2: 56:f9:27:57:b4:9c:c2:5c:ea:79:23:e0:85:8c:03:cd:00:9b: 34:9c:68:30:35:ab:c1:13:d7:57:91:03:54:22:72:c7:3f:dc: a8:d5:0c:79 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUR3BelxN0x5cgr9ccj9bhrz1STYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzZaFw0yNTA2MzAwMTAzMzZaMDMxMTAvBgNV BAMTKEYyQ0NBQzM4NUNCODRFRjMzQThDQUNBMUZFRDRGNEM3NzIzNTVEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvuqxttxQYcsClvb+2dYy/AIzc ayKus3XOlp2fwCUM4x4GfebtKxxkRttvimPtI+liuX0w8HHN6OgYPVoHJC20wisB h8VnKeZ9hIH0be9O7zm6if5cR9J8WFsrGES6p7n5Fo36pZpXLl/mdF2OVBEnaFQn N4TaWWandqvtxh9ueWZk758ZaQoJxOeOEQYuszpJd1VlaDRoF1QhOronhwKSrs5g z8Jsm3U4Mq636pJtRNvjJQZ2Hai1I3Azqx1JSZ8/ZbLsz53AKT6TDbIngpu32iY4 4l33QOK3RZALU1nND0V4f9umMB3rygb9mS/jQhCj1K5flFBlshuhhOy86WH3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8sysOFy4TvM6jKyh/tT0x3I1XQswHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/kwDQYJ KoZIhvcNAQELBQADggEBAC+VOtuKcJIGbMBjvNKN+wXTKblJLR5r8eqfZuMfg4kA aNDPjNgD/uNrqUuFRoGDm8pE9Mp3gzsZ562+FBxFfbsRTrOJzpdes25DQwd3JG2X bOpYYGEBSd2Z3TYO5m1dWVJF49bL34mdnR9rSL1z38vwUT/1f9yCeZ/7TGwp+tB5 3qpKUKHvhQZ8qeAoPGdVx5NolsRq1C7+ysKsKbe+HtOaY19SJKNcglFfm2ajp8J6 S8WHTCj0y/EssVLdr2QnenkQOfZny6a0uQcuvAR1BMZh0K2+dShl0lb5J1e0nMJc 6nkj4IWMA80AmzScaDA1q8ET11eRA1Qicsc/3KjVDHk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org