$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: IQcHIUy46CTJePR6Z9z+26UQZV8/dla1aLxrUhi96Yc= Subject key identifier: B5:F3:5C:86:96:49:B0:1A:2D:C7:AD:1B:FD:65:59:14:04:53:DA:94 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 713D7EF0ACC44989234AA8B72FDD192843DBFA6B Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:36 +0000 ROA not before: Mon 01 Jul 2024 00:58:36 +0000 ROA not after: Mon 30 Jun 2025 01:03:36 +0000 asID: 131745 IP address blocks: 210.247.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:3d:7e:f0:ac:c4:49:89:23:4a:a8:b7:2f:dd:19:28:43:db:fa:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:36 2024 GMT Not After : Jun 30 01:03:36 2025 GMT Subject: CN=B5F35C869649B01A2DC7AD1BFD6559140453DA94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:63:2d:35:b7:fd:ed:0b:a2:7c:52:90:7c:a0: c6:76:39:fb:cc:71:8e:5e:b5:d8:24:60:16:79:0a: aa:d6:b6:05:3a:80:7b:ec:0f:eb:47:a6:1d:5d:13: 13:e0:cf:f6:7c:ca:b8:e9:90:67:5a:46:d5:37:82: 46:84:f0:45:92:61:33:c5:5a:2b:67:fa:01:47:4d: b7:51:10:6f:31:6c:fa:d9:95:e6:0a:12:5d:15:67: a2:83:a9:c4:b5:d4:86:e9:35:38:c8:16:12:2d:cd: cb:92:4b:fb:e5:89:1b:5e:5b:28:7b:f3:52:73:27: 51:31:53:26:6b:f3:e0:5e:55:7b:ad:45:4f:ca:b0: 41:bd:cb:fc:da:e6:2b:99:79:05:b1:14:f9:8f:2d: de:85:11:b4:1a:88:bf:48:aa:31:c4:3e:5c:77:d3: 54:1b:0d:d1:f2:f0:35:bb:c1:1e:6f:58:39:dd:50: bc:09:f0:4f:17:3d:9d:04:48:38:9d:31:f1:68:c9: 49:f9:ee:50:65:c3:48:01:26:47:db:aa:09:d9:9e: 55:14:00:d2:bb:37:38:c3:20:c7:25:a0:2d:93:10: d4:9f:67:2d:01:cb:5c:d3:d2:99:ac:0a:a3:9e:4d: 6f:fd:4d:94:dc:79:57:cd:89:06:43:d0:d5:47:ec: 01:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F3:5C:86:96:49:B0:1A:2D:C7:AD:1B:FD:65:59:14:04:53:DA:94 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.250.0/24 Signature Algorithm: sha256WithRSAEncryption 80:72:f1:18:14:93:00:34:34:40:d6:19:d2:74:85:81:b2:a6: 9f:ed:a6:1e:d1:d4:24:e6:b1:9f:25:59:00:3c:9b:cd:14:60: 46:19:47:ad:ab:4f:b6:40:48:27:d9:6d:47:e3:18:60:51:94: 11:9c:f1:a6:cd:ba:a9:f7:72:dd:a7:14:91:22:86:e4:c4:4b: d0:8d:f1:40:37:0d:f9:e4:61:8c:13:29:26:a8:4f:1e:23:82: 05:0e:f4:f1:b6:0a:b2:14:9d:2c:65:e2:ab:23:f8:d4:80:46: 5e:9c:8e:ac:c5:fc:9a:70:ad:48:ab:5c:d0:11:65:9d:1f:37: 1e:75:47:b3:15:6d:aa:c2:f9:c4:88:fb:96:1d:ee:0f:51:b1: 86:67:c8:bb:f3:04:56:cb:79:3a:db:8c:7f:42:be:57:8f:60: f1:53:2b:36:88:5a:cd:bd:d4:88:86:9d:60:70:56:67:86:38: f5:ec:f6:93:9c:b8:fc:c6:be:79:d4:7b:f9:26:34:f9:34:1a: 20:79:63:e8:3d:36:5a:1e:b8:81:2c:27:ed:e2:14:3b:da:88: e2:36:11:a6:f2:a0:c1:47:c0:70:ca:a6:4a:ee:d4:98:45:f0: 92:ef:27:a3:ec:56:99:86:42:35:52:dc:80:78:68:b2:42:c3: 0a:36:b0:e8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcT1+8KzESYkjSqi3L90ZKEPb+mswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzZaFw0yNTA2MzAwMTAzMzZaMDMxMTAvBgNV BAMTKEI1RjM1Qzg2OTY0OUIwMUEyREM3QUQxQkZENjU1OTE0MDQ1M0RBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEYy01t/3tC6J8UpB8oMZ2OfvM cY5etdgkYBZ5CqrWtgU6gHvsD+tHph1dExPgz/Z8yrjpkGdaRtU3gkaE8EWSYTPF Witn+gFHTbdREG8xbPrZleYKEl0VZ6KDqcS11IbpNTjIFhItzcuSS/vliRteWyh7 81JzJ1ExUyZr8+BeVXutRU/KsEG9y/za5iuZeQWxFPmPLd6FEbQaiL9IqjHEPlx3 01QbDdHy8DW7wR5vWDndULwJ8E8XPZ0ESDidMfFoyUn57lBlw0gBJkfbqgnZnlUU ANK7NzjDIMcloC2TENSfZy0By1zT0pmsCqOeTW/9TZTceVfNiQZD0NVH7AGzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtfNchpZJsBotx60b/WVZFART2pQwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/owDQYJ KoZIhvcNAQELBQADggEBAIBy8RgUkwA0NEDWGdJ0hYGypp/tph7R1CTmsZ8lWQA8 m80UYEYZR62rT7ZASCfZbUfjGGBRlBGc8abNuqn3ct2nFJEihuTES9CN8UA3Dfnk YYwTKSaoTx4jggUO9PG2CrIUnSxl4qsj+NSARl6cjqzF/JpwrUirXNARZZ0fNx51 R7MVbarC+cSI+5Yd7g9RsYZnyLvzBFbLeTrbjH9CvlePYPFTKzaIWs291IiGnWBw VmeGOPXs9pOcuPzGvnnUe/kmNPk0GiB5Y+g9NloeuIEsJ+3iFDvaiOI2EabyoMFH wHDKpkru1JhF8JLvJ6PsVpmGQjVS3IB4aLJCwwo2sOg= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org