$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: +Wv9KU9iNmf8e+dcDb3YT6/AamLrR1m0U+jn1PjO20c= Subject key identifier: 30:D0:5E:68:C2:69:11:BA:E7:72:FA:91:D0:7A:65:E2:BE:DE:2D:D5 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 5F5BD654CE99AB80158E9A09AE0DDAA8D8E1076D Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:36 +0000 ROA not before: Mon 01 Jul 2024 00:58:36 +0000 ROA not after: Mon 30 Jun 2025 01:03:36 +0000 asID: 131745 IP address blocks: 210.247.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:5b:d6:54:ce:99:ab:80:15:8e:9a:09:ae:0d:da:a8:d8:e1:07:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:36 2024 GMT Not After : Jun 30 01:03:36 2025 GMT Subject: CN=30D05E68C26911BAE772FA91D07A65E2BEDE2DD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:08:4b:0c:89:62:d0:51:d7:0c:49:0d:a3: 54:06:51:31:cc:6c:c9:c9:0f:a8:f9:af:2f:f5:1f: 79:65:77:43:ba:91:ac:5e:43:87:a8:17:96:cc:8e: 16:00:93:27:aa:6e:cd:75:9e:3e:eb:32:28:ed:45: 8d:e0:21:ed:99:4b:ae:fd:ce:e2:4f:d5:3f:ea:2e: 70:9f:82:7f:3e:df:93:91:2b:62:f2:14:f1:03:8d: e2:52:bf:b2:70:8d:92:0b:d9:a6:2b:8a:5f:2b:99: 82:39:b9:64:4b:b4:e0:a2:48:4c:c8:7b:13:11:45: bc:bd:ce:53:f4:3a:0d:5a:b9:e2:e3:5d:99:04:0b: 76:be:99:22:b0:12:35:42:e6:e3:77:1d:01:8a:17: 09:35:a2:bb:3e:01:63:d1:1e:a0:60:3e:b7:4b:05: 78:5f:89:0c:7a:05:71:17:37:d9:70:96:a7:79:97: 23:e3:29:ab:dc:8c:c4:c9:d1:4c:e8:51:30:5e:d2: 28:bb:b8:5f:32:ac:84:47:72:21:55:8e:8a:6d:b9: 07:b5:68:c1:4f:26:c0:c9:5d:f7:2d:f1:94:e3:b5: fc:8f:4a:bb:65:76:cf:c3:1e:26:aa:d5:b1:79:08: 42:ec:16:94:3f:2e:00:f8:b5:9b:87:d3:25:fe:b2: fe:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D0:5E:68:C2:69:11:BA:E7:72:FA:91:D0:7A:65:E2:BE:DE:2D:D5 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.251.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:37:20:ef:cd:5f:86:0a:01:f3:30:54:2e:c8:dd:da:be:6a: 5d:45:03:9f:8d:d7:3a:a2:7b:36:95:f7:2b:53:a6:b7:46:b4: 76:e1:07:e9:9d:28:ee:33:b6:6a:42:8e:b6:b6:a4:f7:99:3b: 1f:ce:cc:e6:ce:ec:f2:df:be:2b:5f:20:78:51:65:3a:c1:da: ef:1c:a8:72:f0:bd:52:78:52:da:11:b5:6f:e5:43:96:85:58: 26:b4:f5:a2:c9:93:49:2f:e7:10:2a:c7:8c:c8:b7:3c:c1:ea: 74:4a:62:bf:43:6e:cf:61:36:b2:94:02:aa:20:fd:5c:03:43: 23:4d:7f:d7:62:b8:9f:c1:65:85:2c:43:3d:72:34:ad:85:29: cb:4f:7f:10:fa:d3:73:e8:d7:5f:1d:c7:b6:bb:75:a5:e1:bb: 3d:c1:5e:d1:82:72:12:03:3c:e6:ae:04:72:2c:80:fe:df:16: 88:a4:26:05:17:b1:50:28:9c:38:c0:4b:67:32:7a:9b:f2:38: 88:5b:55:a0:60:1c:62:10:63:b1:96:5d:63:eb:45:73:40:bc: 89:a9:55:2e:2a:aa:c0:f8:6c:7f:ec:ec:82:01:16:d0:72:79: 0a:ce:96:8c:67:c8:1a:c7:40:ef:2d:15:7b:5d:63:74:25:c2: 95:1d:f8:fb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX1vWVM6Zq4AVjpoJrg3aqNjhB20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzZaFw0yNTA2MzAwMTAzMzZaMDMxMTAvBgNV BAMTKDMwRDA1RTY4QzI2OTExQkFFNzcyRkE5MUQwN0E2NUUyQkVERTJERDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+vwhLDIli0FHXDEkNo1QGUTHM bMnJD6j5ry/1H3lld0O6kaxeQ4eoF5bMjhYAkyeqbs11nj7rMijtRY3gIe2ZS679 zuJP1T/qLnCfgn8+35ORK2LyFPEDjeJSv7JwjZIL2aYril8rmYI5uWRLtOCiSEzI exMRRby9zlP0Og1aueLjXZkEC3a+mSKwEjVC5uN3HQGKFwk1ors+AWPRHqBgPrdL BXhfiQx6BXEXN9lwlqd5lyPjKavcjMTJ0UzoUTBe0ii7uF8yrIRHciFVjoptuQe1 aMFPJsDJXfct8ZTjtfyPSrtlds/DHiaq1bF5CELsFpQ/LgD4tZuH0yX+sv7HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMNBeaMJpEbrncvqR0Hpl4r7eLdUwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/swDQYJ KoZIhvcNAQELBQADggEBAEo3IO/NX4YKAfMwVC7I3dq+al1FA5+N1zqiezaV9ytT prdGtHbhB+mdKO4ztmpCjra2pPeZOx/OzObO7PLfvitfIHhRZTrB2u8cqHLwvVJ4 UtoRtW/lQ5aFWCa09aLJk0kv5xAqx4zItzzB6nRKYr9Dbs9hNrKUAqog/VwDQyNN f9diuJ/BZYUsQz1yNK2FKctPfxD603Po118dx7a7daXhuz3BXtGCchIDPOauBHIs gP7fFoikJgUXsVAonDjAS2cyepvyOIhbVaBgHGIQY7GWXWPrRXNAvImpVS4qqsD4 bH/s7IIBFtByeQrOloxnyBrHQO8tFXtdY3QlwpUd+Ps= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org