$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: lYozuS7H8g71TmDAhlsE7Z+j/6P9Ega8nsca+NA9iZs= Subject key identifier: D4:37:90:DC:1B:7D:3D:93:0E:21:09:2E:61:ED:A6:A5:25:2E:8A:13 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 6D53707D59F4C2DF89B4BFA78B1F0941802FEE57 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Sep 2024 02:00:01 +0000 ROA not before: Tue 24 Sep 2024 01:55:01 +0000 ROA not after: Tue 23 Sep 2025 02:00:01 +0000 asID: 131745 IP address blocks: 210.247.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:53:70:7d:59:f4:c2:df:89:b4:bf:a7:8b:1f:09:41:80:2f:ee:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Sep 24 01:55:01 2024 GMT Not After : Sep 23 02:00:01 2025 GMT Subject: CN=D43790DC1B7D3D930E21092E61EDA6A5252E8A13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:22:74:13:70:91:a5:5e:09:d2:72:aa:26:8c: b3:bf:bb:3d:c7:7e:57:b3:56:58:5a:9a:f3:33:4c: 8f:b5:f1:65:e3:4b:a3:e9:c6:d3:09:2d:4c:d7:fa: 0b:4e:30:cf:09:d4:a1:a6:03:83:5c:1d:4a:7b:d4: 81:f4:fa:ba:08:12:6b:49:08:61:08:08:6a:2f:0d: b7:e1:1d:fb:bc:d1:87:cb:58:8f:bc:18:9f:24:c1: 1f:ca:2c:4f:41:e0:ae:df:51:29:1a:20:b2:0e:cb: 7e:7c:83:28:46:75:0c:85:93:d2:00:c1:24:f4:90: fc:8e:6e:97:b9:36:a3:cb:fa:b2:a1:91:fb:f7:8f: 26:9f:92:60:80:64:3e:f6:01:21:ab:03:81:46:f6: 84:92:fd:e2:40:f9:16:42:93:9c:52:2f:37:41:bf: c3:f4:08:36:dc:84:12:bc:31:3a:2d:18:bd:60:13: 35:3e:d5:3c:6f:f6:83:6e:c9:04:da:90:b1:ea:36: 35:9e:b0:6d:3b:1d:b2:5e:38:28:fa:5d:98:23:65: da:8d:c7:af:7d:e6:31:6a:af:85:10:82:df:e6:57: 5a:75:ba:5c:80:0f:48:db:63:7c:11:54:b2:49:e3: 01:00:fb:2c:f9:f6:cb:48:e9:06:58:2d:59:b1:e9: c0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:37:90:DC:1B:7D:3D:93:0E:21:09:2E:61:ED:A6:A5:25:2E:8A:13 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.253.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:1b:6a:69:66:d2:a1:0f:1b:10:4f:e3:45:f4:cb:74:94:54: 0c:aa:21:db:0c:1e:6d:a6:f0:79:28:9f:da:c5:58:54:5e:54: 85:d3:41:67:94:ac:6b:3b:7b:23:12:d5:a5:3a:25:ca:a7:01: dd:aa:22:0d:6d:a5:8c:fc:49:8f:e6:ae:e8:b1:d6:fe:0e:41: 81:cc:19:7f:8c:84:e8:f7:92:80:c8:70:29:bf:a0:a2:17:84: 04:d7:4c:2e:ce:35:47:28:43:9b:1c:a1:eb:bf:e7:92:8d:da: 72:41:89:d6:62:b3:89:37:4f:48:24:60:3f:ef:1a:5b:16:f5: 13:84:9f:10:82:26:d2:96:da:8a:74:8b:45:b8:3c:30:8b:32: ba:50:96:f2:23:41:65:5d:2c:bf:63:97:80:d4:ca:6d:ef:e2: a3:8c:90:31:87:9f:f0:1d:0a:b7:5e:15:5e:a1:40:6d:62:16: ef:33:f0:dd:de:d9:82:41:8b:f4:98:21:b5:77:a4:49:5d:44: 04:94:44:05:91:b1:4d:3f:6c:ef:40:0e:ca:82:61:6f:e4:db: 0a:67:4b:e5:70:15:ea:eb:0c:76:29:1b:66:ce:23:3a:3d:78: bc:3c:f0:66:52:23:31:8b:1d:93:d4:0a:63:39:8f:50:ce:45: 72:2d:2b:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbVNwfVn0wt+JtL+nix8JQYAv7lcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA5MjQwMTU1MDFaFw0yNTA5MjMwMjAwMDFaMDMxMTAvBgNV BAMTKEQ0Mzc5MERDMUI3RDNEOTMwRTIxMDkyRTYxRURBNkE1MjUyRThBMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkInQTcJGlXgnScqomjLO/uz3H flezVlhamvMzTI+18WXjS6PpxtMJLUzX+gtOMM8J1KGmA4NcHUp71IH0+roIEmtJ CGEICGovDbfhHfu80YfLWI+8GJ8kwR/KLE9B4K7fUSkaILIOy358gyhGdQyFk9IA wST0kPyObpe5NqPL+rKhkfv3jyafkmCAZD72ASGrA4FG9oSS/eJA+RZCk5xSLzdB v8P0CDbchBK8MTotGL1gEzU+1Txv9oNuyQTakLHqNjWesG07HbJeOCj6XZgjZdqN x6995jFqr4UQgt/mV1p1ulyAD0jbY3wRVLJJ4wEA+yz59stI6QZYLVmx6cAdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1DeQ3Bt9PZMOIQkuYe2mpSUuihMwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/0wDQYJ KoZIhvcNAQELBQADggEBAF4bamlm0qEPGxBP40X0y3SUVAyqIdsMHm2m8Hkon9rF WFReVIXTQWeUrGs7eyMS1aU6JcqnAd2qIg1tpYz8SY/mruix1v4OQYHMGX+MhOj3 koDIcCm/oKIXhATXTC7ONUcoQ5scoeu/55KN2nJBidZis4k3T0gkYD/vGlsW9ROE nxCCJtKW2op0i0W4PDCLMrpQlvIjQWVdLL9jl4DUym3v4qOMkDGHn/AdCrdeFV6h QG1iFu8z8N3e2YJBi/SYIbV3pEldRASURAWRsU0/bO9ADsqCYW/k2wpnS+VwFerr DHYpG2bOIzo9eLw88GZSIzGLHZPUCmM5j1DORXItKwM= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org