$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: yw3K/bp/LPi1I2OAb+IKkUT9fIWUEaXPoYhzWvShryU= Subject key identifier: 32:CF:ED:AF:19:F2:45:C4:D9:96:99:81:F4:BF:AF:60:50:FF:ED:F0 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 2AB92B984DA82EEC0C48718D660612B6940E8BA6 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Sep 2024 03:01:17 +0000 ROA not before: Tue 24 Sep 2024 02:56:17 +0000 ROA not after: Tue 23 Sep 2025 03:01:17 +0000 asID: 131745 IP address blocks: 210.247.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b9:2b:98:4d:a8:2e:ec:0c:48:71:8d:66:06:12:b6:94:0e:8b:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Sep 24 02:56:17 2024 GMT Not After : Sep 23 03:01:17 2025 GMT Subject: CN=32CFEDAF19F245C4D9969981F4BFAF6050FFEDF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ff:cb:91:6d:31:f0:a2:27:62:ee:a6:5b:f7: ee:52:a0:45:76:5f:fd:5e:ef:ad:a4:c6:07:ad:e9: 43:0c:6d:20:07:8d:95:49:8b:76:f4:67:ed:69:d2: 71:62:57:31:fb:76:4b:53:e6:f5:7c:8a:7a:b2:51: 30:7f:6f:68:71:0b:e2:29:c1:f7:45:2e:a8:b6:98: 01:8c:f7:f0:4a:3b:1c:a3:15:10:a2:c0:f0:b8:1a: 1a:92:c7:ef:4a:f8:1f:53:6d:70:95:f6:03:0b:45: 21:3b:9f:75:1c:75:f0:9f:90:53:8c:d4:c6:24:d9: 08:a2:18:a8:5c:f1:77:dc:e7:47:e3:b0:b7:a3:28: a8:96:59:31:81:70:08:1f:97:34:55:df:51:35:f6: 47:95:03:06:09:35:7b:50:41:42:66:e2:3f:0e:fa: 03:1a:64:7a:6c:34:0e:94:a4:83:ab:23:fe:76:82: bd:b9:a6:f2:b9:3e:ec:c6:51:99:87:44:52:06:45: 2b:d9:ae:8e:b9:78:64:4b:04:6a:f9:a6:9d:75:9d: 32:58:b6:4a:cb:21:33:1c:f9:9d:6e:61:f5:17:44: af:6c:f9:d3:93:72:68:41:5d:29:8b:bb:52:66:26: 16:7a:29:f4:b9:b6:c5:85:a8:77:ba:65:a4:bb:f4: 38:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CF:ED:AF:19:F2:45:C4:D9:96:99:81:F4:BF:AF:60:50:FF:ED:F0 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.254.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:85:71:e5:03:7e:c2:bc:35:3d:88:2c:01:f3:78:65:0e:9c: 15:19:40:0a:17:8c:5e:76:fe:8a:48:6a:7d:ce:b0:33:57:a1: 97:55:06:46:a1:98:61:40:f9:0a:57:71:1a:9f:4c:2f:a6:67: 9b:d3:54:f4:22:d4:fc:71:49:2e:aa:ab:42:a4:9a:f3:bb:ba: 0e:34:d9:98:35:df:05:d4:5a:a9:45:bc:7a:f1:9b:c2:5d:27: a8:d3:a2:50:cc:f6:7d:40:d5:37:a1:91:51:92:83:80:64:82: 59:8e:1a:63:e4:ad:24:3e:8b:fb:ff:1e:bb:a7:d1:17:08:f7: 6a:80:58:d9:79:1a:be:64:43:f0:7f:7c:71:88:57:85:d7:64: ca:b7:cb:c9:3d:42:31:bc:ff:e4:2f:68:2e:dc:ad:86:4b:05: 5f:4d:81:71:5a:c8:e9:3d:c6:ed:3c:bb:26:a2:79:74:6d:f7: 2a:82:b0:dc:16:b2:1f:e6:0c:9b:19:67:06:43:1e:75:ed:df: cb:f9:e9:32:e5:1f:68:f0:b7:84:2f:06:d8:b2:1e:1c:d2:63: 46:13:21:d3:2b:98:85:50:7f:04:c5:20:55:fc:3d:70:01:e4: 2f:b7:12:28:5a:93:8c:9d:df:59:a8:78:c4:b6:7b:fc:f0:52: 1f:2d:ab:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKrkrmE2oLuwMSHGNZgYStpQOi6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA5MjQwMjU2MTdaFw0yNTA5MjMwMzAxMTdaMDMxMTAvBgNV BAMTKDMyQ0ZFREFGMTlGMjQ1QzREOTk2OTk4MUY0QkZBRjYwNTBGRkVERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO/8uRbTHwoidi7qZb9+5SoEV2 X/1e762kxget6UMMbSAHjZVJi3b0Z+1p0nFiVzH7dktT5vV8inqyUTB/b2hxC+Ip wfdFLqi2mAGM9/BKOxyjFRCiwPC4GhqSx+9K+B9TbXCV9gMLRSE7n3UcdfCfkFOM 1MYk2QiiGKhc8Xfc50fjsLejKKiWWTGBcAgflzRV31E19keVAwYJNXtQQUJm4j8O +gMaZHpsNA6UpIOrI/52gr25pvK5PuzGUZmHRFIGRSvZro65eGRLBGr5pp11nTJY tkrLITMc+Z1uYfUXRK9s+dOTcmhBXSmLu1JmJhZ6KfS5tsWFqHe6ZaS79DgjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMs/trxnyRcTZlpmB9L+vYFD/7fAwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/4wDQYJ KoZIhvcNAQELBQADggEBAA6FceUDfsK8NT2ILAHzeGUOnBUZQAoXjF52/opIan3O sDNXoZdVBkahmGFA+QpXcRqfTC+mZ5vTVPQi1PxxSS6qq0KkmvO7ug402Zg13wXU WqlFvHrxm8JdJ6jTolDM9n1A1TehkVGSg4BkglmOGmPkrSQ+i/v/Hrun0RcI92qA WNl5Gr5kQ/B/fHGIV4XXZMq3y8k9QjG8/+QvaC7crYZLBV9NgXFayOk9xu08uyai eXRt9yqCsNwWsh/mDJsZZwZDHnXt38v56TLlH2jwt4QvBtiyHhzSY0YTIdMrmIVQ fwTFIFX8PXAB5C+3Eihak4yd31moeMS2e/zwUh8tq1U= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org