$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: DLEEWRg8CzNEC40bkoq+06vWx/pLLLcKvRY7UIZLKcs= Subject key identifier: 7C:AF:D4:50:B6:D4:BC:23:E2:B3:AA:E8:37:25:C2:16:00:36:15:4E Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 4869880939B87C971E0AC586B6A954DEB6B955FC Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Sep 2024 03:01:17 +0000 ROA not before: Tue 24 Sep 2024 02:56:17 +0000 ROA not after: Tue 23 Sep 2025 03:01:17 +0000 asID: 131745 IP address blocks: 210.247.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:69:88:09:39:b8:7c:97:1e:0a:c5:86:b6:a9:54:de:b6:b9:55:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Sep 24 02:56:17 2024 GMT Not After : Sep 23 03:01:17 2025 GMT Subject: CN=7CAFD450B6D4BC23E2B3AAE83725C2160036154E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:be:68:b9:da:6d:d2:78:80:c3:dc:1d:5d: 46:60:46:65:4c:45:87:88:b4:f0:20:41:63:9e:19: 63:8c:b7:f6:b0:e1:4f:9c:b4:5e:cf:a5:f2:b6:80: ff:bc:8b:0e:13:69:11:8f:17:6c:4b:f8:33:57:57: 4b:32:d5:e2:dd:43:e0:d4:d5:b8:46:02:63:5b:e7: 07:c4:33:b2:dd:22:2b:3e:f4:c4:0b:ec:b0:f5:55: 0b:62:d9:ae:8a:50:cc:9f:f4:49:8b:69:66:8c:7b: 6b:87:d4:16:e8:5c:28:1b:fc:73:bf:c4:79:78:90: 79:90:a7:75:5d:e1:8b:29:b9:cb:b1:26:85:2d:74: 58:96:76:28:03:ce:3b:89:f8:ed:df:c3:3e:e2:c0: 92:6b:b4:98:9b:b4:91:2b:60:8f:e5:7d:46:6f:98: f0:6e:cd:71:3c:73:3d:d3:87:ab:c6:7f:54:bf:4e: c6:19:6f:e4:f0:5d:d1:52:ef:ab:6c:15:f2:e7:88: a7:bf:69:ec:2d:66:aa:c5:3f:89:30:11:5d:4f:15: 86:cc:ca:47:da:01:08:cb:2c:9e:2f:9d:13:35:79: dd:78:57:dd:a7:2d:4e:e8:00:ed:34:d5:ee:f6:64: 7b:8e:56:c8:78:6c:3b:90:bb:90:e9:85:27:e3:57: b1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AF:D4:50:B6:D4:BC:23:E2:B3:AA:E8:37:25:C2:16:00:36:15:4E X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.255.0/24 Signature Algorithm: sha256WithRSAEncryption 25:dc:0c:1c:29:ac:f5:e8:c0:4d:17:ff:e3:b2:dd:ae:e9:2f: cc:60:3b:6e:8d:c8:5b:45:54:45:59:36:31:df:35:d5:8f:a5: 89:c8:8d:b9:c0:08:80:51:95:03:10:6b:80:86:66:8e:28:34: b5:ed:40:02:a4:f6:26:1e:a5:31:d8:04:e2:89:4d:36:5c:0d: 60:2f:ed:fb:b2:23:dd:50:d0:c3:4d:a1:ba:65:e8:c2:41:66: 34:7f:c4:79:57:37:bc:90:16:33:07:91:f6:b7:8e:2e:e1:d0: 7d:34:45:9b:7c:df:10:ac:36:90:d8:b8:44:fe:8b:1c:04:47: ef:a1:ae:0f:25:6e:02:e1:c5:97:c0:d2:7b:82:0f:ee:47:e4: 1a:23:28:d3:0c:0c:cc:8e:0d:fd:72:a4:f6:80:30:58:b4:19: 64:54:e4:73:ce:bf:f0:71:a0:d3:e5:1e:c3:9e:91:c4:43:2f: 80:a9:56:d4:59:13:45:e8:f6:43:d5:21:f0:76:30:47:cc:0c: c2:8a:a4:14:2e:18:57:2f:08:a3:75:2f:b8:03:53:7e:1c:0d: 3a:da:2f:21:c3:26:38:64:4d:0a:67:46:e7:df:18:51:87:3b: e4:ed:22:6e:7d:d7:8a:87:cd:f7:22:67:61:62:83:78:80:c5: 63:ec:1c:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSGmICTm4fJceCsWGtqlU3ra5VfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA5MjQwMjU2MTdaFw0yNTA5MjMwMzAxMTdaMDMxMTAvBgNV BAMTKDdDQUZENDUwQjZENEJDMjNFMkIzQUFFODM3MjVDMjE2MDAzNjE1NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVzL5oudpt0niAw9wdXUZgRmVM RYeItPAgQWOeGWOMt/aw4U+ctF7PpfK2gP+8iw4TaRGPF2xL+DNXV0sy1eLdQ+DU 1bhGAmNb5wfEM7LdIis+9MQL7LD1VQti2a6KUMyf9EmLaWaMe2uH1BboXCgb/HO/ xHl4kHmQp3Vd4YspucuxJoUtdFiWdigDzjuJ+O3fwz7iwJJrtJibtJErYI/lfUZv mPBuzXE8cz3Th6vGf1S/TsYZb+TwXdFS76tsFfLniKe/aewtZqrFP4kwEV1PFYbM ykfaAQjLLJ4vnRM1ed14V92nLU7oAO001e72ZHuOVsh4bDuQu5DphSfjV7HRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfK/UULbUvCPis6roNyXCFgA2FU4wHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/8wDQYJ KoZIhvcNAQELBQADggEBACXcDBwprPXowE0X/+Oy3a7pL8xgO26NyFtFVEVZNjHf NdWPpYnIjbnACIBRlQMQa4CGZo4oNLXtQAKk9iYepTHYBOKJTTZcDWAv7fuyI91Q 0MNNobpl6MJBZjR/xHlXN7yQFjMHkfa3ji7h0H00RZt83xCsNpDYuET+ixwER++h rg8lbgLhxZfA0nuCD+5H5BojKNMMDMyODf1ypPaAMFi0GWRU5HPOv/BxoNPlHsOe kcRDL4CpVtRZE0Xo9kPVIfB2MEfMDMKKpBQuGFcvCKN1L7gDU34cDTraLyHDJjhk TQpnRuffGFGHO+TtIm5914qHzfciZ2Fig3iAxWPsHJQ= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org