$ rpki-client -vvf repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa File: 3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa (raw, json) Hash identifier: 9GOZkV/w8qpWyEmLkspOLEV7XUErL3ME5/AoXnDepkc= Subject key identifier: D8:8F:B2:D6:6E:F8:AE:DF:F1:9C:ED:C9:64:CD:A5:A3:D8:C5:14:3D Certificate issuer: /CN=52C34A755DF981FDF13789624A2BE028AB5B5DAE Certificate serial: 5206EEB9C8AF2254FB4DE6BE8500E1183AD1DB6D Authority key identifier: 52:C3:4A:75:5D:F9:81:FD:F1:37:89:62:4A:2B:E0:28:AB:5B:5D:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52C34A755DF981FDF13789624A2BE028AB5B5DAE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa Signing time: Fri 08 Mar 2024 09:30:00 +0000 ROA not before: Fri 08 Mar 2024 09:25:00 +0000 ROA not after: Fri 07 Mar 2025 09:30:00 +0000 asID: 152053 IP address blocks: 210.87.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/52C34A755DF981FDF13789624A2BE028AB5B5DAE.crl rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/52C34A755DF981FDF13789624A2BE028AB5B5DAE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52C34A755DF981FDF13789624A2BE028AB5B5DAE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:06:ee:b9:c8:af:22:54:fb:4d:e6:be:85:00:e1:18:3a:d1:db:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52C34A755DF981FDF13789624A2BE028AB5B5DAE Validity Not Before: Mar 8 09:25:00 2024 GMT Not After : Mar 7 09:30:00 2025 GMT Subject: CN=D88FB2D66EF8AEDFF19CEDC964CDA5A3D8C5143D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:50:a7:46:52:5d:d2:22:42:0a:98:f3:60:ed: f1:d8:a7:b6:49:eb:df:c0:cf:18:4f:63:c4:43:3c: 44:54:6d:1e:a0:56:96:5b:e5:b7:d9:30:5a:00:e2: 9e:aa:f2:65:d8:0e:a2:43:ec:1d:11:46:21:43:cd: 47:7e:8c:34:63:47:0b:13:f8:1e:cc:7a:64:e0:88: 69:de:0e:18:dd:de:b6:18:d2:bd:3f:ed:4a:e6:7a: 3b:ad:74:25:1f:06:11:11:e8:9d:d6:68:df:71:54: 1a:c4:3b:5d:63:bf:44:3b:6c:44:f2:14:ea:16:bb: 64:1b:d9:1a:34:1c:94:48:f3:0d:f2:e4:f6:3e:56: d8:b2:b9:ed:6f:f8:0a:9a:0f:4a:b5:c2:cf:b3:1a: 6a:04:3a:63:34:4e:b6:e2:61:55:40:0d:54:9f:d0: 5c:49:9f:57:f1:3f:08:73:84:5a:ca:f0:ce:3b:f0: de:3a:1a:de:80:1f:8e:b7:74:9d:cf:5d:47:cc:38: 58:e3:54:f6:40:c4:f2:ba:96:b3:71:7a:ee:c8:29: 3d:14:73:1d:fe:9f:09:87:eb:5a:89:f0:69:90:32: 4f:6f:32:9a:35:82:1e:d1:aa:f9:4a:2a:5b:2d:60: 3d:cf:5e:bb:07:eb:e7:73:bc:62:3d:e1:c6:0e:b8: d1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8F:B2:D6:6E:F8:AE:DF:F1:9C:ED:C9:64:CD:A5:A3:D8:C5:14:3D X509v3 Authority Key Identifier: keyid:52:C3:4A:75:5D:F9:81:FD:F1:37:89:62:4A:2B:E0:28:AB:5B:5D:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/52C34A755DF981FDF13789624A2BE028AB5B5DAE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52C34A755DF981FDF13789624A2BE028AB5B5DAE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.113.0/24 Signature Algorithm: sha256WithRSAEncryption b2:b7:7c:0d:90:22:f8:0c:81:de:de:2a:88:48:d9:7f:0d:3f: 67:53:8c:cc:5a:06:af:8e:88:4e:1d:77:6f:2e:db:9e:19:01: 74:c9:f2:e7:1c:ea:47:5c:0a:67:78:3c:7f:93:4c:e1:b5:90: 7d:7b:76:77:c5:29:97:60:e4:15:59:19:38:1f:de:1a:e2:ed: 60:f1:f5:3e:17:6b:c2:ce:46:7a:6e:0e:9d:31:cb:f3:62:7b: 30:7e:da:1f:48:46:9c:34:ac:0f:6e:c2:7c:6b:e1:51:35:d3: 3c:56:66:01:3e:d1:10:b3:68:96:0a:bb:73:36:83:e9:62:a5: 4e:c3:f2:f6:72:b0:2b:d9:81:4f:19:af:ee:b0:0a:72:d5:ce: 10:ec:32:35:38:ab:2c:e3:94:5e:d8:2e:ac:9a:4e:01:7e:a5: 7b:bb:3a:99:49:4f:1e:34:83:9d:5c:b4:5a:56:48:21:c3:7e: a9:ab:9a:46:93:aa:4d:fd:77:f3:9d:93:04:7b:9e:93:92:07: 8c:02:c5:b2:3f:09:9f:47:a2:b6:a5:37:b7:d6:5e:de:5b:b6: 83:b2:82:e3:08:df:72:db:25:eb:e5:17:a7:1a:67:51:a3:2b: 1f:cc:f3:6f:1b:26:1b:60:a4:83:e1:38:0f:bd:18:44:ba:9b: 30:44:db:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUgbuucivIlT7Tea+hQDhGDrR220wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJDMzRBNzU1REY5ODFGREYxMzc4OTYyNEEyQkUwMjhB QjVCNURBRTAeFw0yNDAzMDgwOTI1MDBaFw0yNTAzMDcwOTMwMDBaMDMxMTAvBgNV BAMTKEQ4OEZCMkQ2NkVGOEFFREZGMTlDRURDOTY0Q0RBNUEzRDhDNTE0M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9UKdGUl3SIkIKmPNg7fHYp7ZJ 69/AzxhPY8RDPERUbR6gVpZb5bfZMFoA4p6q8mXYDqJD7B0RRiFDzUd+jDRjRwsT +B7MemTgiGneDhjd3rYY0r0/7UrmejutdCUfBhER6J3WaN9xVBrEO11jv0Q7bETy FOoWu2Qb2Ro0HJRI8w3y5PY+Vtiyue1v+AqaD0q1ws+zGmoEOmM0TrbiYVVADVSf 0FxJn1fxPwhzhFrK8M478N46Gt6AH463dJ3PXUfMOFjjVPZAxPK6lrNxeu7IKT0U cx3+nwmH61qJ8GmQMk9vMpo1gh7RqvlKKlstYD3PXrsH6+dzvGI94cYOuNFDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2I+y1m74rt/xnO3JZM2lo9jFFD0wHwYDVR0j BBgwFoAUUsNKdV35gf3xN4liSivgKKtbXa4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MWVlMzc2NS0wYWJiLTRiYTMtYTAwZC1jYmNlYzgzOTk5MjgvMC81MkMzNEE3NTVE Rjk4MUZERjEzNzg5NjI0QTJCRTAyOEFCNUI1REFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJDMzRBNzU1REY5ODFGREYxMzc4OTYyNEEyQkUwMjhBQjVC NURBRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZWUzNzY1LTBhYmItNGJhMy1h MDBkLWNiY2VjODM5OTkyOC8wLzMyMzEzMDJlMzgzNzJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0ldxMA0GCSqG SIb3DQEBCwUAA4IBAQCyt3wNkCL4DIHe3iqISNl/DT9nU4zMWgavjohOHXdvLtue GQF0yfLnHOpHXApneDx/k0zhtZB9e3Z3xSmXYOQVWRk4H94a4u1g8fU+F2vCzkZ6 bg6dMcvzYnswftofSEacNKwPbsJ8a+FRNdM8VmYBPtEQs2iWCrtzNoPpYqVOw/L2 crAr2YFPGa/usApy1c4Q7DI1OKss45Re2C6smk4BfqV7uzqZSU8eNIOdXLRaVkgh w36pq5pGk6pN/XfznZMEe56TkgeMAsWyPwmfR6K2pTe31l7eW7aDsoLjCN9y2yXr 5RenGmdRoysfzPNvGyYbYKSD4TgPvRhEupswRNuH -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:43 2024 by rpki-client on console-fra.rpki-client.org