$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa File: 3231302e35372e3230382e302f32302d3234203d3e203338313432.roa (raw, json) Hash identifier: TkM70rMf+ZfBRNei/e49W4wEHFGWueoMkkciY1FDq5I= Subject key identifier: 4D:34:EC:66:DA:6E:EA:71:87:67:48:BC:E7:98:40:F0:8F:35:ED:30 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 49545FC8D8C281369EA6BAF1F76345CF133F86E3 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:02 +0000 ROA not before: Mon 21 Oct 2024 12:55:02 +0000 ROA not after: Mon 20 Oct 2025 13:00:02 +0000 asID: 38142 IP address blocks: 210.57.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:54:5f:c8:d8:c2:81:36:9e:a6:ba:f1:f7:63:45:cf:13:3f:86:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:02 2024 GMT Not After : Oct 20 13:00:02 2025 GMT Subject: CN=4D34EC66DA6EEA71876748BCE79840F08F35ED30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:63:90:70:e2:04:f3:ec:72:44:24:94:f0: 38:f2:14:fb:0a:a0:53:4b:48:4e:4c:92:b9:94:77: f8:0b:f1:5f:99:21:9f:50:05:f1:2d:a6:2a:7b:39: 85:60:0f:66:80:37:6d:5e:94:41:f8:12:1f:a2:d4: 06:b1:37:0a:eb:87:e9:28:f7:81:71:25:5e:81:5c: 30:1e:08:c1:85:af:d0:31:5d:ac:8d:30:62:4a:b8: 24:8e:03:a8:22:6b:eb:7d:60:17:21:01:ee:43:d0: a9:12:1d:46:94:1b:ba:70:4f:f4:97:8a:95:21:43: 14:d2:96:a1:d6:59:fa:aa:99:e9:f3:eb:12:ad:72: f2:96:65:4c:e5:52:78:90:1a:c7:fc:f8:a6:81:91: be:a1:31:93:6b:8a:bb:f7:54:d4:5d:d3:88:3d:e8: 49:d8:15:a2:39:80:82:75:42:93:35:4e:b9:62:49: fd:7d:c5:51:fe:48:18:2e:f6:a8:bb:4a:94:52:9f: 87:b7:99:51:86:77:97:7f:25:7b:74:a4:c0:05:eb: 0d:40:de:70:9f:28:93:69:8c:26:a9:1c:2d:94:4d: a8:c6:74:89:72:df:03:5c:99:98:6a:d0:78:19:4e: df:c6:22:7d:11:c7:8a:76:ab:7f:2b:5f:e0:49:07: 65:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:34:EC:66:DA:6E:EA:71:87:67:48:BC:E7:98:40:F0:8F:35:ED:30 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.208.0/20 Signature Algorithm: sha256WithRSAEncryption 05:6c:6f:08:9c:7c:48:ba:d2:96:34:75:71:90:18:bc:0a:ae: 8f:6c:e8:a6:8d:37:21:10:2a:7f:d6:2f:18:44:a4:78:45:03: 8a:0d:70:c5:ce:ca:ee:9b:70:99:c7:43:37:45:ca:f0:7c:28: 69:ef:53:04:6d:08:92:50:94:b8:f3:3a:9c:1b:fa:3a:3b:29: de:0c:8e:6f:bd:34:2d:82:e5:aa:42:78:f7:ce:7b:4a:eb:99: b1:31:5d:fc:08:6b:a0:b7:43:7f:c3:68:94:e3:d4:5b:6a:20: c4:ee:26:b3:73:fd:13:26:6f:60:ee:72:15:e3:68:12:0a:85: 60:1c:89:c0:5c:91:09:b1:33:26:ef:3a:e1:44:fc:01:6e:38: 2a:c4:74:f9:47:08:ab:87:e4:5e:1b:ae:d7:ad:56:d0:0f:f7: 0a:94:50:43:9e:2b:28:64:1e:ab:b0:47:01:ef:20:15:8a:60: fb:10:01:be:e3:d6:7e:a2:93:e9:c1:86:2f:3d:81:b5:8c:96: 53:0c:2d:08:52:c5:8e:19:0f:e3:5b:5d:64:c8:c9:23:3e:4f: 24:44:4c:0f:4e:c6:fc:12:2d:84:25:ea:9e:33:63:3e:c9:1e: ff:fa:cf:c5:94:09:b4:1b:9d:56:49:3b:8a:c3:bf:1f:d1:a4: 92:4c:9e:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSVRfyNjCgTaeprrx92NFzxM/huMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDJaFw0yNTEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKDREMzRFQzY2REE2RUVBNzE4NzY3NDhCQ0U3OTg0MEYwOEYzNUVEMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBkGOQcOIE8+xyRCSU8DjyFPsK oFNLSE5MkrmUd/gL8V+ZIZ9QBfEtpip7OYVgD2aAN21elEH4Eh+i1AaxNwrrh+ko 94FxJV6BXDAeCMGFr9AxXayNMGJKuCSOA6gia+t9YBchAe5D0KkSHUaUG7pwT/SX ipUhQxTSlqHWWfqqmenz6xKtcvKWZUzlUniQGsf8+KaBkb6hMZNrirv3VNRd04g9 6EnYFaI5gIJ1QpM1TrliSf19xVH+SBgu9qi7SpRSn4e3mVGGd5d/JXt0pMAF6w1A 3nCfKJNpjCapHC2UTajGdIly3wNcmZhq0HgZTt/GIn0Rx4p2q38rX+BJB2V5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTTTsZtpu6nGHZ0i855hA8I817TAwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNI50DANBgkqhkiG 9w0BAQsFAAOCAQEABWxvCJx8SLrSljR1cZAYvAquj2zopo03IRAqf9YvGESkeEUD ig1wxc7K7ptwmcdDN0XK8Hwoae9TBG0IklCUuPM6nBv6Ojsp3gyOb700LYLlqkJ4 9857SuuZsTFd/AhroLdDf8NolOPUW2ogxO4ms3P9EyZvYO5yFeNoEgqFYByJwFyR CbEzJu864UT8AW44KsR0+UcIq4fkXhuu161W0A/3CpRQQ54rKGQeq7BHAe8gFYpg +xABvuPWfqKT6cGGLz2BtYyWUwwtCFLFjhkP41tdZMjJIz5PJERMD07G/BIthCXq njNjPske//rPxZQJtBudVkk7isO/H9GkkkyepQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org