$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa File: 3231302e35372e3230382e302f32302d3234203d3e203338313432.roa (raw, json) Hash identifier: BeGQkLCW6Ir9DJFmfLHlNCxVnjWJ0PiPU5WjwjtXnzY= Subject key identifier: D0:36:F6:2E:EE:6E:09:57:8B:6D:04:27:6A:C4:31:DF:E5:F0:C1:8E Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 6879B10D4BC76CD1DC63E459F6C63186A7F79A49 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:02 +0000 ROA not before: Mon 20 Nov 2023 11:55:02 +0000 ROA not after: Mon 18 Nov 2024 12:00:02 +0000 asID: 38142 IP address blocks: 210.57.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:79:b1:0d:4b:c7:6c:d1:dc:63:e4:59:f6:c6:31:86:a7:f7:9a:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:02 2023 GMT Not After : Nov 18 12:00:02 2024 GMT Subject: CN=D036F62EEE6E09578B6D04276AC431DFE5F0C18E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:eb:17:5b:4b:6f:cd:3a:ae:dd:2a:e1:62:49: d0:03:98:29:1b:1b:93:b3:14:f3:f6:c1:72:c3:d7: 43:6d:fc:25:1f:6c:b3:8a:9c:c9:4c:4e:e5:48:94: 77:40:0f:89:68:ec:e2:e5:b9:44:1e:f4:77:95:70: 28:44:d2:a4:4d:a3:13:3e:d8:bb:a5:4a:37:b8:d4: 40:65:a0:26:4d:ae:f4:54:12:fb:c2:c9:e4:96:a2: 3f:b1:6c:f5:14:e9:85:f1:8e:9b:1c:54:6e:1d:9a: 9c:8e:4b:be:90:b0:48:50:34:38:2a:6a:86:19:9b: 53:2a:b9:fa:1c:2c:45:18:96:fa:43:fe:0b:b0:47: 2a:b6:65:c9:c4:33:a4:f9:59:38:a4:23:c0:dc:58: 68:57:d6:d9:d7:56:eb:2a:58:b2:61:ee:99:71:65: 82:66:f0:53:8b:28:e0:b2:78:18:0d:b0:55:50:3b: 8c:a6:ec:6e:54:c7:d6:55:8c:ce:4e:a0:e8:22:14: 24:84:49:1b:b0:bc:89:e5:25:cc:42:8f:e4:da:ad: bd:cc:07:87:ab:1d:e5:4a:ca:1c:21:65:29:32:f2: 97:46:ea:1f:d5:14:c2:5a:e0:c2:70:e7:9d:e0:d6: 62:4b:cf:66:8a:bf:75:b7:12:6d:f5:8f:dc:5f:1b: b3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:36:F6:2E:EE:6E:09:57:8B:6D:04:27:6A:C4:31:DF:E5:F0:C1:8E X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.208.0/20 Signature Algorithm: sha256WithRSAEncryption 59:c3:85:8f:0f:92:04:44:db:ee:2f:a7:71:a3:f5:82:aa:01: 78:de:bb:f2:c6:e8:2e:11:f0:92:67:54:6f:9b:00:d4:7c:fd: 26:10:4d:9d:e1:1d:a9:86:0f:70:db:c5:ef:8b:c2:32:9a:fa: e0:7f:33:fd:dc:f4:7b:4f:f4:0f:e9:15:28:de:7b:5e:7f:51: a6:01:c4:28:b1:ac:17:5b:f2:67:52:d9:fa:d8:f5:f0:c4:32: 31:df:94:99:f7:bd:40:b8:e8:21:2c:03:ee:03:30:21:b0:95: 44:87:46:c3:73:43:c3:a7:78:62:a3:48:73:9e:45:f3:29:5b: 55:5a:c6:86:33:3f:ac:de:29:c4:a0:24:c4:95:73:35:ec:51: db:4f:13:e6:73:d1:5f:7f:c5:94:37:68:d9:55:d5:e6:34:b4: ac:52:e6:33:df:f5:17:cd:54:03:71:e3:d4:20:50:e6:84:4c: b5:9b:36:82:4f:ec:e0:d8:55:91:6e:b5:a9:35:44:72:8e:2a: 7b:b3:9a:04:33:1c:6d:ff:a0:27:11:e2:53:bb:12:35:3a:a6: 56:6a:8e:51:9e:a7:f0:75:c0:1a:6b:e4:a4:e5:fa:9f:0c:a8: 43:70:f3:d4:3a:eb:1c:3e:e9:1f:97:bb:fe:5e:e2:8b:e6:12: 47:c2:ce:1b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaHmxDUvHbNHcY+RZ9sYxhqf3mkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDJaFw0yNDExMTgxMjAwMDJaMDMxMTAvBgNV BAMTKEQwMzZGNjJFRUU2RTA5NTc4QjZEMDQyNzZBQzQzMURGRTVGMEMxOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC6xdbS2/NOq7dKuFiSdADmCkb G5OzFPP2wXLD10Nt/CUfbLOKnMlMTuVIlHdAD4lo7OLluUQe9HeVcChE0qRNoxM+ 2LulSje41EBloCZNrvRUEvvCyeSWoj+xbPUU6YXxjpscVG4dmpyOS76QsEhQNDgq aoYZm1MqufocLEUYlvpD/guwRyq2ZcnEM6T5WTikI8DcWGhX1tnXVusqWLJh7plx ZYJm8FOLKOCyeBgNsFVQO4ym7G5Ux9ZVjM5OoOgiFCSESRuwvInlJcxCj+Tarb3M B4erHeVKyhwhZSky8pdG6h/VFMJa4MJw553g1mJLz2aKv3W3Em31j9xfG7NNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0Db2Lu5uCVeLbQQnasQx3+XwwY4wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNI50DANBgkqhkiG 9w0BAQsFAAOCAQEAWcOFjw+SBETb7i+ncaP1gqoBeN678sboLhHwkmdUb5sA1Hz9 JhBNneEdqYYPcNvF74vCMpr64H8z/dz0e0/0D+kVKN57Xn9RpgHEKLGsF1vyZ1LZ +tj18MQyMd+Umfe9QLjoISwD7gMwIbCVRIdGw3NDw6d4YqNIc55F8ylbVVrGhjM/ rN4pxKAkxJVzNexR208T5nPRX3/FlDdo2VXV5jS0rFLmM9/1F81UA3Hj1CBQ5oRM tZs2gk/s4NhVkW61qTVEco4qe7OaBDMcbf+gJxHiU7sSNTqmVmqOUZ6n8HXAGmvk pOX6nwyoQ3Dz1DrrHD7pH5e7/l7ii+YSR8LOGw== -----END CERTIFICATE-----Generated at Sun Jun 2 07:02:56 2024 by rpki-client on console-fra.rpki-client.org