$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230392e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3230392e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 9D+4myYOisFGjOQPtqfzIXvubGtnrHACZE77HsWs9N0= Subject key identifier: 92:43:F5:CD:01:E7:A0:F5:57:5A:7E:51:F5:0C:15:C0:E4:DC:36:1E Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 3BBFFBEF5CF3C43527F0598188E28A52AE9A8322 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230392e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:02 +0000 ROA not before: Mon 20 Nov 2023 11:55:02 +0000 ROA not after: Mon 18 Nov 2024 12:00:02 +0000 asID: 38142 IP address blocks: 210.57.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:bf:fb:ef:5c:f3:c4:35:27:f0:59:81:88:e2:8a:52:ae:9a:83:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:02 2023 GMT Not After : Nov 18 12:00:02 2024 GMT Subject: CN=9243F5CD01E7A0F5575A7E51F50C15C0E4DC361E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:6c:c8:e8:6c:41:b5:13:cb:a1:0c:37:15:c1: 9a:49:12:57:53:48:be:b4:67:bf:6a:8c:03:fb:97: e0:28:de:b2:b9:7b:a8:89:a7:00:cd:fe:e8:c9:c2: d5:08:8c:76:a4:e0:20:b4:73:59:d4:66:f4:6c:28: 29:00:2f:c0:3f:70:dc:e3:42:01:b4:55:af:98:5d: 97:0d:20:22:ff:24:24:cb:ea:85:86:93:15:4c:ca: b9:07:43:b3:47:eb:a1:f7:bd:c5:28:3e:6c:68:8a: 1a:a0:a0:e4:0a:38:a4:7f:8a:9a:47:48:8a:62:68: df:60:d8:f0:32:3d:05:39:83:16:e4:84:5d:26:1e: c5:e1:62:45:68:dd:e7:9c:f4:1f:d7:17:c4:cf:fa: e7:74:cc:13:aa:7d:93:3b:96:5e:c0:77:61:5e:80: 3d:c4:0a:3d:4c:ea:c5:16:38:3d:fe:c5:33:d1:85: af:80:26:45:c7:c1:d7:78:88:13:82:e6:13:d3:b4: a2:6f:4d:32:66:15:f6:d9:ad:1a:9d:3b:e1:a9:e1: 88:d9:ee:ff:3b:11:98:6f:20:69:9f:32:40:bb:72: 6a:2f:ed:92:e9:2c:9d:b6:fb:4d:11:d7:dc:9d:48: 15:42:4f:ad:71:36:9f:79:12:6c:1d:a4:d9:25:9e: 4e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:43:F5:CD:01:E7:A0:F5:57:5A:7E:51:F5:0C:15:C0:E4:DC:36:1E X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230392e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.209.0/24 Signature Algorithm: sha256WithRSAEncryption 44:d9:a7:de:87:1f:bf:74:8b:8c:34:28:04:69:da:05:f6:1c: ed:24:63:49:67:8a:f0:46:00:ee:f0:11:4e:e7:e3:90:1e:6f: 5f:2f:aa:c1:ec:95:86:c8:29:11:6a:1f:5c:f3:d9:e6:d1:ee: be:91:08:9e:25:f8:c2:40:d3:da:b2:7b:91:ef:bf:12:22:9d: 19:b1:78:67:9e:f5:68:76:1b:36:65:51:8a:b8:09:21:87:e2: 69:9f:79:b2:db:39:57:44:f2:f6:04:4a:09:21:fe:02:b3:a9: bc:72:c3:4c:93:59:1b:d8:5a:84:c2:09:6c:23:c0:ca:04:63: a6:9b:13:bd:61:66:e5:f1:b5:cf:cc:d6:9b:ca:c0:90:d5:c6: 75:71:9c:31:61:62:f8:47:ec:e5:5e:31:2f:70:70:f6:27:d7: 3f:67:ba:41:ab:0f:1f:74:38:8d:35:17:5c:9c:64:9e:43:fb: 74:30:58:5e:73:c0:03:e2:d4:b3:e3:da:3a:43:ce:c2:83:d7: 4a:51:db:b8:d1:0f:28:95:d7:1f:da:0a:7d:76:1a:a5:77:e3: cf:20:93:d5:8e:d7:2c:97:93:ba:1b:e4:17:ac:75:ae:fe:c1: 89:78:aa:2f:1c:98:a4:44:82:93:82:70:bc:e5:f9:23:3b:02: 95:4c:ae:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO7/771zzxDUn8FmBiOKKUq6agyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDJaFw0yNDExMTgxMjAwMDJaMDMxMTAvBgNV BAMTKDkyNDNGNUNEMDFFN0EwRjU1NzVBN0U1MUY1MEMxNUMwRTREQzM2MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtbMjobEG1E8uhDDcVwZpJEldT SL60Z79qjAP7l+Ao3rK5e6iJpwDN/ujJwtUIjHak4CC0c1nUZvRsKCkAL8A/cNzj QgG0Va+YXZcNICL/JCTL6oWGkxVMyrkHQ7NH66H3vcUoPmxoihqgoOQKOKR/ippH SIpiaN9g2PAyPQU5gxbkhF0mHsXhYkVo3eec9B/XF8TP+ud0zBOqfZM7ll7Ad2Fe gD3ECj1M6sUWOD3+xTPRha+AJkXHwdd4iBOC5hPTtKJvTTJmFfbZrRqdO+Gp4YjZ 7v87EZhvIGmfMkC7cmov7ZLpLJ22+00R19ydSBVCT61xNp95EmwdpNklnk6nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkkP1zQHnoPVXWn5R9QwVwOTcNh4wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI50TANBgkqhkiG 9w0BAQsFAAOCAQEARNmn3ocfv3SLjDQoBGnaBfYc7SRjSWeK8EYA7vARTufjkB5v Xy+qweyVhsgpEWofXPPZ5tHuvpEIniX4wkDT2rJ7ke+/EiKdGbF4Z571aHYbNmVR irgJIYfiaZ95sts5V0Ty9gRKCSH+ArOpvHLDTJNZG9hahMIJbCPAygRjppsTvWFm 5fG1z8zWm8rAkNXGdXGcMWFi+Efs5V4xL3Bw9ifXP2e6QasPH3Q4jTUXXJxknkP7 dDBYXnPAA+LUs+PaOkPOwoPXSlHbuNEPKJXXH9oKfXYapXfjzyCT1Y7XLJeTuhvk F6x1rv7BiXiqLxyYpESCk4JwvOX5IzsClUyu9w== -----END CERTIFICATE-----Generated at Sat Jun 22 13:19:02 2024 by rpki-client on console-fra.rpki-client.org