$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231302e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231302e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 91eiJyGAtCZEdj+H4LaJ35hkFRrcG4XIG2UpAPMXkVQ= Subject key identifier: 07:10:6A:2B:BA:CE:72:AE:BD:FD:02:B3:DA:C7:EC:0B:B7:05:6B:6E Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 62276452E6DCA401B991537DD3B4517A40EC9883 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231302e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:01 +0000 ROA not before: Mon 21 Oct 2024 12:55:01 +0000 ROA not after: Mon 20 Oct 2025 13:00:01 +0000 asID: 38142 IP address blocks: 210.57.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:27:64:52:e6:dc:a4:01:b9:91:53:7d:d3:b4:51:7a:40:ec:98:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:01 2024 GMT Not After : Oct 20 13:00:01 2025 GMT Subject: CN=07106A2BBACE72AEBDFD02B3DAC7EC0BB7056B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6c:62:f9:ad:07:ec:06:68:9c:2f:b0:55:97: 0b:7d:ed:4e:16:e8:f5:d6:62:60:12:74:a1:d2:1b: cd:1d:fe:00:59:81:34:21:5c:66:80:11:a0:42:75: a0:bc:94:15:b6:54:e9:a1:e8:38:ce:a7:ca:b9:b8: 8a:0f:d5:26:63:35:d9:7e:39:9e:7d:45:31:92:b7: 37:8a:a6:ba:88:18:cd:88:39:42:fb:87:dd:fd:30: 5e:64:3a:2c:aa:bf:39:69:12:6a:14:4f:e9:bd:7b: fa:d3:ce:0c:3a:de:18:91:9a:54:66:bb:ed:0e:a8: d4:f3:8c:65:a9:ce:4e:fb:e6:41:9a:04:a7:c0:4c: a8:1f:6f:82:ec:ff:7a:31:3e:85:72:12:42:12:ab: 36:dd:2c:ac:f0:61:dc:f2:1b:3b:42:4b:40:33:f5: e1:d7:f0:0d:3c:d9:cc:7b:89:15:fb:5e:fa:fb:33: 7d:57:d5:c6:d4:45:65:08:45:03:fc:48:68:6d:e9: 32:ae:c1:0a:0b:8e:9a:ad:55:0a:d3:2d:b1:f8:c0: f8:0d:0d:34:6b:a5:c3:56:4d:ea:fa:8c:b4:b7:5a: b7:dc:13:16:1f:76:10:95:d9:0b:09:b4:97:86:3d: b2:c6:bf:cb:ba:ab:79:a8:a9:44:0d:e5:63:72:7a: b7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:10:6A:2B:BA:CE:72:AE:BD:FD:02:B3:DA:C7:EC:0B:B7:05:6B:6E X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231302e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.210.0/24 Signature Algorithm: sha256WithRSAEncryption bd:8b:fd:f2:28:88:a4:9a:47:b1:21:1f:15:79:6c:d8:05:19: 94:d4:a5:50:99:1c:9d:44:8d:6b:96:74:56:4c:47:37:85:4f: fa:38:91:6a:d6:51:09:71:a5:08:c6:a2:b3:c6:13:4c:b0:4a: 0a:b8:aa:c4:37:a2:36:89:5b:22:9f:68:5a:5d:6f:67:aa:80: 1b:b0:e8:8f:da:b3:f6:b8:4a:80:2b:0f:dd:a8:6c:14:d0:4c: 55:e0:ce:99:0f:72:aa:c6:f3:44:e7:7b:4d:6f:8e:e3:5b:f0: ac:73:9a:a7:4b:dc:d2:a6:2f:cf:43:2d:57:8a:a3:e0:41:46: 1d:1b:50:70:ae:ac:7b:78:5a:48:37:5e:ad:8c:29:73:dd:64: 65:0d:ed:58:2a:69:fc:7a:91:be:bf:47:6b:a4:65:b2:de:09: 3e:f9:9f:a9:21:98:37:18:6e:1e:60:b7:19:b3:eb:51:9c:2a: 05:a9:16:4a:47:3b:b3:11:fb:1f:b5:95:e8:0d:a6:39:65:10: 21:b3:e5:9b:83:e7:8a:ad:15:3a:60:31:29:84:df:44:06:4e: 4d:94:25:6b:4d:bd:23:ea:0b:22:6c:64:65:76:e2:e2:25:ad: f9:bc:c1:fc:48:ef:a9:e2:30:35:61:6a:07:36:fb:82:64:c6: 92:4c:98:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYidkUubcpAG5kVN907RRekDsmIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDFaFw0yNTEwMjAxMzAwMDFaMDMxMTAvBgNV BAMTKDA3MTA2QTJCQkFDRTcyQUVCREZEMDJCM0RBQzdFQzBCQjcwNTZCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCbGL5rQfsBmicL7BVlwt97U4W 6PXWYmASdKHSG80d/gBZgTQhXGaAEaBCdaC8lBW2VOmh6DjOp8q5uIoP1SZjNdl+ OZ59RTGStzeKprqIGM2IOUL7h939MF5kOiyqvzlpEmoUT+m9e/rTzgw63hiRmlRm u+0OqNTzjGWpzk775kGaBKfATKgfb4Ls/3oxPoVyEkISqzbdLKzwYdzyGztCS0Az 9eHX8A082cx7iRX7Xvr7M31X1cbURWUIRQP8SGht6TKuwQoLjpqtVQrTLbH4wPgN DTRrpcNWTer6jLS3WrfcExYfdhCV2QsJtJeGPbLGv8u6q3moqUQN5WNyerftAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBxBqK7rOcq69/QKz2sfsC7cFa24wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI50jANBgkqhkiG 9w0BAQsFAAOCAQEAvYv98iiIpJpHsSEfFXls2AUZlNSlUJkcnUSNa5Z0VkxHN4VP +jiRatZRCXGlCMais8YTTLBKCriqxDeiNolbIp9oWl1vZ6qAG7Doj9qz9rhKgCsP 3ahsFNBMVeDOmQ9yqsbzROd7TW+O41vwrHOap0vc0qYvz0MtV4qj4EFGHRtQcK6s e3haSDderYwpc91kZQ3tWCpp/HqRvr9Ha6Rlst4JPvmfqSGYNxhuHmC3GbPrUZwq BakWSkc7sxH7H7WV6A2mOWUQIbPlm4Pniq0VOmAxKYTfRAZOTZQla029I+oLImxk ZXbi4iWt+bzB/EjvqeIwNWFqBzb7gmTGkkyYyg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org