$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231312e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231312e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: lltuIPEk+BVWdUULpXiLbJeUz6Fla9jWTH/D4vTGGig= Subject key identifier: 5E:A3:1E:4D:AB:CE:6E:AA:3E:74:FB:49:7D:E6:91:FF:2C:A3:B4:F5 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 3F329ABDD5666D2AA4BBAE0B3E44A9A2D68DD33C Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231312e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:02 +0000 ROA not before: Mon 21 Oct 2024 12:55:02 +0000 ROA not after: Mon 20 Oct 2025 13:00:02 +0000 asID: 38142 IP address blocks: 210.57.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:32:9a:bd:d5:66:6d:2a:a4:bb:ae:0b:3e:44:a9:a2:d6:8d:d3:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:02 2024 GMT Not After : Oct 20 13:00:02 2025 GMT Subject: CN=5EA31E4DABCE6EAA3E74FB497DE691FF2CA3B4F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2c:43:99:5f:81:b9:61:1c:a8:ed:57:11:bd: a2:3b:f5:27:3f:fe:aa:92:56:8f:3f:e3:d4:5f:f6: 55:13:04:fd:de:e8:2d:a3:70:cf:6b:b0:d1:f6:8a: 96:98:df:03:f5:46:e1:06:7a:56:ea:68:f2:1d:77: 3c:be:d9:89:94:22:a7:02:2f:14:cc:3e:32:8f:39: 51:60:9a:d8:bd:7d:51:cc:ad:e4:e9:1b:0d:57:f7: 6e:71:98:f4:33:a0:71:cc:2a:45:e8:4a:f9:95:ed: 91:f3:74:eb:e9:0e:f1:92:5e:90:c7:1c:55:0c:51: 8e:1b:98:28:8a:c3:b2:a3:83:4b:88:fb:c0:09:55: b0:73:6c:64:b7:d4:0c:48:f9:65:f3:0a:a3:95:7c: 19:8b:c8:cd:f2:eb:eb:d4:92:92:9d:03:99:8b:fb: dd:ac:f5:e2:7a:89:77:e4:9d:5f:1e:9e:bc:76:bf: 31:2e:39:ba:9a:76:c1:fb:83:d6:5e:df:14:63:c5: 58:a9:eb:57:1a:3f:3a:e8:e0:e3:4c:1c:08:44:42: ae:c0:b5:55:11:be:0a:cf:b9:ee:bf:08:54:b3:eb: c2:57:b4:77:a2:01:03:1c:b2:39:85:57:75:7d:56: 74:bc:9d:b4:b1:61:79:c3:33:0b:4f:0b:21:37:dd: b0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A3:1E:4D:AB:CE:6E:AA:3E:74:FB:49:7D:E6:91:FF:2C:A3:B4:F5 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231312e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.211.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:f2:a7:a2:58:59:cc:2f:39:00:07:f5:d0:c3:02:1f:ba:c4: 74:0a:d3:35:ae:d9:07:3d:ed:eb:04:97:91:73:6e:09:93:4c: 29:c9:28:3c:9a:44:67:b0:3a:90:2a:9b:ab:be:36:97:06:86: f1:e4:23:8c:65:8f:59:0d:05:a2:e2:2b:a5:3d:45:47:ab:25: a3:b4:09:3f:39:fb:cf:e4:b1:6a:76:ab:6a:35:61:76:86:ae: 5e:d7:b6:f7:49:d6:ce:c1:fe:b0:b3:c7:54:54:b5:df:6c:56: e9:ad:a9:e3:ba:1c:30:9c:21:01:f7:f7:aa:39:cf:64:e9:fd: dc:23:65:90:cf:a3:fc:05:f8:eb:17:cd:4d:0d:e1:a4:8f:cd: 1d:53:16:7a:f5:0d:67:1f:32:5d:88:92:ca:e1:5e:ee:44:74: 34:ad:6c:ff:5a:e3:a4:f0:5e:63:41:fc:f7:78:37:8e:07:2f: 0e:3e:d8:48:7f:f3:ce:b3:13:1c:a5:ff:7d:0d:e0:75:bb:88: 38:72:fa:7f:0f:6d:ad:7f:09:72:0e:1b:51:d9:34:3b:d1:8b: d7:53:5d:ff:c7:62:5f:51:ec:48:e5:db:b9:3b:1e:6b:2d:8f: 6b:65:8a:bb:55:2e:e5:68:ef:a3:07:c7:f0:b9:9f:a7:f3:46: 8d:cd:aa:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPzKavdVmbSqku64LPkSpotaN0zwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDJaFw0yNTEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKDVFQTMxRTREQUJDRTZFQUEzRTc0RkI0OTdERTY5MUZGMkNBM0I0RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDELEOZX4G5YRyo7VcRvaI79Sc/ /qqSVo8/49Rf9lUTBP3e6C2jcM9rsNH2ipaY3wP1RuEGelbqaPIddzy+2YmUIqcC LxTMPjKPOVFgmti9fVHMreTpGw1X925xmPQzoHHMKkXoSvmV7ZHzdOvpDvGSXpDH HFUMUY4bmCiKw7Kjg0uI+8AJVbBzbGS31AxI+WXzCqOVfBmLyM3y6+vUkpKdA5mL +92s9eJ6iXfknV8enrx2vzEuObqadsH7g9Ze3xRjxVip61caPzro4ONMHAhEQq7A tVURvgrPue6/CFSz68JXtHeiAQMcsjmFV3V9VnS8nbSxYXnDMwtPCyE33bC5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXqMeTavObqo+dPtJfeaR/yyjtPUwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI50zANBgkqhkiG 9w0BAQsFAAOCAQEACvKnolhZzC85AAf10MMCH7rEdArTNa7ZBz3t6wSXkXNuCZNM KckoPJpEZ7A6kCqbq742lwaG8eQjjGWPWQ0FouIrpT1FR6slo7QJPzn7z+Sxanar ajVhdoauXte290nWzsH+sLPHVFS132xW6a2p47ocMJwhAff3qjnPZOn93CNlkM+j /AX46xfNTQ3hpI/NHVMWevUNZx8yXYiSyuFe7kR0NK1s/1rjpPBeY0H893g3jgcv Dj7YSH/zzrMTHKX/fQ3gdbuIOHL6fw9trX8Jcg4bUdk0O9GL11Nd/8diX1HsSOXb uTseay2Pa2WKu1Uu5WjvowfH8Lmfp/NGjc2qZg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org