$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231312e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231312e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 0JkcCSx1Fttj5vNpn7xKgkVCS0YlV48EvLc4hniK3xo= Subject key identifier: 82:B1:3B:86:A2:DE:CB:89:7E:5F:2E:BD:54:6D:FF:A2:2C:B9:6B:04 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 611088EB7EA842159B29572F274050499879B5A8 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231312e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:02 +0000 ROA not before: Mon 20 Nov 2023 11:55:02 +0000 ROA not after: Mon 18 Nov 2024 12:00:02 +0000 asID: 38142 IP address blocks: 210.57.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:10:88:eb:7e:a8:42:15:9b:29:57:2f:27:40:50:49:98:79:b5:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:02 2023 GMT Not After : Nov 18 12:00:02 2024 GMT Subject: CN=82B13B86A2DECB897E5F2EBD546DFFA22CB96B04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a3:72:aa:37:19:40:36:93:ed:8f:79:47:0b: 3b:8a:e2:69:36:19:24:c5:cb:b0:57:41:69:d5:d3: be:a7:e9:22:ab:7b:ac:b2:76:20:03:2f:47:63:1a: 6d:9b:c3:8c:cf:b1:1c:2c:04:eb:60:58:63:1a:44: 68:10:98:25:70:c7:b9:62:c2:19:30:4d:cc:2a:1a: 3e:00:05:bc:ef:0b:a1:d6:b2:e9:63:68:f0:53:d5: fd:88:eb:ce:15:bc:c8:b0:e7:f0:43:ef:ce:64:58: 12:5c:a6:d7:96:38:37:b6:e5:07:5d:6f:96:ce:48: 9a:7d:59:70:6c:b5:f9:30:65:7c:03:2e:8e:a6:7c: e0:d9:ff:8c:68:6c:c6:4b:7e:a0:7c:8b:fa:ac:cc: 94:07:01:49:ae:d1:ac:ec:57:a2:21:e5:26:a0:00: 4b:6f:a3:26:a8:6e:fc:01:d5:9c:9e:2a:c3:d7:cb: e2:d5:18:c9:0b:3f:42:62:40:a4:26:d4:bd:b7:bd: 60:34:b2:6f:6c:a2:6d:0b:e8:64:ed:8d:da:9f:bd: bd:a0:bb:4d:9d:f0:19:99:9b:5d:16:df:b7:33:99: 16:6a:90:4f:0d:eb:74:d0:b9:2e:a5:42:90:c5:f4: 2a:80:54:3f:e0:11:5f:7b:61:a3:da:ec:fa:24:37: 03:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B1:3B:86:A2:DE:CB:89:7E:5F:2E:BD:54:6D:FF:A2:2C:B9:6B:04 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231312e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.211.0/24 Signature Algorithm: sha256WithRSAEncryption 88:fb:36:b7:18:b8:e0:00:5b:a9:e3:e7:93:5e:20:f0:6e:3c: 63:a2:55:2a:2b:7c:9c:45:78:12:cf:59:40:df:2d:1e:56:48: 9a:5a:22:2a:20:84:21:c3:d1:2d:6f:b1:97:52:71:c8:3d:bb: eb:15:3e:2e:a5:68:9c:ed:b9:aa:b9:c7:8f:5b:2e:26:28:ac: 20:62:01:47:af:70:f1:4b:a8:47:ad:39:72:df:5a:e8:d1:f3: 8d:50:ff:9e:79:89:f9:47:f7:62:3a:3a:69:87:12:da:9f:96: 81:53:59:37:5f:c3:0f:c6:70:f5:59:7d:40:33:70:5a:e7:2f: 82:83:7c:1e:fb:c6:ca:21:1d:6c:f1:af:84:59:ea:c1:74:9d: 12:df:1d:c5:5a:d9:1a:b7:45:ab:5f:9a:4d:9d:3a:77:a1:bf: 81:f0:73:e8:74:cb:c6:bf:4f:9d:10:53:d8:1e:e4:0a:e9:c8: 9b:64:34:0a:fc:b2:26:25:2d:69:30:6f:30:6d:df:d2:d7:38: 65:26:c2:b7:a4:2c:a7:0c:0f:3b:45:de:80:c3:ea:db:c6:73: dd:e6:1e:71:e9:32:5f:7a:32:3c:ff:8c:46:18:d7:a9:a2:1c: b5:2a:42:13:ca:0b:4f:9a:09:74:d3:33:f2:5a:0b:30:f0:41: 9a:bb:b8:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYRCI636oQhWbKVcvJ0BQSZh5tagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDJaFw0yNDExMTgxMjAwMDJaMDMxMTAvBgNV BAMTKDgyQjEzQjg2QTJERUNCODk3RTVGMkVCRDU0NkRGRkEyMkNCOTZCMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVo3KqNxlANpPtj3lHCzuK4mk2 GSTFy7BXQWnV076n6SKre6yydiADL0djGm2bw4zPsRwsBOtgWGMaRGgQmCVwx7li whkwTcwqGj4ABbzvC6HWsuljaPBT1f2I684VvMiw5/BD785kWBJcpteWODe25Qdd b5bOSJp9WXBstfkwZXwDLo6mfODZ/4xobMZLfqB8i/qszJQHAUmu0azsV6Ih5Sag AEtvoyaobvwB1ZyeKsPXy+LVGMkLP0JiQKQm1L23vWA0sm9som0L6GTtjdqfvb2g u02d8BmZm10W37czmRZqkE8N63TQuS6lQpDF9CqAVD/gEV97YaPa7PokNwNLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgrE7hqLey4l+Xy69VG3/oiy5awQwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI50zANBgkqhkiG 9w0BAQsFAAOCAQEAiPs2txi44ABbqePnk14g8G48Y6JVKit8nEV4Es9ZQN8tHlZI mloiKiCEIcPRLW+xl1JxyD276xU+LqVonO25qrnHj1suJiisIGIBR69w8UuoR605 ct9a6NHzjVD/nnmJ+Uf3Yjo6aYcS2p+WgVNZN1/DD8Zw9Vl9QDNwWucvgoN8HvvG yiEdbPGvhFnqwXSdEt8dxVrZGrdFq1+aTZ06d6G/gfBz6HTLxr9PnRBT2B7kCunI m2Q0CvyyJiUtaTBvMG3f0tc4ZSbCt6QspwwPO0XegMPq28Zz3eYecekyX3oyPP+M RhjXqaIctSpCE8oLT5oJdNMz8loLMPBBmru4EA== -----END CERTIFICATE-----Generated at Sun Jun 2 07:02:56 2024 by rpki-client on console-fra.rpki-client.org