$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231322e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: Ou61IztSzmlQHhp+lA7XYQBq1omADkYRsb8JYK8z4TI= Subject key identifier: FA:F0:C8:E4:BE:13:75:79:58:FB:C3:23:72:0C:22:85:43:CD:58:05 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 53BE9B10D9E89C727BBFE124C79BB29FE53462E1 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:03 +0000 ROA not before: Mon 20 Nov 2023 11:55:03 +0000 ROA not after: Mon 18 Nov 2024 12:00:03 +0000 asID: 38142 IP address blocks: 210.57.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:be:9b:10:d9:e8:9c:72:7b:bf:e1:24:c7:9b:b2:9f:e5:34:62:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:03 2023 GMT Not After : Nov 18 12:00:03 2024 GMT Subject: CN=FAF0C8E4BE13757958FBC323720C228543CD5805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6a:ea:f6:8c:0b:07:94:ac:7c:cd:59:f1:9d: 62:7c:18:31:d8:5d:f6:d9:40:96:dc:02:9f:2d:1c: 9a:e3:49:30:84:21:a2:44:22:0e:0e:e9:9e:f1:50: 69:da:e3:76:33:b9:b9:a4:e7:fa:13:7d:5f:41:7d: c7:01:f0:51:84:2a:00:9d:92:43:08:b8:fc:5f:cb: 0c:c4:fa:e6:9c:39:f6:fc:fc:88:d9:24:89:b7:4d: f9:4a:03:a6:3b:41:62:dc:af:bf:db:d9:8b:35:64: b8:1d:1e:22:5e:a4:92:f8:0f:40:78:85:a0:fb:ff: 19:c8:77:dc:52:45:a7:ac:3a:d1:a2:b5:33:d5:c6: 23:54:eb:39:d9:f1:8d:6f:56:da:b1:5c:c8:c5:7e: ab:bd:b1:0d:fa:39:c5:9c:19:ce:ec:66:4b:1f:ba: 95:4a:bc:93:41:28:83:bf:a5:24:d5:6e:4b:c2:8a: cd:ef:54:02:8e:9a:b4:93:b1:11:29:3f:43:d1:c7: 24:70:63:30:28:0f:9d:95:68:92:18:a6:9d:de:c3: c3:47:dd:17:b6:38:dd:52:d9:6a:cb:23:75:49:ad: 64:5d:3d:b5:2a:c8:fb:d6:06:b1:e1:20:a7:38:7e: 12:75:e9:73:46:b2:4b:b4:e3:ce:1f:1f:e8:96:24: fa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F0:C8:E4:BE:13:75:79:58:FB:C3:23:72:0C:22:85:43:CD:58:05 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.212.0/24 Signature Algorithm: sha256WithRSAEncryption 10:24:e9:31:a5:ba:ff:66:a0:48:08:88:87:01:28:5c:69:85: ba:0a:76:a8:42:b7:13:44:df:6e:fe:21:73:6e:63:73:55:62: 5d:cc:4e:40:be:1f:cc:5e:ef:70:77:cb:95:f3:af:73:00:8f: d1:8a:52:7a:e5:df:ba:2f:24:86:ff:a9:a9:42:d9:dc:ec:ef: c1:a6:de:56:c1:36:e6:af:12:26:14:7c:31:7d:73:00:86:b3: 55:5d:cd:1e:0a:0a:6e:28:9a:bf:54:2e:1d:70:20:3e:2b:85: 8d:3a:25:68:09:13:dd:34:9e:e4:23:cf:dc:28:25:1c:d7:df: 63:ec:bd:40:8a:9e:6d:1a:55:c2:85:cf:df:05:0b:01:20:34: f1:fe:c3:eb:44:1e:b8:47:3e:2d:f2:87:e9:00:b5:9b:c9:8a: 17:6f:38:b4:00:55:b1:39:a4:03:6a:05:b1:b9:3f:cd:88:a1: 8c:a3:48:ac:8c:54:8a:2b:bc:1b:d9:d8:ab:f9:91:ac:30:49: 17:8b:8c:49:45:84:dd:36:45:54:67:05:da:14:ac:bd:0e:a9: 29:65:c7:48:f1:4b:e7:b3:20:58:de:7d:70:a8:29:a8:f4:39: 3c:8a:c1:36:56:b1:94:88:af:52:7c:3d:fd:47:32:2a:b6:22: 98:d5:22:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU76bENnonHJ7v+Ekx5uyn+U0YuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDNaFw0yNDExMTgxMjAwMDNaMDMxMTAvBgNV BAMTKEZBRjBDOEU0QkUxMzc1Nzk1OEZCQzMyMzcyMEMyMjg1NDNDRDU4MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoaur2jAsHlKx8zVnxnWJ8GDHY XfbZQJbcAp8tHJrjSTCEIaJEIg4O6Z7xUGna43Yzubmk5/oTfV9BfccB8FGEKgCd kkMIuPxfywzE+uacOfb8/IjZJIm3TflKA6Y7QWLcr7/b2Ys1ZLgdHiJepJL4D0B4 haD7/xnId9xSRaesOtGitTPVxiNU6znZ8Y1vVtqxXMjFfqu9sQ36OcWcGc7sZksf upVKvJNBKIO/pSTVbkvCis3vVAKOmrSTsREpP0PRxyRwYzAoD52VaJIYpp3ew8NH 3Re2ON1S2WrLI3VJrWRdPbUqyPvWBrHhIKc4fhJ16XNGsku0484fH+iWJPqXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+vDI5L4TdXlY+8MjcgwihUPNWAUwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51DANBgkqhkiG 9w0BAQsFAAOCAQEAECTpMaW6/2agSAiIhwEoXGmFugp2qEK3E0Tfbv4hc25jc1Vi XcxOQL4fzF7vcHfLlfOvcwCP0YpSeuXfui8khv+pqULZ3OzvwabeVsE25q8SJhR8 MX1zAIazVV3NHgoKbiiav1QuHXAgPiuFjTolaAkT3TSe5CPP3CglHNffY+y9QIqe bRpVwoXP3wULASA08f7D60QeuEc+LfKH6QC1m8mKF284tABVsTmkA2oFsbk/zYih jKNIrIxUiiu8G9nYq/mRrDBJF4uMSUWE3TZFVGcF2hSsvQ6pKWXHSPFL57MgWN59 cKgpqPQ5PIrBNlaxlIivUnw9/UcyKrYimNUiYg== -----END CERTIFICATE-----Generated at Sun Jun 2 07:02:56 2024 by rpki-client on console-fra.rpki-client.org