$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231322e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: VvCiNNZNkR+jOL82aTEAoMNVNijK6DWUneBhRdG1bTg= Subject key identifier: AA:84:44:74:50:D1:D5:14:E4:FE:C5:1C:73:9F:C3:AD:32:D1:E0:77 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 5F4A45FB760262567EE013FCFAE66B586D1AD35D Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:03 +0000 ROA not before: Mon 21 Oct 2024 12:55:03 +0000 ROA not after: Mon 20 Oct 2025 13:00:03 +0000 asID: 38142 IP address blocks: 210.57.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4a:45:fb:76:02:62:56:7e:e0:13:fc:fa:e6:6b:58:6d:1a:d3:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:03 2024 GMT Not After : Oct 20 13:00:03 2025 GMT Subject: CN=AA84447450D1D514E4FEC51C739FC3AD32D1E077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:73:bc:aa:1a:aa:91:1b:71:36:54:3c:c4:d0: 88:53:31:4e:95:f2:b3:4e:27:74:0b:22:20:42:b7: 3c:9e:c9:4b:01:06:59:cb:27:19:cc:6d:5a:2f:8c: 01:9b:cd:cd:df:71:23:31:05:13:3d:2e:0e:75:0f: ad:8f:ef:33:3a:52:80:7e:a0:25:58:94:bb:8a:09: e0:0a:18:b9:b7:e1:97:26:0a:db:1a:4d:95:cd:24: 45:00:05:db:e2:59:15:75:29:9c:7a:10:34:30:8f: c8:07:7a:2d:80:fe:f2:76:84:67:f6:63:a4:be:fa: 05:26:6c:35:de:52:36:2a:58:95:29:6d:86:d9:65: ce:90:32:a7:2e:04:20:00:eb:b2:0c:7f:29:0a:d6: 53:81:73:b6:2f:00:56:a8:bb:0f:c1:c7:30:b1:c3: a9:cd:a9:ea:8c:87:56:27:6b:1a:28:7f:2c:4f:11: ef:c1:5c:be:42:9c:7a:66:bd:6d:69:af:04:17:9d: 8c:b8:49:73:a3:dd:33:a1:6f:f3:56:36:77:7a:09: 52:31:af:79:10:85:74:b2:b4:52:ff:51:57:ad:74: 24:08:15:65:2a:e3:01:c9:42:8f:70:9e:b0:09:d3: c8:73:a7:82:93:32:6d:49:6c:da:ff:8a:30:6e:51: 29:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:84:44:74:50:D1:D5:14:E4:FE:C5:1C:73:9F:C3:AD:32:D1:E0:77 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.212.0/24 Signature Algorithm: sha256WithRSAEncryption ad:35:16:99:28:3c:0e:c9:d5:34:32:4e:d5:f2:6c:9d:34:b3: 6b:5e:25:e6:01:51:61:8b:2d:97:c2:52:1f:a5:0e:30:ad:a3: 0e:af:79:00:02:d8:e5:43:c6:73:2a:84:1d:94:19:9a:55:2e: a4:7c:15:a6:68:c8:b3:00:e7:e2:27:ed:3d:75:c1:37:8c:8b: 1a:8a:24:f1:ff:d3:ce:14:bf:50:5c:de:77:d2:69:28:14:2d: b0:24:02:2c:08:8e:31:b6:67:bf:4f:5a:c4:34:f5:e7:3a:23: b4:a4:1b:bc:4a:1c:9e:00:31:52:e8:f7:d2:af:18:3f:9b:ab: 7a:c8:db:07:48:8a:1d:9e:1f:31:92:f6:ad:8c:7a:86:27:08: cd:92:bb:ba:a2:9d:a8:c4:e4:bc:16:74:72:db:70:fc:18:41: 02:14:8e:f2:83:d6:50:1a:e6:ca:c9:1d:23:6d:ed:3b:3f:95: ba:6e:54:43:a7:17:51:44:32:62:4a:42:f4:f3:48:03:78:35: ae:32:9a:2c:8f:49:f0:16:71:d6:1a:54:fe:b3:5c:f2:51:85: ca:c8:34:17:d1:99:fd:6c:78:6a:db:84:88:8f:64:26:e1:6b: 55:6d:1b:67:2a:b9:51:27:33:41:a3:fb:df:77:60:2d:49:ec: a6:f6:00:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX0pF+3YCYlZ+4BP8+uZrWG0a010wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDNaFw0yNTEwMjAxMzAwMDNaMDMxMTAvBgNV BAMTKEFBODQ0NDc0NTBEMUQ1MTRFNEZFQzUxQzczOUZDM0FEMzJEMUUwNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFc7yqGqqRG3E2VDzE0IhTMU6V 8rNOJ3QLIiBCtzyeyUsBBlnLJxnMbVovjAGbzc3fcSMxBRM9Lg51D62P7zM6UoB+ oCVYlLuKCeAKGLm34ZcmCtsaTZXNJEUABdviWRV1KZx6EDQwj8gHei2A/vJ2hGf2 Y6S++gUmbDXeUjYqWJUpbYbZZc6QMqcuBCAA67IMfykK1lOBc7YvAFaouw/BxzCx w6nNqeqMh1YnaxoofyxPEe/BXL5CnHpmvW1prwQXnYy4SXOj3TOhb/NWNnd6CVIx r3kQhXSytFL/UVetdCQIFWUq4wHJQo9wnrAJ08hzp4KTMm1JbNr/ijBuUSnhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqoREdFDR1RTk/sUcc5/DrTLR4HcwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51DANBgkqhkiG 9w0BAQsFAAOCAQEArTUWmSg8DsnVNDJO1fJsnTSza14l5gFRYYstl8JSH6UOMK2j Dq95AALY5UPGcyqEHZQZmlUupHwVpmjIswDn4iftPXXBN4yLGook8f/TzhS/UFze d9JpKBQtsCQCLAiOMbZnv09axDT15zojtKQbvEocngAxUuj30q8YP5uresjbB0iK HZ4fMZL2rYx6hicIzZK7uqKdqMTkvBZ0cttw/BhBAhSO8oPWUBrmyskdI23tOz+V um5UQ6cXUUQyYkpC9PNIA3g1rjKaLI9J8BZx1hpU/rNc8lGFysg0F9GZ/Wx4atuE iI9kJuFrVW0bZyq5USczQaP733dgLUnspvYAHg== -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org