$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231332e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: dG8//08WgWJdVwfWHOamSCBCgAVZtc+xat2iGit/ozU= Subject key identifier: C9:40:4F:68:59:CA:2F:FD:56:5C:30:06:AA:42:A1:21:DE:A9:AA:88 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 2DB365B9456DABBE9A8765965371CFA58D389952 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:00 +0000 ROA not before: Mon 21 Oct 2024 12:55:00 +0000 ROA not after: Mon 20 Oct 2025 13:00:00 +0000 asID: 38142 IP address blocks: 210.57.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b3:65:b9:45:6d:ab:be:9a:87:65:96:53:71:cf:a5:8d:38:99:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:00 2024 GMT Not After : Oct 20 13:00:00 2025 GMT Subject: CN=C9404F6859CA2FFD565C3006AA42A121DEA9AA88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:37:6d:40:b2:be:9e:f0:ea:ed:eb:af:9f: eb:1b:f3:b6:52:b5:96:d3:3b:5b:30:4a:9b:f3:c5: 18:71:89:24:e3:1d:ea:bb:7a:e4:ee:b5:ca:61:39: 4c:48:81:55:9c:5c:e5:ef:c0:af:b5:1e:f5:a7:f8: 79:8a:37:6f:07:26:94:05:c7:cc:fb:4d:2a:0d:88: d2:0e:d2:69:65:ed:32:87:5e:39:09:0c:64:7b:b1: 15:6e:b9:12:cf:7e:06:bd:49:e7:11:04:c3:90:b8: 67:f0:95:1a:19:bc:2c:a1:98:33:6a:28:ad:42:85: 77:69:5e:36:bc:ff:35:90:46:2e:09:e3:50:21:8f: f1:79:32:d9:d0:51:77:15:da:84:be:db:62:0a:eb: aa:6a:b8:4c:fe:a3:b0:2b:91:e8:27:8c:18:35:a9: e7:06:98:e1:7f:67:26:70:7b:d6:3a:9a:dc:91:aa: ac:db:8e:ca:f4:f9:01:ec:c3:e6:60:d2:32:38:d2: b4:b1:d7:37:0c:65:d8:12:ac:c3:9f:d8:24:75:9d: 57:35:91:6b:d4:a9:24:1b:bf:d4:15:f4:53:be:de: 36:00:fb:0b:1b:9a:3a:84:30:85:94:bc:41:34:69: 45:08:6d:75:d6:fe:57:d8:39:a3:db:02:e6:85:20: 1b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:40:4F:68:59:CA:2F:FD:56:5C:30:06:AA:42:A1:21:DE:A9:AA:88 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.213.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:90:fa:25:7d:d7:2d:6f:ce:52:1b:86:ce:3b:45:5e:e3:c4: 9f:98:8b:97:60:6f:ee:19:a8:2d:0f:c0:5f:7d:76:72:32:08: 40:55:bd:fe:85:af:b7:2e:d2:95:f0:b2:4a:93:a1:c7:6f:aa: f9:47:b5:d2:40:4f:87:08:17:c1:93:79:9b:b9:cc:cf:15:cd: d8:b4:46:34:0a:b7:bb:ba:2a:48:ba:5e:ff:77:31:5c:68:a7: 20:4b:90:1d:1f:6d:56:87:38:5d:61:8e:a8:50:42:95:fd:83: cf:9b:06:9b:b7:2f:d1:da:57:b8:65:ed:19:b8:97:ae:60:44: ce:4e:d8:f1:3e:a7:c0:bb:11:5e:fe:ec:96:ad:96:6f:8f:74: 66:79:43:15:d9:27:e8:35:8f:dd:5f:e8:87:a1:52:cf:59:9f: 00:0b:31:81:a5:4c:28:ee:49:17:a4:be:ae:0c:aa:2c:dc:d9: ff:f3:f8:17:4a:01:67:e1:af:f5:3b:7b:cd:fb:8d:5e:3d:d1: d2:bd:fa:17:13:35:f2:ca:a0:5b:7d:d4:fb:64:fc:d2:63:95: fc:93:3f:8a:9b:2e:cd:4b:8b:23:ce:79:f9:ad:3c:dd:4b:ce: 90:e3:c4:e0:a9:ab:7b:35:26:11:6d:01:90:be:81:38:43:b0: 75:4f:6e:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULbNluUVtq76ah2WWU3HPpY04mVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDBaFw0yNTEwMjAxMzAwMDBaMDMxMTAvBgNV BAMTKEM5NDA0RjY4NTlDQTJGRkQ1NjVDMzAwNkFBNDJBMTIxREVBOUFBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwNTdtQLK+nvDq7euvn+sb87ZS tZbTO1swSpvzxRhxiSTjHeq7euTutcphOUxIgVWcXOXvwK+1HvWn+HmKN28HJpQF x8z7TSoNiNIO0mll7TKHXjkJDGR7sRVuuRLPfga9SecRBMOQuGfwlRoZvCyhmDNq KK1ChXdpXja8/zWQRi4J41Ahj/F5MtnQUXcV2oS+22IK66pquEz+o7ArkegnjBg1 qecGmOF/ZyZwe9Y6mtyRqqzbjsr0+QHsw+Zg0jI40rSx1zcMZdgSrMOf2CR1nVc1 kWvUqSQbv9QV9FO+3jYA+wsbmjqEMIWUvEE0aUUIbXXW/lfYOaPbAuaFIBt5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyUBPaFnKL/1WXDAGqkKhId6pqogwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51TANBgkqhkiG 9w0BAQsFAAOCAQEADpD6JX3XLW/OUhuGzjtFXuPEn5iLl2Bv7hmoLQ/AX312cjII QFW9/oWvty7SlfCySpOhx2+q+Ue10kBPhwgXwZN5m7nMzxXN2LRGNAq3u7oqSLpe /3cxXGinIEuQHR9tVoc4XWGOqFBClf2Dz5sGm7cv0dpXuGXtGbiXrmBEzk7Y8T6n wLsRXv7slq2Wb490ZnlDFdkn6DWP3V/oh6FSz1mfAAsxgaVMKO5JF6S+rgyqLNzZ //P4F0oBZ+Gv9Tt7zfuNXj3R0r36FxM18sqgW33U+2T80mOV/JM/ipsuzUuLI855 +a083UvOkOPE4KmrezUmEW0BkL6BOEOwdU9uyA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org