$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231332e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 0YroxpjltM6+fQi0BtWpEsMMvcWbZIc2y16Ung4yo5k= Subject key identifier: B2:97:67:6A:40:11:CC:B5:46:E3:7B:68:44:02:60:97:11:6F:A0:D4 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 7F184D38E049C77F49BF5ABC83F84C2D44E6F07B Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:00 +0000 ROA not before: Mon 20 Nov 2023 11:55:00 +0000 ROA not after: Mon 18 Nov 2024 12:00:00 +0000 asID: 38142 IP address blocks: 210.57.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:18:4d:38:e0:49:c7:7f:49:bf:5a:bc:83:f8:4c:2d:44:e6:f0:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:00 2023 GMT Not After : Nov 18 12:00:00 2024 GMT Subject: CN=B297676A4011CCB546E37B6844026097116FA0D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2a:6f:91:39:c9:e9:7b:88:79:22:7e:41:76: 56:cb:35:a2:fd:3f:f5:c3:91:dc:2b:32:a7:f6:31: 92:04:3f:44:24:25:6f:82:4e:17:d7:70:fb:03:07: 3b:c0:70:80:b0:4c:94:4e:8b:71:7f:98:1f:60:18: 07:1b:2c:eb:5e:00:ef:e0:17:de:f2:7a:78:cf:b1: 60:aa:bc:d8:cd:55:d5:e4:ff:91:24:80:f9:84:47: f9:4c:94:c1:d3:ae:d4:3a:9f:f3:48:63:c5:11:9f: 0b:2e:4c:39:e0:4b:6f:0e:09:54:5a:ca:aa:37:73: 91:c2:c2:9f:48:9e:17:a2:46:87:a5:56:fb:13:56: 34:d0:2d:f0:48:e6:77:5d:8b:e6:8c:10:b6:7e:ae: b4:7c:89:0b:67:5f:b5:01:54:fe:6e:43:f1:4a:b1: 89:2c:16:6f:bf:a3:9b:9b:ab:cc:31:9d:32:fe:52: 25:f1:71:6b:e5:ee:bb:1f:24:ee:bc:75:6f:27:43: b6:b6:96:39:25:93:38:09:ca:cd:14:47:cb:e3:58: 85:31:74:ea:e2:28:09:5a:a7:ce:1b:08:5c:8a:50: 49:90:50:af:30:51:51:8d:f0:5a:79:66:99:f4:bb: a7:55:90:db:fe:e9:88:cf:6a:4f:bf:63:a9:cb:c8: c7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:97:67:6A:40:11:CC:B5:46:E3:7B:68:44:02:60:97:11:6F:A0:D4 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.213.0/24 Signature Algorithm: sha256WithRSAEncryption af:64:0c:74:e6:2e:f0:3b:14:cc:ed:34:16:cf:18:c8:38:cf: a8:00:4f:65:7d:bf:32:7a:d5:44:48:14:ad:5c:b2:75:f0:2b: 05:43:75:b3:fa:92:aa:36:7a:95:31:82:da:d2:38:ed:9c:7f: b2:47:4b:37:37:ee:8b:4d:5d:95:65:fa:9b:c1:43:4e:e2:82: 41:f2:ac:b7:28:56:a7:51:8b:fe:60:7a:21:a6:92:08:5f:18: 66:f6:52:9f:32:c0:7c:98:d2:17:73:f8:6a:26:44:2a:b1:9a: b5:4a:41:2e:dd:48:fe:33:ac:a9:5e:3d:f3:5c:68:fa:e8:8f: 2d:2c:52:cd:68:92:84:aa:6e:8c:c5:f6:fe:ae:a1:36:8f:95: e1:f2:dd:00:32:a5:83:86:48:6c:13:af:7f:1c:fc:4a:8d:0d: 00:a9:45:73:b0:41:77:b4:8e:cd:c0:8d:1f:8e:ee:07:35:fa: f3:69:be:02:0f:07:0e:5d:05:7a:af:de:6f:11:12:1c:34:05: 29:2e:93:86:71:4c:42:9b:c5:2d:ec:02:a4:f9:f9:8b:91:be: a8:85:5b:ce:d8:15:95:0b:51:8c:2c:6c:d7:f0:e6:27:40:b9: 64:2b:57:e1:ac:e8:95:f7:7d:ce:7c:ee:26:26:6e:3d:56:ef: 44:d7:1d:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfxhNOOBJx39Jv1q8g/hMLUTm8HswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDBaFw0yNDExMTgxMjAwMDBaMDMxMTAvBgNV BAMTKEIyOTc2NzZBNDAxMUNDQjU0NkUzN0I2ODQ0MDI2MDk3MTE2RkEwRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKm+ROcnpe4h5In5BdlbLNaL9 P/XDkdwrMqf2MZIEP0QkJW+CThfXcPsDBzvAcICwTJROi3F/mB9gGAcbLOteAO/g F97yenjPsWCqvNjNVdXk/5EkgPmER/lMlMHTrtQ6n/NIY8URnwsuTDngS28OCVRa yqo3c5HCwp9InheiRoelVvsTVjTQLfBI5nddi+aMELZ+rrR8iQtnX7UBVP5uQ/FK sYksFm+/o5ubq8wxnTL+UiXxcWvl7rsfJO68dW8nQ7a2ljklkzgJys0UR8vjWIUx dOriKAlap84bCFyKUEmQUK8wUVGN8Fp5Zpn0u6dVkNv+6YjPak+/Y6nLyMeTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUspdnakARzLVG43toRAJglxFvoNQwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51TANBgkqhkiG 9w0BAQsFAAOCAQEAr2QMdOYu8DsUzO00Fs8YyDjPqABPZX2/MnrVREgUrVyydfAr BUN1s/qSqjZ6lTGC2tI47Zx/skdLNzfui01dlWX6m8FDTuKCQfKstyhWp1GL/mB6 IaaSCF8YZvZSnzLAfJjSF3P4aiZEKrGatUpBLt1I/jOsqV4981xo+uiPLSxSzWiS hKpujMX2/q6hNo+V4fLdADKlg4ZIbBOvfxz8So0NAKlFc7BBd7SOzcCNH47uBzX6 82m+Ag8HDl0Feq/ebxESHDQFKS6ThnFMQpvFLewCpPn5i5G+qIVbztgVlQtRjCxs 1/DmJ0C5ZCtX4azolfd9znzuJiZuPVbvRNcdVw== -----END CERTIFICATE-----Generated at Sun Jun 2 05:58:48 2024 by rpki-client on console-ams.rpki-client.org