$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231342e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231342e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: udELhfzkwj9Idh95vusLXPot/wrU/Nvq2FHBjBoZDKE= Subject key identifier: B6:2B:B4:83:F3:C6:ED:AF:83:97:5D:DF:63:53:95:A9:97:F9:2A:51 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 268259EAF4A62077EDB4FB6765C91CB807EB57F2 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231342e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:02 +0000 ROA not before: Mon 20 Nov 2023 11:55:02 +0000 ROA not after: Mon 18 Nov 2024 12:00:02 +0000 asID: 38142 IP address blocks: 210.57.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:82:59:ea:f4:a6:20:77:ed:b4:fb:67:65:c9:1c:b8:07:eb:57:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:02 2023 GMT Not After : Nov 18 12:00:02 2024 GMT Subject: CN=B62BB483F3C6EDAF83975DDF635395A997F92A51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:17:4c:2a:c2:b5:f1:f4:74:13:d8:5c:ae:db: d1:e0:a7:d0:66:86:8b:84:85:15:04:97:28:72:74: b7:f8:ab:83:fc:58:91:95:af:8e:84:b5:5f:0b:35: ee:15:00:39:9b:9c:63:c7:d3:1e:ed:6f:e1:02:d2: 1f:dc:12:27:86:99:b2:45:f1:8c:42:47:b0:c6:30: de:07:2c:57:a7:05:91:14:06:5c:30:8f:0f:ae:c2: 2b:7a:38:bb:05:37:af:62:e6:8f:0f:df:95:b9:72: 67:7b:87:06:73:96:d5:93:23:59:66:58:bf:e8:99: 8f:c8:12:c4:7c:87:6b:1a:78:4b:af:f8:94:d0:5a: 2c:5f:60:6c:1b:34:6e:cf:04:c1:0c:e3:52:b8:7e: 6e:d5:d2:bc:05:ab:d2:f5:75:52:02:a0:1e:cf:db: 7d:67:74:d7:f8:ed:fc:45:82:8a:86:4d:c3:6a:f6: bb:fb:6b:d4:09:ad:59:a4:a4:ac:9a:68:f8:47:88: c8:82:c0:42:f7:50:fe:9f:fb:7c:78:69:8a:78:ad: 73:db:d0:e5:89:0e:18:d2:94:fe:4b:94:5a:a4:c8: e5:91:5d:2f:f5:9d:e0:fa:06:b0:3f:72:dc:fe:b2: a6:46:3b:69:55:d6:68:7e:ed:74:34:73:47:c7:b5: 85:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2B:B4:83:F3:C6:ED:AF:83:97:5D:DF:63:53:95:A9:97:F9:2A:51 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231342e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.214.0/24 Signature Algorithm: sha256WithRSAEncryption 30:9d:87:79:ab:24:a2:31:15:27:42:7a:19:60:39:8b:c3:a5: 3f:36:8b:6b:ab:a9:68:b3:c0:14:91:24:c6:84:f4:ec:82:e0: e4:e3:67:a4:63:a5:fe:20:e6:7a:f2:2e:e0:4c:7c:93:ab:63: 34:9b:9e:5b:d3:79:bb:66:a3:38:b7:9a:59:ca:59:e3:6f:7b: bf:9c:88:aa:90:32:c0:27:fd:02:11:8b:aa:7d:6b:ac:72:2b: be:36:e8:60:c1:d7:e7:de:64:59:3e:07:3d:d2:c3:0d:e2:60: 86:d5:f8:60:96:e6:4d:bb:90:7d:3f:fb:d9:3c:cc:fa:c5:42: 17:52:89:eb:bc:c0:da:83:bc:f2:7b:96:95:e0:0c:e6:ca:39: 29:dd:a3:87:58:53:c6:ed:22:60:69:70:97:99:8e:05:e5:ca: c9:ad:40:1c:09:0d:50:d2:3b:c2:d0:e7:6d:57:60:2e:ab:d3: 30:3f:53:67:a2:72:1f:9a:30:00:cd:6a:06:b7:c4:4c:12:d2: 9a:59:b5:05:ed:28:37:5f:55:25:ce:2e:0a:7e:6d:2e:9a:82: 31:a7:9c:7f:96:0e:6b:2e:6e:76:fc:ce:a3:d5:54:a3:0b:42: db:29:6b:23:10:37:38:92:fb:2e:42:cb:cb:91:ba:ac:45:29: 4f:26:3e:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJoJZ6vSmIHfttPtnZckcuAfrV/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDJaFw0yNDExMTgxMjAwMDJaMDMxMTAvBgNV BAMTKEI2MkJCNDgzRjNDNkVEQUY4Mzk3NURERjYzNTM5NUE5OTdGOTJBNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFF0wqwrXx9HQT2Fyu29Hgp9Bm houEhRUElyhydLf4q4P8WJGVr46EtV8LNe4VADmbnGPH0x7tb+EC0h/cEieGmbJF 8YxCR7DGMN4HLFenBZEUBlwwjw+uwit6OLsFN69i5o8P35W5cmd7hwZzltWTI1lm WL/omY/IEsR8h2saeEuv+JTQWixfYGwbNG7PBMEM41K4fm7V0rwFq9L1dVICoB7P 231ndNf47fxFgoqGTcNq9rv7a9QJrVmkpKyaaPhHiMiCwEL3UP6f+3x4aYp4rXPb 0OWJDhjSlP5LlFqkyOWRXS/1neD6BrA/ctz+sqZGO2lV1mh+7XQ0c0fHtYVlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtiu0g/PG7a+Dl13fY1OVqZf5KlEwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51jANBgkqhkiG 9w0BAQsFAAOCAQEAMJ2HeaskojEVJ0J6GWA5i8OlPzaLa6upaLPAFJEkxoT07ILg 5ONnpGOl/iDmevIu4Ex8k6tjNJueW9N5u2ajOLeaWcpZ4297v5yIqpAywCf9AhGL qn1rrHIrvjboYMHX595kWT4HPdLDDeJghtX4YJbmTbuQfT/72TzM+sVCF1KJ67zA 2oO88nuWleAM5so5Kd2jh1hTxu0iYGlwl5mOBeXKya1AHAkNUNI7wtDnbVdgLqvT MD9TZ6JyH5owAM1qBrfETBLSmlm1Be0oN19VJc4uCn5tLpqCMaecf5YOay5udvzO o9VUowtC2ylrIxA3OJL7LkLLy5G6rEUpTyY+zQ== -----END CERTIFICATE-----Generated at Sun Jun 2 07:02:56 2024 by rpki-client on console-fra.rpki-client.org