$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231342e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231342e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: R8tKT5t+qGKeLH+mvJmhZYmQ+JVJFCVIeC0OR+NlWGo= Subject key identifier: E3:0C:72:AF:95:97:46:48:BF:AA:FC:FB:66:FB:F0:B2:4E:20:21:5C Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 526FEFA3248D5FE192474755C4675A8A5457DC39 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231342e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:02 +0000 ROA not before: Mon 21 Oct 2024 12:55:02 +0000 ROA not after: Mon 20 Oct 2025 13:00:02 +0000 asID: 38142 IP address blocks: 210.57.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:6f:ef:a3:24:8d:5f:e1:92:47:47:55:c4:67:5a:8a:54:57:dc:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:02 2024 GMT Not After : Oct 20 13:00:02 2025 GMT Subject: CN=E30C72AF95974648BFAAFCFB66FBF0B24E20215C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:08:92:69:03:73:e1:6f:99:ee:12:69:70:50: c7:f6:a5:38:6b:ed:7e:a5:8d:ee:cd:6e:38:82:d0: 2f:14:72:cd:6e:34:68:5d:3f:f9:5e:a9:8b:12:2a: a1:72:44:40:40:8f:62:20:86:77:55:bb:54:3c:fb: b6:f3:4a:87:ba:64:23:96:f0:e7:96:1e:98:6b:ea: a3:e7:d8:d0:e5:2d:a7:f3:db:42:16:7e:e5:b7:2b: 5f:6c:85:2c:da:8a:45:e4:cc:9c:9d:85:78:2e:71: ed:28:21:2c:2f:79:53:83:51:1a:83:b5:af:b3:65: f4:fc:f2:36:aa:80:1b:94:bc:df:9f:af:89:c0:f6: 99:89:a2:68:bb:5e:a9:f0:e5:91:4c:38:a3:0b:86: 69:05:f0:44:a5:fa:cf:47:c8:41:a4:ca:ab:e5:5f: df:60:3e:8f:1c:3a:96:db:74:28:e7:15:a1:49:90: 21:43:88:58:2b:04:9a:96:c8:c9:08:93:b5:4f:38: d9:d8:66:10:54:db:10:0f:96:d3:d3:52:dc:7b:8d: d3:a0:46:3f:68:25:0f:4f:61:27:07:4b:b7:a1:30: 8b:25:a3:df:e9:f9:51:f5:c9:02:75:fa:8e:81:2a: e7:b2:e7:77:dd:13:63:e6:ab:a3:69:9f:63:1f:9b: 9c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:0C:72:AF:95:97:46:48:BF:AA:FC:FB:66:FB:F0:B2:4E:20:21:5C X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231342e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.214.0/24 Signature Algorithm: sha256WithRSAEncryption 16:63:83:5b:35:c4:2c:11:9c:40:8e:13:d5:f6:89:e0:96:a8: 19:3a:99:77:d5:4e:09:ea:c2:d4:25:b2:3d:6d:8d:d5:ad:2d: 53:c4:af:e2:4b:68:09:02:2f:46:c6:94:49:e9:2b:fd:49:81: aa:8e:fd:e9:42:64:3d:62:9e:af:a3:f4:d6:8d:25:e2:21:43: 2d:a4:43:70:4b:11:e6:8e:40:42:0b:8c:70:dc:dc:29:07:3a: 15:e6:2f:95:51:e1:9d:23:28:c6:ad:f8:0d:64:be:ae:4f:d3: 4e:49:c8:8f:c7:df:1f:d1:05:c5:bb:d6:61:88:fe:8d:76:3e: fb:48:e8:bd:aa:59:c2:a8:98:9a:eb:b5:27:23:3d:86:89:09: c2:68:6a:b2:c0:63:e5:f3:91:40:5f:f4:3d:ea:12:fb:e5:b5: 12:a5:a2:c0:2e:4d:c0:2b:c9:bd:c2:91:ca:2b:69:7d:5f:56: 06:a9:71:07:84:d4:1c:83:cb:8c:6d:bd:92:8b:e4:7f:9f:4a: c1:a6:7f:7f:7e:1f:c0:88:a7:91:f5:b8:34:6e:05:d6:2d:f5: d6:c4:b5:7a:85:82:89:6d:96:bd:62:d7:2d:b5:8c:57:f9:8e: ff:98:f0:33:b6:13:16:f2:41:8e:05:5a:77:20:a0:ff:2e:19: 44:50:41:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUm/voySNX+GSR0dVxGdailRX3DkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDJaFw0yNTEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKEUzMEM3MkFGOTU5NzQ2NDhCRkFBRkNGQjY2RkJGMEIyNEUyMDIxNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNCJJpA3Phb5nuEmlwUMf2pThr 7X6lje7NbjiC0C8Ucs1uNGhdP/leqYsSKqFyREBAj2IghndVu1Q8+7bzSoe6ZCOW 8OeWHphr6qPn2NDlLafz20IWfuW3K19shSzaikXkzJydhXguce0oISwveVODURqD ta+zZfT88jaqgBuUvN+fr4nA9pmJomi7Xqnw5ZFMOKMLhmkF8ESl+s9HyEGkyqvl X99gPo8cOpbbdCjnFaFJkCFDiFgrBJqWyMkIk7VPONnYZhBU2xAPltPTUtx7jdOg Rj9oJQ9PYScHS7ehMIslo9/p+VH1yQJ1+o6BKuey53fdE2Pmq6Npn2Mfm5zXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4wxyr5WXRki/qvz7Zvvwsk4gIVwwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51jANBgkqhkiG 9w0BAQsFAAOCAQEAFmODWzXELBGcQI4T1faJ4JaoGTqZd9VOCerC1CWyPW2N1a0t U8Sv4ktoCQIvRsaUSekr/UmBqo796UJkPWKer6P01o0l4iFDLaRDcEsR5o5AQguM cNzcKQc6FeYvlVHhnSMoxq34DWS+rk/TTknIj8ffH9EFxbvWYYj+jXY++0jovapZ wqiYmuu1JyM9hokJwmhqssBj5fORQF/0PeoS++W1EqWiwC5NwCvJvcKRyitpfV9W BqlxB4TUHIPLjG29kovkf59KwaZ/f34fwIinkfW4NG4F1i311sS1eoWCiW2WvWLX LbWMV/mO/5jwM7YTFvJBjgVadyCg/y4ZRFBBng== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org