$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231352e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231352e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: NxNlrKrZTlmWmVaaoGudLY4lFXk9X6JplSyhuLDh9i0= Subject key identifier: E3:32:54:08:2B:3D:DB:0F:32:AD:28:B7:6D:D9:B1:9F:47:F4:94:0D Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 63433B82DA7B91A44977D776B966FA1DEC936D0E Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231352e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:01 +0000 ROA not before: Mon 21 Oct 2024 12:55:01 +0000 ROA not after: Mon 20 Oct 2025 13:00:01 +0000 asID: 38142 IP address blocks: 210.57.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:3b:82:da:7b:91:a4:49:77:d7:76:b9:66:fa:1d:ec:93:6d:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:01 2024 GMT Not After : Oct 20 13:00:01 2025 GMT Subject: CN=E33254082B3DDB0F32AD28B76DD9B19F47F4940D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:84:c0:31:54:67:37:7a:05:ae:1a:4b:d9:12: 72:5a:f8:ec:43:dd:6a:ba:44:7c:3d:28:8b:b8:d2: 1a:2e:02:7c:14:ee:f4:a2:43:23:3a:ba:74:58:e0: 85:1b:a2:fe:ea:31:8e:5c:eb:6a:d7:08:3e:d4:26: 96:7b:60:14:61:c6:d2:29:a0:a5:e8:25:90:b4:a5: 79:f1:96:5b:72:80:bd:4b:3e:48:ef:72:fc:c9:0a: 51:92:64:90:ae:d1:ee:4b:b7:bb:74:b9:ae:5d:a1: 90:af:cd:32:ec:67:1f:96:16:3b:fd:a9:51:47:83: 87:3d:53:8f:b5:af:83:be:37:83:9c:4e:a0:6b:3c: df:91:7b:c6:3a:a4:93:fc:55:bc:cd:32:10:88:1a: 04:ce:38:73:f0:8f:9b:44:11:1b:29:f4:59:b3:4f: 29:a4:b3:f6:cd:8c:aa:55:00:dd:94:75:4d:e9:a2: 7d:b0:9d:2f:0e:89:ff:c4:25:3a:78:6b:17:5c:1c: cd:46:1f:81:a4:25:8b:d8:57:1b:dd:7e:34:c4:c4: 87:c2:81:4c:e2:29:e7:1b:c6:7e:a8:00:c3:2b:8c: 36:a6:1c:77:15:6d:04:af:99:15:1e:fd:c5:1e:77: ec:54:1e:3e:7b:92:ed:44:41:65:f8:71:83:0c:36: 9f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:32:54:08:2B:3D:DB:0F:32:AD:28:B7:6D:D9:B1:9F:47:F4:94:0D X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231352e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.215.0/24 Signature Algorithm: sha256WithRSAEncryption 19:39:4b:af:cd:a9:10:88:bc:a8:cc:fb:ac:18:78:f2:47:08: 3b:f5:f6:b0:ef:43:73:03:7f:88:4e:00:b4:99:40:da:be:6b: a9:43:d5:e5:d6:50:a2:03:9e:3a:8d:33:4a:4e:76:dd:ff:c7: 8c:09:a5:3e:37:49:6b:01:2f:57:93:6c:5f:b9:0d:da:c2:9b: 4e:1d:f5:e5:1c:da:8c:2b:7d:b9:27:0d:f9:49:40:36:f9:58: 8a:55:08:63:91:49:d2:b2:24:a9:90:cc:1c:4b:90:c7:50:8d: 45:9f:84:a5:6d:4b:45:29:d7:be:52:4b:c6:06:c3:cc:ab:8a: cf:85:81:77:ef:f8:c6:b8:05:38:1b:0a:1a:75:00:42:1b:1f: 31:62:1a:63:99:6d:75:ab:f6:51:5f:07:eb:92:02:2e:d3:5d: c3:4f:ed:98:64:94:ab:8e:ab:9f:33:8f:a2:a7:42:bf:e2:79: 74:56:4e:60:a0:08:c2:58:ee:34:d9:7e:14:c7:1b:4d:ed:e7: a3:97:5e:a6:5a:02:ed:f8:a9:2d:c0:62:09:00:ec:2a:03:df: 5e:ad:0e:55:87:84:9b:6a:d1:15:fe:3f:09:02:ad:db:29:bc: 31:f3:f4:9b:9a:a9:a3:e9:3b:b9:3b:83:f1:89:7e:2d:28:c8: 90:d4:02:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY0M7gtp7kaRJd9d2uWb6HeyTbQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDFaFw0yNTEwMjAxMzAwMDFaMDMxMTAvBgNV BAMTKEUzMzI1NDA4MkIzRERCMEYzMkFEMjhCNzZERDlCMTlGNDdGNDk0MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwhMAxVGc3egWuGkvZEnJa+OxD 3Wq6RHw9KIu40houAnwU7vSiQyM6unRY4IUbov7qMY5c62rXCD7UJpZ7YBRhxtIp oKXoJZC0pXnxlltygL1LPkjvcvzJClGSZJCu0e5Lt7t0ua5doZCvzTLsZx+WFjv9 qVFHg4c9U4+1r4O+N4OcTqBrPN+Re8Y6pJP8VbzNMhCIGgTOOHPwj5tEERsp9Fmz Tymks/bNjKpVAN2UdU3pon2wnS8Oif/EJTp4axdcHM1GH4GkJYvYVxvdfjTExIfC gUziKecbxn6oAMMrjDamHHcVbQSvmRUe/cUed+xUHj57ku1EQWX4cYMMNp9xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4zJUCCs92w8yrSi3bdmxn0f0lA0wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51zANBgkqhkiG 9w0BAQsFAAOCAQEAGTlLr82pEIi8qMz7rBh48kcIO/X2sO9DcwN/iE4AtJlA2r5r qUPV5dZQogOeOo0zSk523f/HjAmlPjdJawEvV5NsX7kN2sKbTh315RzajCt9uScN +UlANvlYilUIY5FJ0rIkqZDMHEuQx1CNRZ+EpW1LRSnXvlJLxgbDzKuKz4WBd+/4 xrgFOBsKGnUAQhsfMWIaY5ltdav2UV8H65ICLtNdw0/tmGSUq46rnzOPoqdCv+J5 dFZOYKAIwljuNNl+FMcbTe3no5deploC7fipLcBiCQDsKgPfXq0OVYeEm2rRFf4/ CQKt2ym8MfP0m5qpo+k7uTuD8Yl+LSjIkNQCbg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org