$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231362e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: GSwWK5SKTFAU7AOJ/9DuPKdDxhcqh8eUZIsdCou3WA4= Subject key identifier: 87:83:A0:C0:84:FD:DD:40:C8:86:65:61:06:A3:AB:09:30:39:F3:FE Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 50BB92B9FCD3B8766AFEF34EE172511C8A3827FA Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:02 +0000 ROA not before: Mon 21 Oct 2024 12:55:02 +0000 ROA not after: Mon 20 Oct 2025 13:00:02 +0000 asID: 38142 IP address blocks: 210.57.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:bb:92:b9:fc:d3:b8:76:6a:fe:f3:4e:e1:72:51:1c:8a:38:27:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:02 2024 GMT Not After : Oct 20 13:00:02 2025 GMT Subject: CN=8783A0C084FDDD40C886656106A3AB093039F3FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:98:c5:e1:1b:b7:35:a8:d4:ad:81:79:41:d7: 0d:eb:43:ad:85:64:08:2d:40:af:1d:82:0c:ba:4f: 9a:fe:87:c5:08:da:ad:a5:73:20:a0:f8:62:b9:52: ca:70:43:77:da:1c:ec:5f:b1:c7:9a:6d:7c:79:bb: b0:f6:d0:87:ee:5d:42:d1:54:04:0c:78:03:2b:f8: 2e:e5:d9:da:ad:a4:1d:7f:2d:c9:07:f9:56:aa:9e: f1:f8:73:ac:d7:77:57:dd:be:ba:9b:0b:83:91:51: e4:66:df:56:b5:0c:63:9f:e2:ab:ca:9f:d8:8b:29: b6:d5:d0:84:c4:79:0e:f5:0e:d3:cf:4b:78:44:17: 47:50:a9:9c:33:f2:ba:2b:de:ad:17:a4:97:24:31: 54:3d:46:af:43:60:e0:6a:f8:c5:78:ac:6b:0c:c0: b8:a5:69:08:4e:ef:09:4a:0d:15:e4:ec:70:17:93: 75:68:40:32:cc:1a:fd:c4:16:ab:59:e1:1e:08:c1: ad:4b:70:20:0c:a7:16:29:8d:36:cd:58:11:67:a4: 27:15:34:29:93:17:28:9e:eb:ac:d3:65:2e:95:e6: c0:73:fd:a3:e8:47:cf:36:d1:14:09:34:9f:85:77: 64:e0:cf:72:a3:65:e0:13:ef:6a:fc:86:28:95:b8: b3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:83:A0:C0:84:FD:DD:40:C8:86:65:61:06:A3:AB:09:30:39:F3:FE X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.216.0/24 Signature Algorithm: sha256WithRSAEncryption 94:b5:a9:39:1a:09:64:61:f1:6c:97:79:50:b0:8e:34:83:e8: a8:fd:53:13:0d:fc:f4:08:c1:cd:30:be:b9:84:49:a6:16:d4: 5d:9b:56:6d:0a:57:4b:f8:d7:97:27:85:6d:d8:fc:0e:ec:f7: b8:bf:ba:5c:27:10:09:2f:bf:8c:36:2d:f6:cf:03:a0:a5:ce: 22:19:4d:ee:e3:56:30:35:68:91:24:3f:c6:f8:77:44:f9:82: 51:48:a0:ba:e7:ed:66:af:10:98:9c:6f:bd:64:e3:a5:c7:5e: 94:b3:05:ad:ca:8b:8d:d5:7f:1b:20:34:37:54:0a:2e:d2:f5: cd:33:b3:ea:73:ff:a3:0a:f5:d5:30:31:69:3c:32:fa:24:c1: 51:fe:4c:29:60:21:0d:95:d9:4f:87:4c:64:2e:28:75:de:00: 6a:16:d5:a1:ca:40:9f:4c:1a:94:39:c5:cc:32:20:e2:7e:53: b6:9f:bf:18:8c:d2:fa:51:71:5c:50:d1:b3:bc:fc:65:2a:69: 76:d5:c1:2d:e1:ef:3a:7e:3d:84:c0:54:e2:01:2e:53:b7:6d: 9e:1f:55:3e:eb:e9:2d:95:3c:0b:52:4d:38:d5:54:fa:67:a7: 3d:c2:8a:16:71:fe:86:09:53:1b:14:11:41:97:8d:e2:f7:a0: f0:b9:4f:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUULuSufzTuHZq/vNO4XJRHIo4J/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDJaFw0yNTEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKDg3ODNBMEMwODRGRERENDBDODg2NjU2MTA2QTNBQjA5MzAzOUYzRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsmMXhG7c1qNStgXlB1w3rQ62F ZAgtQK8dggy6T5r+h8UI2q2lcyCg+GK5UspwQ3faHOxfsceabXx5u7D20IfuXULR VAQMeAMr+C7l2dqtpB1/LckH+VaqnvH4c6zXd1fdvrqbC4ORUeRm31a1DGOf4qvK n9iLKbbV0ITEeQ71DtPPS3hEF0dQqZwz8ror3q0XpJckMVQ9Rq9DYOBq+MV4rGsM wLilaQhO7wlKDRXk7HAXk3VoQDLMGv3EFqtZ4R4Iwa1LcCAMpxYpjTbNWBFnpCcV NCmTFyie66zTZS6V5sBz/aPoR8820RQJNJ+Fd2Tgz3KjZeAT72r8hiiVuLPtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh4OgwIT93UDIhmVhBqOrCTA58/4wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52DANBgkqhkiG 9w0BAQsFAAOCAQEAlLWpORoJZGHxbJd5ULCONIPoqP1TEw389AjBzTC+uYRJphbU XZtWbQpXS/jXlyeFbdj8Duz3uL+6XCcQCS+/jDYt9s8DoKXOIhlN7uNWMDVokSQ/ xvh3RPmCUUiguuftZq8QmJxvvWTjpcdelLMFrcqLjdV/GyA0N1QKLtL1zTOz6nP/ owr11TAxaTwy+iTBUf5MKWAhDZXZT4dMZC4odd4AahbVocpAn0walDnFzDIg4n5T tp+/GIzS+lFxXFDRs7z8ZSppdtXBLeHvOn49hMBU4gEuU7dtnh9VPuvpLZU8C1JN ONVU+menPcKKFnH+hglTGxQRQZeN4veg8LlPLQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org