$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231372e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231372e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: s5AF5NTF10Ao/EXJfRiI3K0h3VFHYebqrko7Nfz+Twk= Subject key identifier: 87:99:3B:43:68:02:AB:9A:79:3B:BA:2C:2B:30:79:41:4F:6B:8E:43 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 1DD4C2A0F4886A93D957C8661C66C64D59FABE76 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231372e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:00 +0000 ROA not before: Mon 20 Nov 2023 11:55:00 +0000 ROA not after: Mon 18 Nov 2024 12:00:00 +0000 asID: 38142 IP address blocks: 210.57.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d4:c2:a0:f4:88:6a:93:d9:57:c8:66:1c:66:c6:4d:59:fa:be:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:00 2023 GMT Not After : Nov 18 12:00:00 2024 GMT Subject: CN=87993B436802AB9A793BBA2C2B3079414F6B8E43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cf:4d:90:76:b6:b3:11:b1:ce:39:be:ee:21: 7a:99:1c:20:fd:0e:33:fb:ad:a6:10:1e:2b:50:50: f7:b5:b7:68:13:49:e8:c3:cf:cf:8a:b3:f3:f1:87: ea:7f:7c:93:e3:3d:03:db:c6:1f:d6:72:ed:4f:d6: 75:ba:6b:98:4a:81:d6:2b:1c:5a:98:d7:84:10:43: 12:01:d8:c5:e0:e7:64:3d:ae:36:1f:b6:01:9b:cd: 04:93:fa:6f:32:aa:fa:77:42:9b:79:99:c9:db:ac: 0e:1c:80:84:8b:6a:24:7a:c3:0c:fa:08:bc:5a:e5: 70:bf:93:01:79:98:e1:97:3b:73:83:b0:5e:3e:b5: f9:40:ba:bd:b6:c8:0c:6a:ef:f3:2e:f2:2f:97:67: 18:f1:b3:53:40:06:76:4c:db:52:0a:5c:9f:9c:6b: 73:60:d6:02:e0:b1:88:27:77:0f:24:45:e3:78:31: 86:7f:9e:84:61:00:16:53:5d:ef:ee:0e:46:54:13: c0:77:e1:4e:ca:65:1b:c5:16:bb:72:a0:6a:96:cb: f2:1c:26:79:ec:c3:3d:84:88:47:e2:c8:cd:5b:cc: 0a:48:43:58:f4:23:3e:ea:0a:80:ad:51:bd:d1:b5: ee:dd:bc:89:73:b9:29:f6:2b:01:f7:95:53:01:ef: f0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:99:3B:43:68:02:AB:9A:79:3B:BA:2C:2B:30:79:41:4F:6B:8E:43 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231372e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.217.0/24 Signature Algorithm: sha256WithRSAEncryption 67:dd:81:10:f9:36:e8:63:e0:df:d7:51:4c:2c:bf:99:93:d1: 14:1f:d2:d8:0b:7c:6b:2c:9c:18:e1:f4:ad:92:43:06:2d:63: 44:cf:c5:87:a5:e1:40:4e:6a:53:bd:5d:94:a8:cb:3f:41:1d: 3b:cf:1b:a8:f7:f8:05:b1:e1:4b:84:42:4c:d8:ad:61:04:79: 4d:f6:93:b1:0f:b2:25:7e:c0:7f:72:50:e5:5d:89:c0:40:46: 5c:00:7f:66:73:62:6d:c2:2c:55:db:3a:1b:79:49:db:2c:90: 3b:0b:7b:8c:c2:a6:33:73:b1:2d:d7:57:90:3c:6b:3e:df:95: 2d:65:cf:b9:4a:d2:ef:09:46:09:55:3c:4b:c2:0e:09:54:c5: 60:da:22:ba:85:46:9d:e2:85:d4:ed:5f:2f:ec:fe:49:03:e4: 8e:37:f7:d9:2b:6f:2f:52:ca:5f:17:7a:42:20:6e:6a:a5:f3: 66:e1:93:18:d3:22:44:48:06:31:2b:53:42:45:91:73:f0:4a: 6b:82:c2:c5:bd:d6:de:60:5d:3a:cd:22:ba:61:f6:e0:31:cc: 65:39:c5:20:f7:ce:3d:9b:20:b8:5a:ad:b7:0e:55:8d:87:6f: b9:c0:23:fa:84:65:6d:c3:23:d3:8a:93:4c:d1:94:d1:df:70: 26:40:69:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHdTCoPSIapPZV8hmHGbGTVn6vnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDBaFw0yNDExMTgxMjAwMDBaMDMxMTAvBgNV BAMTKDg3OTkzQjQzNjgwMkFCOUE3OTNCQkEyQzJCMzA3OTQxNEY2QjhFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGz02QdrazEbHOOb7uIXqZHCD9 DjP7raYQHitQUPe1t2gTSejDz8+Ks/Pxh+p/fJPjPQPbxh/Wcu1P1nW6a5hKgdYr HFqY14QQQxIB2MXg52Q9rjYftgGbzQST+m8yqvp3Qpt5mcnbrA4cgISLaiR6wwz6 CLxa5XC/kwF5mOGXO3ODsF4+tflAur22yAxq7/Mu8i+XZxjxs1NABnZM21IKXJ+c a3Ng1gLgsYgndw8kReN4MYZ/noRhABZTXe/uDkZUE8B34U7KZRvFFrtyoGqWy/Ic Jnnswz2EiEfiyM1bzApIQ1j0Iz7qCoCtUb3Rte7dvIlzuSn2KwH3lVMB7/BzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh5k7Q2gCq5p5O7osKzB5QU9rjkMwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52TANBgkqhkiG 9w0BAQsFAAOCAQEAZ92BEPk26GPg39dRTCy/mZPRFB/S2At8ayycGOH0rZJDBi1j RM/Fh6XhQE5qU71dlKjLP0EdO88bqPf4BbHhS4RCTNitYQR5TfaTsQ+yJX7Af3JQ 5V2JwEBGXAB/ZnNibcIsVds6G3lJ2yyQOwt7jMKmM3OxLddXkDxrPt+VLWXPuUrS 7wlGCVU8S8IOCVTFYNoiuoVGneKF1O1fL+z+SQPkjjf32StvL1LKXxd6QiBuaqXz ZuGTGNMiREgGMStTQkWRc/BKa4LCxb3W3mBdOs0iumH24DHMZTnFIPfOPZsguFqt tw5VjYdvucAj+oRlbcMj04qTTNGU0d9wJkBpcA== -----END CERTIFICATE-----Generated at Sun Jun 2 05:58:48 2024 by rpki-client on console-ams.rpki-client.org