$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231372e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231372e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: i6EDiTdMclRBYpvIVrK48fCJh2o5PNaEH/CBRrGOXIU= Subject key identifier: A1:1C:A4:10:A0:3E:12:75:78:12:B0:90:C8:3D:77:67:8B:B9:11:8F Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 34E6DA0D0D54F09208E76E4EAAE5BECDD3DB304D Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231372e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 12:00:00 +0000 ROA not before: Mon 21 Oct 2024 11:55:00 +0000 ROA not after: Mon 20 Oct 2025 12:00:00 +0000 asID: 38142 IP address blocks: 210.57.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:e6:da:0d:0d:54:f0:92:08:e7:6e:4e:aa:e5:be:cd:d3:db:30:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 11:55:00 2024 GMT Not After : Oct 20 12:00:00 2025 GMT Subject: CN=A11CA410A03E12757812B090C83D77678BB9118F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:05:94:86:db:6f:01:d5:61:c0:4b:8b:4f:2d: 3e:9a:2f:11:b8:5e:75:f3:69:d3:0a:c0:d0:56:83: ac:78:aa:66:80:dd:0e:18:22:19:c8:1f:ae:99:84: be:64:ef:77:37:84:51:60:a7:36:1d:fe:a6:08:d6: 0f:13:3e:4f:55:cd:fd:39:ab:81:c5:cb:9d:ab:43: a9:5b:61:93:a3:e2:e3:d2:92:fb:57:dd:37:d8:cf: 79:c2:2f:6f:90:c4:a0:1d:1a:5c:c2:6a:73:b4:78: 24:c9:30:ea:32:46:26:10:46:5b:47:6f:3c:11:9f: e1:52:0a:9d:33:c5:03:16:8f:10:1f:81:bd:8f:62: bc:01:16:84:b8:73:18:2d:d3:78:a8:e4:07:2e:9b: a0:45:d6:1f:0d:10:2a:4c:ad:70:f2:49:b7:fb:06: 98:35:71:0e:8a:c3:00:af:00:c8:e0:bd:bf:df:af: c2:bc:7b:b6:37:22:e9:38:ff:0a:18:68:a6:7b:a8: 1f:67:90:24:f0:35:8d:de:fe:6e:cc:b1:c5:01:b6: 5f:c3:1f:71:2e:b4:57:0f:a9:a3:f0:1a:5d:63:c4: 95:00:fc:69:bb:32:e5:9b:13:0c:b8:eb:50:26:56: 1d:d0:30:49:de:e6:49:f5:ff:51:42:a8:4b:de:0a: 20:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1C:A4:10:A0:3E:12:75:78:12:B0:90:C8:3D:77:67:8B:B9:11:8F X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231372e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.217.0/24 Signature Algorithm: sha256WithRSAEncryption 11:7e:61:18:5d:26:39:af:b4:de:6b:45:e8:fb:e1:98:c4:70: 15:c3:75:ad:92:bc:96:25:79:a8:6a:fc:3c:ab:00:56:ae:67: 3a:b5:3a:fe:07:7b:07:51:fa:86:10:41:b2:5c:47:6d:05:bb: c8:e7:10:e8:a4:37:b3:5f:39:fb:25:f6:37:33:67:a0:2e:cc: a5:11:d3:e0:56:60:a8:18:16:1f:0f:05:52:ba:6d:7b:a1:b1: 58:24:4a:00:ae:e7:e0:24:c3:4a:18:6a:31:92:22:08:ac:ab: d5:2b:88:0a:ee:d0:c4:1a:b2:a0:83:95:ec:dd:d5:37:0f:d3: 7d:19:7c:75:01:11:47:01:64:21:20:c4:1e:f5:09:2e:5b:98: e0:9f:ea:8e:27:87:c6:b5:64:3e:a9:3a:f0:7b:af:77:24:ef: 47:e8:d8:32:0b:1b:c9:09:d8:7e:81:2e:cd:e4:e1:5b:11:ee: 6a:f2:2c:d0:78:39:90:19:d3:37:5c:d3:c6:74:5c:1e:1d:78: 1b:48:18:6c:c0:a1:b4:0b:e7:78:82:76:6e:a1:eb:34:82:42: 91:5f:1a:1c:d0:98:5b:94:da:24:3d:9a:75:b2:78:bc:ef:3f: 02:6b:b9:6b:75:ea:06:33:fb:29:13:25:af:b5:d3:3e:4b:20: c2:20:74:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNObaDQ1U8JII525OquW+zdPbME0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMTU1MDBaFw0yNTEwMjAxMjAwMDBaMDMxMTAvBgNV BAMTKEExMUNBNDEwQTAzRTEyNzU3ODEyQjA5MEM4M0Q3NzY3OEJCOTExOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhBZSG228B1WHAS4tPLT6aLxG4 XnXzadMKwNBWg6x4qmaA3Q4YIhnIH66ZhL5k73c3hFFgpzYd/qYI1g8TPk9Vzf05 q4HFy52rQ6lbYZOj4uPSkvtX3TfYz3nCL2+QxKAdGlzCanO0eCTJMOoyRiYQRltH bzwRn+FSCp0zxQMWjxAfgb2PYrwBFoS4cxgt03io5Acum6BF1h8NECpMrXDySbf7 Bpg1cQ6KwwCvAMjgvb/fr8K8e7Y3Iuk4/woYaKZ7qB9nkCTwNY3e/m7MscUBtl/D H3EutFcPqaPwGl1jxJUA/Gm7MuWbEwy461AmVh3QMEne5kn1/1FCqEveCiDfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoRykEKA+EnV4ErCQyD13Z4u5EY8wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52TANBgkqhkiG 9w0BAQsFAAOCAQEAEX5hGF0mOa+03mtF6PvhmMRwFcN1rZK8liV5qGr8PKsAVq5n OrU6/gd7B1H6hhBBslxHbQW7yOcQ6KQ3s185+yX2NzNnoC7MpRHT4FZgqBgWHw8F Urpte6GxWCRKAK7n4CTDShhqMZIiCKyr1SuICu7QxBqyoIOV7N3VNw/TfRl8dQER RwFkISDEHvUJLluY4J/qjieHxrVkPqk68HuvdyTvR+jYMgsbyQnYfoEuzeThWxHu avIs0Hg5kBnTN1zTxnRcHh14G0gYbMChtAvneIJ2bqHrNIJCkV8aHNCYW5TaJD2a dbJ4vO8/Amu5a3XqBjP7KRMlr7XTPksgwiB0dQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org