$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231382e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231382e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: RB7D/SJUrlL2iPypVkULBTpibH96XBcLleeWSsiOxLI= Subject key identifier: A7:54:81:D1:49:43:86:EE:44:1C:4C:F4:DE:FD:EF:2F:3D:06:C9:B2 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 374059CB4630302BD612BAABD2E74CEFD219654D Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231382e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:00 +0000 ROA not before: Mon 21 Oct 2024 12:55:00 +0000 ROA not after: Mon 20 Oct 2025 13:00:00 +0000 asID: 38142 IP address blocks: 210.57.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:40:59:cb:46:30:30:2b:d6:12:ba:ab:d2:e7:4c:ef:d2:19:65:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:00 2024 GMT Not After : Oct 20 13:00:00 2025 GMT Subject: CN=A75481D1494386EE441C4CF4DEFDEF2F3D06C9B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:29:09:8c:e9:9c:0e:a1:28:11:92:b1:52:72: 1a:16:b8:14:95:dd:c1:b7:31:96:39:04:d0:72:d6: 02:90:6c:65:7f:6a:af:41:db:ad:19:c1:04:9b:60: e8:63:5c:d2:a0:d3:73:67:56:24:6a:ee:ea:fd:a6: d0:f9:39:41:85:be:e8:d7:ad:6c:f6:39:83:77:7f: 40:23:7f:76:0a:c4:e3:f5:91:2b:e7:cf:7e:6b:66: 2f:e2:e8:24:80:3f:1d:61:a1:81:5b:80:32:f7:76: b6:7e:22:65:a1:db:be:0a:7b:d2:b9:fa:61:cb:d7: 07:e0:22:a2:59:26:d7:3f:a8:5d:5c:a9:5d:9d:dd: 65:49:82:69:c4:e0:a3:f5:e4:28:ff:9f:ad:23:84: 94:68:02:4e:b8:45:0e:a5:76:f1:0a:05:1e:9e:51: 67:ea:06:a0:99:f6:e6:c0:79:cd:b6:e4:41:dc:e7: c4:3f:8c:f0:4d:0e:9d:5b:d5:d8:82:e6:02:6f:4f: d6:51:8d:93:f5:81:a1:94:93:40:2f:4a:d4:ae:ab: 3e:2d:5c:22:86:c5:36:75:99:20:75:d4:c2:19:de: 3b:8b:ae:93:68:42:e7:ca:27:78:5f:0d:fe:42:5f: 89:88:8d:65:45:dc:fb:66:23:2a:7e:8e:60:2a:b3: b6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:54:81:D1:49:43:86:EE:44:1C:4C:F4:DE:FD:EF:2F:3D:06:C9:B2 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231382e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.218.0/24 Signature Algorithm: sha256WithRSAEncryption c0:a3:a4:37:34:f9:c3:c2:13:9c:0c:a9:f9:e7:ea:70:2d:13: 1b:56:e6:27:10:0c:94:50:6f:30:e3:a6:1c:b5:3c:42:d1:c1: b6:53:73:c6:e8:4a:59:86:6e:dd:e4:74:fb:58:87:44:4f:c4: 5b:98:a3:0c:ce:29:71:ab:39:a2:0e:9d:42:aa:4b:7c:df:b1: 48:e4:4a:b5:88:93:8b:f9:eb:1f:2e:62:8b:a3:48:64:da:5c: fc:ab:d1:da:4d:86:3a:50:bb:f7:3b:d7:af:db:a7:e4:25:8a: 1b:21:41:a5:d9:36:c7:eb:a0:59:1e:90:97:12:b2:74:80:58: 2b:f3:4e:7e:4d:07:6c:cd:dd:cb:7e:f1:83:1b:51:14:ef:8f: 45:f9:bb:64:20:ea:dd:00:26:4e:97:45:5a:0d:7e:06:b3:bf: af:2a:4a:64:1a:85:7c:d2:eb:4a:a5:a0:5e:45:52:72:63:63: a0:19:18:62:47:49:90:08:77:d5:62:4d:0c:86:6e:e4:a9:0d: 1e:ab:ef:5c:54:c3:c2:ce:d1:e9:99:82:cf:a3:bd:f9:68:8e: 97:32:ff:8a:98:61:69:e6:17:a1:f5:2d:67:7f:02:ac:32:2b: bd:b9:a0:14:65:30:ad:fc:4b:2e:0f:d6:ad:2c:28:c8:08:42: 6a:4a:3d:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN0BZy0YwMCvWErqr0udM79IZZU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDBaFw0yNTEwMjAxMzAwMDBaMDMxMTAvBgNV BAMTKEE3NTQ4MUQxNDk0Mzg2RUU0NDFDNENGNERFRkRFRjJGM0QwNkM5QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpKQmM6ZwOoSgRkrFSchoWuBSV 3cG3MZY5BNBy1gKQbGV/aq9B260ZwQSbYOhjXNKg03NnViRq7ur9ptD5OUGFvujX rWz2OYN3f0Ajf3YKxOP1kSvnz35rZi/i6CSAPx1hoYFbgDL3drZ+ImWh274Ke9K5 +mHL1wfgIqJZJtc/qF1cqV2d3WVJgmnE4KP15Cj/n60jhJRoAk64RQ6ldvEKBR6e UWfqBqCZ9ubAec225EHc58Q/jPBNDp1b1diC5gJvT9ZRjZP1gaGUk0AvStSuqz4t XCKGxTZ1mSB11MIZ3juLrpNoQufKJ3hfDf5CX4mIjWVF3PtmIyp+jmAqs7avAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUp1SB0UlDhu5EHEz03v3vLz0GybIwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52jANBgkqhkiG 9w0BAQsFAAOCAQEAwKOkNzT5w8ITnAyp+efqcC0TG1bmJxAMlFBvMOOmHLU8QtHB tlNzxuhKWYZu3eR0+1iHRE/EW5ijDM4pcas5og6dQqpLfN+xSORKtYiTi/nrHy5i i6NIZNpc/KvR2k2GOlC79zvXr9un5CWKGyFBpdk2x+ugWR6QlxKydIBYK/NOfk0H bM3dy37xgxtRFO+PRfm7ZCDq3QAmTpdFWg1+BrO/rypKZBqFfNLrSqWgXkVScmNj oBkYYkdJkAh31WJNDIZu5KkNHqvvXFTDws7R6ZmCz6O9+WiOlzL/iphhaeYXofUt Z38CrDIrvbmgFGUwrfxLLg/WrSwoyAhCako99g== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org