$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231392e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: p88SKszqxgKJl2zFe9Ix9VzOkkPPIGnrGQlceJpq1Is= Subject key identifier: 9B:43:17:DB:FB:69:CA:54:70:5B:B1:6E:2A:AF:51:12:B2:D4:50:23 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 5A8ACB9907918A26808324A17BAB7FF5FA4EF9DA Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:01 +0000 ROA not before: Mon 21 Oct 2024 12:55:01 +0000 ROA not after: Mon 20 Oct 2025 13:00:01 +0000 asID: 38142 IP address blocks: 210.57.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8a:cb:99:07:91:8a:26:80:83:24:a1:7b:ab:7f:f5:fa:4e:f9:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:01 2024 GMT Not After : Oct 20 13:00:01 2025 GMT Subject: CN=9B4317DBFB69CA54705BB16E2AAF5112B2D45023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1f:07:68:0b:b7:36:47:c3:fa:74:79:14:91: f4:07:4f:9f:7f:9f:d4:df:89:a2:6f:02:c6:4a:9f: 5f:48:8e:42:27:38:af:64:80:ca:08:e4:94:d5:31: 96:a5:82:50:71:e1:db:4c:ad:57:fe:25:a9:a4:4f: d4:b6:b8:86:d5:5a:77:39:a1:db:29:8c:40:4f:f3: fd:ed:58:10:75:02:9a:60:89:2f:43:24:18:e1:41: 0d:3c:73:a5:9c:09:1a:b5:01:57:a7:e2:16:aa:1f: 55:14:63:9f:6a:dc:01:09:ee:af:38:6e:bb:ab:92: b2:37:b3:8c:b3:30:8c:3c:5d:b7:45:da:51:3d:f2: 90:99:1e:62:f9:11:88:43:ff:b0:b6:3b:c8:54:11: 12:9e:b1:88:0d:26:3c:dc:57:52:f7:5e:93:2c:62: fd:2f:81:dd:5e:66:f5:45:67:71:ee:f6:f3:5b:92: bf:50:61:bd:31:51:21:2e:c3:c9:13:40:fb:84:68: 4b:9d:d8:fd:06:42:eb:f9:7e:ec:f5:70:8f:cd:97: e7:dd:64:12:16:c7:62:a3:3a:3a:9f:11:65:09:bf: bf:a3:47:30:41:d0:9c:84:92:c0:1a:94:bd:67:1c: e0:9c:98:9b:5e:b8:92:6c:e7:cc:64:c3:db:4c:32: f4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:43:17:DB:FB:69:CA:54:70:5B:B1:6E:2A:AF:51:12:B2:D4:50:23 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.219.0/24 Signature Algorithm: sha256WithRSAEncryption 51:91:9a:a0:dc:aa:ba:ed:de:81:ba:b0:3b:2a:4b:82:46:de: ad:26:c1:ca:bc:83:a6:8f:87:4f:84:0f:a7:c7:ce:63:ca:98: 15:75:47:ed:41:5b:1a:77:14:21:f3:97:b0:04:bf:98:ee:c7: 5b:d8:99:e0:f2:59:7c:db:2c:b6:44:cf:99:9f:49:59:f1:db: d7:fa:d7:ca:90:3b:d0:cf:49:69:57:c7:e4:1a:2a:38:24:ea: 47:0a:3e:86:a3:4c:5c:ab:30:d4:01:71:45:44:a9:03:e6:d6: 20:fd:e4:a6:b9:79:71:ca:88:e3:e0:52:8a:4c:15:f2:43:05: 64:17:7c:d7:11:65:9c:6a:74:a7:ef:05:0f:b4:92:f6:42:a9: f2:7d:51:99:e0:01:73:89:b6:29:e8:91:8a:89:b0:d4:51:6b: d8:79:e6:e4:76:7c:7e:5c:c3:9a:9a:f4:a4:1b:49:d5:00:7c: 84:aa:a6:15:61:fd:44:8a:16:a7:95:ec:c5:aa:29:0c:2f:d2: 78:54:16:62:31:57:ee:e3:e9:a9:c3:03:47:a9:83:97:d2:13: a8:fa:d9:cb:98:eb:82:71:dd:21:9a:5e:e4:bb:58:37:51:4d: 41:72:6d:a4:59:4d:41:fc:40:3b:03:06:3f:b1:01:61:e9:81: 06:59:a3:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWorLmQeRiiaAgyShe6t/9fpO+dowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDFaFw0yNTEwMjAxMzAwMDFaMDMxMTAvBgNV BAMTKDlCNDMxN0RCRkI2OUNBNTQ3MDVCQjE2RTJBQUY1MTEyQjJENDUwMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3HwdoC7c2R8P6dHkUkfQHT59/ n9TfiaJvAsZKn19IjkInOK9kgMoI5JTVMZalglBx4dtMrVf+JamkT9S2uIbVWnc5 odspjEBP8/3tWBB1AppgiS9DJBjhQQ08c6WcCRq1AVen4haqH1UUY59q3AEJ7q84 brurkrI3s4yzMIw8XbdF2lE98pCZHmL5EYhD/7C2O8hUERKesYgNJjzcV1L3XpMs Yv0vgd1eZvVFZ3Hu9vNbkr9QYb0xUSEuw8kTQPuEaEud2P0GQuv5fuz1cI/Nl+fd ZBIWx2KjOjqfEWUJv7+jRzBB0JyEksAalL1nHOCcmJteuJJs58xkw9tMMvRtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUm0MX2/tpylRwW7FuKq9RErLUUCMwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52zANBgkqhkiG 9w0BAQsFAAOCAQEAUZGaoNyquu3egbqwOypLgkberSbByryDpo+HT4QPp8fOY8qY FXVH7UFbGncUIfOXsAS/mO7HW9iZ4PJZfNsstkTPmZ9JWfHb1/rXypA70M9JaVfH 5BoqOCTqRwo+hqNMXKsw1AFxRUSpA+bWIP3kprl5ccqI4+BSikwV8kMFZBd81xFl nGp0p+8FD7SS9kKp8n1RmeABc4m2KeiRiomw1FFr2Hnm5HZ8flzDmpr0pBtJ1QB8 hKqmFWH9RIoWp5XsxaopDC/SeFQWYjFX7uPpqcMDR6mDl9ITqPrZy5jrgnHdIZpe 5LtYN1FNQXJtpFlNQfxAOwMGP7EBYemBBlmjRw== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org