$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231392e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: cEyk3s3kcx3ZnbcrXumCh+IM0usu7E/XqUnZ2ZHdCDE= Subject key identifier: E1:4E:2B:F2:26:ED:3E:97:E3:7A:4A:3D:78:3D:1C:D8:39:DC:50:AC Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 66259E63E42CBC0A6763353F1FA79A057CA9563E Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:01 +0000 ROA not before: Mon 20 Nov 2023 11:55:01 +0000 ROA not after: Mon 18 Nov 2024 12:00:01 +0000 asID: 38142 IP address blocks: 210.57.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:25:9e:63:e4:2c:bc:0a:67:63:35:3f:1f:a7:9a:05:7c:a9:56:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:01 2023 GMT Not After : Nov 18 12:00:01 2024 GMT Subject: CN=E14E2BF226ED3E97E37A4A3D783D1CD839DC50AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:51:ae:0d:19:62:a3:ff:37:22:25:e2:63:56: f6:99:2a:54:4c:60:af:d0:21:b0:8b:2f:2d:ae:b5: 08:da:60:60:cc:1f:46:aa:f7:82:11:cb:9c:a0:c5: 96:cc:90:a2:e6:33:db:32:50:bd:9f:13:09:e6:16: af:1f:2b:5e:88:34:e4:6b:eb:09:41:03:74:e7:1f: 1c:ef:21:3a:92:35:da:bf:a6:f3:d1:2c:33:42:74: ce:b8:d6:9c:b7:8f:93:48:23:a8:e9:31:82:e0:5f: f4:e9:5e:c1:49:32:0c:c4:a2:f3:83:17:8c:69:1b: 5a:10:d3:b1:6a:aa:14:b3:70:ed:d2:60:8e:02:dd: 94:02:64:76:2f:2e:89:21:5f:13:85:64:98:0a:41: 1b:4e:2c:59:1a:66:90:b2:2d:22:5d:ad:44:d4:c5: 7b:58:d0:e6:5e:9c:41:b0:17:c2:90:d6:56:91:f9: fb:c6:ca:79:2d:95:6d:0b:c7:ab:e2:7e:39:d9:c9: d9:76:db:57:47:98:06:33:8b:6a:ef:1f:a0:47:57: 30:6d:76:6b:40:99:66:d7:97:31:0b:92:fe:36:4b: b2:62:c3:08:16:be:d5:5f:47:e0:51:ae:93:f8:e5: 06:47:4c:ca:7c:15:5a:09:c9:4e:9e:56:9e:57:7e: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4E:2B:F2:26:ED:3E:97:E3:7A:4A:3D:78:3D:1C:D8:39:DC:50:AC X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.219.0/24 Signature Algorithm: sha256WithRSAEncryption 17:28:85:7e:07:bc:a2:ca:59:58:0e:54:c4:05:9f:b5:df:e5: 47:8b:22:7c:d5:a5:6e:f7:1d:67:0f:11:59:26:e8:70:82:c2: 56:17:22:4b:3a:34:6d:9d:40:b4:eb:49:be:3c:b0:ab:92:81: a2:7a:a6:0d:01:26:d2:a8:d8:f4:c1:f8:61:4f:a7:a6:54:44: 98:ed:fe:72:b2:32:45:1a:7c:cd:dd:32:c4:4d:75:50:bb:4f: 34:f7:4d:3d:a2:16:29:29:e6:8f:0a:ab:b3:69:ec:ed:70:8a: d4:c2:b8:5f:fd:7e:61:cc:0e:ee:91:9e:51:e8:c1:7a:c0:e4: 95:2c:58:a8:8a:86:3c:4b:fc:da:54:1b:1a:ac:09:2a:bb:68: 8b:94:45:8c:f6:4e:3b:46:fb:df:f2:54:81:7b:fe:0a:e3:7d: 3f:f2:0c:36:f6:1f:35:d3:34:fe:85:7b:f6:0f:4d:60:88:06: e2:0a:9f:9f:bd:65:82:77:51:4a:ec:c8:da:8c:7c:ba:37:6b: e4:39:34:44:d1:5e:32:49:a8:6f:3e:d6:62:e9:98:58:c6:a0: b2:b3:84:f8:2d:ef:b8:3e:a0:dd:26:f9:ab:85:06:d2:5b:0e: 74:ca:a7:bb:d7:10:16:29:af:a6:71:b8:e1:c0:1c:e5:49:bc: d6:48:82:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZiWeY+QsvApnYzU/H6eaBXypVj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDFaFw0yNDExMTgxMjAwMDFaMDMxMTAvBgNV BAMTKEUxNEUyQkYyMjZFRDNFOTdFMzdBNEEzRDc4M0QxQ0Q4MzlEQzUwQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuUa4NGWKj/zciJeJjVvaZKlRM YK/QIbCLLy2utQjaYGDMH0aq94IRy5ygxZbMkKLmM9syUL2fEwnmFq8fK16INORr 6wlBA3TnHxzvITqSNdq/pvPRLDNCdM641py3j5NII6jpMYLgX/TpXsFJMgzEovOD F4xpG1oQ07FqqhSzcO3SYI4C3ZQCZHYvLokhXxOFZJgKQRtOLFkaZpCyLSJdrUTU xXtY0OZenEGwF8KQ1laR+fvGynktlW0Lx6vifjnZydl221dHmAYzi2rvH6BHVzBt dmtAmWbXlzELkv42S7JiwwgWvtVfR+BRrpP45QZHTMp8FVoJyU6eVp5XfmEBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4U4r8ibtPpfjeko9eD0c2DncUKwwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52zANBgkqhkiG 9w0BAQsFAAOCAQEAFyiFfge8ospZWA5UxAWftd/lR4sifNWlbvcdZw8RWSbocILC VhciSzo0bZ1AtOtJvjywq5KBonqmDQEm0qjY9MH4YU+nplREmO3+crIyRRp8zd0y xE11ULtPNPdNPaIWKSnmjwqrs2ns7XCK1MK4X/1+YcwO7pGeUejBesDklSxYqIqG PEv82lQbGqwJKrtoi5RFjPZOO0b73/JUgXv+CuN9P/IMNvYfNdM0/oV79g9NYIgG 4gqfn71lgndRSuzI2ox8ujdr5Dk0RNFeMkmobz7WYumYWMagsrOE+C3vuD6g3Sb5 q4UG0lsOdMqnu9cQFimvpnG44cAc5Um81kiC1A== -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:51 2024 by rpki-client on console-ams.rpki-client.org