$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232302e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 2/Cw3A1dSRg+Ts21fc2NwcUb6gMHV9LcM0XWFRm53vo= Subject key identifier: EF:A6:C0:1B:75:80:39:4A:12:90:05:EE:88:2C:12:D9:E7:B6:40:73 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 5B94D9290F20DF4491BE5EC01226410E0A8D1D3A Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:01 +0000 ROA not before: Mon 21 Oct 2024 12:55:01 +0000 ROA not after: Mon 20 Oct 2025 13:00:01 +0000 asID: 38142 IP address blocks: 210.57.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:94:d9:29:0f:20:df:44:91:be:5e:c0:12:26:41:0e:0a:8d:1d:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:01 2024 GMT Not After : Oct 20 13:00:01 2025 GMT Subject: CN=EFA6C01B7580394A129005EE882C12D9E7B64073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d4:1c:90:0a:ab:af:8e:87:36:94:6d:01:7b: d3:60:6a:4c:0d:14:4f:0f:40:1e:23:c9:0e:0f:1c: 83:d1:5c:c6:3d:0f:1d:52:8c:da:85:e1:41:e2:73: e8:a0:a4:55:d7:24:b5:3e:31:d4:64:b1:95:be:3d: a8:94:82:e9:4e:eb:b7:de:e8:11:29:f8:fb:23:cd: 73:bb:bd:57:f8:6c:f5:c2:59:83:9d:96:6b:0e:cf: c3:5e:78:71:fb:4b:92:9a:fb:05:03:5e:9e:61:13: 94:13:2d:0c:44:dd:5a:0f:a3:38:5c:a6:3b:26:7e: 9b:cf:91:48:ab:e8:50:09:48:79:da:2f:f2:3f:37: d6:3c:cd:e7:64:46:fd:8e:58:00:d3:3f:3d:a9:1e: 14:af:2e:2d:34:5c:94:79:09:ee:ce:7d:06:a4:83: 80:e8:94:c7:1a:41:31:02:6d:57:24:1c:92:a1:9c: 1c:e2:90:3c:4f:62:8b:c1:bc:b3:6b:1e:02:88:6b: 43:44:cc:0a:94:e5:7c:08:18:9c:9c:02:ae:86:61: b8:d2:c8:af:f2:4c:fc:ca:64:0b:d1:e4:f1:5f:42: d8:94:4c:76:3c:d5:97:ea:2e:39:b5:87:ef:4f:a5: 52:df:1b:84:42:af:b7:51:f1:f1:db:e1:15:90:57: 94:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A6:C0:1B:75:80:39:4A:12:90:05:EE:88:2C:12:D9:E7:B6:40:73 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.220.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:cc:2e:6d:65:17:da:37:b1:c0:43:a3:44:da:01:21:8e:8a: 37:47:5b:2b:cf:bf:8f:24:28:e7:53:ae:88:b5:13:b8:02:46: 09:07:ac:b5:72:7b:25:96:80:41:af:a9:a1:fc:5b:d1:7e:44: 2d:3e:0a:db:39:be:74:3e:94:cd:07:2d:4a:04:78:70:32:2a: 68:0d:51:69:1a:3b:93:65:23:d3:ea:95:81:60:3b:ac:a4:9f: fc:74:8a:b5:d8:0c:4f:b6:10:a5:06:ef:e1:fb:72:32:5b:08: db:aa:45:a3:dc:6f:f8:e2:04:d4:53:4f:c2:8d:1b:a5:f4:29: 65:0a:3c:66:7b:d3:bf:ec:a4:a0:3e:ef:0b:db:6a:d5:56:84: 5c:12:db:8c:ee:c7:6e:c6:9a:ae:63:80:f8:f6:20:00:e7:0e: 61:bb:3d:f5:e9:22:ee:07:02:61:d5:64:6c:d1:1f:c9:4a:85: 0c:ba:aa:15:8b:cc:3d:ff:6a:ae:4e:95:37:4c:12:d5:86:3c: 1c:38:c3:43:6b:73:78:34:58:30:78:c0:0d:c4:eb:30:db:9e: 20:7e:71:68:c3:a1:2a:d9:28:fe:1d:d5:4f:f1:92:eb:c5:83: 27:63:df:10:61:18:8a:23:2c:f9:05:f4:1d:c8:05:09:9f:63: 9b:f4:f8:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW5TZKQ8g30SRvl7AEiZBDgqNHTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDFaFw0yNTEwMjAxMzAwMDFaMDMxMTAvBgNV BAMTKEVGQTZDMDFCNzU4MDM5NEExMjkwMDVFRTg4MkMxMkQ5RTdCNjQwNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD1ByQCquvjoc2lG0Be9NgakwN FE8PQB4jyQ4PHIPRXMY9Dx1SjNqF4UHic+igpFXXJLU+MdRksZW+PaiUgulO67fe 6BEp+PsjzXO7vVf4bPXCWYOdlmsOz8NeeHH7S5Ka+wUDXp5hE5QTLQxE3VoPozhc pjsmfpvPkUir6FAJSHnaL/I/N9Y8zedkRv2OWADTPz2pHhSvLi00XJR5Ce7OfQak g4DolMcaQTECbVckHJKhnBzikDxPYovBvLNrHgKIa0NEzAqU5XwIGJycAq6GYbjS yK/yTPzKZAvR5PFfQtiUTHY81ZfqLjm1h+9PpVLfG4RCr7dR8fHb4RWQV5QNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU76bAG3WAOUoSkAXuiCwS2ee2QHMwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53DANBgkqhkiG 9w0BAQsFAAOCAQEAfswubWUX2jexwEOjRNoBIY6KN0dbK8+/jyQo51OuiLUTuAJG CQestXJ7JZaAQa+pofxb0X5ELT4K2zm+dD6UzQctSgR4cDIqaA1RaRo7k2Uj0+qV gWA7rKSf/HSKtdgMT7YQpQbv4ftyMlsI26pFo9xv+OIE1FNPwo0bpfQpZQo8ZnvT v+ykoD7vC9tq1VaEXBLbjO7HbsaarmOA+PYgAOcOYbs99eki7gcCYdVkbNEfyUqF DLqqFYvMPf9qrk6VN0wS1YY8HDjDQ2tzeDRYMHjADcTrMNueIH5xaMOhKtko/h3V T/GS68WDJ2PfEGEYiiMs+QX0HcgFCZ9jm/T47Q== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org