$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232302e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: RmAQyMsYtVZHjgR23j1ih1itgziuQ1diytx0aUau+X4= Subject key identifier: 24:E1:70:38:25:D2:B4:B8:EE:FD:71:36:B7:9F:F3:84:08:A2:21:17 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 6F0B0CE321103C36925BDBA633A1EF220B59B4B8 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:01 +0000 ROA not before: Mon 20 Nov 2023 11:55:01 +0000 ROA not after: Mon 18 Nov 2024 12:00:01 +0000 asID: 38142 IP address blocks: 210.57.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:0b:0c:e3:21:10:3c:36:92:5b:db:a6:33:a1:ef:22:0b:59:b4:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:01 2023 GMT Not After : Nov 18 12:00:01 2024 GMT Subject: CN=24E1703825D2B4B8EEFD7136B79FF38408A22117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:65:b0:ba:b0:fd:5c:1c:d7:94:66:ec:29:0e: ab:b9:ea:88:71:04:97:eb:d9:13:8c:c4:33:28:76: 77:24:49:57:04:a7:04:b4:29:49:71:2f:ed:ad:5a: cc:1f:13:61:a5:51:54:18:81:fd:73:c7:54:30:2b: 97:1d:69:df:f2:79:e7:fa:5a:d1:49:29:c6:d7:d9: 9f:f2:9f:21:02:6b:ec:b9:3f:82:4b:e3:b4:c0:c9: f6:ab:89:a7:75:44:a6:cb:d6:a2:b1:06:78:12:a1: a6:a3:65:d3:0d:8f:00:d9:03:83:ff:db:e5:66:6c: de:bf:55:23:85:c0:94:3f:03:92:39:8a:75:de:37: b5:2b:2b:88:18:81:cd:f7:27:39:1f:1e:57:30:25: 6c:52:39:e6:59:8d:ac:46:07:6c:57:d0:76:f5:90: ce:58:16:cb:b6:1c:d8:ff:10:ab:5c:8b:56:0c:06: f2:d9:5a:9e:cf:84:a6:ef:0f:f0:af:be:cd:47:45: c4:10:6f:b9:a0:0f:bb:be:c6:e5:82:f1:75:7c:b6: dc:23:83:a8:02:1e:dd:a2:53:b0:f3:76:39:59:4f: 86:e7:c6:f4:19:55:b0:c2:87:72:e4:7a:94:1b:c7: b7:89:06:42:96:7f:97:34:13:50:45:d1:95:8d:a7: c8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E1:70:38:25:D2:B4:B8:EE:FD:71:36:B7:9F:F3:84:08:A2:21:17 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.220.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:bf:1c:68:b8:25:78:22:f4:07:b6:6e:57:78:cc:d6:b1:64: e7:e2:78:5d:4c:88:0a:24:8d:65:41:54:cc:e3:ea:6b:fe:ef: 76:f8:69:ce:c6:46:73:ab:81:3c:54:ed:86:66:49:c8:5c:5a: a6:22:8f:aa:f5:ab:6d:2c:54:83:17:aa:2f:07:14:16:05:20: 8d:2d:61:75:e5:8d:7f:c0:3b:c7:d3:81:cb:5d:ba:03:51:53: 7f:8e:40:1e:4b:4a:26:4a:b4:01:be:12:4f:66:e3:ce:d8:86: 51:f1:ab:31:50:a3:fb:a3:91:9b:7f:fc:7a:ed:37:75:68:69: 95:87:74:8c:ca:b9:c6:62:ac:17:06:b8:db:14:3b:19:38:aa: 46:49:6d:37:82:d7:4b:d8:0f:fd:43:69:ff:5d:20:a4:bd:85: f7:14:7f:39:e9:20:b4:fd:f1:fc:7e:d4:62:9d:a2:c4:69:67: fe:44:9d:d5:4e:23:4b:f5:53:cb:cf:e2:08:27:5e:80:9e:57: 15:1d:7f:07:84:64:0d:8e:17:3f:a1:45:ea:50:86:a6:8b:70: e1:cd:47:ad:b1:c8:d4:95:6f:8c:9e:11:f6:37:98:c5:f7:ce: 19:a6:f7:93:9a:9d:ba:c9:c1:96:4c:23:02:12:80:43:75:7f: e6:c6:dc:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbwsM4yEQPDaSW9umM6HvIgtZtLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDFaFw0yNDExMTgxMjAwMDFaMDMxMTAvBgNV BAMTKDI0RTE3MDM4MjVEMkI0QjhFRUZENzEzNkI3OUZGMzg0MDhBMjIxMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcZbC6sP1cHNeUZuwpDqu56ohx BJfr2ROMxDModnckSVcEpwS0KUlxL+2tWswfE2GlUVQYgf1zx1QwK5cdad/yeef6 WtFJKcbX2Z/ynyECa+y5P4JL47TAyfariad1RKbL1qKxBngSoaajZdMNjwDZA4P/ 2+VmbN6/VSOFwJQ/A5I5inXeN7UrK4gYgc33JzkfHlcwJWxSOeZZjaxGB2xX0Hb1 kM5YFsu2HNj/EKtci1YMBvLZWp7PhKbvD/Cvvs1HRcQQb7mgD7u+xuWC8XV8ttwj g6gCHt2iU7DzdjlZT4bnxvQZVbDCh3LkepQbx7eJBkKWf5c0E1BF0ZWNp8ivAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJOFwOCXStLju/XE2t5/zhAiiIRcwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53DANBgkqhkiG 9w0BAQsFAAOCAQEAnb8caLgleCL0B7ZuV3jM1rFk5+J4XUyICiSNZUFUzOPqa/7v dvhpzsZGc6uBPFTthmZJyFxapiKPqvWrbSxUgxeqLwcUFgUgjS1hdeWNf8A7x9OB y126A1FTf45AHktKJkq0Ab4ST2bjztiGUfGrMVCj+6ORm3/8eu03dWhplYd0jMq5 xmKsFwa42xQ7GTiqRkltN4LXS9gP/UNp/10gpL2F9xR/OekgtP3x/H7UYp2ixGln /kSd1U4jS/VTy8/iCCdegJ5XFR1/B4RkDY4XP6FF6lCGpotw4c1HrbHI1JVvjJ4R 9jeYxffOGab3k5qdusnBlkwjAhKAQ3V/5sbcYw== -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:51 2024 by rpki-client on console-ams.rpki-client.org