$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232312e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: dGQ3SQUcm8XaTxTtFaJMgbOFiSMWRee0fuXwt3xAZJ8= Subject key identifier: 1C:67:C1:78:CA:26:56:E9:D8:E2:53:4F:DA:A0:02:5F:C6:D7:5E:71 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 5B48BEC88EB394AFBFF22BBDE5EC3F739138F2FA Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:03 +0000 ROA not before: Mon 20 Nov 2023 11:55:03 +0000 ROA not after: Mon 18 Nov 2024 12:00:03 +0000 asID: 38142 IP address blocks: 210.57.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:48:be:c8:8e:b3:94:af:bf:f2:2b:bd:e5:ec:3f:73:91:38:f2:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:03 2023 GMT Not After : Nov 18 12:00:03 2024 GMT Subject: CN=1C67C178CA2656E9D8E2534FDAA0025FC6D75E71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cc:4f:85:db:6c:2f:d1:5c:ce:52:5f:36:32: 13:49:69:83:d6:c4:f0:f5:20:d4:b5:85:27:05:5b: 09:28:8a:67:b0:b2:33:87:f1:75:05:42:ff:86:45: be:b1:2e:0a:eb:43:15:b7:b4:8d:dd:8d:d5:c6:45: 57:30:09:9d:04:05:fe:8b:f0:3a:32:95:78:cc:b4: 99:f5:81:db:06:78:ac:a1:8f:91:fd:85:28:49:9b: 54:a8:b7:49:c3:d3:b4:aa:e9:2c:22:71:92:35:eb: f1:b5:b3:3d:bd:ed:4a:b2:43:e7:ed:cf:70:57:a5: 09:c4:1c:e7:5d:21:31:e8:db:c6:19:7c:d9:a1:14: 99:6f:11:53:a0:16:f4:f4:f4:ff:fe:6e:c0:17:be: 02:29:3c:ca:a1:cb:b3:a4:92:40:ef:2d:e5:84:e1: b6:5d:0b:d2:f7:91:ac:a9:fe:42:6a:d7:e5:c3:09: fe:ee:72:09:68:2d:c0:52:68:bc:1f:7d:b4:e0:6a: d3:0a:6e:0a:c2:95:8c:4a:79:ff:3b:b8:32:84:4a: 3c:37:04:f9:5b:e0:7a:29:76:3f:73:1a:9e:26:b1: 52:62:9e:0d:a4:e3:be:e9:f1:db:0b:75:e6:7f:3c: 65:43:cd:41:75:e1:99:56:88:b2:43:b7:90:bb:39: f6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:67:C1:78:CA:26:56:E9:D8:E2:53:4F:DA:A0:02:5F:C6:D7:5E:71 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.221.0/24 Signature Algorithm: sha256WithRSAEncryption a5:19:25:8c:23:7e:d9:fe:a5:bb:e9:bf:a1:2c:7a:30:cb:35: 03:df:46:d8:5b:7c:32:4d:3a:f4:bc:46:d8:cd:63:b9:2c:c9: 55:2c:60:ee:28:7b:7e:d7:38:c1:5a:b9:fd:e4:9a:44:42:5a: 72:d8:62:7c:f7:58:f8:11:27:8f:82:d4:d7:a2:72:09:5b:ea: 6f:0c:78:a8:b5:07:38:d5:cc:12:93:7a:88:13:78:a8:74:a4: 83:0c:56:9d:b4:d9:81:59:c0:bd:bf:de:9a:38:a6:87:5b:67: 32:6a:56:fe:5b:e4:80:3a:39:29:0e:58:53:d0:67:d9:8a:48: 04:40:c0:d9:ed:fa:9c:9a:45:2c:bd:12:8b:09:5f:d6:1b:64: da:c0:c9:c5:da:56:b1:fd:9a:cc:d5:73:99:11:05:20:67:39: ef:5b:45:d6:3d:b3:8c:48:58:b8:bc:50:ea:22:c1:52:0a:cc: d8:af:4d:c7:e4:a0:8c:86:bc:b0:3b:30:28:73:3e:01:6f:5a: 66:c6:fd:ed:6e:0b:e9:5d:e2:0a:38:18:4c:25:a4:c8:e2:6c: 9d:17:9f:2b:d0:d9:61:d0:1a:16:c9:ef:18:fa:55:73:f8:f0: d7:b4:ee:d2:5b:39:07:15:f9:54:28:e0:e8:f9:76:06:e6:34: c4:f0:c5:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW0i+yI6zlK+/8iu95ew/c5E48vowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDNaFw0yNDExMTgxMjAwMDNaMDMxMTAvBgNV BAMTKDFDNjdDMTc4Q0EyNjU2RTlEOEUyNTM0RkRBQTAwMjVGQzZENzVFNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgzE+F22wv0VzOUl82MhNJaYPW xPD1INS1hScFWwkoimewsjOH8XUFQv+GRb6xLgrrQxW3tI3djdXGRVcwCZ0EBf6L 8DoylXjMtJn1gdsGeKyhj5H9hShJm1Sot0nD07Sq6SwicZI16/G1sz297UqyQ+ft z3BXpQnEHOddITHo28YZfNmhFJlvEVOgFvT09P/+bsAXvgIpPMqhy7OkkkDvLeWE 4bZdC9L3kayp/kJq1+XDCf7ucgloLcBSaLwffbTgatMKbgrClYxKef87uDKESjw3 BPlb4Hopdj9zGp4msVJing2k477p8dsLdeZ/PGVDzUF14ZlWiLJDt5C7OfYpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHGfBeMomVunY4lNP2qACX8bXXnEwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53TANBgkqhkiG 9w0BAQsFAAOCAQEApRkljCN+2f6lu+m/oSx6MMs1A99G2Ft8Mk069LxG2M1juSzJ VSxg7ih7ftc4wVq5/eSaREJacthifPdY+BEnj4LU16JyCVvqbwx4qLUHONXMEpN6 iBN4qHSkgwxWnbTZgVnAvb/emjimh1tnMmpW/lvkgDo5KQ5YU9Bn2YpIBEDA2e36 nJpFLL0Siwlf1htk2sDJxdpWsf2azNVzmREFIGc571tF1j2zjEhYuLxQ6iLBUgrM 2K9Nx+SgjIa8sDswKHM+AW9aZsb97W4L6V3iCjgYTCWkyOJsnRefK9DZYdAaFsnv GPpVc/jw17Tu0ls5BxX5VCjg6Pl2BuY0xPDFVw== -----END CERTIFICATE-----Generated at Sat Jun 22 13:19:02 2024 by rpki-client on console-fra.rpki-client.org