$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232332e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: oJmnsgRLq3sxIIgQ0NSv3sCf5/2+spqW9JYG49PZuoA= Subject key identifier: 9C:E5:AF:A1:09:1E:2B:D6:FE:28:1A:04:EB:2C:43:18:EF:FB:15:DB Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 4CAF174518828FDFE97A2DA51F0B590C6269F54A Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa Signing time: Mon 20 Nov 2023 12:00:01 +0000 ROA not before: Mon 20 Nov 2023 11:55:01 +0000 ROA not after: Mon 18 Nov 2024 12:00:01 +0000 asID: 38142 IP address blocks: 210.57.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:af:17:45:18:82:8f:df:e9:7a:2d:a5:1f:0b:59:0c:62:69:f5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Nov 20 11:55:01 2023 GMT Not After : Nov 18 12:00:01 2024 GMT Subject: CN=9CE5AFA1091E2BD6FE281A04EB2C4318EFFB15DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fe:73:63:a0:dd:a6:cd:c1:ea:c8:61:16:9e: 3e:aa:8c:83:c4:e7:f8:23:5d:92:c1:cf:51:9f:49: 84:ac:78:13:c5:bd:f1:d1:77:9e:b0:e7:32:fc:5f: ba:23:2e:9d:9a:f1:90:db:23:e4:c5:f2:27:65:cd: fd:8d:b4:9c:b4:ad:b6:bc:c3:29:20:9c:07:ed:bb: 30:d1:37:31:00:59:30:3d:1f:82:67:1a:e5:da:0f: 55:e3:82:ac:88:eb:94:2e:79:91:fb:38:ba:71:24: ac:f0:ee:03:5f:9d:2e:07:3f:c5:ec:57:24:16:68: 5d:fe:42:87:0d:36:04:ba:b9:e4:e4:bd:d6:26:b0: 51:c2:10:c8:52:52:cd:eb:b6:93:a3:f9:a8:c4:3b: 96:f7:94:58:bd:ba:ab:fe:a3:dd:8f:cc:76:c8:52: 0f:12:2d:5b:b8:b8:bd:a6:32:82:a0:2e:32:ae:4c: 80:eb:54:2c:18:4f:ad:29:7a:fc:42:f1:72:8f:f8: 80:d0:91:ab:16:d0:c0:d1:32:c9:68:5b:8a:93:9a: 7a:ff:2f:da:1f:65:2e:66:07:f4:61:d7:af:9c:da: f7:7a:ef:a7:4b:6d:10:6d:62:15:05:2e:c3:6f:bb: bc:89:7b:21:69:db:10:1c:d0:57:73:4c:c7:99:23: c3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E5:AF:A1:09:1E:2B:D6:FE:28:1A:04:EB:2C:43:18:EF:FB:15:DB X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.223.0/24 Signature Algorithm: sha256WithRSAEncryption 70:e2:57:d6:af:f9:11:65:29:2e:a6:3d:e6:ad:4b:4c:2b:d4: 56:eb:e5:fb:49:a3:f0:72:81:0d:bf:d9:b1:61:17:26:79:8f: ef:0a:ca:49:39:b3:03:c4:d4:f2:42:cc:54:1d:2b:ef:2b:cb: 2a:d3:da:a9:bd:78:85:42:a7:09:8c:02:b0:78:87:e6:1d:d1: ad:3d:4e:cc:1c:c4:79:de:39:96:cd:77:3d:21:36:6d:ed:7f: 8b:0d:97:f3:7f:59:4f:84:a6:13:15:79:d1:ce:e4:83:e3:64: c1:46:36:ea:1a:fa:86:9a:bd:53:d9:2b:22:c3:e5:83:2a:a4: ce:d1:2d:ad:bd:a4:4a:06:40:f7:06:ff:3d:85:39:11:0e:c5: 22:10:7e:fa:7c:dd:df:5a:73:aa:d7:bf:65:db:8d:57:56:41: 61:07:ba:21:77:6f:b4:8a:61:d4:61:b3:ef:d6:b5:b7:d1:c4: 78:e8:4a:02:44:e0:54:bc:31:d1:b1:75:7e:c7:2f:3f:93:37: 5c:b1:6b:2d:8c:09:01:f9:58:39:52:b2:99:98:8d:9b:d4:ea: c8:1a:d6:34:a4:d1:91:20:04:91:9c:39:41:bd:25:ec:3a:31: b2:8e:8f:06:f1:46:49:d5:68:80:0d:e0:40:f1:10:40:6a:0d: 98:7b:6e:2f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTK8XRRiCj9/pei2lHwtZDGJp9UowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yMzExMjAxMTU1MDFaFw0yNDExMTgxMjAwMDFaMDMxMTAvBgNV BAMTKDlDRTVBRkExMDkxRTJCRDZGRTI4MUEwNEVCMkM0MzE4RUZGQjE1REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU/nNjoN2mzcHqyGEWnj6qjIPE 5/gjXZLBz1GfSYSseBPFvfHRd56w5zL8X7ojLp2a8ZDbI+TF8idlzf2NtJy0rba8 wykgnAftuzDRNzEAWTA9H4JnGuXaD1XjgqyI65QueZH7OLpxJKzw7gNfnS4HP8Xs VyQWaF3+QocNNgS6ueTkvdYmsFHCEMhSUs3rtpOj+ajEO5b3lFi9uqv+o92PzHbI Ug8SLVu4uL2mMoKgLjKuTIDrVCwYT60pevxC8XKP+IDQkasW0MDRMsloW4qTmnr/ L9ofZS5mB/Rh16+c2vd676dLbRBtYhUFLsNvu7yJeyFp2xAc0FdzTMeZI8NBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnOWvoQkeK9b+KBoE6yxDGO/7FdswHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53zANBgkqhkiG 9w0BAQsFAAOCAQEAcOJX1q/5EWUpLqY95q1LTCvUVuvl+0mj8HKBDb/ZsWEXJnmP 7wrKSTmzA8TU8kLMVB0r7yvLKtPaqb14hUKnCYwCsHiH5h3RrT1OzBzEed45ls13 PSE2be1/iw2X839ZT4SmExV50c7kg+NkwUY26hr6hpq9U9krIsPlgyqkztEtrb2k SgZA9wb/PYU5EQ7FIhB++nzd31pzqte/ZduNV1ZBYQe6IXdvtIph1GGz79a1t9HE eOhKAkTgVLwx0bF1fscvP5M3XLFrLYwJAflYOVKymZiNm9TqyBrWNKTRkSAEkZw5 Qb0l7Doxso6PBvFGSdVogA3gQPEQQGoNmHtuLw== -----END CERTIFICATE-----Generated at Sun Jun 2 05:58:48 2024 by rpki-client on console-ams.rpki-client.org