$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232332e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: P6ntY2yEhntkcQoC2QezxV/SxChW1e9QIusqd+CGFLo= Subject key identifier: 26:97:CF:F6:8F:19:90:DE:49:A4:7A:2E:26:1C:31:D4:98:88:2E:8E Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 4CE4CB4451BF3A22E540ECC15C730E352904EA64 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa Signing time: Mon 21 Oct 2024 13:00:01 +0000 ROA not before: Mon 21 Oct 2024 12:55:01 +0000 ROA not after: Mon 20 Oct 2025 13:00:01 +0000 asID: 38142 IP address blocks: 210.57.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e4:cb:44:51:bf:3a:22:e5:40:ec:c1:5c:73:0e:35:29:04:ea:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Oct 21 12:55:01 2024 GMT Not After : Oct 20 13:00:01 2025 GMT Subject: CN=2697CFF68F1990DE49A47A2E261C31D498882E8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:52:2d:11:f9:88:89:70:22:0b:78:da:fc:4f: 78:93:59:23:d6:35:55:22:11:2c:0c:1d:fc:34:42: 8d:76:84:c8:11:35:c4:30:51:8e:cf:9f:0c:b9:0c: e3:00:aa:c6:c1:14:0c:f9:4c:a9:c7:78:0a:a6:45: f1:02:74:6b:a7:e0:d9:81:e9:37:2d:6f:77:79:bb: a1:0e:7f:f4:50:e2:50:e4:c3:2d:77:d0:b4:5e:1d: 50:f7:a5:0a:56:01:b0:1a:c4:bd:e2:79:19:44:69: 7d:71:07:4b:44:fb:90:03:da:f8:5f:ee:14:20:3a: 6c:1a:1e:cc:9e:29:92:4d:ba:ab:73:9b:95:33:00: d7:98:73:2e:ea:bc:61:bd:b5:dd:48:b8:ec:4f:e2: 6b:7d:ec:0b:3c:90:9a:fc:09:59:f6:29:2e:e1:cc: b9:0d:19:f3:09:c7:02:b6:db:04:ba:6a:d3:45:a3: d5:17:72:a4:50:1c:58:dc:6f:64:a5:da:0b:67:fa: 79:e9:78:8d:6b:66:29:a0:02:1f:48:5a:49:54:00: 12:78:a6:7c:9e:6b:be:5a:f5:19:a7:1a:df:c4:2e: 9d:3e:a4:75:80:36:0f:3e:0f:d5:2d:ec:af:0e:c3: 48:be:68:b6:2d:5d:a6:31:e6:ac:53:42:7a:46:50: 75:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:97:CF:F6:8F:19:90:DE:49:A4:7A:2E:26:1C:31:D4:98:88:2E:8E X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.223.0/24 Signature Algorithm: sha256WithRSAEncryption ad:14:8b:bc:3a:72:08:3f:1b:4f:ee:b7:b4:a8:d3:15:ac:4e: 46:d7:97:27:23:e4:65:1c:d2:d5:bd:f9:11:26:ef:33:e0:97: f2:7b:41:ff:3b:12:ad:c7:c4:28:85:cb:0a:c6:4c:1e:c9:09: a3:f9:70:0f:37:e9:7f:bd:da:3e:8c:4a:84:dd:5a:39:9b:7d: 03:05:ea:76:b2:de:95:c2:fe:9a:07:ab:03:22:48:f8:2f:7e: 37:ec:61:55:89:fa:ae:d9:17:1f:39:2b:66:d4:57:d4:5c:ae: 7f:4f:97:ae:65:98:1d:5c:e0:ff:ec:53:42:25:6d:7a:7f:f8: 78:e1:c8:d7:fe:47:d6:3d:21:40:37:fc:79:0d:01:85:22:29: 10:48:b4:49:e8:4f:dd:fb:c0:47:7d:f6:40:39:46:0b:20:cb: 63:82:c1:9f:54:e2:a0:c6:f1:ec:3a:1a:58:99:8a:15:2e:79: e2:e8:b4:46:05:43:f7:cf:40:99:ec:19:8f:c8:1f:8f:26:ac: b9:4a:0b:d0:d1:9e:63:d2:3e:18:f0:58:5c:63:c0:76:6c:a4: 92:b3:42:89:99:3b:92:b7:53:d3:9b:06:1e:e2:d3:25:a7:c0: 67:83:3c:1a:8b:7c:9d:c7:4d:b1:ac:93:d8:48:27:4e:17:3d: 92:1a:43:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTOTLRFG/OiLlQOzBXHMONSkE6mQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNDEwMjExMjU1MDFaFw0yNTEwMjAxMzAwMDFaMDMxMTAvBgNV BAMTKDI2OTdDRkY2OEYxOTkwREU0OUE0N0EyRTI2MUMzMUQ0OTg4ODJFOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaUi0R+YiJcCILeNr8T3iTWSPW NVUiESwMHfw0Qo12hMgRNcQwUY7Pnwy5DOMAqsbBFAz5TKnHeAqmRfECdGun4NmB 6Tctb3d5u6EOf/RQ4lDkwy130LReHVD3pQpWAbAaxL3ieRlEaX1xB0tE+5AD2vhf 7hQgOmwaHsyeKZJNuqtzm5UzANeYcy7qvGG9td1IuOxP4mt97As8kJr8CVn2KS7h zLkNGfMJxwK22wS6atNFo9UXcqRQHFjcb2Sl2gtn+nnpeI1rZimgAh9IWklUABJ4 pnyea75a9RmnGt/ELp0+pHWANg8+D9Ut7K8Ow0i+aLYtXaYx5qxTQnpGUHW/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJpfP9o8ZkN5JpHouJhwx1JiILo4wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53zANBgkqhkiG 9w0BAQsFAAOCAQEArRSLvDpyCD8bT+63tKjTFaxORteXJyPkZRzS1b35ESbvM+CX 8ntB/zsSrcfEKIXLCsZMHskJo/lwDzfpf73aPoxKhN1aOZt9AwXqdrLelcL+mger AyJI+C9+N+xhVYn6rtkXHzkrZtRX1Fyuf0+XrmWYHVzg/+xTQiVten/4eOHI1/5H 1j0hQDf8eQ0BhSIpEEi0SehP3fvAR332QDlGCyDLY4LBn1TioMbx7DoaWJmKFS55 4ui0RgVD989AmewZj8gfjyasuUoL0NGeY9I+GPBYXGPAdmykkrNCiZk7krdT05sG HuLTJafAZ4M8Got8ncdNsayT2EgnThc9khpDng== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org