$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3136382e302f32342d3234203d3e203436303534.roa File: 35382e3134352e3136382e302f32342d3234203d3e203436303534.roa (raw, json) Hash identifier: ETjmr0vbZqDmotb4XLq8niPrpEIZf7M1nN0Vj8GjET0= Subject key identifier: 60:D1:C6:08:4E:43:1D:A2:0B:99:47:63:EE:10:0F:9B:FF:44:D6:4D Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 5068E7E2719C1A1DD56745D6455669C2893290E1 Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3136382e302f32342d3234203d3e203436303534.roa Signing time: Mon 31 Jul 2023 00:09:46 +0000 ROA not before: Mon 31 Jul 2023 00:04:46 +0000 ROA not after: Mon 29 Jul 2024 00:09:46 +0000 asID: 46054 IP address blocks: 58.145.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:68:e7:e2:71:9c:1a:1d:d5:67:45:d6:45:56:69:c2:89:32:90:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: Jul 31 00:04:46 2023 GMT Not After : Jul 29 00:09:46 2024 GMT Subject: CN=60D1C6084E431DA20B994763EE100F9BFF44D64D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:ba:f1:77:d0:39:96:ba:be:7a:c1:4c:a7: dc:08:5d:80:41:a0:ba:c0:d9:63:38:7b:2a:55:3b: 63:85:33:4d:54:cf:81:84:9d:7a:60:74:84:63:02: 53:e8:ed:03:1e:44:e2:2f:1c:f6:39:49:72:4e:5b: fd:5d:96:fa:3f:81:5d:2e:a9:40:f1:4c:90:bc:71: 66:08:e4:49:46:5b:92:25:3b:31:57:1f:4c:84:59: e9:4f:35:d9:0c:89:e4:88:0c:ae:3b:eb:e2:20:d3: d0:7b:91:8d:fe:f5:a1:28:f0:25:29:b2:f0:18:25: 2b:6c:b1:8a:c1:fd:80:6f:f5:70:18:9d:c9:de:1a: 49:1b:53:c6:7c:29:c1:84:62:37:9f:68:8a:a3:c6: 04:53:dd:49:49:7b:c9:39:ef:fa:7e:ea:db:f7:b7: 51:0e:ce:17:db:13:10:b4:e2:c8:2a:0b:20:35:22: 1b:b5:95:6e:fa:63:1f:ed:65:46:d5:9b:ad:33:3a: 5d:c0:3a:b0:f6:17:92:e5:62:bb:73:8e:e2:77:29: 7e:fb:e7:f3:74:33:ab:de:c9:e0:56:b2:d2:89:9f: d5:e8:c8:2b:b0:d4:ef:b9:05:b4:02:d1:12:25:b7: bd:9c:8f:37:f8:e4:0a:8a:e4:a2:66:61:ae:80:1b: 79:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D1:C6:08:4E:43:1D:A2:0B:99:47:63:EE:10:0F:9B:FF:44:D6:4D X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3136382e302f32342d3234203d3e203436303534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.145.168.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:43:57:06:7b:9b:79:36:d7:1c:2e:fa:4a:e7:0e:da:c8:a4: 54:06:0b:af:60:ea:e8:2a:9a:ac:e1:88:f3:c7:9d:83:2e:59: d7:3e:ac:19:86:f2:0d:d4:2a:9c:f5:90:c0:af:e1:ae:ef:60: 71:e0:1d:09:d7:bc:b8:47:04:ad:07:cf:fc:14:c7:c6:6a:44: b5:5f:51:9c:3c:05:8e:68:00:19:70:64:c4:2a:d1:9b:9e:37: ba:ce:00:b3:5b:04:ab:23:35:72:86:37:57:05:91:1e:5f:40: 8b:e0:42:56:de:5d:f5:76:f5:ad:69:16:a1:03:17:27:1f:bb: 15:db:69:02:33:c0:7b:1a:ba:27:c5:aa:5a:67:83:09:00:21: ef:98:7a:c8:69:a7:a4:46:f0:2d:43:e3:12:fa:3d:85:a5:23: d5:3e:19:e7:a6:77:7f:0b:4b:44:20:31:98:6e:31:80:1f:c2: c5:18:26:fb:d9:5c:02:f6:76:51:23:59:99:d2:9f:51:13:20: fe:a2:1a:7f:eb:cb:6d:c0:e6:d2:a0:3f:42:4e:21:6e:f0:fb: 08:34:ca:cc:33:2a:1c:b3:10:4e:e9:b9:43:e6:ee:0c:f0:49: 90:ad:53:e8:28:e3:a3:da:48:4a:b4:2d:99:d9:d5:ee:1d:1b: 4f:62:7a:71 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUGjn4nGcGh3VZ0XWRVZpwokykOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yMzA3MzEwMDA0NDZaFw0yNDA3MjkwMDA5NDZaMDMxMTAvBgNV BAMTKDYwRDFDNjA4NEU0MzFEQTIwQjk5NDc2M0VFMTAwRjlCRkY0NEQ2NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOPrrxd9A5lrq+esFMp9wIXYBB oLrA2WM4eypVO2OFM01Uz4GEnXpgdIRjAlPo7QMeROIvHPY5SXJOW/1dlvo/gV0u qUDxTJC8cWYI5ElGW5IlOzFXH0yEWelPNdkMieSIDK476+Ig09B7kY3+9aEo8CUp svAYJStssYrB/YBv9XAYncneGkkbU8Z8KcGEYjefaIqjxgRT3UlJe8k57/p+6tv3 t1EOzhfbExC04sgqCyA1Ihu1lW76Yx/tZUbVm60zOl3AOrD2F5LlYrtzjuJ3KX77 5/N0M6veyeBWstKJn9XoyCuw1O+5BbQC0RIlt72cjzf45AqK5KJmYa6AG3lLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYNHGCE5DHaILmUdj7hAPm/9E1k0wHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZjMwOTM2LWM3NTAtNDMzYi05 YzJhLThmZjVmMzhlNjNkNC8wLzM1MzgyZTMxMzQzNTJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqRqDANBgkqhkiG 9w0BAQsFAAOCAQEAn0NXBnubeTbXHC76SucO2sikVAYLr2Dq6CqarOGI88edgy5Z 1z6sGYbyDdQqnPWQwK/hru9gceAdCde8uEcErQfP/BTHxmpEtV9RnDwFjmgAGXBk xCrRm543us4As1sEqyM1coY3VwWRHl9Ai+BCVt5d9Xb1rWkWoQMXJx+7FdtpAjPA exq6J8WqWmeDCQAh75h6yGmnpEbwLUPjEvo9haUj1T4Z56Z3fwtLRCAxmG4xgB/C xRgm+9lcAvZ2USNZmdKfURMg/qIaf+vLbcDm0qA/Qk4hbvD7CDTKzDMqHLMQTum5 Q+buDPBJkK1T6Cjjo9pISrQtmdnV7h0bT2J6cQ== -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:58 2024 by rpki-client on console-ams.rpki-client.org