$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: 5Pmn1hgkj7WQ7Rpqmckg9Pwxy2hYI4IsGUl7gaJKCIo= Subject key identifier: 9B:4C:E3:A7:92:1F:77:61:9E:98:FD:71:D9:D5:5D:D3:89:65:17:D5 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 06EC11388E1F930379D6A9012CE6B59AA3CC248A Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:14 +0000 ROA not before: Sun 30 Jul 2023 23:58:14 +0000 ROA not after: Mon 29 Jul 2024 00:03:14 +0000 asID: 131717 IP address blocks: 45.118.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ec:11:38:8e:1f:93:03:79:d6:a9:01:2c:e6:b5:9a:a3:cc:24:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:14 2023 GMT Not After : Jul 29 00:03:14 2024 GMT Subject: CN=9B4CE3A7921F77619E98FD71D9D55DD3896517D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:88:21:df:2c:e4:d5:ca:41:2d:92:6d:fc:f7: 19:0b:80:38:29:a8:00:72:6f:3b:c7:92:70:14:e8: 55:3e:e3:a5:87:1a:46:9c:ec:02:e2:9c:ee:aa:a4: d3:b1:6c:2f:55:95:84:7f:88:91:88:4d:e9:e8:4d: 52:19:d1:80:82:e8:ce:b1:bf:2d:39:e0:e8:dc:ec: ab:21:ec:fc:d3:71:46:30:e5:92:8d:91:eb:bf:2a: b2:ba:46:6a:25:64:c7:68:30:d6:f4:7a:c5:f8:2e: 63:f0:23:79:62:6a:0f:15:3e:05:7c:d3:60:06:5a: 12:dc:05:3c:67:68:62:0b:fd:f5:4c:4a:c2:71:8b: 6f:0b:f2:ab:7d:a1:2a:ca:c0:01:6c:ba:36:52:8d: f2:33:3e:7f:63:9b:63:d4:26:57:ab:e5:7b:1a:ff: 78:32:a2:aa:10:94:24:a4:92:68:50:2c:68:84:95: 8d:6c:d1:e9:17:f4:79:72:79:db:ac:be:f8:d3:57: f1:40:8a:1c:c9:11:b2:32:ed:de:99:69:d3:8e:fa: da:ff:48:fb:49:c6:3c:2d:f4:cd:8f:bf:3c:71:28: 56:30:27:56:04:96:21:0b:93:b9:9a:dc:c9:db:79: a0:c1:e1:02:de:49:80:c6:96:35:56:4c:9d:16:60: cf:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:4C:E3:A7:92:1F:77:61:9E:98:FD:71:D9:D5:5D:D3:89:65:17:D5 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.115.0/24 Signature Algorithm: sha256WithRSAEncryption 67:68:54:20:66:df:9d:ab:c4:8d:39:cd:97:3f:e8:30:51:33: 43:a0:f4:a0:a0:64:7a:70:84:1f:57:f0:2c:c3:77:df:4b:11: f0:28:b8:4e:90:67:4a:13:a7:3a:9a:83:e6:f2:21:ad:ef:bc: 83:36:7d:36:7f:e8:b6:b3:f5:91:78:c9:07:7f:ab:fc:55:be: 7e:55:65:10:6f:ba:6e:15:75:e5:91:5a:dd:3d:27:8c:c8:85: 4c:17:a8:e3:aa:78:10:1b:d0:b2:df:91:fc:c5:02:cf:f7:9b: 29:3f:e1:1f:46:1c:cd:31:e2:5d:41:1f:09:47:46:76:26:eb: c5:38:7b:db:d9:34:2c:74:45:52:e8:78:4c:69:98:d1:40:38: 03:1d:90:28:b6:79:08:c9:ef:6d:9e:cb:53:59:2d:f8:2b:bc: b4:aa:89:84:3f:36:87:c3:e8:c2:f5:de:9f:3c:f9:95:7e:1b: f4:7a:66:28:e9:06:da:e9:83:90:3e:44:21:4d:33:00:37:33: 40:99:57:52:0d:ba:08:95:74:df:c7:5b:16:71:c6:68:5c:1d: bb:0f:6c:f2:b2:2c:d5:80:7a:c1:a4:d0:ee:15:0d:ba:1d:38: 8e:e0:4c:de:02:7a:af:c6:3c:5e:16:b1:4a:2d:18:06:17:f1: cd:70:d0:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBuwROI4fkwN51qkBLOa1mqPMJIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTRaFw0yNDA3MjkwMDAzMTRaMDMxMTAvBgNV BAMTKDlCNENFM0E3OTIxRjc3NjE5RTk4RkQ3MUQ5RDU1REQzODk2NTE3RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOiCHfLOTVykEtkm389xkLgDgp qABybzvHknAU6FU+46WHGkac7ALinO6qpNOxbC9VlYR/iJGITenoTVIZ0YCC6M6x vy054Ojc7Ksh7PzTcUYw5ZKNkeu/KrK6RmolZMdoMNb0esX4LmPwI3liag8VPgV8 02AGWhLcBTxnaGIL/fVMSsJxi28L8qt9oSrKwAFsujZSjfIzPn9jm2PUJler5Xsa /3gyoqoQlCSkkmhQLGiElY1s0ekX9HlyedusvvjTV/FAihzJEbIy7d6ZadOO+tr/ SPtJxjwt9M2PvzxxKFYwJ1YEliELk7ma3MnbeaDB4QLeSYDGljVWTJ0WYM9ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm0zjp5Ifd2GemP1x2dVd04llF9UwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZzMA0GCSqG SIb3DQEBCwUAA4IBAQBnaFQgZt+dq8SNOc2XP+gwUTNDoPSgoGR6cIQfV/Asw3ff SxHwKLhOkGdKE6c6moPm8iGt77yDNn02f+i2s/WReMkHf6v8Vb5+VWUQb7puFXXl kVrdPSeMyIVMF6jjqngQG9Cy35H8xQLP95spP+EfRhzNMeJdQR8JR0Z2JuvFOHvb 2TQsdEVS6HhMaZjRQDgDHZAotnkIye9tnstTWS34K7y0qomEPzaHw+jC9d6fPPmV fhv0emYo6Qba6YOQPkQhTTMANzNAmVdSDboIlXTfx1sWccZoXB27D2zysizVgHrB pNDuFQ26HTiO4EzeAnqvxjxeFrFKLRgGF/HNcNA3 -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:20 2024 by rpki-client on console-ams.rpki-client.org