$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa File: 3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: 6VZzX0YiESZnq7W/qDaDzksalt2wCYKocwsLQFdZXQo= Subject key identifier: B1:12:AC:29:1D:FE:4F:E6:86:37:8D:22:73:35:56:E6:1E:15:AC:41 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 3076506E82976621485367A0F8A1A750B393C4F8 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa Signing time: Mon 01 Jul 2024 01:03:52 +0000 ROA not before: Mon 01 Jul 2024 00:58:52 +0000 ROA not after: Mon 30 Jun 2025 01:03:52 +0000 asID: 24521 IP address blocks: 175.184.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:76:50:6e:82:97:66:21:48:53:67:a0:f8:a1:a7:50:b3:93:c4:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 1 00:58:52 2024 GMT Not After : Jun 30 01:03:52 2025 GMT Subject: CN=B112AC291DFE4FE686378D22733556E61E15AC41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8f:5a:3f:23:a7:a2:f7:1f:d0:fc:5d:e5:ea: 6a:f2:2d:36:e3:d6:a3:33:61:88:b7:d2:5e:c3:47: d5:53:9c:84:28:18:7c:89:6a:e6:ce:f7:8a:04:27: 26:c3:54:30:ef:ff:47:c4:fd:21:22:39:b8:1f:28: 8f:de:90:99:1e:31:da:07:1c:85:b1:dc:60:46:7c: d1:8e:11:e0:6a:8f:dd:f7:a2:77:ed:42:45:05:99: f4:83:19:ca:72:fe:35:5b:c4:3e:43:56:81:c7:b9: 97:53:b5:f5:77:ef:20:3d:a1:b9:74:15:6e:4a:b4: 10:93:ad:36:07:24:2c:a0:82:46:39:67:fb:18:5e: 5b:fa:0e:e5:45:6c:dd:67:a8:d7:76:38:e8:d6:92: c8:b2:70:3e:ed:32:8a:a1:71:27:1d:2b:c3:c7:6b: 38:3c:15:7f:e5:b1:99:75:cd:0c:6a:4f:d6:81:5c: 3b:d3:c2:2f:ab:36:62:43:37:c8:8d:b2:1a:10:f3: 38:c2:a7:76:46:bf:19:72:ea:93:a0:6c:3e:64:7b: cc:78:95:a1:da:9d:7b:d0:cc:0d:20:1d:95:32:98: 64:52:9a:5d:b0:93:3e:25:6e:45:5b:fc:4c:c9:b4: ef:c0:f1:f1:a4:ad:fb:e7:97:24:ec:b7:92:cb:dc: 52:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:12:AC:29:1D:FE:4F:E6:86:37:8D:22:73:35:56:E6:1E:15:AC:41 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.224.0/21 Signature Algorithm: sha256WithRSAEncryption 20:11:33:93:cb:0f:2a:35:6f:f8:04:6f:4e:0e:d7:0c:c8:21: d0:e0:bb:db:7a:7a:30:f2:f5:f2:7f:82:30:a7:f4:7d:45:14: d3:5b:ba:8e:9a:91:66:0d:1d:51:eb:c2:b1:da:ec:bf:7e:94: 7c:33:2c:21:f8:4b:01:22:36:83:f2:13:22:a6:c5:2b:be:25: 2f:83:1e:fb:50:e7:05:49:db:7e:aa:9e:be:c3:bb:9f:75:0e: f5:52:86:35:6f:0b:18:f7:e6:16:45:ce:b7:86:88:5b:b3:d0: 41:12:00:76:fe:c1:8f:08:fe:ac:99:8b:ae:39:56:91:7e:32: 11:87:0b:b3:2d:5d:d1:88:ee:32:40:d6:26:ae:83:e0:07:e1: 3e:82:22:c9:01:7a:9b:ac:33:79:ed:31:74:97:a6:ff:a2:e0: 6e:f2:23:f5:f2:5c:1b:95:db:93:e2:b9:d1:d5:18:5f:53:2e: 79:8b:30:e3:c5:e0:3e:4d:1d:44:20:d2:7d:78:c9:f7:ee:9f: 71:05:7b:43:4c:24:02:79:e2:f8:d1:76:50:c1:e5:66:b3:42: 50:a4:a0:0f:4b:91:d5:e4:c2:04:d0:d0:3b:3f:84:c7:04:97: 48:a6:17:af:ff:31:46:cc:e7:ab:fe:df:a2:8a:a6:9a:f4:28: 3f:0e:50:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMHZQboKXZiFIU2eg+KGnULOTxPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDA3MDEwMDU4NTJaFw0yNTA2MzAwMTAzNTJaMDMxMTAvBgNV BAMTKEIxMTJBQzI5MURGRTRGRTY4NjM3OEQyMjczMzU1NkU2MUUxNUFDNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIj1o/I6ei9x/Q/F3l6mryLTbj 1qMzYYi30l7DR9VTnIQoGHyJaubO94oEJybDVDDv/0fE/SEiObgfKI/ekJkeMdoH HIWx3GBGfNGOEeBqj933onftQkUFmfSDGcpy/jVbxD5DVoHHuZdTtfV37yA9obl0 FW5KtBCTrTYHJCyggkY5Z/sYXlv6DuVFbN1nqNd2OOjWksiycD7tMoqhcScdK8PH azg8FX/lsZl1zQxqT9aBXDvTwi+rNmJDN8iNshoQ8zjCp3ZGvxly6pOgbD5ke8x4 laHanXvQzA0gHZUymGRSml2wkz4lbkVb/EzJtO/A8fGkrfvnlyTst5LL3FLtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsRKsKR3+T+aGN40iczVW5h4VrEEwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzczNTJlMzEzODM0MmUzMjMyMzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr7jgMA0GCSqG SIb3DQEBCwUAA4IBAQAgETOTyw8qNW/4BG9ODtcMyCHQ4Lvbenow8vXyf4Iwp/R9 RRTTW7qOmpFmDR1R68Kx2uy/fpR8Mywh+EsBIjaD8hMipsUrviUvgx77UOcFSdt+ qp6+w7ufdQ71UoY1bwsY9+YWRc63hohbs9BBEgB2/sGPCP6smYuuOVaRfjIRhwuz LV3RiO4yQNYmroPgB+E+giLJAXqbrDN57TF0l6b/ouBu8iP18lwblduT4rnR1Rhf Uy55izDjxeA+TR1EINJ9eMn37p9xBXtDTCQCeeL40XZQweVms0JQpKAPS5HV5MIE 0NA7P4THBJdIphev/zFGzOer/t+iiqaa9Cg/DlAT -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:25 2024 by rpki-client on console-ams.rpki-client.org