$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa File: 3137352e3130362e31322e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: tvoDk4LlfXoJ09xe7ZBPCe/jlDhchEH3qMLcpywXvh8= Subject key identifier: 44:49:A0:70:DA:83:67:FF:12:EE:AE:FA:91:9F:7C:B5:EC:AC:4C:9B Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 338CE4D944D6A840FFFED4236E652733B29DC018 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa Signing time: Tue 12 Nov 2024 15:03:32 +0000 ROA not before: Tue 12 Nov 2024 14:58:32 +0000 ROA not after: Tue 11 Nov 2025 15:03:32 +0000 asID: 46023 IP address blocks: 175.106.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8c:e4:d9:44:d6:a8:40:ff:fe:d4:23:6e:65:27:33:b2:9d:c0:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Nov 12 14:58:32 2024 GMT Not After : Nov 11 15:03:32 2025 GMT Subject: CN=4449A070DA8367FF12EEAEFA919F7CB5ECAC4C9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3a:8e:c6:8e:c2:5f:46:40:ee:42:18:c8:41: f9:3a:9b:cc:ca:14:a1:9a:de:06:b0:37:14:f4:de: b1:2c:38:e6:8a:b9:66:57:e4:ae:ed:66:b0:ff:cf: 2e:cc:46:28:2a:17:a6:bf:30:55:55:0b:a1:b7:e9: a3:1a:40:8d:9c:30:02:f9:c4:fb:b6:80:33:09:3a: 0d:5d:fb:1d:e4:e6:37:46:cd:5c:79:a9:95:53:ba: 5c:9c:c9:6c:c5:30:16:80:db:bc:a8:7c:2a:25:2d: cb:65:25:ed:1a:ed:e9:4c:93:ee:6c:21:03:1a:56: d9:84:24:5d:f9:6b:00:15:c7:64:0d:0c:60:83:a1: 7e:ed:77:e3:eb:f8:29:68:66:4d:26:3d:08:d8:3d: 67:49:e2:97:62:29:ec:fb:e9:2b:c3:84:ab:06:bd: 7e:ff:19:04:d2:12:c1:61:bc:c3:d7:92:43:75:0a: 9f:68:40:27:b9:bf:23:e0:27:96:c2:e8:ea:b0:e5: 95:2a:a6:4f:b8:4c:54:b0:cc:e6:eb:16:8b:ab:21: e6:a4:c2:f9:73:08:b5:e4:19:b5:fe:eb:b4:8f:b6: 0c:59:6f:57:53:0f:28:ec:94:fe:1a:5e:39:8d:93: e5:67:58:1c:a4:8c:b0:6c:6f:93:f5:95:72:16:78: 4a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:49:A0:70:DA:83:67:FF:12:EE:AE:FA:91:9F:7C:B5:EC:AC:4C:9B X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.106.12.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:19:ec:94:df:ac:ad:f8:ef:43:b4:dc:11:f4:76:dc:4d:fb: 33:59:f7:e6:13:9a:74:bd:ab:58:ee:ef:b0:5f:30:bd:8f:de: 17:7e:3d:cf:3b:36:da:4c:7b:61:8f:4a:51:f2:2d:90:01:d5: 59:e6:35:32:54:6a:3f:b9:fa:38:47:83:57:fc:db:09:02:68: cc:0e:fe:af:b4:c4:d6:98:7d:e8:91:28:ac:a1:dd:50:99:17: 67:75:36:69:78:61:fd:ea:a9:a9:e9:28:b7:d0:d3:e4:51:5a: cb:bd:25:ca:a3:49:0a:59:de:75:d1:8b:71:a9:50:30:f6:6b: 81:f1:0f:76:44:ee:2d:5a:c5:c2:a7:9b:be:42:e8:39:3b:fc: cd:4b:f6:1a:c5:48:b2:74:a6:7d:7d:a3:28:ee:19:f4:d6:8e: a3:bc:3c:2b:d3:59:33:c5:e2:71:e3:c6:5a:a2:8f:27:6d:68: dd:c3:e9:3c:c1:01:03:78:77:cc:67:73:4a:2a:2b:9b:f7:09: 1e:b3:e8:93:de:c0:01:06:26:84:e9:ac:0b:57:e3:8f:8a:0f: 09:f4:ad:af:28:b9:39:58:08:96:a8:30:28:06:62:08:09:39: 5a:74:69:1f:b4:20:69:93:14:8e:18:59:e5:75:fd:98:da:d1: 34:aa:53:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM4zk2UTWqED//tQjbmUnM7KdwBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDExMTIxNDU4MzJaFw0yNTExMTExNTAzMzJaMDMxMTAvBgNV BAMTKDQ0NDlBMDcwREE4MzY3RkYxMkVFQUVGQTkxOUY3Q0I1RUNBQzRDOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTOo7GjsJfRkDuQhjIQfk6m8zK FKGa3gawNxT03rEsOOaKuWZX5K7tZrD/zy7MRigqF6a/MFVVC6G36aMaQI2cMAL5 xPu2gDMJOg1d+x3k5jdGzVx5qZVTulycyWzFMBaA27yofColLctlJe0a7elMk+5s IQMaVtmEJF35awAVx2QNDGCDoX7td+Pr+CloZk0mPQjYPWdJ4pdiKez76SvDhKsG vX7/GQTSEsFhvMPXkkN1Cp9oQCe5vyPgJ5bC6Oqw5ZUqpk+4TFSwzObrFourIeak wvlzCLXkGbX+67SPtgxZb1dTDyjslP4aXjmNk+VnWBykjLBsb5P1lXIWeEo3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUREmgcNqDZ/8S7q76kZ98teysTJswHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzczNTJlMzEzMDM2MmUzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAa9qDDANBgkqhkiG 9w0BAQsFAAOCAQEADRnslN+srfjvQ7TcEfR23E37M1n35hOadL2rWO7vsF8wvY/e F349zzs22kx7YY9KUfItkAHVWeY1MlRqP7n6OEeDV/zbCQJozA7+r7TE1ph96JEo rKHdUJkXZ3U2aXhh/eqpqekot9DT5FFay70lyqNJClneddGLcalQMPZrgfEPdkTu LVrFwqebvkLoOTv8zUv2GsVIsnSmfX2jKO4Z9NaOo7w8K9NZM8XicePGWqKPJ21o 3cPpPMEBA3h3zGdzSiorm/cJHrPok97AAQYmhOmsC1fjj4oPCfStryi5OVgIlqgw KAZiCAk5WnRpH7QgaZMUjhhZ5XX9mNrRNKpT8Q== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org