$ rpki-client -vvf repo-rpki.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/33362e35302e34362e302f32332d3233203d3e20313338383838.roa File: 33362e35302e34362e302f32332d3233203d3e20313338383838.roa (raw, json) Hash identifier: mxtXjA73LS1mZhkBSLMdwKqT16ev1fS5k+J/P85pAXY= Subject key identifier: 47:06:D0:A8:E5:03:01:BF:18:86:11:AB:9B:0B:EB:BB:5D:E2:24:81 Certificate issuer: /CN=E380AA52674666F5E074BF511BB72FA0713E5270 Certificate serial: 5ED1460B31E53CE0A89DC4101484D14248942790 Authority key identifier: E3:80:AA:52:67:46:66:F5:E0:74:BF:51:1B:B7:2F:A0:71:3E:52:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E380AA52674666F5E074BF511BB72FA0713E5270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/33362e35302e34362e302f32332d3233203d3e20313338383838.roa Signing time: Wed 11 Dec 2024 06:00:31 +0000 ROA not before: Wed 11 Dec 2024 05:55:31 +0000 ROA not after: Wed 10 Dec 2025 06:00:31 +0000 asID: 138888 IP address blocks: 36.50.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/E380AA52674666F5E074BF511BB72FA0713E5270.crl rsync://repo-rpki.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/E380AA52674666F5E074BF511BB72FA0713E5270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E380AA52674666F5E074BF511BB72FA0713E5270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Feb 2025 18:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d1:46:0b:31:e5:3c:e0:a8:9d:c4:10:14:84:d1:42:48:94:27:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E380AA52674666F5E074BF511BB72FA0713E5270 Validity Not Before: Dec 11 05:55:31 2024 GMT Not After : Dec 10 06:00:31 2025 GMT Subject: CN=4706D0A8E50301BF188611AB9B0BEBBB5DE22481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:72:3a:66:1f:eb:65:32:93:a2:c6:86:21:39: 97:f8:b9:dc:02:18:7a:aa:32:cb:0b:75:7e:73:30: e5:31:0f:60:c7:79:4b:b7:c0:4d:d0:a3:31:64:c0: e7:00:96:b2:64:8d:86:52:ff:b3:e7:96:91:d0:7a: 25:f7:11:82:ae:bf:cd:d7:5b:79:d0:25:27:f9:17: 0e:03:ff:57:83:72:ab:cb:5b:fb:d7:7c:5d:40:b8: 93:b9:1f:5b:54:0d:1d:49:a6:61:ef:8b:e1:fb:93: bb:c1:ea:71:e7:de:71:b3:32:88:67:06:81:2b:95: 52:91:e4:38:39:f1:ff:21:4a:33:f9:b7:8f:7a:7c: f3:7e:0b:d5:3f:99:58:d8:af:a2:6a:ab:83:c7:8d: 1e:a3:b4:03:7a:d8:f9:ac:7b:64:cd:68:95:ea:12: ae:98:73:c2:12:d0:29:94:3a:12:4c:95:59:12:07: 65:db:21:37:6d:41:78:cc:91:20:47:d1:b1:ac:7c: 3b:c2:ed:c9:b4:ff:5a:25:6e:a4:16:19:4d:bf:6f: 86:cb:4c:ca:0f:03:6e:15:9e:21:31:c5:d3:d1:05: 48:6a:a9:1a:90:cf:35:7a:fb:73:d3:05:32:59:2d: 52:8a:2d:80:e1:fc:13:c9:24:9c:e4:a6:ce:0d:10: 64:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:06:D0:A8:E5:03:01:BF:18:86:11:AB:9B:0B:EB:BB:5D:E2:24:81 X509v3 Authority Key Identifier: keyid:E3:80:AA:52:67:46:66:F5:E0:74:BF:51:1B:B7:2F:A0:71:3E:52:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/E380AA52674666F5E074BF511BB72FA0713E5270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E380AA52674666F5E074BF511BB72FA0713E5270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/33362e35302e34362e302f32332d3233203d3e20313338383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.46.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:2c:f2:28:d3:a5:57:d0:ff:79:88:f9:b6:35:67:ca:ea:55: 0f:43:40:c7:8b:1b:3f:d9:19:a2:70:e0:75:02:18:a5:94:57: dd:b6:99:e6:94:45:9c:d5:3d:76:f5:53:cc:f4:f3:88:b1:aa: 9f:92:7b:e6:50:5a:c5:69:62:91:99:96:77:a9:43:a9:89:1e: 1d:94:be:09:01:b3:ad:3d:e7:a2:7c:a3:dd:24:0d:9c:14:17: c8:c6:4b:99:1c:d5:9e:d9:58:f4:67:ae:61:29:ab:8a:a1:89: 73:18:54:d1:2a:02:8e:3e:41:1a:f1:1c:a3:6a:06:26:fa:20: be:b5:af:f3:89:ea:9a:fb:2f:3d:5e:cf:68:7f:2f:fc:2a:1b: 02:34:89:1e:73:44:78:b9:73:bd:0e:2f:17:f1:c4:1b:92:28: f0:7a:cf:57:69:61:07:c8:9c:8e:60:17:e0:2e:5c:13:3f:12: 7e:7f:09:72:38:8b:37:4f:b2:02:6d:07:0d:66:a2:88:a6:39: de:d3:06:9b:1d:f4:61:31:62:1b:91:44:ca:9a:b3:01:cf:21: f9:47:e3:60:95:dc:7e:8b:0c:6f:e2:b2:4d:95:6d:81:5f:34: e6:cf:28:57:fb:2f:7c:d7:8f:af:01:a2:42:17:2e:1e:eb:ce: f8:e7:5a:13 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXtFGCzHlPOConcQQFITRQkiUJ5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM4MEFBNTI2NzQ2NjZGNUUwNzRCRjUxMUJCNzJGQTA3 MTNFNTI3MDAeFw0yNDEyMTEwNTU1MzFaFw0yNTEyMTAwNjAwMzFaMDMxMTAvBgNV BAMTKDQ3MDZEMEE4RTUwMzAxQkYxODg2MTFBQjlCMEJFQkJCNURFMjI0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHcjpmH+tlMpOixoYhOZf4udwC GHqqMssLdX5zMOUxD2DHeUu3wE3QozFkwOcAlrJkjYZS/7PnlpHQeiX3EYKuv83X W3nQJSf5Fw4D/1eDcqvLW/vXfF1AuJO5H1tUDR1JpmHvi+H7k7vB6nHn3nGzMohn BoErlVKR5Dg58f8hSjP5t496fPN+C9U/mVjYr6Jqq4PHjR6jtAN62Pmse2TNaJXq Eq6Yc8IS0CmUOhJMlVkSB2XbITdtQXjMkSBH0bGsfDvC7cm0/1olbqQWGU2/b4bL TMoPA24VniExxdPRBUhqqRqQzzV6+3PTBTJZLVKKLYDh/BPJJJzkps4NEGQbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURwbQqOUDAb8YhhGrmwvru13iJIEwHwYDVR0j BBgwFoAU44CqUmdGZvXgdL9RG7cvoHE+UnAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjY4NDYyZS1iZmE1LTQzMzctOTE1My1jNTU2ZDlkNzcxZmEvMC9FMzgwQUE1MjY3 NDY2NkY1RTA3NEJGNTExQkI3MkZBMDcxM0U1MjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM4MEFBNTI2NzQ2NjZGNUUwNzRCRjUxMUJCNzJGQTA3MTNF NTI3MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNjg0NjJlLWJmYTUtNDMzNy05 MTUzLWM1NTZkOWQ3NzFmYS8wLzMzMzYyZTM1MzAyZTM0MzYyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTMzMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEkMi4wDQYJKoZIhvcN AQELBQADggEBAG8s8ijTpVfQ/3mI+bY1Z8rqVQ9DQMeLGz/ZGaJw4HUCGKWUV922 meaURZzVPXb1U8z084ixqp+Se+ZQWsVpYpGZlnepQ6mJHh2UvgkBs60956J8o90k DZwUF8jGS5kc1Z7ZWPRnrmEpq4qhiXMYVNEqAo4+QRrxHKNqBib6IL61r/OJ6pr7 Lz1ez2h/L/wqGwI0iR5zRHi5c70OLxfxxBuSKPB6z1dpYQfInI5gF+AuXBM/En5/ CXI4izdPsgJtBw1mooimOd7TBpsd9GExYhuRRMqaswHPIflH42CV3H6LDG/isk2V bYFfNObPKFf7L3zXj68BokIXLh7rzvjnWhM= -----END CERTIFICATE-----Generated at Thu Jan 30 13:55:06 2025 by rpki-client on console-fra.rpki-client.org