$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132322e35322e302f32322d3234203d3e20313335343438.roa File: 34352e3132322e35322e302f32322d3234203d3e20313335343438.roa (raw, json) Hash identifier: x0dSnseVDl6o8cInCZ424xJxve17YUmiHXTFeZY6nKc= Subject key identifier: 80:76:AE:ED:3A:4E:E6:31:DF:58:06:3F:29:11:05:88:57:A2:7B:B1 Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 2F1DA417F3BD8F7A9364745F65F85212E7E6E794 Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132322e35322e302f32322d3234203d3e20313335343438.roa Signing time: Mon 01 Jul 2024 01:04:37 +0000 ROA not before: Mon 01 Jul 2024 00:59:37 +0000 ROA not after: Mon 30 Jun 2025 01:04:37 +0000 asID: 135448 IP address blocks: 45.122.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1d:a4:17:f3:bd:8f:7a:93:64:74:5f:65:f8:52:12:e7:e6:e7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jul 1 00:59:37 2024 GMT Not After : Jun 30 01:04:37 2025 GMT Subject: CN=8076AEED3A4EE631DF58063F2911058857A27BB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:66:72:02:4b:eb:15:ca:db:14:be:c2:fb: 59:63:1c:17:84:f3:b3:2c:43:ee:ff:1d:0d:e4:dc: 1a:97:94:35:86:34:7f:32:d9:fe:f1:6d:10:d4:83: 11:16:91:cb:db:74:e5:d2:de:b0:c9:a3:7d:0b:57: c3:a1:11:d1:e4:06:1c:5a:c8:38:ac:cd:98:83:23: 5e:15:8c:3e:f4:dd:c2:50:63:37:50:00:0c:4c:96: c8:49:30:99:85:69:c3:2f:a1:6f:8f:af:b4:0b:f3: 55:50:6e:8b:ad:76:2f:21:cb:1e:66:42:71:31:34: e2:8b:6c:d1:fa:4c:c7:c2:b9:af:d0:59:75:41:43: 2f:97:89:6f:36:b4:55:ca:e0:86:8f:4d:4a:39:05: e8:a8:b8:a7:1f:b0:2c:46:5b:e9:ee:31:1e:f4:88: 83:62:c6:7d:df:94:11:ca:2b:c1:92:6b:b2:63:92: d3:57:7b:ea:e9:cc:58:13:19:17:de:1c:55:be:76: 37:2a:69:32:b4:31:6d:8a:de:9b:1a:07:4f:a1:62: 22:3e:08:74:0c:5c:59:d3:2b:ef:d0:6b:07:e0:6c: 9d:ac:73:ba:01:34:03:90:b2:ed:35:78:1a:44:74: 46:40:8d:1a:84:9c:a0:d7:09:5d:cf:df:71:2f:92: 03:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:76:AE:ED:3A:4E:E6:31:DF:58:06:3F:29:11:05:88:57:A2:7B:B1 X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132322e35322e302f32322d3234203d3e20313335343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.122.52.0/22 Signature Algorithm: sha256WithRSAEncryption 71:7b:9b:1c:71:c3:35:6b:81:83:b0:11:91:3a:8c:af:99:1f: 96:9b:b6:b7:bf:0d:74:42:42:b0:bb:95:48:f3:09:39:29:e2: 08:4e:8b:31:ad:83:87:71:c1:39:3f:15:3b:fb:fd:9b:b7:a4: b7:c9:fb:06:94:b7:e2:22:68:a3:40:27:ae:59:01:27:54:4f: 5f:98:25:7a:15:71:8c:3d:c5:5f:ae:53:c6:8c:40:01:85:18: 69:67:5b:cb:7c:11:db:4d:01:39:cf:e9:c6:41:aa:15:58:a2: ac:58:e3:5f:33:d5:70:83:99:1c:91:5f:56:51:67:e1:b2:47: 6e:a0:9b:83:af:59:d7:1a:bd:1d:27:9e:b6:f8:84:aa:f5:6c: ad:44:86:38:70:c9:cb:bf:f5:76:1d:21:85:26:f3:1d:8e:57: 21:9d:7d:93:aa:ad:a4:34:b3:20:38:30:65:17:59:a5:9e:32: 43:ca:13:e8:29:06:a0:02:0d:4f:1c:5f:15:f8:8b:12:0f:66: 91:b2:8e:64:ca:aa:21:d1:87:2d:17:84:86:b6:da:ba:c9:0b: 42:5b:24:df:d7:01:89:94:58:4f:08:d8:c0:6d:44:1e:d4:5e: 20:a5:22:19:82:ea:92:f2:6d:9f:cd:c8:54:83:dd:93:48:ba: 38:1a:40:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULx2kF/O9j3qTZHRfZfhSEufm55QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNDA3MDEwMDU5MzdaFw0yNTA2MzAwMTA0MzdaMDMxMTAvBgNV BAMTKDgwNzZBRUVEM0E0RUU2MzFERjU4MDYzRjI5MTEwNTg4NTdBMjdCQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBR2ZyAkvrFcrbFL7C+1ljHBeE 87MsQ+7/HQ3k3BqXlDWGNH8y2f7xbRDUgxEWkcvbdOXS3rDJo30LV8OhEdHkBhxa yDiszZiDI14VjD703cJQYzdQAAxMlshJMJmFacMvoW+Pr7QL81VQboutdi8hyx5m QnExNOKLbNH6TMfCua/QWXVBQy+XiW82tFXK4IaPTUo5BeiouKcfsCxGW+nuMR70 iINixn3flBHKK8GSa7JjktNXe+rpzFgTGRfeHFW+djcqaTK0MW2K3psaB0+hYiI+ CHQMXFnTK+/QawfgbJ2sc7oBNAOQsu01eBpEdEZAjRqEnKDXCV3P33EvkgPfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgHau7TpO5jHfWAY/KREFiFeie7EwHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzM0MzUyZTMxMzIzMjJlMzUzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi16NDANBgkqhkiG 9w0BAQsFAAOCAQEAcXubHHHDNWuBg7ARkTqMr5kflpu2t78NdEJCsLuVSPMJOSni CE6LMa2Dh3HBOT8VO/v9m7ekt8n7BpS34iJoo0AnrlkBJ1RPX5glehVxjD3FX65T xoxAAYUYaWdby3wR200BOc/pxkGqFViirFjjXzPVcIOZHJFfVlFn4bJHbqCbg69Z 1xq9HSeetviEqvVsrUSGOHDJy7/1dh0hhSbzHY5XIZ19k6qtpDSzIDgwZRdZpZ4y Q8oT6CkGoAINTxxfFfiLEg9mkbKOZMqqIdGHLReEhrbauskLQlsk39cBiZRYTwjY wG1EHtReIKUiGYLqkvJtn83IVIPdk0i6OBpAOw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org