$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132352e37322e302f32322d3234203d3e20313335343438.roa File: 34352e3132352e37322e302f32322d3234203d3e20313335343438.roa (raw, json) Hash identifier: 4Iv/206uls9eHWd7muPK/npht68SKlzf73ejsxHZxQA= Subject key identifier: 88:4E:B5:9D:43:AB:1D:CE:61:12:34:CA:75:24:75:44:6C:1B:47:9C Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 320305B97F63FCABEFF354CF04E31DC4CC7FE279 Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132352e37322e302f32322d3234203d3e20313335343438.roa Signing time: Mon 01 Jul 2024 01:04:37 +0000 ROA not before: Mon 01 Jul 2024 00:59:37 +0000 ROA not after: Mon 30 Jun 2025 01:04:37 +0000 asID: 135448 IP address blocks: 45.125.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:03:05:b9:7f:63:fc:ab:ef:f3:54:cf:04:e3:1d:c4:cc:7f:e2:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jul 1 00:59:37 2024 GMT Not After : Jun 30 01:04:37 2025 GMT Subject: CN=884EB59D43AB1DCE611234CA752475446C1B479C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dd:cd:30:de:fd:ff:96:2d:6e:40:b2:04:11: c2:49:ac:65:43:f0:01:e5:5f:61:49:cd:4c:0b:8c: 32:56:e7:27:fa:3a:e5:d2:5c:c5:1b:17:70:52:87: 06:0f:ff:ad:61:2c:c6:71:3d:44:87:16:6f:7b:3b: 88:f0:30:8f:ac:90:78:84:b9:50:09:f4:7b:98:b0: b7:04:fc:41:8d:2e:41:b3:e8:eb:96:09:fe:2a:2e: bd:f5:4b:69:39:6b:ff:38:1a:1f:4e:02:71:09:d1: 8a:75:9c:82:8d:70:66:5d:22:1f:ca:df:25:69:e8: 15:6f:c8:89:68:48:ef:f1:08:74:4e:44:a8:55:ca: 0e:b3:2f:ad:3d:78:fc:64:1d:90:5d:ee:dc:92:47: 9e:9a:53:63:84:06:fa:1e:34:89:26:01:13:f5:b2: 05:e4:4c:23:40:fa:9c:52:cf:31:48:88:d7:1f:f3: 0e:c2:33:67:60:66:0f:c8:53:5a:f4:d9:25:d1:5d: fe:8a:70:50:88:82:81:33:6a:41:b5:d3:a0:82:e4: c2:b0:69:10:b1:02:32:59:0e:11:55:ac:f3:c4:1f: 58:80:fc:04:cb:dd:9c:d0:3f:76:9e:bc:2a:a7:12: 2e:62:9e:50:92:9a:f7:7d:76:63:f1:1c:46:56:31: dd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4E:B5:9D:43:AB:1D:CE:61:12:34:CA:75:24:75:44:6C:1B:47:9C X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132352e37322e302f32322d3234203d3e20313335343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.125.72.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:c4:ba:25:69:19:a6:36:82:26:2c:7c:0c:9f:1c:ba:a7:7a: cd:8b:85:f2:40:9a:a6:fc:f7:b0:df:fe:23:33:26:a2:3a:d2: 97:2d:a7:f7:8d:43:50:f2:9c:6a:66:8e:3a:79:1d:b7:92:b0: ec:a5:a8:c2:ed:20:03:ad:c9:ad:b8:be:f4:6f:f9:b1:f3:f5: 3e:c9:c0:a7:24:cd:6a:15:42:ce:09:d4:1a:71:6b:93:df:32: 89:4b:d9:2b:7d:3b:e2:1c:74:74:7f:4b:39:01:26:1a:92:81: 48:09:22:56:27:f8:fa:e9:2c:e2:ce:86:68:5b:8e:a1:dd:3e: 5d:d9:b4:4a:35:c9:45:06:e1:46:6c:5a:6a:de:87:4b:a0:dc: 95:98:b3:28:19:3b:85:3f:88:e7:58:a6:bb:e0:5b:72:fa:49: 9c:1a:81:a1:1d:11:8d:b8:4c:71:35:38:69:fc:94:7e:84:7e: d3:e4:bb:0d:70:fb:be:59:af:3d:c2:6e:dc:8d:fb:84:c6:7c: bc:76:54:81:db:4b:a1:e7:10:dd:26:3c:8c:9e:87:49:da:aa: 3a:bb:a5:40:db:68:12:9c:9f:ed:6e:c0:56:72:ce:39:9d:6c: 05:2e:9e:2b:5e:8c:5f:7f:85:a0:2f:3d:2e:e2:a7:28:92:48: d8:94:6d:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMgMFuX9j/Kvv81TPBOMdxMx/4nkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNDA3MDEwMDU5MzdaFw0yNTA2MzAwMTA0MzdaMDMxMTAvBgNV BAMTKDg4NEVCNTlENDNBQjFEQ0U2MTEyMzRDQTc1MjQ3NTQ0NkMxQjQ3OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3c0w3v3/li1uQLIEEcJJrGVD 8AHlX2FJzUwLjDJW5yf6OuXSXMUbF3BShwYP/61hLMZxPUSHFm97O4jwMI+skHiE uVAJ9HuYsLcE/EGNLkGz6OuWCf4qLr31S2k5a/84Gh9OAnEJ0Yp1nIKNcGZdIh/K 3yVp6BVvyIloSO/xCHRORKhVyg6zL609ePxkHZBd7tySR56aU2OEBvoeNIkmARP1 sgXkTCNA+pxSzzFIiNcf8w7CM2dgZg/IU1r02SXRXf6KcFCIgoEzakG106CC5MKw aRCxAjJZDhFVrPPEH1iA/ATL3ZzQP3aevCqnEi5inlCSmvd9dmPxHEZWMd2ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiE61nUOrHc5hEjTKdSR1RGwbR5wwHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzM0MzUyZTMxMzIzNTJlMzczMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi19SDANBgkqhkiG 9w0BAQsFAAOCAQEAe8S6JWkZpjaCJix8DJ8cuqd6zYuF8kCapvz3sN/+IzMmojrS ly2n941DUPKcamaOOnkdt5Kw7KWowu0gA63Jrbi+9G/5sfP1PsnApyTNahVCzgnU GnFrk98yiUvZK3074hx0dH9LOQEmGpKBSAkiVif4+uks4s6GaFuOod0+Xdm0SjXJ RQbhRmxaat6HS6DclZizKBk7hT+I51imu+BbcvpJnBqBoR0RjbhMcTU4afyUfoR+ 0+S7DXD7vlmvPcJu3I37hMZ8vHZUgdtLoecQ3SY8jJ6HSdqqOrulQNtoEpyf7W7A VnLOOZ1sBS6eK16MX3+FoC89LuKnKJJI2JRt4Q== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org