$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138342e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: pui7zb2XJ4+X3ruOIeMi3Iddl1A0mCCFNXvLOJrEw2o= Subject key identifier: 5E:44:4C:E6:B9:97:34:70:AE:E6:9B:F6:32:97:BF:6D:4A:42:67:94 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 4F69495E3AAD60D26AF1E83870C4899760DD9E8C Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138342e302f32342d3234203d3e203234353334.roa Signing time: Sat 20 Jul 2024 13:00:00 +0000 ROA not before: Sat 20 Jul 2024 12:55:00 +0000 ROA not after: Sat 19 Jul 2025 13:00:00 +0000 asID: 24534 IP address blocks: 58.147.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:69:49:5e:3a:ad:60:d2:6a:f1:e8:38:70:c4:89:97:60:dd:9e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jul 20 12:55:00 2024 GMT Not After : Jul 19 13:00:00 2025 GMT Subject: CN=5E444CE6B9973470AEE69BF63297BF6D4A426794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a5:87:b1:eb:0a:c7:11:b0:28:b2:d2:32:8e: 3e:de:d7:af:c4:cf:4b:52:a4:d1:cb:51:a0:72:45: 06:d6:98:9a:f2:27:e3:6a:17:dc:97:02:7e:8b:05: 2d:6e:33:ca:9e:4d:dc:2d:48:e0:35:17:9d:0c:b0: 00:af:4c:98:a3:5b:f7:1f:57:07:d4:cf:c5:bb:ad: dd:7b:f1:36:40:a8:21:92:9e:09:27:c2:88:98:4b: d6:85:2b:09:7a:2d:1a:fd:eb:d4:a8:11:34:b3:ba: 6b:72:0d:34:34:0b:be:c8:96:59:80:a0:a5:40:bd: 16:c4:3e:56:ad:2c:90:28:50:80:5b:66:91:7d:b5: 2f:0b:43:3e:f0:f8:6f:a5:cf:63:3b:0c:26:82:43: f4:c7:5a:ec:30:6b:d3:66:c9:47:43:f3:8b:70:46: ac:43:d1:f8:df:20:37:15:b3:c6:83:e2:77:e0:04: 63:1a:6c:73:44:11:ce:46:61:9e:38:e5:3e:f3:8e: 23:39:00:f2:df:0f:15:c8:c5:6e:56:66:5c:23:7f: d7:90:a4:41:cd:0b:2f:ff:d6:48:58:1f:ed:5a:46: 7f:7b:b1:24:45:d6:84:0f:0f:55:a6:23:55:1a:73: db:c5:50:05:7d:50:cd:bc:ac:2a:ca:7e:e1:55:5d: d3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:44:4C:E6:B9:97:34:70:AE:E6:9B:F6:32:97:BF:6D:4A:42:67:94 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138342e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.184.0/24 Signature Algorithm: sha256WithRSAEncryption 05:05:47:e3:e5:fb:72:c4:8b:1c:57:80:29:9d:b6:7f:2f:ba: 0c:2b:dd:0c:79:5e:5a:39:11:bf:05:70:4c:0e:0e:53:bb:9d: c3:da:5d:56:4d:2e:c9:53:58:0c:f6:47:98:d8:30:a0:8a:3a: ed:ad:90:7e:22:0d:8e:ad:79:ba:5f:6e:d8:95:70:c1:4b:a6: 39:dd:91:e9:b6:34:75:cd:56:98:27:43:fa:d2:c9:9a:94:7c: c0:47:65:8c:b8:3a:24:6c:c9:ba:70:13:5f:f5:20:00:22:f5: 7f:26:7f:10:3f:55:bb:9f:14:bd:a9:07:d3:fa:0e:48:9f:49: 1b:6c:cc:b7:a1:56:a7:dc:bf:81:63:c1:0f:0f:dd:61:3c:7b: 35:82:c0:42:47:58:9c:7b:c2:63:e2:66:f6:ed:d0:02:a4:17: 35:a8:5d:88:70:37:b1:32:11:02:06:3b:1b:bb:ca:e5:79:80: 57:d5:4b:3d:ae:44:14:63:d6:15:71:44:b7:e4:72:fa:23:40: ca:b5:2c:66:0c:42:39:75:d0:cd:ea:26:fb:47:9b:44:1c:63: 36:2a:d8:7f:82:f9:34:e7:61:95:37:27:26:de:df:b9:21:51: 56:d3:14:43:1f:55:0b:be:3e:f1:21:16:a6:09:41:30:bd:40: 6b:bc:9f:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT2lJXjqtYNJq8eg4cMSJl2DdnowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDA3MjAxMjU1MDBaFw0yNTA3MTkxMzAwMDBaMDMxMTAvBgNV BAMTKDVFNDQ0Q0U2Qjk5NzM0NzBBRUU2OUJGNjMyOTdCRjZENEE0MjY3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXpYex6wrHEbAostIyjj7e16/E z0tSpNHLUaByRQbWmJryJ+NqF9yXAn6LBS1uM8qeTdwtSOA1F50MsACvTJijW/cf VwfUz8W7rd178TZAqCGSngknwoiYS9aFKwl6LRr969SoETSzumtyDTQ0C77IllmA oKVAvRbEPlatLJAoUIBbZpF9tS8LQz7w+G+lz2M7DCaCQ/THWuwwa9NmyUdD84tw RqxD0fjfIDcVs8aD4nfgBGMabHNEEc5GYZ445T7zjiM5APLfDxXIxW5WZlwjf9eQ pEHNCy//1khYH+1aRn97sSRF1oQPD1WmI1Uac9vFUAV9UM28rCrKfuFVXdP/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXkRM5rmXNHCu5pv2Mpe/bUpCZ5QwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuDANBgkqhkiG 9w0BAQsFAAOCAQEABQVH4+X7csSLHFeAKZ22fy+6DCvdDHleWjkRvwVwTA4OU7ud w9pdVk0uyVNYDPZHmNgwoIo67a2QfiINjq15ul9u2JVwwUumOd2R6bY0dc1WmCdD +tLJmpR8wEdljLg6JGzJunATX/UgACL1fyZ/ED9Vu58UvakH0/oOSJ9JG2zMt6FW p9y/gWPBDw/dYTx7NYLAQkdYnHvCY+Jm9u3QAqQXNahdiHA3sTIRAgY7G7vK5XmA V9VLPa5EFGPWFXFEt+Ry+iNAyrUsZgxCOXXQzeom+0ebRBxjNirYf4L5NOdhlTcn Jt7fuSFRVtMUQx9VC74+8SEWpglBML1Aa7yfeg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org