$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138352e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138352e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: XlRIM2drE0eVYSx46A7CTq2auxNTRxDcpQdmTnDOrQU= Subject key identifier: 01:61:AA:F2:59:C9:38:C0:06:88:55:E6:5C:5C:D0:DF:DD:80:C4:8A Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 7887A2A938A84B8F854A459FB25419584185DD0B Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138352e302f32342d3234203d3e203234353334.roa Signing time: Sat 20 Jul 2024 12:00:00 +0000 ROA not before: Sat 20 Jul 2024 11:55:00 +0000 ROA not after: Sat 19 Jul 2025 12:00:00 +0000 asID: 24534 IP address blocks: 58.147.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:87:a2:a9:38:a8:4b:8f:85:4a:45:9f:b2:54:19:58:41:85:dd:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jul 20 11:55:00 2024 GMT Not After : Jul 19 12:00:00 2025 GMT Subject: CN=0161AAF259C938C0068855E65C5CD0DFDD80C48A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:40:4e:53:83:b7:6e:d7:2c:fb:94:a7:93:4c: ec:28:3f:90:29:91:77:52:8f:b5:c5:68:85:1d:09: 31:db:17:b9:12:6e:34:02:b1:9e:6b:bd:e9:78:fc: df:d0:63:e2:ae:b3:52:d7:7a:b3:87:cb:e9:49:2e: e1:17:ef:58:b5:c4:75:34:9c:d3:bb:17:f3:60:ba: 03:1e:72:c7:06:c7:0e:bf:cb:27:90:2c:d3:16:60: 14:cf:8c:d3:0d:ea:c1:d0:3f:71:3c:37:28:b2:e2: 28:6e:7b:83:58:f8:d1:33:08:9e:e2:c0:4c:72:32: 28:7f:90:f4:00:98:09:29:a9:0e:ac:c0:a9:03:46: 4b:03:53:80:02:22:45:0c:7e:45:af:3e:40:4e:9e: 1b:06:e5:be:41:ad:8a:39:8d:89:0b:13:e1:92:1f: 55:13:51:37:b4:f4:f2:02:af:4b:c9:b6:84:25:47: f3:fc:ea:e8:39:4a:0c:95:ab:68:b7:bc:47:52:94: ab:2d:b5:4b:3c:d4:ac:67:17:b8:16:e8:01:d5:ab: ca:b8:e5:23:0d:e0:76:7d:a2:a0:de:43:5f:f9:eb: e3:cb:82:d7:df:9f:9a:8b:61:34:39:17:f6:77:17: 52:71:9f:27:09:d8:d4:8d:89:33:8e:e3:df:3d:4e: 83:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:61:AA:F2:59:C9:38:C0:06:88:55:E6:5C:5C:D0:DF:DD:80:C4:8A X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138352e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.185.0/24 Signature Algorithm: sha256WithRSAEncryption 38:d1:9e:05:dc:37:87:e4:54:a9:25:24:02:b6:43:4d:81:d5: a6:2d:92:ba:eb:a8:08:f5:4c:78:72:91:e8:a6:d6:52:f5:49: 14:fd:0c:0c:af:c0:83:38:55:07:a3:16:50:3a:de:1d:ca:14: 1d:12:5f:d7:10:d9:a6:a4:00:33:e6:88:be:7e:52:b6:f5:6b: fe:6e:88:c6:96:48:be:1e:08:c2:e0:d2:be:c8:b8:0c:ab:3f: ef:7b:42:cc:43:21:c6:2a:06:80:4a:bd:3a:d0:47:54:6c:ed: a2:e4:5d:84:6d:dc:12:8a:60:c3:af:1d:ab:45:1c:f7:c8:0d: a6:2a:47:1b:54:04:bf:0f:4e:91:16:64:eb:21:1b:f1:93:40: 35:17:d6:3d:86:43:95:fd:1b:db:32:fc:b6:dc:c3:02:ed:68: 34:c4:4f:bf:29:9c:aa:08:1e:f1:4a:29:a0:ee:75:03:43:51: 39:c3:87:0c:7a:29:68:04:5f:ae:40:ba:36:3c:56:e2:78:3f: 04:a1:9c:12:22:93:56:77:38:73:60:6c:95:d0:57:41:3e:13: 7b:7c:81:c3:64:09:14:48:38:4c:11:4c:18:d7:32:52:ba:0a: e1:08:4d:4e:cf:dc:c2:6a:83:0f:61:04:61:68:cf:6d:cb:c8: 26:02:7c:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeIeiqTioS4+FSkWfslQZWEGF3QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDA3MjAxMTU1MDBaFw0yNTA3MTkxMjAwMDBaMDMxMTAvBgNV BAMTKDAxNjFBQUYyNTlDOTM4QzAwNjg4NTVFNjVDNUNEMERGREQ4MEM0OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4QE5Tg7du1yz7lKeTTOwoP5Ap kXdSj7XFaIUdCTHbF7kSbjQCsZ5rvel4/N/QY+Kus1LXerOHy+lJLuEX71i1xHU0 nNO7F/NgugMecscGxw6/yyeQLNMWYBTPjNMN6sHQP3E8Nyiy4ihue4NY+NEzCJ7i wExyMih/kPQAmAkpqQ6swKkDRksDU4ACIkUMfkWvPkBOnhsG5b5BrYo5jYkLE+GS H1UTUTe09PICr0vJtoQlR/P86ug5SgyVq2i3vEdSlKsttUs81KxnF7gW6AHVq8q4 5SMN4HZ9oqDeQ1/56+PLgtffn5qLYTQ5F/Z3F1JxnycJ2NSNiTOO4989ToNBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAWGq8lnJOMAGiFXmXFzQ392AxIowHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuTANBgkqhkiG 9w0BAQsFAAOCAQEAONGeBdw3h+RUqSUkArZDTYHVpi2SuuuoCPVMeHKR6KbWUvVJ FP0MDK/AgzhVB6MWUDreHcoUHRJf1xDZpqQAM+aIvn5StvVr/m6IxpZIvh4IwuDS vsi4DKs/73tCzEMhxioGgEq9OtBHVGztouRdhG3cEopgw68dq0Uc98gNpipHG1QE vw9OkRZk6yEb8ZNANRfWPYZDlf0b2zL8ttzDAu1oNMRPvymcqgge8UopoO51A0NR OcOHDHopaARfrkC6NjxW4ng/BKGcEiKTVnc4c2BsldBXQT4Te3yBw2QJFEg4TBFM GNcyUroK4QhNTs/cwmqDD2EEYWjPbcvIJgJ8HQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org