$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: 5a6ESL8o8N2uYRfQYUOcYnEwVeqgWPz/ERUMQRHJcpQ= Subject key identifier: 30:FC:58:3A:18:03:88:0B:30:D5:2A:84:AA:5B:94:62:58:48:1A:83 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 714197ED5BF632DFDC09F724BAE36A4506ED8FAB Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa Signing time: Sat 19 Aug 2023 11:00:00 +0000 ROA not before: Sat 19 Aug 2023 10:55:00 +0000 ROA not after: Sat 17 Aug 2024 11:00:00 +0000 asID: 24534 IP address blocks: 58.147.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 23:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:41:97:ed:5b:f6:32:df:dc:09:f7:24:ba:e3:6a:45:06:ed:8f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Aug 19 10:55:00 2023 GMT Not After : Aug 17 11:00:00 2024 GMT Subject: CN=30FC583A1803880B30D52A84AA5B946258481A83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:e0:0d:a2:b1:44:99:d2:45:c1:98:ab:14: e0:b9:3f:5b:d1:4c:21:4f:99:27:e8:0c:58:dd:97: c5:d0:00:5e:22:8f:e7:c6:78:e5:a6:c4:50:97:e5: ea:85:67:f3:b7:f5:23:04:30:58:fc:84:5d:bc:98: 16:a3:ea:83:d2:cf:62:8c:64:3b:46:21:34:d7:00: 15:8d:f7:cb:17:59:85:bf:8a:ef:3b:31:26:be:31: 57:78:fd:28:4d:ac:20:eb:f3:aa:ba:c4:af:4b:20: 96:c8:a2:5a:27:08:4c:2e:c8:60:aa:0a:bb:97:73: 92:ac:79:47:87:f2:85:19:19:4a:1b:20:1f:01:d0: b5:2c:00:04:2d:97:1e:1e:0b:bc:96:99:c3:15:63: 68:13:43:61:9b:9d:51:5c:c3:6c:f8:57:54:d5:55: 65:99:e4:c0:b6:48:db:8c:35:6d:cd:dd:6c:62:95: 5c:b9:01:9f:6e:2f:af:e9:af:ec:f1:46:98:f9:ee: a3:aa:3a:e6:8d:84:dc:96:7d:cb:ee:94:9a:c0:28: a1:2c:d4:23:0d:da:d8:5e:b3:7f:05:80:c2:9a:7d: ab:82:ec:0f:6b:36:94:92:89:b5:b7:74:e9:b6:b7: ac:0f:5d:e7:f5:26:5c:05:17:78:76:8d:a9:9e:e0: 4c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FC:58:3A:18:03:88:0B:30:D5:2A:84:AA:5B:94:62:58:48:1A:83 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.187.0/24 Signature Algorithm: sha256WithRSAEncryption 92:d6:0f:56:2c:36:7f:90:f8:43:7b:a1:1f:7d:92:46:e3:bc: 94:27:82:2e:0e:e6:0e:90:16:f3:f5:52:4d:8a:e4:d7:51:12: 0f:88:0f:1f:6f:27:90:6a:08:df:cf:a8:81:77:ff:dc:b4:c0: fc:b7:a8:12:96:23:a8:17:21:14:18:13:f1:94:19:78:f1:bb: d8:a3:4a:c7:ef:25:15:c0:20:22:eb:93:a9:f4:a2:a7:01:4b: d1:56:a0:c5:4e:c6:fb:21:96:d6:d1:1a:d8:aa:29:b5:fb:95: 1d:c1:4e:ec:f0:81:75:e5:77:0f:2e:9a:c0:e9:cd:49:13:d9: 04:cc:8c:ad:09:5a:ea:0d:de:7d:7f:ab:2f:f3:ae:7a:3f:74: 14:69:39:c5:b0:f6:24:f3:95:d4:1c:26:97:2c:6e:88:d6:a5: 95:f4:2b:77:27:4e:00:c2:7a:dc:4f:83:d3:07:f7:68:d2:62: b4:0f:fb:d8:63:5e:85:7d:a0:60:d9:cd:10:99:92:dc:95:60: a2:52:37:cb:73:df:de:bb:a1:47:c3:09:72:a9:fc:09:b7:d0: 01:a9:dd:de:e2:cc:7c:a1:9e:19:46:17:aa:17:ad:18:a7:d3: f2:eb:a7:25:34:47:e5:14:3a:ea:7d:35:ea:0d:e9:fe:54:f6: 41:ac:1b:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcUGX7Vv2Mt/cCfckuuNqRQbtj6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yMzA4MTkxMDU1MDBaFw0yNDA4MTcxMTAwMDBaMDMxMTAvBgNV BAMTKDMwRkM1ODNBMTgwMzg4MEIzMEQ1MkE4NEFBNUI5NDYyNTg0ODFBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEl+ANorFEmdJFwZirFOC5P1vR TCFPmSfoDFjdl8XQAF4ij+fGeOWmxFCX5eqFZ/O39SMEMFj8hF28mBaj6oPSz2KM ZDtGITTXABWN98sXWYW/iu87MSa+MVd4/ShNrCDr86q6xK9LIJbIolonCEwuyGCq CruXc5KseUeH8oUZGUobIB8B0LUsAAQtlx4eC7yWmcMVY2gTQ2GbnVFcw2z4V1TV VWWZ5MC2SNuMNW3N3WxilVy5AZ9uL6/pr+zxRpj57qOqOuaNhNyWfcvulJrAKKEs 1CMN2thes38FgMKafauC7A9rNpSSibW3dOm2t6wPXef1JlwFF3h2jame4ExPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMPxYOhgDiAsw1SqEqluUYlhIGoMwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuzANBgkqhkiG 9w0BAQsFAAOCAQEAktYPViw2f5D4Q3uhH32SRuO8lCeCLg7mDpAW8/VSTYrk11ES D4gPH28nkGoI38+ogXf/3LTA/LeoEpYjqBchFBgT8ZQZePG72KNKx+8lFcAgIuuT qfSipwFL0VagxU7G+yGW1tEa2KoptfuVHcFO7PCBdeV3Dy6awOnNSRPZBMyMrQla 6g3efX+rL/Ouej90FGk5xbD2JPOV1BwmlyxuiNallfQrdydOAMJ63E+D0wf3aNJi tA/72GNehX2gYNnNEJmS3JVgolI3y3Pf3ruhR8MJcqn8CbfQAand3uLMfKGeGUYX qhetGKfT8uunJTRH5RQ66n016g3p/lT2Qawb1w== -----END CERTIFICATE-----Generated at Fri May 31 23:52:40 2024 by rpki-client on console-fra.rpki-client.org