$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: +pkqBDcSIJauOHhuC/iQUrXCbfOiU5mYoeOXWd/Jx7I= Subject key identifier: 59:F7:EC:DA:CF:92:7B:DC:4A:08:57:EE:E9:54:CD:79:EB:D9:F1:1C Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 599D3FF5D44E3B8ACAD9BE545E570ECE3821A9D6 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa Signing time: Sat 20 Jul 2024 12:00:00 +0000 ROA not before: Sat 20 Jul 2024 11:55:00 +0000 ROA not after: Sat 19 Jul 2025 12:00:00 +0000 asID: 24534 IP address blocks: 58.147.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:9d:3f:f5:d4:4e:3b:8a:ca:d9:be:54:5e:57:0e:ce:38:21:a9:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jul 20 11:55:00 2024 GMT Not After : Jul 19 12:00:00 2025 GMT Subject: CN=59F7ECDACF927BDC4A0857EEE954CD79EBD9F11C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:93:9d:b9:0a:b1:85:62:e7:8a:d0:45:93:9d: c6:2a:16:28:36:cb:a8:4c:4e:e3:73:6b:7c:60:4c: a1:7b:99:43:82:32:60:d4:dd:53:1f:ac:ac:f3:76: af:51:76:47:94:40:f3:a1:fa:b7:7c:1d:16:16:7b: c1:0f:05:3a:a6:0e:6b:17:3f:7e:d0:83:e0:88:4e: 42:14:fd:7b:14:8f:69:21:9c:68:50:9a:2b:a5:e8: 83:06:88:96:42:e7:b1:43:96:7c:02:38:ae:fe:bb: 97:33:8d:5b:57:17:6d:a3:ff:d6:82:9e:cd:27:67: 8c:75:25:f2:15:17:ee:d2:17:2a:b1:6a:6e:03:86: e0:7f:a6:63:6d:0d:9e:54:b3:b2:43:15:7e:a3:6e: dd:3b:6d:88:01:2c:6a:f7:93:58:be:55:99:43:34: 6c:62:5e:c9:26:83:51:0e:31:f0:9f:49:97:22:3e: c1:b1:0f:b9:60:30:c2:4a:4b:36:11:9e:3a:18:92: 49:15:ff:e6:4f:30:8d:e2:3e:96:63:9a:de:7a:4d: 99:76:ec:bb:1c:1a:55:3e:ac:1d:09:dd:26:aa:3f: 54:3c:e3:e6:18:9b:88:d4:6e:bb:f5:97:69:21:ef: 41:f9:73:04:4d:21:7d:9b:24:59:63:c0:fc:dd:64: cd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F7:EC:DA:CF:92:7B:DC:4A:08:57:EE:E9:54:CD:79:EB:D9:F1:1C X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.187.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:2a:1a:5e:69:73:e0:08:6e:f8:4c:c7:b5:9a:25:b5:95:a1: bf:5a:42:c9:25:89:54:56:91:e1:0b:95:ff:a7:c1:65:aa:83: 55:d6:c1:78:74:96:f8:dc:c8:11:60:a5:47:6d:bf:88:5e:bf: 3d:ca:82:40:ee:88:03:65:60:99:e0:b1:8c:c7:04:39:7b:a0: cf:e7:85:ff:9a:c3:f9:3f:fd:00:92:62:3d:b0:e6:a4:d5:2f: 54:27:28:74:ed:b2:4a:af:aa:f7:bd:2a:d1:31:e0:fe:48:64: 63:66:57:6d:01:88:5a:c1:15:54:4d:35:57:8c:d4:3a:88:3a: b0:a0:69:ba:0a:6c:f5:7f:0c:c6:0b:22:a9:56:33:b0:40:64: 56:0b:c6:d5:00:aa:38:75:33:16:9b:5c:de:9b:32:6a:b6:85: 9d:b3:75:0e:73:b3:16:86:e5:45:76:4a:05:e0:29:8d:76:df: 25:b9:a3:e8:6e:45:1a:54:09:e5:28:9d:b7:9e:3c:03:34:c7: d4:61:19:ed:38:cf:f5:20:a4:19:3b:72:99:ef:b7:e2:a2:1e: f6:f2:a3:f0:54:ec:ea:c0:cd:69:7a:9e:d6:36:61:dc:e5:fe: e1:21:76:69:0b:ee:eb:0c:73:29:c3:34:53:aa:0d:ce:b7:43: 4c:03:1e:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWZ0/9dROO4rK2b5UXlcOzjghqdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDA3MjAxMTU1MDBaFw0yNTA3MTkxMjAwMDBaMDMxMTAvBgNV BAMTKDU5RjdFQ0RBQ0Y5MjdCREM0QTA4NTdFRUU5NTRDRDc5RUJEOUYxMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdk525CrGFYueK0EWTncYqFig2 y6hMTuNza3xgTKF7mUOCMmDU3VMfrKzzdq9RdkeUQPOh+rd8HRYWe8EPBTqmDmsX P37Qg+CITkIU/XsUj2khnGhQmiul6IMGiJZC57FDlnwCOK7+u5czjVtXF22j/9aC ns0nZ4x1JfIVF+7SFyqxam4DhuB/pmNtDZ5Us7JDFX6jbt07bYgBLGr3k1i+VZlD NGxiXskmg1EOMfCfSZciPsGxD7lgMMJKSzYRnjoYkkkV/+ZPMI3iPpZjmt56TZl2 7LscGlU+rB0J3SaqP1Q84+YYm4jUbrv1l2kh70H5cwRNIX2bJFljwPzdZM3xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWffs2s+Se9xKCFfu6VTNeevZ8RwwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuzANBgkqhkiG 9w0BAQsFAAOCAQEAXyoaXmlz4Ahu+EzHtZoltZWhv1pCySWJVFaR4QuV/6fBZaqD VdbBeHSW+NzIEWClR22/iF6/PcqCQO6IA2VgmeCxjMcEOXugz+eF/5rD+T/9AJJi PbDmpNUvVCcodO2ySq+q970q0THg/khkY2ZXbQGIWsEVVE01V4zUOog6sKBpugps 9X8MxgsiqVYzsEBkVgvG1QCqOHUzFptc3psyaraFnbN1DnOzFoblRXZKBeApjXbf Jbmj6G5FGlQJ5Sidt548AzTH1GEZ7TjP9SCkGTtyme+34qIe9vKj8FTs6sDNaXqe 1jZh3OX+4SF2aQvu6wxzKcM0U6oNzrdDTAMehA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org