$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: ow/MHglTYYxcubWPnFZENeVfL04rGyVHKNvzXcSHe4A= Subject key identifier: A3:E8:5C:95:77:E0:86:03:81:C6:5A:E7:1F:42:11:21:1B:3E:E2:A5 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 23CEB464625F7991182F5DF048D354064A95742B Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa Signing time: Sat 19 Aug 2023 11:00:00 +0000 ROA not before: Sat 19 Aug 2023 10:55:00 +0000 ROA not after: Sat 17 Aug 2024 11:00:00 +0000 asID: 24534 IP address blocks: 58.147.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 23:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ce:b4:64:62:5f:79:91:18:2f:5d:f0:48:d3:54:06:4a:95:74:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Aug 19 10:55:00 2023 GMT Not After : Aug 17 11:00:00 2024 GMT Subject: CN=A3E85C9577E0860381C65AE71F4211211B3EE2A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:a5:51:c8:ae:de:38:f6:35:8d:41:9b:3b: 23:28:ac:57:12:88:29:71:d0:6f:36:f0:85:58:b1: ff:77:b7:3e:01:60:4b:09:a1:9a:8e:76:ae:90:d0: 52:05:ed:e9:af:91:2d:6b:85:38:30:1a:a3:97:e0: 15:57:65:34:78:b0:da:4b:a9:09:34:3d:50:86:7e: d6:92:db:54:1a:2d:3c:07:3d:53:d5:1a:24:8f:38: 7e:3d:cb:90:fe:93:2a:1a:71:a3:93:85:3d:d5:35: cf:9b:e9:b2:7f:0e:84:de:30:22:a9:e0:75:47:05: f9:dd:7c:81:28:06:c3:15:a4:39:23:4e:3d:d8:da: 5c:c4:ff:c1:5b:28:c2:36:ee:03:60:ca:b8:a3:bd: 53:b2:11:56:bf:dd:e7:62:d1:15:7e:f4:47:01:0c: f6:b1:dd:f9:ec:0c:94:84:dd:cb:b1:b2:3f:64:42: 28:b9:32:87:d3:11:4e:aa:54:c8:43:f6:43:06:cb: f0:93:5d:53:45:90:e0:e3:de:7a:01:d5:b9:a2:28: ea:05:0e:c4:a6:c5:5a:52:a5:cf:b2:a8:80:93:62: ea:68:02:32:bf:f2:c3:c7:e8:f6:70:40:30:ec:62: 10:34:99:85:e2:19:f6:b1:8d:88:f2:da:83:7a:3c: 96:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E8:5C:95:77:E0:86:03:81:C6:5A:E7:1F:42:11:21:1B:3E:E2:A5 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.189.0/24 Signature Algorithm: sha256WithRSAEncryption 56:62:e6:da:40:94:c3:e3:5d:57:01:f4:4b:2e:f6:01:54:f8: 2f:06:df:59:a5:ae:1f:bb:78:88:07:da:10:7f:f2:08:ea:cc: 5b:56:ec:24:2b:fa:f8:ac:a7:6d:ed:e1:c8:f9:6a:5d:8e:47: 27:8d:06:db:17:4e:ac:87:bb:1d:31:52:b7:b8:2f:dc:c1:4f: 77:47:dc:b9:4c:3c:fb:a5:4f:e4:22:38:1e:6e:b3:2c:1b:7d: 4e:a7:01:0d:38:95:ce:9d:5e:96:62:d7:7a:2c:bc:96:f5:be: 88:3a:ef:60:1a:6e:0a:e0:64:51:fa:94:88:28:87:3e:f8:22: 1c:a9:0b:6a:5f:5e:f2:05:8f:c9:e6:1d:de:8e:92:48:e6:ff: 2b:6e:ba:7a:39:bb:31:53:5e:20:a3:eb:ac:7a:45:d1:c3:5a: 9f:12:4e:dd:6a:6a:d1:54:3a:30:d8:2f:2c:33:13:59:d3:d7: 3b:40:5c:91:8f:52:b4:c6:fa:69:a1:7d:06:ee:29:e3:05:7a: 73:86:b7:53:d2:4e:f6:62:f3:2d:3f:67:df:8d:a0:14:60:91: 13:0b:1d:bf:cd:3b:58:cb:12:83:02:9f:06:43:0d:58:44:82: 44:46:1b:c9:0c:8d:46:59:4d:c9:04:0e:32:26:b2:b5:73:82: aa:96:71:cb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI860ZGJfeZEYL13wSNNUBkqVdCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yMzA4MTkxMDU1MDBaFw0yNDA4MTcxMTAwMDBaMDMxMTAvBgNV BAMTKEEzRTg1Qzk1NzdFMDg2MDM4MUM2NUFFNzFGNDIxMTIxMUIzRUUyQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HqVRyK7eOPY1jUGbOyMorFcS iClx0G828IVYsf93tz4BYEsJoZqOdq6Q0FIF7emvkS1rhTgwGqOX4BVXZTR4sNpL qQk0PVCGftaS21QaLTwHPVPVGiSPOH49y5D+kyoacaOThT3VNc+b6bJ/DoTeMCKp 4HVHBfndfIEoBsMVpDkjTj3Y2lzE/8FbKMI27gNgyrijvVOyEVa/3edi0RV+9EcB DPax3fnsDJSE3cuxsj9kQii5MofTEU6qVMhD9kMGy/CTXVNFkODj3noB1bmiKOoF DsSmxVpSpc+yqICTYupoAjK/8sPH6PZwQDDsYhA0mYXiGfaxjYjy2oN6PJY5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUo+hclXfghgOBxlrnH0IRIRs+4qUwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvTANBgkqhkiG 9w0BAQsFAAOCAQEAVmLm2kCUw+NdVwH0Sy72AVT4LwbfWaWuH7t4iAfaEH/yCOrM W1bsJCv6+Kynbe3hyPlqXY5HJ40G2xdOrIe7HTFSt7gv3MFPd0fcuUw8+6VP5CI4 Hm6zLBt9TqcBDTiVzp1elmLXeiy8lvW+iDrvYBpuCuBkUfqUiCiHPvgiHKkLal9e 8gWPyeYd3o6SSOb/K266ejm7MVNeIKPrrHpF0cNanxJO3Wpq0VQ6MNgvLDMTWdPX O0BckY9StMb6aaF9Bu4p4wV6c4a3U9JO9mLzLT9n342gFGCREwsdv807WMsSgwKf BkMNWESCREYbyQyNRllNyQQOMiaytXOCqpZxyw== -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:40 2024 by rpki-client on console-ams.rpki-client.org