$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: KCwggPDyjMOHP+o7do6DpKf6RZ3T2/Rfig0q6lMutLA= Subject key identifier: DD:5F:8C:D3:9A:69:F0:CE:67:23:CF:AF:42:B3:73:54:D9:DD:F2:3B Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 595ED77332BF699A52DAC01416980D79A5C52095 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa Signing time: Sat 20 Jul 2024 11:00:00 +0000 ROA not before: Sat 20 Jul 2024 10:55:00 +0000 ROA not after: Sat 19 Jul 2025 11:00:00 +0000 asID: 24534 IP address blocks: 58.147.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:5e:d7:73:32:bf:69:9a:52:da:c0:14:16:98:0d:79:a5:c5:20:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jul 20 10:55:00 2024 GMT Not After : Jul 19 11:00:00 2025 GMT Subject: CN=DD5F8CD39A69F0CE6723CFAF42B37354D9DDF23B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:15:5d:73:f5:8d:7c:7d:6b:e4:f2:9f:de:40: 35:f0:a0:7a:ec:fb:49:5c:41:04:a9:23:7e:60:24: b9:82:d7:3a:9f:9d:89:b9:dd:ae:de:31:76:a4:7a: 8a:fb:86:f3:94:81:29:88:8a:60:df:67:fc:33:38: 13:8f:ce:2a:80:56:78:23:66:ee:eb:7a:7a:8c:8e: 1c:1e:41:de:13:da:93:c4:85:9b:e7:87:5b:e4:41: 8a:09:7d:92:bf:17:c3:74:e9:93:06:e0:d2:50:bd: 6a:77:cf:be:75:2d:d3:1c:37:e5:fa:ee:4d:bc:a5: 53:3b:10:cd:91:ee:df:ab:cb:a2:54:5e:da:0c:9e: af:4b:2c:0a:44:bc:a6:4a:be:0c:85:db:32:d0:e7: 91:44:43:ed:4c:4e:2c:e8:c2:ac:06:92:1b:07:0d: e5:93:30:37:55:c0:8f:ff:bd:ea:0a:e4:36:37:1c: 9b:29:e4:cd:3a:53:f4:8b:1a:25:0e:ab:7e:47:bf: 29:1a:e8:b4:1f:e5:c5:aa:97:64:d7:43:f6:88:cd: d6:e7:4c:94:71:2b:ef:71:4b:d7:5b:36:6a:2c:8c: 6d:14:dc:e7:26:d3:a2:61:1a:e5:af:b2:ed:be:93: 31:47:0e:a0:04:86:33:11:03:63:76:3d:4f:06:91: c4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5F:8C:D3:9A:69:F0:CE:67:23:CF:AF:42:B3:73:54:D9:DD:F2:3B X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.189.0/24 Signature Algorithm: sha256WithRSAEncryption 22:1d:17:ee:8e:0c:76:ab:9f:99:4c:1a:d9:cf:67:91:76:ee: da:ee:99:8f:22:46:d5:f0:67:30:0f:4b:20:e1:38:3d:c2:67: e4:5f:a9:9d:94:1c:c7:d6:b3:28:45:2c:67:7b:ca:70:d6:a8: 9c:2c:6d:a8:f7:94:9d:45:14:7f:0f:77:67:86:e4:d7:df:26: 59:4c:ca:14:fc:74:2d:f7:59:ed:c1:1a:44:36:04:2a:5b:0c: 23:66:7f:d2:2f:14:b1:d7:9e:7e:bd:ff:27:11:ad:6b:7e:ee: ff:59:46:d0:3f:b4:59:d4:4c:e5:75:16:5f:d1:bb:75:55:98: c0:35:b4:90:be:cb:28:77:da:b1:10:43:99:a2:2a:76:53:a4: c1:23:68:27:01:d6:12:b3:b6:8d:d7:b5:e2:6c:79:04:c3:27: 0b:9a:ec:73:5c:5f:f4:09:fe:35:f8:91:7a:ba:2f:c0:41:ff: 01:0e:19:60:83:8c:b9:f9:af:70:26:c6:2f:b9:56:a1:07:a7: d6:0f:7f:04:06:31:3e:40:d4:d6:5f:3c:63:48:7a:0c:ba:32: ad:69:f7:44:31:f2:dc:fc:70:4a:fa:86:13:54:2f:b1:73:8d: 1b:2d:71:ac:39:3d:bf:07:4f:26:ae:97:e2:03:91:ff:b2:8e: 8a:90:54:7f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWV7XczK/aZpS2sAUFpgNeaXFIJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDA3MjAxMDU1MDBaFw0yNTA3MTkxMTAwMDBaMDMxMTAvBgNV BAMTKERENUY4Q0QzOUE2OUYwQ0U2NzIzQ0ZBRjQyQjM3MzU0RDlEREYyM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqFV1z9Y18fWvk8p/eQDXwoHrs +0lcQQSpI35gJLmC1zqfnYm53a7eMXakeor7hvOUgSmIimDfZ/wzOBOPziqAVngj Zu7renqMjhweQd4T2pPEhZvnh1vkQYoJfZK/F8N06ZMG4NJQvWp3z751LdMcN+X6 7k28pVM7EM2R7t+ry6JUXtoMnq9LLApEvKZKvgyF2zLQ55FEQ+1MTizowqwGkhsH DeWTMDdVwI//veoK5DY3HJsp5M06U/SLGiUOq35Hvyka6LQf5cWql2TXQ/aIzdbn TJRxK+9xS9dbNmosjG0U3Ocm06JhGuWvsu2+kzFHDqAEhjMRA2N2PU8GkcS/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3V+M05pp8M5nI8+vQrNzVNnd8jswHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvTANBgkqhkiG 9w0BAQsFAAOCAQEAIh0X7o4MdqufmUwa2c9nkXbu2u6ZjyJG1fBnMA9LIOE4PcJn 5F+pnZQcx9azKEUsZ3vKcNaonCxtqPeUnUUUfw93Z4bk198mWUzKFPx0LfdZ7cEa RDYEKlsMI2Z/0i8Usdeefr3/JxGta37u/1lG0D+0WdRM5XUWX9G7dVWYwDW0kL7L KHfasRBDmaIqdlOkwSNoJwHWErO2jde14mx5BMMnC5rsc1xf9An+NfiRerovwEH/ AQ4ZYIOMufmvcCbGL7lWoQen1g9/BAYxPkDU1l88Y0h6DLoyrWn3RDHy3PxwSvqG E1QvsXONGy1xrDk9vwdPJq6X4gOR/7KOipBUfw== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org