$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139302e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: VCpqet2tltq6OwAAWmXLVEpkSYf/oR/zTCEWMlMzr2Y= Subject key identifier: C7:4C:94:41:FB:52:50:88:6B:9E:5D:6D:81:BE:41:CD:9F:F4:68:EF Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 30FBAE2BCFDA542A07D246307932F7C3C7BF6939 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139302e302f32342d3234203d3e203234353334.roa Signing time: Sat 20 Jul 2024 12:00:00 +0000 ROA not before: Sat 20 Jul 2024 11:55:00 +0000 ROA not after: Sat 19 Jul 2025 12:00:00 +0000 asID: 24534 IP address blocks: 58.147.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fb:ae:2b:cf:da:54:2a:07:d2:46:30:79:32:f7:c3:c7:bf:69:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jul 20 11:55:00 2024 GMT Not After : Jul 19 12:00:00 2025 GMT Subject: CN=C74C9441FB5250886B9E5D6D81BE41CD9FF468EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:33:c9:11:f0:33:47:ee:a9:49:fe:2e:3f:be: 53:79:6b:2c:45:d3:49:9f:0e:03:aa:c8:c3:32:66: d0:34:cf:87:08:30:70:36:10:51:3c:fd:7a:21:40: 47:e1:60:f9:73:8a:c0:34:16:9a:73:ab:c3:b8:2c: 5b:a9:7e:6d:59:f2:7e:b3:61:29:26:82:97:8c:48: fd:ad:81:d5:41:d8:a4:da:76:ac:35:66:74:f5:d7: 90:93:0c:38:f0:fc:c8:d0:90:05:d7:11:fd:09:57: e5:93:e0:a4:fb:57:b7:6e:5d:76:7a:c5:be:8f:36: d7:ee:cd:3a:82:17:7c:19:30:f3:bc:9d:bc:89:29: d4:c1:6d:34:27:3e:6e:86:58:bd:8a:7c:bf:40:cf: a7:a5:7d:bf:c6:cd:3b:95:eb:0c:09:03:7c:2b:5c: 4b:12:92:2e:da:df:5f:6e:d0:52:72:ad:72:6d:fc: a1:3e:60:83:68:81:a5:9c:77:4f:0e:60:3f:23:0e: 2d:41:96:9c:de:08:0a:7d:29:59:d5:a5:57:18:ea: 5c:c1:c4:1a:22:86:10:74:18:de:5e:2e:0c:51:03: c4:2d:77:cf:ec:42:a0:77:4b:eb:38:98:38:e6:0d: 06:8f:0f:25:5b:06:1c:d1:22:cb:a2:13:27:f8:1f: 5b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4C:94:41:FB:52:50:88:6B:9E:5D:6D:81:BE:41:CD:9F:F4:68:EF X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139302e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.190.0/24 Signature Algorithm: sha256WithRSAEncryption 21:48:7f:97:81:76:ea:cc:4d:8a:5c:64:d8:8b:e5:f0:d8:37: b2:33:2d:ab:4a:3b:47:14:0b:85:b7:53:2c:f5:52:86:f9:70: 26:8f:7e:1b:a8:12:e2:2a:ed:13:09:ee:32:57:80:f2:f5:cf: 30:5b:c1:03:96:a5:5d:99:08:64:65:68:cd:18:2c:53:c1:c2: 6d:e0:41:ca:ee:6d:1b:0e:2f:d0:f9:1d:40:83:8b:23:ae:68: e8:76:4f:83:c2:b9:c5:33:6e:6c:5a:70:b0:8f:55:1f:f8:9f: f2:19:87:90:c9:95:25:3d:6c:e2:e3:7b:e4:d7:a0:c4:a7:88: 56:86:e7:02:02:f7:e5:28:c4:07:cf:20:49:35:84:2f:f7:cd: 89:4e:75:c1:71:42:5a:c5:ec:4f:08:58:eb:8e:25:5f:5d:bc: d3:3b:54:40:45:e4:28:6e:0e:3f:4e:48:51:ed:cb:75:69:9e: 57:7f:36:9a:d5:67:08:50:7c:13:db:e7:e2:bf:7a:fd:3c:bb: 66:97:fc:25:6b:c4:74:fd:ae:63:db:ad:05:ce:6a:07:8b:7a: 60:c5:48:ee:f7:f3:6d:65:33:bd:bb:db:99:12:c8:53:b3:f6: 34:13:fd:69:5f:1b:d7:fe:d8:3e:c9:7d:40:9f:8d:ab:6b:0e: 36:e3:d7:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMPuuK8/aVCoH0kYweTL3w8e/aTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDA3MjAxMTU1MDBaFw0yNTA3MTkxMjAwMDBaMDMxMTAvBgNV BAMTKEM3NEM5NDQxRkI1MjUwODg2QjlFNUQ2RDgxQkU0MUNEOUZGNDY4RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKM8kR8DNH7qlJ/i4/vlN5ayxF 00mfDgOqyMMyZtA0z4cIMHA2EFE8/XohQEfhYPlzisA0Fppzq8O4LFupfm1Z8n6z YSkmgpeMSP2tgdVB2KTadqw1ZnT115CTDDjw/MjQkAXXEf0JV+WT4KT7V7duXXZ6 xb6PNtfuzTqCF3wZMPO8nbyJKdTBbTQnPm6GWL2KfL9Az6elfb/GzTuV6wwJA3wr XEsSki7a319u0FJyrXJt/KE+YINogaWcd08OYD8jDi1BlpzeCAp9KVnVpVcY6lzB xBoihhB0GN5eLgxRA8Qtd8/sQqB3S+s4mDjmDQaPDyVbBhzRIsuiEyf4H1ufAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUx0yUQftSUIhrnl1tgb5BzZ/0aO8wHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvjANBgkqhkiG 9w0BAQsFAAOCAQEAIUh/l4F26sxNilxk2Ivl8Ng3sjMtq0o7RxQLhbdTLPVShvlw Jo9+G6gS4irtEwnuMleA8vXPMFvBA5alXZkIZGVozRgsU8HCbeBByu5tGw4v0Pkd QIOLI65o6HZPg8K5xTNubFpwsI9VH/if8hmHkMmVJT1s4uN75NegxKeIVobnAgL3 5SjEB88gSTWEL/fNiU51wXFCWsXsTwhY644lX1280ztUQEXkKG4OP05IUe3LdWme V382mtVnCFB8E9vn4r96/Ty7Zpf8JWvEdP2uY9utBc5qB4t6YMVI7vfzbWUzvbvb mRLIU7P2NBP9aV8b1/7YPsl9QJ+Nq2sONuPXpQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org