$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139312e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: Rflx89NQ3S/Ei3ZTUD7ICkgdTWu+XfG7H70uY/x+4wc= Subject key identifier: BB:FC:45:67:4E:E8:3F:47:BB:3B:8C:6E:CF:41:30:B6:FB:F1:98:35 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 7D3CF8247056B33C3A6082E235492ECFBCF6552B Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139312e302f32342d3234203d3e203234353334.roa Signing time: Sat 20 Jul 2024 12:00:01 +0000 ROA not before: Sat 20 Jul 2024 11:55:01 +0000 ROA not after: Sat 19 Jul 2025 12:00:01 +0000 asID: 24534 IP address blocks: 58.147.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:3c:f8:24:70:56:b3:3c:3a:60:82:e2:35:49:2e:cf:bc:f6:55:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jul 20 11:55:01 2024 GMT Not After : Jul 19 12:00:01 2025 GMT Subject: CN=BBFC45674EE83F47BB3B8C6ECF4130B6FBF19835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:a5:a1:e5:0b:f8:c5:39:74:09:81:b8:3b: 7a:81:22:0c:15:2a:c2:7d:18:2e:ab:21:b1:42:4d: 19:59:49:bd:34:15:ea:64:aa:3c:98:3c:97:38:58: 99:dd:b3:bf:bd:e6:3c:df:1c:2d:57:c4:96:d4:05: d7:7c:1a:19:c4:0f:7a:2b:2d:b7:4f:b9:09:bc:be: 83:25:cc:22:13:64:4b:27:11:87:91:35:21:1d:b9: da:66:bf:7a:a3:ef:b1:6c:c3:10:cc:c1:f0:ce:d0: 5a:cf:cf:6a:28:ab:e3:d1:bf:cf:42:74:cc:e1:38: d2:d1:2c:14:4c:e9:25:05:10:24:fd:83:0c:48:c6: b0:d5:32:62:ae:e7:02:b6:c5:87:33:2b:29:98:d6: 61:c3:b5:d2:41:06:23:a1:08:78:c5:18:80:a6:73: 75:fb:12:56:f7:09:55:f6:52:62:12:d1:12:47:f2: e3:da:80:c2:cf:9f:eb:f4:0b:df:da:7e:a4:10:e0: ad:2c:24:2e:05:ba:20:a0:ae:89:61:33:87:11:ad: 5f:27:24:32:ff:da:f2:64:5f:ae:df:f0:5f:88:88: 74:b6:ff:ef:a7:68:30:b6:25:87:35:65:3a:77:dc: 0e:ff:12:70:c8:fc:b4:21:49:56:2b:fd:f6:c3:e7: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FC:45:67:4E:E8:3F:47:BB:3B:8C:6E:CF:41:30:B6:FB:F1:98:35 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139312e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.191.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:4d:1a:57:64:98:8c:21:25:2d:33:a7:96:b1:d3:37:92:2f: 32:7c:03:0c:94:6d:8e:8a:79:7d:00:3b:06:9c:dd:8e:c1:b9: d4:f6:b3:72:55:bb:26:b0:0f:07:39:51:9e:bd:6a:13:14:57: 0b:79:e2:32:a2:c3:0f:e7:8c:29:f5:07:22:3b:bf:c1:21:e9: 15:19:4a:e1:84:d5:8b:dc:3a:7c:04:6c:cc:45:3d:d3:5b:18: ad:2b:0b:a6:00:31:07:1d:60:36:75:88:27:48:4d:34:c2:db: c6:99:26:f7:b8:8c:7b:6f:05:6b:87:9d:3d:6a:ff:ca:7d:88: fe:84:d0:57:1c:af:33:59:d5:a2:99:ea:4d:0a:d5:bf:f1:d5: 2d:36:d2:0e:10:57:eb:64:9a:e6:d1:53:22:c4:a8:78:90:f8: a4:57:a1:c4:62:dd:12:35:80:7b:37:95:95:5e:d2:8f:5b:2b: 6f:32:55:56:7c:c2:04:35:e4:38:7f:0e:58:be:96:94:00:8c: a7:46:3e:af:98:57:23:67:01:a9:ea:83:8f:44:05:6f:f1:ea: 2c:d6:cc:22:71:37:37:7f:1d:e5:fc:ab:a0:17:0b:58:39:f2: 49:b4:dd:ca:51:d4:14:ee:98:37:0e:8b:4e:d9:52:31:1e:e4: 90:a6:cb:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfTz4JHBWszw6YILiNUkuz7z2VSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDA3MjAxMTU1MDFaFw0yNTA3MTkxMjAwMDFaMDMxMTAvBgNV BAMTKEJCRkM0NTY3NEVFODNGNDdCQjNCOEM2RUNGNDEzMEI2RkJGMTk4MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVBqWh5Qv4xTl0CYG4O3qBIgwV KsJ9GC6rIbFCTRlZSb00FepkqjyYPJc4WJnds7+95jzfHC1XxJbUBdd8GhnED3or LbdPuQm8voMlzCITZEsnEYeRNSEdudpmv3qj77FswxDMwfDO0FrPz2ooq+PRv89C dMzhONLRLBRM6SUFECT9gwxIxrDVMmKu5wK2xYczKymY1mHDtdJBBiOhCHjFGICm c3X7Elb3CVX2UmIS0RJH8uPagMLPn+v0C9/afqQQ4K0sJC4FuiCgrolhM4cRrV8n JDL/2vJkX67f8F+IiHS2/++naDC2JYc1ZTp33A7/EnDI/LQhSVYr/fbD5wL3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu/xFZ07oP0e7O4xuz0EwtvvxmDUwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvzANBgkqhkiG 9w0BAQsFAAOCAQEAK00aV2SYjCElLTOnlrHTN5IvMnwDDJRtjop5fQA7BpzdjsG5 1PazclW7JrAPBzlRnr1qExRXC3niMqLDD+eMKfUHIju/wSHpFRlK4YTVi9w6fARs zEU901sYrSsLpgAxBx1gNnWIJ0hNNMLbxpkm97iMe28Fa4edPWr/yn2I/oTQVxyv M1nVopnqTQrVv/HVLTbSDhBX62Sa5tFTIsSoeJD4pFehxGLdEjWAezeVlV7Sj1sr bzJVVnzCBDXkOH8OWL6WlACMp0Y+r5hXI2cBqeqDj0QFb/HqLNbMInE3N38d5fyr oBcLWDnySbTdylHUFO6YNw6LTtlSMR7kkKbLHQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org