$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139312e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: te5Az+576wy5jnr1x38yaS/9bfbSsmEJFfYmMW2X+pY= Subject key identifier: F9:8C:BD:F0:38:DB:77:52:C7:F9:30:81:36:28:80:D2:E5:40:4C:47 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 419BBB71B34C89807DF4F8B5FAA5325813330147 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139312e302f32342d3234203d3e203234353334.roa Signing time: Sat 19 Aug 2023 11:00:01 +0000 ROA not before: Sat 19 Aug 2023 10:55:01 +0000 ROA not after: Sat 17 Aug 2024 11:00:01 +0000 asID: 24534 IP address blocks: 58.147.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 23:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:9b:bb:71:b3:4c:89:80:7d:f4:f8:b5:fa:a5:32:58:13:33:01:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Aug 19 10:55:01 2023 GMT Not After : Aug 17 11:00:01 2024 GMT Subject: CN=F98CBDF038DB7752C7F93081362880D2E5404C47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d7:86:10:70:1a:ef:e3:ca:8e:48:0b:0f:83: b7:b1:42:96:de:97:a0:ef:a2:82:87:f8:4a:19:31: 34:36:66:5a:95:fe:23:5d:73:68:40:f0:e2:06:66: c3:65:a9:fe:50:b8:6f:3c:d2:75:6b:6d:2c:8d:fd: 0b:2c:46:62:60:a9:95:15:ab:fe:7c:d0:e2:f0:63: c5:ca:cb:19:7f:e3:2c:14:30:15:72:0a:e2:51:d2: 24:3c:50:e6:02:95:79:ff:71:b0:c8:8d:d6:ae:ad: 76:55:f0:30:29:0f:51:7a:2a:74:6e:42:b8:68:71: 06:91:53:a5:7e:f0:5a:f9:94:37:17:2e:18:0e:09: 1e:6e:ee:00:74:e5:d2:40:ad:2c:bc:09:e5:ca:0d: 95:2e:0e:70:04:a6:6b:7d:e0:b4:4c:a0:6c:1f:2e: 68:2c:88:50:2f:98:85:03:e7:9a:aa:1c:82:cb:54: fd:9c:b1:22:1a:df:18:dd:ff:e6:11:00:06:3f:63: 97:be:ce:e8:58:c5:8f:3e:2c:55:cd:46:7d:fc:0f: bc:32:26:01:d4:49:3b:be:98:a8:50:b7:55:3e:4f: 97:4a:9b:e0:a0:6d:c9:e3:40:07:16:38:c4:9f:40: 67:19:c5:70:b6:97:0e:2d:04:4d:9d:ee:0d:ff:ea: bc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8C:BD:F0:38:DB:77:52:C7:F9:30:81:36:28:80:D2:E5:40:4C:47 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139312e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.191.0/24 Signature Algorithm: sha256WithRSAEncryption 74:1b:55:10:da:2f:cb:dc:34:e8:1f:8e:ee:27:73:08:f9:33: 67:ed:4d:f9:0f:29:a9:84:af:a6:4a:b9:40:bb:20:b7:45:43: 48:9a:e8:91:e3:bc:55:25:fc:c9:c8:a6:3e:5f:02:04:57:11: d9:d7:0c:b7:af:ed:d8:fc:1b:93:d8:8b:ba:49:bf:37:13:26: 8d:72:a5:0a:af:7d:dd:ec:81:4b:11:b0:74:a5:df:fe:95:dc: 94:34:ab:18:6e:6e:b5:4c:57:9d:23:20:9e:d4:ab:3c:3e:64: d7:cd:f8:bd:8d:92:32:58:1b:1d:b8:14:27:f9:db:e1:ac:01: 01:6c:0a:09:20:d3:11:8c:33:98:c6:e5:46:6e:46:4a:c5:13: f1:5c:46:71:ef:da:da:8b:ce:a9:32:a4:d5:c1:5a:14:7b:5b: 99:4e:f8:4d:22:6b:ec:e9:e7:53:0f:5e:21:9a:88:f3:ca:62: 79:82:ae:9d:ae:94:c6:99:9f:7c:2a:0b:4a:93:cb:9c:72:af: 39:8d:f7:9e:97:47:55:fb:c2:e7:63:ae:9b:85:3a:d3:a2:73: 26:e3:1e:4a:5c:1f:0e:57:5a:9d:65:f7:50:9b:74:c9:0f:54: 9b:5d:65:49:92:3e:c5:b8:10:e4:21:c0:40:2d:72:e2:68:56: ff:6b:48:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQZu7cbNMiYB99Pi1+qUyWBMzAUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yMzA4MTkxMDU1MDFaFw0yNDA4MTcxMTAwMDFaMDMxMTAvBgNV BAMTKEY5OENCREYwMzhEQjc3NTJDN0Y5MzA4MTM2Mjg4MEQyRTU0MDRDNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo14YQcBrv48qOSAsPg7exQpbe l6DvooKH+EoZMTQ2ZlqV/iNdc2hA8OIGZsNlqf5QuG880nVrbSyN/QssRmJgqZUV q/580OLwY8XKyxl/4ywUMBVyCuJR0iQ8UOYClXn/cbDIjdaurXZV8DApD1F6KnRu QrhocQaRU6V+8Fr5lDcXLhgOCR5u7gB05dJArSy8CeXKDZUuDnAEpmt94LRMoGwf LmgsiFAvmIUD55qqHILLVP2csSIa3xjd/+YRAAY/Y5e+zuhYxY8+LFXNRn38D7wy JgHUSTu+mKhQt1U+T5dKm+CgbcnjQAcWOMSfQGcZxXC2lw4tBE2d7g3/6rzdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+Yy98Djbd1LH+TCBNiiA0uVATEcwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvzANBgkqhkiG 9w0BAQsFAAOCAQEAdBtVENovy9w06B+O7idzCPkzZ+1N+Q8pqYSvpkq5QLsgt0VD SJrokeO8VSX8ycimPl8CBFcR2dcMt6/t2Pwbk9iLukm/NxMmjXKlCq993eyBSxGw dKXf/pXclDSrGG5utUxXnSMgntSrPD5k1834vY2SMlgbHbgUJ/nb4awBAWwKCSDT EYwzmMblRm5GSsUT8VxGce/a2ovOqTKk1cFaFHtbmU74TSJr7OnnUw9eIZqI88pi eYKuna6UxpmffCoLSpPLnHKvOY33npdHVfvC52Oum4U606JzJuMeSlwfDldanWX3 UJt0yQ9Um11lSZI+xbgQ5CHAQC1y4mhW/2tISQ== -----END CERTIFICATE-----Generated at Fri Jun 21 02:20:23 2024 by rpki-client on console-fra.rpki-client.org