$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/34352e3131322e3132342e302f32322d3232203d3e203538333639.roa File: 34352e3131322e3132342e302f32322d3232203d3e203538333639.roa (raw, json) Hash identifier: U+hyaE3apYC5cvSYn+vvkGxvobmn1T2X03+7mI0XyGc= Subject key identifier: D4:8A:A6:19:F5:A6:55:50:CE:A3:D7:0F:8D:4D:21:26:EE:FB:D2:A3 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 2BADF911E47CED572C6D4F315BA2C760C7A6FFE3 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/34352e3131322e3132342e302f32322d3232203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:04:34 +0000 ROA not before: Mon 01 Jul 2024 00:59:34 +0000 ROA not after: Mon 30 Jun 2025 01:04:34 +0000 asID: 58369 IP address blocks: 45.112.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 03:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ad:f9:11:e4:7c:ed:57:2c:6d:4f:31:5b:a2:c7:60:c7:a6:ff:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 1 00:59:34 2024 GMT Not After : Jun 30 01:04:34 2025 GMT Subject: CN=D48AA619F5A65550CEA3D70F8D4D2126EEFBD2A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e5:49:d3:4f:05:92:57:18:05:c5:a3:90:78: 65:2d:95:36:b3:97:80:af:a2:e4:87:0d:d3:50:b7: 40:aa:0f:7f:a7:c9:a5:3f:fb:a0:f3:f2:a2:f9:de: c6:49:06:ef:c9:1b:16:82:d1:3d:02:27:3c:ad:92: 0b:23:84:73:eb:8e:dd:b1:74:25:d7:e0:81:4e:75: b1:7a:27:21:fc:cd:f4:ad:f4:fc:b0:c8:24:6e:5e: 1a:b9:0f:7b:c0:73:51:81:ee:96:be:f7:85:b8:16: b2:e1:9e:71:35:54:3a:36:89:4e:0c:9f:fb:bf:18: 9d:0f:2d:ee:44:48:66:b8:ba:b5:c6:d3:23:17:f1: 4f:0f:c2:eb:17:06:b5:f6:70:93:3e:85:85:dd:fe: 69:aa:a6:82:2d:41:a8:cc:7a:f1:b6:8b:1f:f1:b7: 78:a3:d2:f3:25:e8:69:00:00:ea:e4:37:8c:81:e4: e3:21:3a:c1:71:88:cf:d6:d0:8f:63:fd:2c:79:f3: 6d:b4:74:c3:3a:4f:ba:85:8d:39:e7:02:11:b2:ca: 33:d2:cf:85:c2:2b:e9:d1:4c:fa:fa:21:46:2f:81: 07:6c:61:93:13:62:db:05:9c:1b:a8:15:ae:d2:9e: 23:3f:ff:22:fb:a9:db:c9:3c:da:49:d8:3d:35:87: 36:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8A:A6:19:F5:A6:55:50:CE:A3:D7:0F:8D:4D:21:26:EE:FB:D2:A3 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/34352e3131322e3132342e302f32322d3232203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.112.124.0/22 Signature Algorithm: sha256WithRSAEncryption b3:e2:5b:af:f9:cf:e1:a0:7f:9e:51:c0:33:79:35:b7:0a:43: a1:46:f3:aa:03:7d:8a:04:9f:7d:19:ba:76:f5:4f:63:78:3d: 68:f1:75:df:3c:0a:c3:4b:9a:30:23:14:ad:4f:07:5d:4a:37: 55:1a:f9:03:3d:d2:d2:3d:71:81:3c:13:86:0f:fd:28:5c:13: 52:6c:80:7b:30:6f:ad:69:e3:90:10:45:d1:c1:00:4b:2b:6d: 66:7b:dc:b9:4a:c9:fc:62:12:12:ee:15:b4:a2:83:55:8f:31: cf:d4:82:a0:53:ca:a1:fd:9c:ec:93:8f:e4:48:62:c2:10:10: 05:de:3f:85:e6:5a:42:da:21:2d:e2:0c:ad:06:96:0a:a2:2f: 5b:db:49:23:3c:5c:84:b5:3d:62:f7:c3:3d:77:54:02:78:00: ec:ee:fe:68:96:e5:ef:00:f0:15:b4:b0:98:9f:89:e8:c4:38: f7:c1:12:c0:bb:ef:bf:71:e9:29:30:4f:0c:f1:4e:9b:1c:2c: 07:63:39:f8:5e:aa:d7:cf:ea:7f:2d:b3:13:24:a6:e3:e0:66: c0:31:d9:bf:81:f6:2c:2f:e0:25:bc:4a:c5:85:14:bd:54:a7: f6:b4:2e:a4:6c:79:6a:a5:1e:33:cd:b1:ad:c7:e4:a2:90:56: 0c:5a:1e:0d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK635EeR87VcsbU8xW6LHYMem/+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNDA3MDEwMDU5MzRaFw0yNTA2MzAwMTA0MzRaMDMxMTAvBgNV BAMTKEQ0OEFBNjE5RjVBNjU1NTBDRUEzRDcwRjhENEQyMTI2RUVGQkQyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ5UnTTwWSVxgFxaOQeGUtlTaz l4CvouSHDdNQt0CqD3+nyaU/+6Dz8qL53sZJBu/JGxaC0T0CJzytkgsjhHPrjt2x dCXX4IFOdbF6JyH8zfSt9PywyCRuXhq5D3vAc1GB7pa+94W4FrLhnnE1VDo2iU4M n/u/GJ0PLe5ESGa4urXG0yMX8U8PwusXBrX2cJM+hYXd/mmqpoItQajMevG2ix/x t3ij0vMl6GkAAOrkN4yB5OMhOsFxiM/W0I9j/Sx58220dMM6T7qFjTnnAhGyyjPS z4XCK+nRTPr6IUYvgQdsYZMTYtsFnBuoFa7SniM//yL7qdvJPNpJ2D01hzbnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1IqmGfWmVVDOo9cPjU0hJu770qMwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzM0MzUyZTMxMzEzMjJlMzEzMjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1wfDANBgkqhkiG 9w0BAQsFAAOCAQEAs+Jbr/nP4aB/nlHAM3k1twpDoUbzqgN9igSffRm6dvVPY3g9 aPF13zwKw0uaMCMUrU8HXUo3VRr5Az3S0j1xgTwThg/9KFwTUmyAezBvrWnjkBBF 0cEASyttZnvcuUrJ/GISEu4VtKKDVY8xz9SCoFPKof2c7JOP5EhiwhAQBd4/heZa QtohLeIMrQaWCqIvW9tJIzxchLU9YvfDPXdUAngA7O7+aJbl7wDwFbSwmJ+J6MQ4 98ESwLvvv3HpKTBPDPFOmxwsB2M5+F6q18/qfy2zEySm4+BmwDHZv4H2LC/gJbxK xYUUvVSn9rQupGx5aqUeM82xrcfkopBWDFoeDQ== -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:23 2025 by rpki-client