$ rpki-client -vvf repo-rpki.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/34352e3131372e3133322e302f32332d3234203d3e20313532303038.roa File: 34352e3131372e3133322e302f32332d3234203d3e20313532303038.roa (raw, json) Hash identifier: 5FFzhuEH4sCF54XVtFSTU94fa/L5mjleJyrEVu3hEAE= Subject key identifier: 6C:38:93:F5:FD:FA:B8:49:26:2C:2E:AE:93:E8:1F:79:E3:00:95:F4 Certificate issuer: /CN=DD8ADB0CD599281204D387EB652787650920B6C5 Certificate serial: 24F469D39AF24FDA0582529C5EAEE90E67CB4B45 Authority key identifier: DD:8A:DB:0C:D5:99:28:12:04:D3:87:EB:65:27:87:65:09:20:B6:C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD8ADB0CD599281204D387EB652787650920B6C5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/34352e3131372e3133322e302f32332d3234203d3e20313532303038.roa Signing time: Sat 02 Nov 2024 15:00:02 +0000 ROA not before: Sat 02 Nov 2024 14:55:02 +0000 ROA not after: Sat 01 Nov 2025 15:00:02 +0000 asID: 152008 IP address blocks: 45.117.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/DD8ADB0CD599281204D387EB652787650920B6C5.crl rsync://repo-rpki.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/DD8ADB0CD599281204D387EB652787650920B6C5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD8ADB0CD599281204D387EB652787650920B6C5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f4:69:d3:9a:f2:4f:da:05:82:52:9c:5e:ae:e9:0e:67:cb:4b:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD8ADB0CD599281204D387EB652787650920B6C5 Validity Not Before: Nov 2 14:55:02 2024 GMT Not After : Nov 1 15:00:02 2025 GMT Subject: CN=6C3893F5FDFAB849262C2EAE93E81F79E30095F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b7:43:04:e1:b1:b4:4c:bb:23:27:57:e0:51: ca:29:02:22:4a:be:11:61:8a:32:79:57:9a:92:1f: 6b:5a:35:50:ee:d0:58:0e:76:39:b9:83:17:5c:87: f5:03:d7:a6:47:03:43:8f:ad:8b:2a:ea:79:c8:d8: fe:9a:72:64:1f:59:1e:3d:85:b4:9f:dd:d6:c2:d8: 49:f9:b9:06:0d:1e:cd:fd:7d:f1:e4:30:d9:48:e6: 65:c7:d0:cc:d6:42:1a:2e:37:87:f5:ab:37:34:d2: 5d:bd:84:c9:40:6f:e1:ad:5f:44:46:95:3d:76:2e: 8f:b1:ef:e1:a3:3c:58:b0:fc:23:05:2d:5f:e5:0b: 03:6f:9f:25:7d:f8:28:36:e6:83:7a:48:6a:37:a6: fb:70:78:8a:1e:c2:36:bc:31:db:74:05:50:38:5d: f8:26:29:d7:55:b8:72:fa:cf:53:6b:a4:93:3f:d9: c3:a4:d5:26:de:9c:83:ba:54:9d:8d:f2:f6:fe:7a: 26:7b:4d:1b:78:ac:5a:d6:98:95:a2:fe:6c:56:95: e2:3c:44:05:7c:10:71:2d:ab:e4:74:28:e2:6a:39: 77:5a:cd:1f:72:da:00:fc:37:c4:79:80:18:46:95: b6:8b:ee:28:46:93:28:08:03:e1:c2:c8:d7:2d:17: cc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:38:93:F5:FD:FA:B8:49:26:2C:2E:AE:93:E8:1F:79:E3:00:95:F4 X509v3 Authority Key Identifier: keyid:DD:8A:DB:0C:D5:99:28:12:04:D3:87:EB:65:27:87:65:09:20:B6:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/DD8ADB0CD599281204D387EB652787650920B6C5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD8ADB0CD599281204D387EB652787650920B6C5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/34352e3131372e3133322e302f32332d3234203d3e20313532303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.117.132.0/23 Signature Algorithm: sha256WithRSAEncryption 58:12:fd:ba:59:4e:58:97:a1:f0:18:7b:58:2c:7f:5f:20:6a: a9:57:e8:08:be:15:f9:b4:62:86:06:f4:88:e9:d9:45:56:b2: 08:ad:90:f6:48:4c:75:2c:00:9c:9c:a2:a4:36:bf:ba:15:15: f1:b1:d2:cc:dd:fc:b8:ef:d6:75:0e:bd:9b:dd:ab:e9:a6:52: 7a:55:06:cd:6f:e3:0f:fd:2c:0f:72:3f:1e:33:06:73:88:4c: ca:27:e7:0c:cc:d2:7d:7a:e6:9d:20:72:c9:ff:40:84:6a:b4: 49:62:ce:8e:3f:13:de:71:d5:fc:c2:19:ec:d7:9a:c5:77:cb: 0c:b8:a4:a2:4f:2f:f2:8e:60:01:55:d8:3c:16:89:e3:ef:90: 64:b7:92:af:22:93:3e:60:33:63:65:e5:2e:9d:c7:f2:b7:9b: ef:41:ae:33:43:5b:d3:9d:b2:8f:c6:e7:0d:9a:9b:d1:ae:2c: d0:b9:96:8b:c6:f8:1e:29:86:bf:67:a1:50:93:78:8c:6c:a0: 8c:04:21:11:0a:d2:0f:a9:0e:15:18:ad:20:c9:ee:09:7e:ed: 61:8b:78:84:fd:25:02:1b:92:17:b9:fb:ac:72:72:cd:ab:53: 24:25:4c:47:de:86:e8:b2:5f:fe:7d:7c:c9:77:aa:5e:e5:33: 31:c9:18:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJPRp05ryT9oFglKcXq7pDmfLS0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ4QURCMENENTk5MjgxMjA0RDM4N0VCNjUyNzg3NjUw OTIwQjZDNTAeFw0yNDExMDIxNDU1MDJaFw0yNTExMDExNTAwMDJaMDMxMTAvBgNV BAMTKDZDMzg5M0Y1RkRGQUI4NDkyNjJDMkVBRTkzRTgxRjc5RTMwMDk1RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkt0ME4bG0TLsjJ1fgUcopAiJK vhFhijJ5V5qSH2taNVDu0FgOdjm5gxdch/UD16ZHA0OPrYsq6nnI2P6acmQfWR49 hbSf3dbC2En5uQYNHs39ffHkMNlI5mXH0MzWQhouN4f1qzc00l29hMlAb+GtX0RG lT12Lo+x7+GjPFiw/CMFLV/lCwNvnyV9+Cg25oN6SGo3pvtweIoewja8Mdt0BVA4 XfgmKddVuHL6z1NrpJM/2cOk1SbenIO6VJ2N8vb+eiZ7TRt4rFrWmJWi/mxWleI8 RAV8EHEtq+R0KOJqOXdazR9y2gD8N8R5gBhGlbaL7ihGkygIA+HCyNctF8yjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbDiT9f36uEkmLC6uk+gfeeMAlfQwHwYDVR0j BBgwFoAU3YrbDNWZKBIE04frZSeHZQkgtsUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmU2NGIwZC02NDZjLTRjZWMtOTQxZi03NDNiMmQxYmNlNGUvMC9ERDhBREIwQ0Q1 OTkyODEyMDREMzg3RUI2NTI3ODc2NTA5MjBCNkM1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ4QURCMENENTk5MjgxMjA0RDM4N0VCNjUyNzg3NjUwOTIw QjZDNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyZTY0YjBkLTY0NmMtNGNlYy05 NDFmLTc0M2IyZDFiY2U0ZS8wLzM0MzUyZTMxMzEzNzJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXWEMA0GCSqG SIb3DQEBCwUAA4IBAQBYEv26WU5Yl6HwGHtYLH9fIGqpV+gIvhX5tGKGBvSI6dlF VrIIrZD2SEx1LACcnKKkNr+6FRXxsdLM3fy479Z1Dr2b3avpplJ6VQbNb+MP/SwP cj8eMwZziEzKJ+cMzNJ9euadIHLJ/0CEarRJYs6OPxPecdX8whns15rFd8sMuKSi Ty/yjmABVdg8Fonj75Bkt5KvIpM+YDNjZeUuncfyt5vvQa4zQ1vTnbKPxucNmpvR rizQuZaLxvgeKYa/Z6FQk3iMbKCMBCERCtIPqQ4VGK0gye4Jfu1hi3iE/SUCG5IX ufuscnLNq1MkJUxH3obosl/+fXzJd6pe5TMxyRgd -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org