$ rpki-client -vvf repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/33362e35302e34342e302f32332d3234203d3e20313532303130.roa File: 33362e35302e34342e302f32332d3234203d3e20313532303130.roa (raw, json) Hash identifier: 6pByXgAQ6YR6dUDH4dJy61wrtOMRHMSvLiETBeP3xAU= Subject key identifier: D6:8B:AC:B9:46:BA:54:50:58:53:DE:4F:11:2E:33:34:8F:30:17:18 Certificate issuer: /CN=3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4 Certificate serial: 1FA03E846EFADBF3D9BE205F35CC3CF24593F46B Authority key identifier: 3C:EC:A6:A5:D2:B1:38:F5:E0:5C:E8:15:D6:A9:D9:05:E9:E0:7B:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/33362e35302e34342e302f32332d3234203d3e20313532303130.roa Signing time: Tue 29 Oct 2024 08:38:09 +0000 ROA not before: Tue 29 Oct 2024 08:33:09 +0000 ROA not after: Tue 28 Oct 2025 08:38:09 +0000 asID: 152010 IP address blocks: 36.50.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.crl rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:a0:3e:84:6e:fa:db:f3:d9:be:20:5f:35:cc:3c:f2:45:93:f4:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4 Validity Not Before: Oct 29 08:33:09 2024 GMT Not After : Oct 28 08:38:09 2025 GMT Subject: CN=D68BACB946BA54505853DE4F112E33348F301718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:1f:2c:3e:a8:6d:a6:7c:17:e1:36:f5:e8: 87:fd:03:25:43:c5:ca:5b:3b:02:8e:a6:eb:1d:98: b5:97:f4:17:94:34:16:ac:c6:8e:29:e5:a9:ac:9a: b4:b3:fd:f0:9b:73:97:02:41:99:e0:bb:cb:7c:79: 7e:17:60:ac:6b:de:e3:5c:5e:a2:94:88:db:6f:cc: 73:ac:35:d5:56:df:34:1f:c6:7d:b4:5d:96:b9:4b: a0:75:23:58:f7:92:1a:3b:f9:83:38:f4:f0:f7:7b: 9b:99:0f:54:cd:f6:da:3f:7d:2a:a1:80:ea:5a:64: 06:e8:10:b3:ae:b3:bd:9f:2a:d6:10:f6:f1:77:34: 52:1e:1d:5b:88:e0:3e:15:c2:6c:fc:9d:96:a3:2f: 42:b9:65:dc:b0:da:76:49:51:26:57:f9:a9:7d:b9: a3:b9:c0:87:bb:60:63:7f:25:8f:42:79:10:f9:ae: b8:ec:52:c6:86:fd:59:ab:88:92:9f:3f:71:aa:98: ee:c7:46:6a:63:cd:f3:bc:a5:24:78:10:2d:c6:14: 99:49:cd:6b:3e:c1:fb:65:ad:35:ce:84:91:50:24: 3a:14:d6:de:ce:cb:e7:58:b5:27:6a:0f:83:36:58: 00:24:3a:0b:7d:51:87:89:80:dd:6f:7e:bb:f1:81: 08:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:8B:AC:B9:46:BA:54:50:58:53:DE:4F:11:2E:33:34:8F:30:17:18 X509v3 Authority Key Identifier: keyid:3C:EC:A6:A5:D2:B1:38:F5:E0:5C:E8:15:D6:A9:D9:05:E9:E0:7B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/33362e35302e34342e302f32332d3234203d3e20313532303130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.44.0/23 Signature Algorithm: sha256WithRSAEncryption 61:66:52:98:89:96:59:0d:f8:13:b9:29:49:f1:1a:2e:57:c9: 64:80:10:59:fe:fb:75:0c:9a:13:94:8b:0e:d8:19:3f:25:09: ed:c0:8a:74:0b:72:a1:2c:94:b5:ea:7b:9e:df:e9:cc:93:98: 55:6e:85:ac:c8:dd:ef:f0:a8:69:7c:d7:3f:e8:ae:b1:8b:9c: 2f:6c:71:4f:f7:d4:2f:d3:f7:67:4a:e3:8f:33:5d:40:70:6f: 71:2a:41:b3:a8:b7:61:af:b1:94:7d:60:98:03:47:e5:11:79: e4:f3:39:47:1b:df:ed:52:74:f4:29:7b:31:54:7a:65:a2:25: 10:e6:70:6c:eb:23:0f:07:65:ff:9a:aa:40:5a:7c:7c:a4:d6: 61:91:dd:b4:d9:e6:00:6e:05:31:45:02:d7:ee:d5:27:f5:a8: c1:8e:dd:39:48:0e:d3:0c:52:e1:af:7f:1b:59:47:11:99:43: 88:c2:76:2d:d8:5f:8e:b3:1c:15:43:1e:a3:96:75:e7:20:79: 7e:bf:f3:29:f5:00:59:43:9f:d8:4b:8f:a3:c9:70:ba:19:7f: ff:2e:bc:b4:06:40:b7:1f:05:de:20:5d:97:33:56:e1:0a:07: 6f:6b:6e:86:42:c6:8e:fb:08:8c:fe:66:58:29:0e:07:d9:4f: 0c:f9:04:42 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH6A+hG762/PZviBfNcw88kWT9GswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NFQ0E2QTVEMkIxMzhGNUUwNUNFODE1RDZBOUQ5MDVF OUUwN0JGNDAeFw0yNDEwMjkwODMzMDlaFw0yNTEwMjgwODM4MDlaMDMxMTAvBgNV BAMTKEQ2OEJBQ0I5NDZCQTU0NTA1ODUzREU0RjExMkUzMzM0OEYzMDE3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/xx8sPqhtpnwX4Tb16If9AyVD xcpbOwKOpusdmLWX9BeUNBasxo4p5amsmrSz/fCbc5cCQZngu8t8eX4XYKxr3uNc XqKUiNtvzHOsNdVW3zQfxn20XZa5S6B1I1j3kho7+YM49PD3e5uZD1TN9to/fSqh gOpaZAboELOus72fKtYQ9vF3NFIeHVuI4D4Vwmz8nZajL0K5Zdyw2nZJUSZX+al9 uaO5wIe7YGN/JY9CeRD5rrjsUsaG/VmriJKfP3GqmO7HRmpjzfO8pSR4EC3GFJlJ zWs+wftlrTXOhJFQJDoU1t7Oy+dYtSdqD4M2WAAkOgt9UYeJgN1vfrvxgQiDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1ousuUa6VFBYU95PES4zNI8wFxgwHwYDVR0j BBgwFoAUPOympdKxOPXgXOgV1qnZBenge/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDhlYzVlYi0wMzU0LTRkODctYjJiZS0wOGZmYWQ0YWEwNmEvMC8zQ0VDQTZBNUQy QjEzOEY1RTA1Q0U4MTVENkE5RDkwNUU5RTA3QkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NFQ0E2QTVEMkIxMzhGNUUwNUNFODE1RDZBOUQ5MDVFOUUw N0JGNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OGVjNWViLTAzNTQtNGQ4Ny1i MmJlLTA4ZmZhZDRhYTA2YS8wLzMzMzYyZTM1MzAyZTM0MzQyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM1MzIzMDMxMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEkMiwwDQYJKoZIhvcN AQELBQADggEBAGFmUpiJllkN+BO5KUnxGi5XyWSAEFn++3UMmhOUiw7YGT8lCe3A inQLcqEslLXqe57f6cyTmFVuhazI3e/wqGl81z/orrGLnC9scU/31C/T92dK448z XUBwb3EqQbOot2GvsZR9YJgDR+UReeTzOUcb3+1SdPQpezFUemWiJRDmcGzrIw8H Zf+aqkBafHyk1mGR3bTZ5gBuBTFFAtfu1Sf1qMGO3TlIDtMMUuGvfxtZRxGZQ4jC di3YX46zHBVDHqOWdecgeX6/8yn1AFlDn9hLj6PJcLoZf/8uvLQGQLcfBd4gXZcz VuEKB29rboZCxo77CIz+ZlgpDgfZTwz5BEI= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org