$ rpki-client -vvf repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232342e302f32342d3234203d3e20313532303830.roa File: 33362e35302e3232342e302f32342d3234203d3e20313532303830.roa (raw, json) Hash identifier: aZ67xnZ2GmpS5x3v6wGoZHaJnKpkTD7bioQ4/2mf/9I= Subject key identifier: C0:B9:22:D2:1F:00:41:B5:37:23:64:09:D2:C8:A6:41:DA:D2:AE:6F Certificate issuer: /CN=F5D71EC77922A9080F17C3A16FBE5F69B1CD8832 Certificate serial: 44D2CCB16C007A97A39E37055CDB0A8BCD3F1D20 Authority key identifier: F5:D7:1E:C7:79:22:A9:08:0F:17:C3:A1:6F:BE:5F:69:B1:CD:88:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232342e302f32342d3234203d3e20313532303830.roa Signing time: Mon 01 Apr 2024 04:32:17 +0000 ROA not before: Mon 01 Apr 2024 04:27:17 +0000 ROA not after: Mon 31 Mar 2025 04:32:17 +0000 asID: 152080 IP address blocks: 36.50.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.crl rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d2:cc:b1:6c:00:7a:97:a3:9e:37:05:5c:db:0a:8b:cd:3f:1d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5D71EC77922A9080F17C3A16FBE5F69B1CD8832 Validity Not Before: Apr 1 04:27:17 2024 GMT Not After : Mar 31 04:32:17 2025 GMT Subject: CN=C0B922D21F0041B537236409D2C8A641DAD2AE6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:98:4e:a6:1b:67:b1:a0:04:39:f2:80:4f:22: b1:74:4c:af:c8:59:cc:e0:b5:fa:6b:68:4c:c0:9e: 94:e0:5a:55:ae:ae:f1:48:0c:7a:ce:f5:8c:f9:f0: e9:06:4b:f7:f1:8a:06:c4:09:d7:aa:04:b4:c2:e7: 78:d6:40:48:e2:e6:f9:a2:cb:60:a9:32:3d:9e:66: f9:82:db:be:06:3c:22:3c:fd:d6:06:23:89:d4:87: 36:25:08:8a:60:b5:ea:f8:74:03:07:12:16:4b:8f: da:66:36:8d:5e:87:2a:91:49:37:a8:2e:a7:99:95: 1d:04:04:7e:94:a1:c5:04:10:ab:8e:8b:e6:68:9d: 5a:ff:a9:3d:2a:a7:6d:d1:31:62:18:4a:06:e6:5c: 7a:15:19:d6:ee:73:ed:27:ca:cc:00:dc:b3:dc:cf: 4b:36:e3:2a:c5:ee:28:b4:a2:2a:59:53:eb:9a:f7: e3:cb:3b:f5:6c:59:83:8e:42:fd:c2:b8:6a:e1:fb: fa:af:7f:df:4e:9c:94:e4:83:02:89:2e:6a:cc:ab: 81:ac:1c:c3:80:9d:a7:9b:f0:eb:a4:a7:d8:ac:0b: fe:36:17:c6:15:1e:12:6c:9d:3d:ed:b4:9d:da:94: 43:ce:de:a7:07:7e:28:e5:ad:4f:1f:0b:b8:d7:30: 4b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B9:22:D2:1F:00:41:B5:37:23:64:09:D2:C8:A6:41:DA:D2:AE:6F X509v3 Authority Key Identifier: keyid:F5:D7:1E:C7:79:22:A9:08:0F:17:C3:A1:6F:BE:5F:69:B1:CD:88:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232342e302f32342d3234203d3e20313532303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:99:e5:22:73:fc:91:78:72:b8:03:6b:fe:e3:76:20:80:a9: 9b:59:70:98:b1:39:b5:ea:69:f5:ba:b5:4f:b3:2c:1f:35:96: 2a:4a:88:ab:1e:d8:0f:bc:23:25:3d:95:37:44:9a:4c:59:85: 76:bc:06:83:eb:fc:a4:53:9f:de:7c:2c:40:2b:5a:cc:ce:68: c6:ba:d3:ae:d6:59:37:b4:f9:cb:2f:d0:5c:09:de:56:d0:ef: 0c:4f:cb:90:1b:a5:82:2e:bf:02:4c:11:23:c9:91:f2:63:7c: 80:12:20:f2:7c:43:2f:ea:0f:6a:f5:c6:60:6e:11:cb:cc:94: 31:05:e8:bd:a0:44:65:d3:89:88:75:4b:ea:4e:b3:cc:a9:78: 00:42:de:ca:a7:59:fa:20:86:c6:01:e9:1a:ef:9e:03:1e:09: 9a:4b:71:9f:83:f8:b6:50:62:8e:44:2a:21:95:8d:46:38:88: 82:52:4e:82:51:1e:5f:bd:1c:9a:7b:ff:70:e1:03:90:05:0e: f9:4d:8c:9f:0e:22:76:59:51:7d:70:78:6e:19:76:9e:51:df: 4a:f6:7b:35:df:90:b9:99:ba:8b:19:e8:80:2e:8d:44:62:c4: 06:8c:7a:e8:b2:1a:8f:5c:cf:0d:e0:15:56:c7:5c:6d:c8:1f: cf:1f:91:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURNLMsWwAepejnjcFXNsKi80/HSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVENzFFQzc3OTIyQTkwODBGMTdDM0ExNkZCRTVGNjlC MUNEODgzMjAeFw0yNDA0MDEwNDI3MTdaFw0yNTAzMzEwNDMyMTdaMDMxMTAvBgNV BAMTKEMwQjkyMkQyMUYwMDQxQjUzNzIzNjQwOUQyQzhBNjQxREFEMkFFNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDmE6mG2exoAQ58oBPIrF0TK/I WczgtfpraEzAnpTgWlWurvFIDHrO9Yz58OkGS/fxigbECdeqBLTC53jWQEji5vmi y2CpMj2eZvmC274GPCI8/dYGI4nUhzYlCIpgter4dAMHEhZLj9pmNo1ehyqRSTeo LqeZlR0EBH6UocUEEKuOi+ZonVr/qT0qp23RMWIYSgbmXHoVGdbuc+0nyswA3LPc z0s24yrF7ii0oipZU+ua9+PLO/VsWYOOQv3CuGrh+/qvf99OnJTkgwKJLmrMq4Gs HMOAnaeb8Oukp9isC/42F8YVHhJsnT3ttJ3alEPO3qcHfijlrU8fC7jXMEsDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwLki0h8AQbU3I2QJ0simQdrSrm8wHwYDVR0j BBgwFoAU9dcex3kiqQgPF8Ohb75fabHNiDIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWU4MzY3My0wOTZhLTQ0MGMtYjI3YS05YmU2NGIxM2I0ZTUvMC9GNUQ3MUVDNzc5 MjJBOTA4MEYxN0MzQTE2RkJFNUY2OUIxQ0Q4ODMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjVENzFFQzc3OTIyQTkwODBGMTdDM0ExNkZCRTVGNjlCMUNE ODgzMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZTgzNjczLTA5NmEtNDQwYy1i MjdhLTliZTY0YjEzYjRlNS8wLzMzMzYyZTM1MzAyZTMyMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy4DANBgkqhkiG 9w0BAQsFAAOCAQEAH5nlInP8kXhyuANr/uN2IICpm1lwmLE5tepp9bq1T7MsHzWW KkqIqx7YD7wjJT2VN0SaTFmFdrwGg+v8pFOf3nwsQCtazM5oxrrTrtZZN7T5yy/Q XAneVtDvDE/LkBulgi6/AkwRI8mR8mN8gBIg8nxDL+oPavXGYG4Ry8yUMQXovaBE ZdOJiHVL6k6zzKl4AELeyqdZ+iCGxgHpGu+eAx4Jmktxn4P4tlBijkQqIZWNRjiI glJOglEeX70cmnv/cOEDkAUO+U2Mnw4idllRfXB4bhl2nlHfSvZ7Nd+QuZm6ixno gC6NRGLEBox66LIaj1zPDeAVVsdcbcgfzx+Ruw== -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:44 2024 by rpki-client on console-fra.rpki-client.org