$ rpki-client -vvf repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232352e302f32342d3234203d3e20313532303830.roa File: 33362e35302e3232352e302f32342d3234203d3e20313532303830.roa (raw, json) Hash identifier: 7l+KDkpftZ1olZ/l9vZxZiSFCmqzAQeP2WLVDLagbJo= Subject key identifier: 15:AF:D1:FB:43:3C:D7:30:08:F3:E8:F0:C5:0B:27:1C:8D:37:F8:C1 Certificate issuer: /CN=F5D71EC77922A9080F17C3A16FBE5F69B1CD8832 Certificate serial: 5CC445045AD8433A70C59B1ABFB30758E06E6435 Authority key identifier: F5:D7:1E:C7:79:22:A9:08:0F:17:C3:A1:6F:BE:5F:69:B1:CD:88:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232352e302f32342d3234203d3e20313532303830.roa Signing time: Mon 01 Apr 2024 05:04:39 +0000 ROA not before: Mon 01 Apr 2024 04:59:39 +0000 ROA not after: Mon 31 Mar 2025 05:04:39 +0000 asID: 152080 IP address blocks: 36.50.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.crl rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c4:45:04:5a:d8:43:3a:70:c5:9b:1a:bf:b3:07:58:e0:6e:64:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5D71EC77922A9080F17C3A16FBE5F69B1CD8832 Validity Not Before: Apr 1 04:59:39 2024 GMT Not After : Mar 31 05:04:39 2025 GMT Subject: CN=15AFD1FB433CD73008F3E8F0C50B271C8D37F8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b2:0d:09:2a:d1:e2:82:eb:15:d0:e0:a4:1e: 4a:c5:f6:b2:62:2e:a2:10:3e:ff:83:bb:19:94:65: e0:c6:da:d0:b8:61:f8:95:c2:c8:59:0d:bd:31:59: 69:8e:89:60:04:14:8b:56:93:71:50:0c:a7:e2:76: 31:ee:8c:49:bb:78:de:18:7b:34:08:d3:94:17:26: f3:e7:64:fb:3f:96:16:63:b8:fa:1e:b4:e7:77:66: bb:53:17:49:f6:c0:72:c8:0b:f5:f8:56:18:da:1c: b8:58:e2:a6:2f:28:70:30:42:ba:12:61:47:81:c7: 66:da:b5:67:d9:8c:d1:e9:41:e5:37:02:6f:29:c6: 20:a9:11:8c:a6:60:c8:75:bb:4e:2f:4c:66:af:f7: d9:81:df:a1:29:c2:3a:e5:17:56:22:58:75:18:4b: f2:57:6b:1a:e1:8d:a0:55:d0:3f:e0:ca:b8:68:40: 08:5e:12:8b:c7:ad:7c:2a:64:a9:7f:0d:d5:1d:d6: 50:e7:83:b2:5f:5e:44:dc:d3:c8:81:3a:54:b5:94: 3c:91:a5:6a:3a:91:b3:d7:af:72:a4:d6:e9:b5:92: 98:c8:46:08:61:71:99:79:2c:7f:2c:79:cf:14:36: e2:a1:e6:85:80:ee:31:a9:d6:a0:af:53:d9:b6:76: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AF:D1:FB:43:3C:D7:30:08:F3:E8:F0:C5:0B:27:1C:8D:37:F8:C1 X509v3 Authority Key Identifier: keyid:F5:D7:1E:C7:79:22:A9:08:0F:17:C3:A1:6F:BE:5F:69:B1:CD:88:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232352e302f32342d3234203d3e20313532303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.225.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:f0:91:f0:24:da:d1:6f:78:f0:cb:1e:80:3c:2a:9a:04:ba: 71:ac:2a:32:ea:c5:dc:39:8c:3b:10:cb:62:67:6c:69:ed:21: 88:74:04:72:ca:0a:96:80:0e:33:45:ab:24:8b:d4:8b:c2:19: 21:93:5b:6e:60:07:00:fe:f1:14:76:66:47:58:c4:fb:bb:3e: 78:ce:91:85:10:e9:ca:22:da:23:60:5e:0b:c6:a2:7f:02:f8: b3:91:28:10:6f:69:b9:a1:36:e5:10:c1:f4:c2:f9:f1:ab:5e: 53:ef:02:2e:6e:5b:f1:84:89:cb:0f:b1:f3:95:94:f4:a8:45: 4b:95:8e:e2:c0:ad:5d:2c:fd:83:e9:d7:3e:0d:4a:13:8c:5a: 66:d5:d3:33:d5:53:8a:79:83:06:73:e7:ea:f5:42:15:ed:bb: ce:86:d8:f5:55:24:d1:08:3f:57:0e:2c:5a:46:f7:1e:9d:59: ff:b5:cc:54:51:ea:91:c9:6f:b6:ac:9e:56:3a:d1:5c:24:c3: 17:b5:a5:43:aa:02:de:12:36:2b:03:d6:42:d9:86:4c:4a:4c: 2e:d2:27:be:34:33:fa:64:06:7b:83:ff:1d:d8:ff:49:5e:71: da:c3:e3:28:fa:31:e1:0a:eb:a0:c6:09:ac:be:7b:18:7f:db: 19:c0:bb:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXMRFBFrYQzpwxZsav7MHWOBuZDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVENzFFQzc3OTIyQTkwODBGMTdDM0ExNkZCRTVGNjlC MUNEODgzMjAeFw0yNDA0MDEwNDU5MzlaFw0yNTAzMzEwNTA0MzlaMDMxMTAvBgNV BAMTKDE1QUZEMUZCNDMzQ0Q3MzAwOEYzRThGMEM1MEIyNzFDOEQzN0Y4QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpsg0JKtHigusV0OCkHkrF9rJi LqIQPv+DuxmUZeDG2tC4YfiVwshZDb0xWWmOiWAEFItWk3FQDKfidjHujEm7eN4Y ezQI05QXJvPnZPs/lhZjuPoetOd3ZrtTF0n2wHLIC/X4VhjaHLhY4qYvKHAwQroS YUeBx2batWfZjNHpQeU3Am8pxiCpEYymYMh1u04vTGav99mB36EpwjrlF1YiWHUY S/JXaxrhjaBV0D/gyrhoQAheEovHrXwqZKl/DdUd1lDng7JfXkTc08iBOlS1lDyR pWo6kbPXr3Kk1um1kpjIRghhcZl5LH8sec8UNuKh5oWA7jGp1qCvU9m2dgbHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFa/R+0M81zAI8+jwxQsnHI03+MEwHwYDVR0j BBgwFoAU9dcex3kiqQgPF8Ohb75fabHNiDIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWU4MzY3My0wOTZhLTQ0MGMtYjI3YS05YmU2NGIxM2I0ZTUvMC9GNUQ3MUVDNzc5 MjJBOTA4MEYxN0MzQTE2RkJFNUY2OUIxQ0Q4ODMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjVENzFFQzc3OTIyQTkwODBGMTdDM0ExNkZCRTVGNjlCMUNE ODgzMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZTgzNjczLTA5NmEtNDQwYy1i MjdhLTliZTY0YjEzYjRlNS8wLzMzMzYyZTM1MzAyZTMyMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy4TANBgkqhkiG 9w0BAQsFAAOCAQEAf/CR8CTa0W948MsegDwqmgS6cawqMurF3DmMOxDLYmdsae0h iHQEcsoKloAOM0WrJIvUi8IZIZNbbmAHAP7xFHZmR1jE+7s+eM6RhRDpyiLaI2Be C8aifwL4s5EoEG9puaE25RDB9ML58ateU+8CLm5b8YSJyw+x85WU9KhFS5WO4sCt XSz9g+nXPg1KE4xaZtXTM9VTinmDBnPn6vVCFe27zobY9VUk0Qg/Vw4sWkb3Hp1Z /7XMVFHqkclvtqyeVjrRXCTDF7WlQ6oC3hI2KwPWQtmGTEpMLtInvjQz+mQGe4P/ Hdj/SV5x2sPjKPox4QrroMYJrL57GH/bGcC7jA== -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:54 2024 by rpki-client on console-ams.rpki-client.org