$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/34352e3235312e37322e302f32322d3234203d3e20313331373131.roa File: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (raw, json) Hash identifier: Sc7V8HjoJlvlyPs0x8OcUDy/oyEPZU0ZY61rdBTppuU= Subject key identifier: 6E:36:7A:CE:59:89:0F:07:E8:38:62:D8:0B:A3:BA:15:EA:4D:E5:47 Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 46F5B55EC988565ACC5A7CD0C15557F31F732049 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/34352e3235312e37322e302f32322d3234203d3e20313331373131.roa Signing time: Mon 23 Sep 2024 11:01:54 +0000 ROA not before: Mon 23 Sep 2024 10:56:54 +0000 ROA not after: Mon 22 Sep 2025 11:01:54 +0000 asID: 131711 IP address blocks: 45.251.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f5:b5:5e:c9:88:56:5a:cc:5a:7c:d0:c1:55:57:f3:1f:73:20:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Sep 23 10:56:54 2024 GMT Not After : Sep 22 11:01:54 2025 GMT Subject: CN=6E367ACE59890F07E83862D80BA3BA15EA4DE547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2d:11:13:74:41:70:35:49:a7:af:8f:81:92: 9d:f8:5c:d3:63:2f:64:50:65:8f:b3:eb:65:a0:b6: 63:12:97:7d:73:93:73:e6:2e:56:47:68:86:78:5b: 19:ce:3e:86:f1:a7:da:96:a2:b4:68:02:1e:26:34: 8c:13:c0:87:2c:ce:5a:01:00:a6:72:0c:e1:2d:47: 82:2c:7d:39:c3:ef:31:34:ad:2b:d3:58:83:be:53: 84:27:4f:30:e2:b4:a5:99:78:80:eb:5d:0b:46:ad: d3:ef:85:8e:b8:7f:0e:c4:e3:f4:db:b1:02:5a:1f: fd:ac:84:b8:4d:80:ef:75:db:dd:b3:13:d2:e8:e9: d0:eb:43:e5:94:2c:7c:8b:60:53:99:02:2b:bb:ef: 04:2d:c6:ce:b5:f0:79:6f:39:a1:00:9b:e4:59:b6: f2:35:89:e6:56:05:8c:a1:14:aa:ef:46:97:1d:8c: 13:5c:99:f1:39:e0:f4:d9:f7:18:ce:19:28:e6:86: e5:07:98:30:bf:ec:79:a7:a9:02:99:1c:7a:c0:a4: 9e:f9:94:f5:1c:1d:d0:fe:da:6c:ec:c9:47:f5:a2: bf:72:7c:b0:db:20:c6:b1:c6:47:05:d6:67:30:b0: 8f:2a:d1:bc:0c:c6:7a:66:3e:29:5d:f3:22:2c:7b: db:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:36:7A:CE:59:89:0F:07:E8:38:62:D8:0B:A3:BA:15:EA:4D:E5:47 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/34352e3235312e37322e302f32322d3234203d3e20313331373131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.72.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:79:b8:7f:12:6c:7b:23:3d:4e:1d:c6:ab:7a:71:4f:32:2a: 80:4f:cb:b5:aa:b4:5a:70:71:3a:be:d4:9d:10:38:28:59:2c: a5:68:ce:fa:52:7f:65:1f:34:86:95:be:32:23:4d:db:c9:95: 46:f6:47:6d:e5:01:08:a6:7b:01:80:b3:63:41:68:ac:c4:cc: 63:ef:87:d4:8c:4b:b4:06:9b:98:d1:60:65:dd:cc:76:6e:fc: ba:e1:15:86:a8:99:35:0e:2b:19:09:7d:be:d7:ec:4f:1c:19: c6:44:ac:22:b1:73:74:f3:0d:c7:9f:2d:ec:0b:b1:c9:5e:73: 5e:53:98:2e:de:80:f1:98:a3:ef:e1:d3:6e:86:d4:30:ca:18: 15:ff:d1:8e:e9:ac:7b:38:ab:d8:1f:00:a5:9e:b8:f2:b5:07: 1a:14:f3:7d:ac:82:40:a5:96:0f:34:84:a4:4a:e4:4e:9f:be: 99:2d:44:a4:d8:a2:98:03:56:0a:85:94:1c:c7:ad:8b:ee:87: 99:22:bb:ed:92:82:0e:9f:d7:0b:63:a3:f9:7b:cc:2f:53:cc: a8:b4:d3:3f:ce:23:07:03:89:8f:a8:6a:35:93:14:c8:9e:7b: d7:6a:21:22:46:17:26:6e:f5:80:d8:a6:cd:61:d8:0e:a2:1c: c9:ef:c7:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURvW1XsmIVlrMWnzQwVVX8x9zIEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNDA5MjMxMDU2NTRaFw0yNTA5MjIxMTAxNTRaMDMxMTAvBgNV BAMTKDZFMzY3QUNFNTk4OTBGMDdFODM4NjJEODBCQTNCQTE1RUE0REU1NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8LRETdEFwNUmnr4+Bkp34XNNj L2RQZY+z62WgtmMSl31zk3PmLlZHaIZ4WxnOPobxp9qWorRoAh4mNIwTwIcszloB AKZyDOEtR4IsfTnD7zE0rSvTWIO+U4QnTzDitKWZeIDrXQtGrdPvhY64fw7E4/Tb sQJaH/2shLhNgO91292zE9Lo6dDrQ+WULHyLYFOZAiu77wQtxs618HlvOaEAm+RZ tvI1ieZWBYyhFKrvRpcdjBNcmfE54PTZ9xjOGSjmhuUHmDC/7HmnqQKZHHrApJ75 lPUcHdD+2mzsyUf1or9yfLDbIMaxxkcF1mcwsI8q0bwMxnpmPild8yIse9u9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbjZ6zlmJDwfoOGLYC6O6FepN5UcwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiMGExMWI1LTk0NDEtNGNjOS1h NjcyLWJlOTc5OWI2NTUyMC8wLzM0MzUyZTMyMzUzMTJlMzczMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi37SDANBgkqhkiG 9w0BAQsFAAOCAQEAO3m4fxJseyM9Th3Gq3pxTzIqgE/Ltaq0WnBxOr7UnRA4KFks pWjO+lJ/ZR80hpW+MiNN28mVRvZHbeUBCKZ7AYCzY0ForMTMY++H1IxLtAabmNFg Zd3Mdm78uuEVhqiZNQ4rGQl9vtfsTxwZxkSsIrFzdPMNx58t7AuxyV5zXlOYLt6A 8Zij7+HTbobUMMoYFf/Rjumsezir2B8ApZ648rUHGhTzfayCQKWWDzSEpErkTp++ mS1EpNiimANWCoWUHMeti+6HmSK77ZKCDp/XC2Oj+XvML1PMqLTTP84jBwOJj6hq NZMUyJ5712ohIkYXJm71gNimzWHYDqIcye/HpA== -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org