$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39372e302f32342d3234203d3e20313335333630.roa File: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: yaMOQE+GIE5dBL7kDlXQjcbuyQ2t5GddvDcBn6rZ/h4= Subject key identifier: 3A:C1:F1:28:B8:66:E2:43:C8:61:98:B8:3F:85:0D:7A:63:91:5D:6F Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 23856D88621FC4B889169E130FDCD0303F2974EB Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39372e302f32342d3234203d3e20313335333630.roa Signing time: Mon 31 Jul 2023 00:09:30 +0000 ROA not before: Mon 31 Jul 2023 00:04:30 +0000 ROA not after: Mon 29 Jul 2024 00:09:30 +0000 asID: 135360 IP address blocks: 45.64.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:85:6d:88:62:1f:c4:b8:89:16:9e:13:0f:dc:d0:30:3f:29:74:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Jul 31 00:04:30 2023 GMT Not After : Jul 29 00:09:30 2024 GMT Subject: CN=3AC1F128B866E243C86198B83F850D7A63915D6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:49:5f:86:a7:be:39:6f:88:93:0c:18:16: 5e:5f:bb:37:49:54:e1:c4:2b:1e:08:c6:a6:76:98: 31:e1:a4:fc:55:39:18:ae:25:7d:20:42:ed:f6:5e: 74:f6:3a:20:19:7c:f5:bf:34:9b:3c:e3:1e:e7:50: 2b:72:2b:b7:05:aa:40:1c:c2:3d:34:77:ca:3c:4d: 14:73:27:3b:da:dc:6f:71:aa:7c:84:41:82:91:f2: f4:c6:a6:6a:1a:7f:d6:1a:18:24:64:9c:e0:6d:46: e6:70:8a:d3:fd:ca:b6:22:ce:5a:00:a7:28:fc:2e: f4:ab:85:7d:c6:d7:f1:85:a7:0d:3c:c5:4f:96:04: 16:db:a3:95:06:0e:5c:27:c7:70:0c:1f:a2:63:72: ac:a3:4a:1e:db:f5:88:3f:45:0a:a6:1a:6a:84:d0: 3a:8d:80:4e:7d:09:59:64:7c:a8:cc:70:8a:e7:f3: 82:a6:a4:3d:b0:c3:b8:09:5c:56:79:91:da:1a:03: 85:7d:07:b1:36:98:b2:f9:60:d7:52:a2:1a:71:3d: c5:6f:36:a7:f7:a5:36:b0:b0:a7:58:a0:b7:28:a8: 78:6c:d0:8a:b6:21:95:c5:04:f7:b2:73:63:93:ae: 05:48:da:35:e2:39:28:53:40:d0:d3:d0:40:c6:c4: 40:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C1:F1:28:B8:66:E2:43:C8:61:98:B8:3F:85:0D:7A:63:91:5D:6F X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39372e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.97.0/24 Signature Algorithm: sha256WithRSAEncryption 04:e9:2c:4f:0e:dd:62:e6:9f:e7:4b:1b:1b:6f:3e:56:f0:c0: 86:75:b1:4e:13:53:65:13:91:3a:fd:da:11:23:fb:b3:15:4b: 81:7c:07:18:61:0d:89:6b:18:01:b8:77:04:86:55:1f:14:27: d1:cb:8e:ee:62:77:80:55:30:9c:b5:6f:f4:1e:cc:44:67:c0: 3b:71:47:d2:56:a5:29:0b:81:9d:eb:a9:60:c1:a3:7f:5c:fc: 92:ec:dc:8f:cb:e2:4f:64:85:51:78:d0:73:46:c1:33:b5:8e: 39:fd:9e:16:87:f3:dc:a4:1e:be:a1:8c:cb:2f:a4:70:07:bb: 63:4f:46:90:0a:6e:a3:96:4a:d4:a7:4e:3d:d4:71:06:51:df: a7:46:18:88:e4:62:4e:cc:74:6d:b7:3e:b8:1c:44:a0:77:55: 9f:22:58:9e:39:22:5c:fc:ba:7e:92:03:9f:7b:10:69:98:75: be:be:a8:09:45:62:34:a7:d3:7b:de:7e:45:41:fd:68:fb:49: 45:13:46:dc:37:1f:66:ed:00:1d:be:0c:dc:20:15:86:53:64: ce:62:4b:71:da:c2:c9:fe:64:2f:72:a7:2e:72:93:73:c6:63: 56:6c:db:10:93:89:37:1a:57:62:03:e7:78:3e:e1:fc:5b:b9: ef:7a:ae:d6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUI4VtiGIfxLiJFp4TD9zQMD8pdOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yMzA3MzEwMDA0MzBaFw0yNDA3MjkwMDA5MzBaMDMxMTAvBgNV BAMTKDNBQzFGMTI4Qjg2NkUyNDNDODYxOThCODNGODUwRDdBNjM5MTVENkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqJUlfhqe+OW+IkwwYFl5fuzdJ VOHEKx4IxqZ2mDHhpPxVORiuJX0gQu32XnT2OiAZfPW/NJs84x7nUCtyK7cFqkAc wj00d8o8TRRzJzva3G9xqnyEQYKR8vTGpmoaf9YaGCRknOBtRuZwitP9yrYizloA pyj8LvSrhX3G1/GFpw08xU+WBBbbo5UGDlwnx3AMH6JjcqyjSh7b9Yg/RQqmGmqE 0DqNgE59CVlkfKjMcIrn84KmpD2ww7gJXFZ5kdoaA4V9B7E2mLL5YNdSohpxPcVv Nqf3pTawsKdYoLcoqHhs0Iq2IZXFBPeyc2OTrgVI2jXiOShTQNDT0EDGxECfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOsHxKLhm4kPIYZi4P4UNemORXW8wHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAzLTFiNGQtNDM4ZS1h OWYzLWVmZWFhZTZiMDkyMS8wLzM0MzUyZTM2MzQyZTM5MzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzMzM2MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtQGEwDQYJKoZIhvcN AQELBQADggEBAATpLE8O3WLmn+dLGxtvPlbwwIZ1sU4TU2UTkTr92hEj+7MVS4F8 BxhhDYlrGAG4dwSGVR8UJ9HLju5id4BVMJy1b/QezERnwDtxR9JWpSkLgZ3rqWDB o39c/JLs3I/L4k9khVF40HNGwTO1jjn9nhaH89ykHr6hjMsvpHAHu2NPRpAKbqOW StSnTj3UcQZR36dGGIjkYk7MdG23PrgcRKB3VZ8iWJ45Ilz8un6SA597EGmYdb6+ qAlFYjSn03vefkVB/Wj7SUUTRtw3H2btAB2+DNwgFYZTZM5iS3Hawsn+ZC9ypy5y k3PGY1Zs2xCTiTcaV2ID53g+4fxbue96rtY= -----END CERTIFICATE-----Generated at Thu May 2 11:32:08 2024 by rpki-client on console-fra.rpki-client.org