$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa File: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: U+Nn2r5Sn/4yz+Dw8s2J+Cn+SRVePHMvbt6ShZoiqDk= Subject key identifier: 5F:85:53:1D:98:DF:E5:A8:1D:E1:AF:3D:A9:89:B4:10:77:E1:2E:22 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 7B422A379A3F45539504CA3ABBB2D3677374AC50 Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa Signing time: Mon 01 Jul 2024 01:05:27 +0000 ROA not before: Mon 01 Jul 2024 01:00:27 +0000 ROA not after: Mon 30 Jun 2025 01:05:27 +0000 asID: 58477 IP address blocks: 45.64.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:42:2a:37:9a:3f:45:53:95:04:ca:3a:bb:b2:d3:67:73:74:ac:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Jul 1 01:00:27 2024 GMT Not After : Jun 30 01:05:27 2025 GMT Subject: CN=5F85531D98DFE5A81DE1AF3DA989B41077E12E22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2e:5d:3f:8b:f6:20:ca:21:e6:13:77:63:ca: 47:7d:03:61:f0:cc:fd:90:69:b9:16:60:93:c1:84: 72:43:ac:ae:45:67:dd:38:15:7d:cb:6e:a2:14:0c: 9c:74:51:5d:43:98:88:51:19:8b:af:6a:12:67:cb: 2c:7c:d4:62:9b:b1:10:df:c6:31:56:6b:1b:72:d3: 6e:fd:a1:53:e3:8f:58:35:22:54:42:0c:74:21:b9: fa:9c:db:4c:97:76:12:39:e7:f0:3f:db:1c:2f:5b: 01:ac:50:d3:bb:17:a3:6b:a2:fe:12:c3:fc:0f:0d: 8e:84:5d:e8:a8:c6:e6:09:b8:8b:f2:78:12:81:d6: 82:a7:c5:d9:09:32:a0:fb:23:14:cc:b7:e9:6e:9e: 35:87:bb:e0:67:e4:1f:9b:32:0f:67:3a:96:6b:07: c3:b2:32:08:38:5c:3a:5a:77:84:c1:40:be:7b:59: 54:de:c5:e1:22:4c:4d:78:c7:b1:35:f0:14:8b:f2: 8c:f9:b5:1d:31:29:19:6f:54:8f:7c:90:e8:e1:e5: b2:61:91:c3:c5:ff:2f:20:e5:15:fd:82:10:41:66: 35:7a:fc:1f:95:61:23:bb:4a:64:f1:23:e1:26:a4: 88:ba:72:93:61:09:5e:8e:d8:fa:f2:73:73:af:f8: 9d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:85:53:1D:98:DF:E5:A8:1D:E1:AF:3D:A9:89:B4:10:77:E1:2E:22 X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.98.0/24 Signature Algorithm: sha256WithRSAEncryption b0:9d:c2:cf:72:4c:43:aa:77:2e:d8:4a:ba:14:8a:02:c2:01: e1:d2:d8:04:ce:ca:b6:3d:04:63:74:98:17:5b:b3:7b:9a:ad: 5e:8f:43:8f:6a:4a:d0:7c:36:8e:97:12:5c:25:e9:8d:75:fa: 5f:40:43:48:f9:f1:3f:24:79:45:22:40:8e:18:24:e4:cc:34: d3:7b:53:10:01:a3:55:bc:90:74:26:bc:e5:51:50:a5:33:6d: d0:bf:3d:a0:fc:c4:06:29:22:2c:89:34:a8:e4:de:63:48:14: a8:a1:a6:8f:56:81:8c:73:83:e7:d1:5f:c3:b9:f5:d4:4b:84: 9d:91:72:8c:f3:a6:01:e3:bf:73:13:00:a1:ee:37:46:ff:fe: 8c:a6:dc:5f:3d:db:37:67:a6:62:14:5e:7c:89:a7:25:82:99: e6:a0:98:77:6a:a3:36:fb:2a:a5:64:03:90:6f:4f:1a:e8:de: b3:b1:aa:1d:fd:c1:a5:12:32:f3:fb:38:0d:81:ee:31:7d:dc: 14:ed:da:d7:a8:62:95:c5:b4:ed:97:4a:cf:77:ba:60:73:21: 76:ff:37:be:70:01:ac:83:79:f1:a6:6c:d9:49:29:4b:94:47: 2b:a0:0e:21:94:41:ea:29:24:8a:ea:9a:69:fe:5b:7b:53:c1: 00:20:4f:dd -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUe0IqN5o/RVOVBMo6u7LTZ3N0rFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNDA3MDEwMTAwMjdaFw0yNTA2MzAwMTA1MjdaMDMxMTAvBgNV BAMTKDVGODU1MzFEOThERkU1QTgxREUxQUYzREE5ODlCNDEwNzdFMTJFMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBLl0/i/YgyiHmE3djykd9A2Hw zP2QabkWYJPBhHJDrK5FZ904FX3LbqIUDJx0UV1DmIhRGYuvahJnyyx81GKbsRDf xjFWaxty0279oVPjj1g1IlRCDHQhufqc20yXdhI55/A/2xwvWwGsUNO7F6Nrov4S w/wPDY6EXeioxuYJuIvyeBKB1oKnxdkJMqD7IxTMt+lunjWHu+Bn5B+bMg9nOpZr B8OyMgg4XDpad4TBQL57WVTexeEiTE14x7E18BSL8oz5tR0xKRlvVI98kOjh5bJh kcPF/y8g5RX9ghBBZjV6/B+VYSO7SmTxI+EmpIi6cpNhCV6O2Pryc3Ov+J1TAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUX4VTHZjf5agd4a89qYm0EHfhLiIwHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMzQzNTJlMzYzNDJlMzkzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtQGIwDQYJKoZIhvcNAQEL BQADggEBALCdws9yTEOqdy7YSroUigLCAeHS2ATOyrY9BGN0mBdbs3uarV6PQ49q StB8No6XElwl6Y11+l9AQ0j58T8keUUiQI4YJOTMNNN7UxABo1W8kHQmvOVRUKUz bdC/PaD8xAYpIiyJNKjk3mNIFKihpo9WgYxzg+fRX8O59dRLhJ2RcozzpgHjv3MT AKHuN0b//oym3F892zdnpmIUXnyJpyWCmeagmHdqozb7KqVkA5BvTxro3rOxqh39 waUSMvP7OA2B7jF93BTt2teoYpXFtO2XSs93umBzIXb/N75wAayDefGmbNlJKUuU RyugDiGUQeopJIrqmmn+W3tTwQAgT90= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org