$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32332d3233203d3e203535363637.roa File: 34392e3135362e35362e302f32332d3233203d3e203535363637.roa (raw, json) Hash identifier: NbIqv7AUSQMS1xCn0a3rRo2bmONh2GyMw23FeabY33s= Subject key identifier: 72:4B:B2:75:AB:DA:35:02:F3:E1:3D:B3:86:02:D9:EC:03:1B:64:92 Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Certificate serial: 2BB71DC37CE80546D9F1E0D7EA01CC076FF0B3AF Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32332d3233203d3e203535363637.roa Signing time: Fri 04 Oct 2024 04:00:02 +0000 ROA not before: Fri 04 Oct 2024 03:55:02 +0000 ROA not after: Fri 03 Oct 2025 04:00:02 +0000 asID: 55667 IP address blocks: 49.156.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b7:1d:c3:7c:e8:05:46:d9:f1:e0:d7:ea:01:cc:07:6f:f0:b3:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Validity Not Before: Oct 4 03:55:02 2024 GMT Not After : Oct 3 04:00:02 2025 GMT Subject: CN=724BB275ABDA3502F3E13DB38602D9EC031B6492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:74:33:4e:9f:21:71:49:86:19:6c:a6:8a:72: df:36:cc:f4:f1:18:eb:bf:89:43:dc:66:ef:e9:52: 17:6b:37:5f:58:ea:28:43:25:e3:fc:eb:23:40:19: 50:13:ef:ba:32:d4:10:a0:54:b1:6f:73:96:0d:ec: c6:59:d1:5e:55:da:27:3a:33:5e:19:d1:c4:0c:03: fc:6d:24:28:ef:8d:4b:b7:fb:16:5f:d8:01:2a:5d: ce:7a:6f:79:2d:49:0c:65:ca:2a:df:e5:a5:6f:8f: 82:53:af:cd:6b:4e:ed:ba:bb:90:26:a2:2f:52:49: af:a8:4a:ed:40:96:de:f6:3f:69:65:8c:43:d8:8e: 2a:ff:94:4f:8d:75:c8:6d:46:5c:14:77:86:aa:e2: 31:58:40:4c:3d:ca:bf:40:03:01:59:93:66:b9:f6: 52:d2:d7:85:09:60:5b:df:0e:9f:41:b4:d5:51:26: 65:ca:e1:ad:83:ee:34:ba:6a:aa:4b:fe:06:fb:ce: d4:d3:51:ff:cf:38:11:c7:8e:0f:e9:90:a7:c0:7e: 6f:d6:d9:20:e9:04:37:ca:d0:83:51:c1:1a:7a:c7: b5:58:1a:3b:26:0e:4e:cf:25:f3:45:b7:35:f1:76: 9f:10:c0:2f:89:5c:32:25:1f:01:b0:22:31:b6:5b: c9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4B:B2:75:AB:DA:35:02:F3:E1:3D:B3:86:02:D9:EC:03:1B:64:92 X509v3 Authority Key Identifier: keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32332d3233203d3e203535363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.56.0/23 Signature Algorithm: sha256WithRSAEncryption 25:f8:88:9b:44:06:21:f4:e0:83:ed:29:88:1f:32:a3:3d:ec: 24:00:8a:60:34:b4:42:54:e7:32:77:35:07:95:22:2f:25:68: 14:25:5c:75:2d:b2:10:2a:cd:c1:29:d3:7e:02:c3:62:eb:4a: c0:67:90:b5:c0:dd:55:86:06:17:6a:1d:2e:be:c2:17:6e:7e: b1:39:e7:47:36:e2:7f:0c:b5:e9:78:9d:0c:b7:48:e0:1c:92: 49:82:e0:5e:07:40:e0:44:bc:b3:37:35:43:21:28:e6:71:eb: a7:d4:47:1e:0d:de:e8:03:40:c9:11:3e:58:47:9e:12:e0:3f: b4:b1:86:84:ec:03:a0:9b:45:dd:02:db:e6:23:16:a2:89:b1: c8:c4:c0:91:a1:81:d1:d5:9d:54:ab:e5:bd:19:73:70:06:2d: 62:5c:4f:55:f2:c9:da:b0:38:90:aa:2b:55:ed:fd:0d:5b:9a: b8:bf:9a:79:ab:22:e3:43:42:8a:a2:83:80:0a:cb:3d:f8:47: a9:9c:d5:51:90:c0:56:a8:69:05:29:66:27:33:3c:9f:99:55: 9e:e1:f7:fd:8b:05:9e:7c:54:4a:79:b4:60:3f:1c:6c:8c:8f: 3c:1b:65:00:26:ba:10:ff:5f:ea:52:2d:30:c0:d7:ca:0d:19: a6:34:f6:87 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUK7cdw3zoBUbZ8eDX6gHMB2/ws68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZB OTczQTA2MDAeFw0yNDEwMDQwMzU1MDJaFw0yNTEwMDMwNDAwMDJaMDMxMTAvBgNV BAMTKDcyNEJCMjc1QUJEQTM1MDJGM0UxM0RCMzg2MDJEOUVDMDMxQjY0OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDldDNOnyFxSYYZbKaKct82zPTx GOu/iUPcZu/pUhdrN19Y6ihDJeP86yNAGVAT77oy1BCgVLFvc5YN7MZZ0V5V2ic6 M14Z0cQMA/xtJCjvjUu3+xZf2AEqXc56b3ktSQxlyirf5aVvj4JTr81rTu26u5Am oi9SSa+oSu1Alt72P2lljEPYjir/lE+NdchtRlwUd4aq4jFYQEw9yr9AAwFZk2a5 9lLS14UJYFvfDp9BtNVRJmXK4a2D7jS6aqpL/gb7ztTTUf/POBHHjg/pkKfAfm/W 2SDpBDfK0INRwRp6x7VYGjsmDk7PJfNFtzXxdp8QwC+JXDIlHwGwIjG2W8k1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUckuydavaNQLz4T2zhgLZ7AMbZJIwHwYDVR0j BBgwFoAUXd3M3zr8SS9sxIcdYHKlr6lzoGAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjA2Y2Y1MC1hM2QxLTRjYzktOTI2MC05ODdiMmNhMGM5MjcvMC81REREQ0NERjNB RkM0OTJGNkNDNDg3MUQ2MDcyQTVBRkE5NzNBMDYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZBOTcz QTA2MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMDZjZjUwLWEzZDEtNGNjOS05 MjYwLTk4N2IyY2EwYzkyNy8wLzM0MzkyZTMxMzUzNjJlMzUzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzUzNjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExnDgwDQYJKoZIhvcN AQELBQADggEBACX4iJtEBiH04IPtKYgfMqM97CQAimA0tEJU5zJ3NQeVIi8laBQl XHUtshAqzcEp034Cw2LrSsBnkLXA3VWGBhdqHS6+whdufrE550c24n8Mtel4nQy3 SOAckkmC4F4HQOBEvLM3NUMhKOZx66fURx4N3ugDQMkRPlhHnhLgP7SxhoTsA6Cb Rd0C2+YjFqKJscjEwJGhgdHVnVSr5b0Zc3AGLWJcT1XyydqwOJCqK1Xt/Q1bmri/ mnmrIuNDQoqig4AKyz34R6mc1VGQwFaoaQUpZiczPJ+ZVZ7h9/2LBZ58VEp5tGA/ HGyMjzwbZQAmuhD/X+pSLTDA18oNGaY09oc= -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:31 2024 by rpki-client on console-ams.rpki-client.org