$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e36302e302f32342d3234203d3e203535363637.roa File: 34392e3135362e36302e302f32342d3234203d3e203535363637.roa (raw, json) Hash identifier: 5nBpHkwL82Gi9NUGyKestOksjx7zZUbyEsgUlUqCAVE= Subject key identifier: B8:E4:22:78:4C:5B:28:53:CD:4D:33:88:EA:46:3A:B3:F0:79:50:79 Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Certificate serial: 5A70B134A43CBDB23C6B5CE3A26C540F5006654D Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e36302e302f32342d3234203d3e203535363637.roa Signing time: Thu 03 Oct 2024 08:03:06 +0000 ROA not before: Thu 03 Oct 2024 07:58:06 +0000 ROA not after: Thu 02 Oct 2025 08:03:06 +0000 asID: 55667 IP address blocks: 49.156.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:70:b1:34:a4:3c:bd:b2:3c:6b:5c:e3:a2:6c:54:0f:50:06:65:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Validity Not Before: Oct 3 07:58:06 2024 GMT Not After : Oct 2 08:03:06 2025 GMT Subject: CN=B8E422784C5B2853CD4D3388EA463AB3F0795079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4f:8f:70:06:0a:a9:37:84:a2:d5:72:16:25: 1b:00:03:33:82:71:46:bf:e6:4f:6c:ac:45:fd:fa: b8:4b:e7:a9:46:2c:65:27:2e:81:6c:6d:b3:7d:2b: a5:8f:c2:c0:33:a1:24:12:6b:d6:66:15:0a:00:f2: f8:38:3b:b4:82:b6:52:13:b8:02:0f:1f:cb:bf:0f: 9d:8f:45:dc:cd:7d:43:5c:c2:fb:b4:ad:0c:d6:99: 29:4a:54:5a:a1:73:70:e7:fc:b8:5d:66:1d:f5:43: 4c:65:12:56:c5:2a:c5:69:af:c1:c1:53:a0:56:df: c6:24:5a:a0:5b:c7:ec:73:0f:ee:6d:2a:1a:00:24: 2c:b5:02:6a:15:ac:17:1c:c8:c2:c9:1b:46:cc:80: ce:85:c5:b6:56:68:c9:e5:4c:e3:d7:e1:1d:cf:bc: 8d:41:71:66:ec:d8:52:9b:4b:c2:45:e0:b4:1c:e9: b8:54:00:33:58:43:fb:57:c2:5a:32:59:c7:e1:61: b5:8b:a7:61:69:ab:b4:6d:7f:8d:4a:c5:76:2b:25: 36:c7:99:fe:46:4f:9f:54:fe:b3:f0:f1:1b:61:76: e4:d0:1b:11:f9:bf:35:92:81:8c:44:ef:36:eb:2a: 56:ce:32:c4:8f:c3:69:96:7d:9f:0c:0c:da:a5:68: 66:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E4:22:78:4C:5B:28:53:CD:4D:33:88:EA:46:3A:B3:F0:79:50:79 X509v3 Authority Key Identifier: keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e36302e302f32342d3234203d3e203535363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.60.0/24 Signature Algorithm: sha256WithRSAEncryption 86:bf:e6:d9:09:89:80:68:06:fa:df:2c:04:f3:58:ce:55:60: 65:f7:e7:55:8c:f5:12:06:75:c5:02:45:4e:83:b5:50:b6:87: be:74:93:24:47:17:e0:31:a1:d7:8f:fd:b1:96:9b:6f:9d:cb: 8d:04:67:c4:49:f9:e0:f4:21:4e:bd:9c:f4:dd:ab:50:a9:42: 00:55:f1:67:39:62:57:76:e4:7d:d3:74:68:db:f1:8c:dd:27: f7:11:33:e3:55:09:e9:6e:a8:48:d9:59:ed:7b:0c:65:34:1d: 14:45:60:78:65:4b:c4:b6:39:87:ff:5c:94:3f:70:3a:ca:7a: cd:22:79:6c:d3:90:c1:6e:89:f4:62:76:06:74:57:4e:85:93: 23:48:13:ce:ee:7f:85:60:6d:16:74:a2:69:0a:aa:05:6e:ee: b6:80:60:30:99:d0:17:f0:ac:3c:50:6d:14:59:cb:d1:3c:09: 13:75:a4:d5:8e:67:bd:c6:0b:4a:bf:aa:8b:a2:e2:e1:7e:8f: c8:8c:ba:df:bb:68:52:d2:e4:5c:96:c9:68:af:61:d6:7a:3f: cf:71:f5:d5:73:c6:97:46:93:dd:62:66:e1:09:d8:5d:61:34: 02:0f:19:c1:f3:b9:a3:8b:bc:4f:e8:cf:63:f5:00:81:e3:82: 4b:d1:f4:56 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWnCxNKQ8vbI8a1zjomxUD1AGZU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZB OTczQTA2MDAeFw0yNDEwMDMwNzU4MDZaFw0yNTEwMDIwODAzMDZaMDMxMTAvBgNV BAMTKEI4RTQyMjc4NEM1QjI4NTNDRDREMzM4OEVBNDYzQUIzRjA3OTUwNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdT49wBgqpN4Si1XIWJRsAAzOC cUa/5k9srEX9+rhL56lGLGUnLoFsbbN9K6WPwsAzoSQSa9ZmFQoA8vg4O7SCtlIT uAIPH8u/D52PRdzNfUNcwvu0rQzWmSlKVFqhc3Dn/LhdZh31Q0xlElbFKsVpr8HB U6BW38YkWqBbx+xzD+5tKhoAJCy1AmoVrBccyMLJG0bMgM6FxbZWaMnlTOPX4R3P vI1BcWbs2FKbS8JF4LQc6bhUADNYQ/tXwloyWcfhYbWLp2Fpq7Rtf41KxXYrJTbH mf5GT59U/rPw8RthduTQGxH5vzWSgYxE7zbrKlbOMsSPw2mWfZ8MDNqlaGbRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuOQieExbKFPNTTOI6kY6s/B5UHkwHwYDVR0j BBgwFoAUXd3M3zr8SS9sxIcdYHKlr6lzoGAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjA2Y2Y1MC1hM2QxLTRjYzktOTI2MC05ODdiMmNhMGM5MjcvMC81REREQ0NERjNB RkM0OTJGNkNDNDg3MUQ2MDcyQTVBRkE5NzNBMDYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZBOTcz QTA2MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMDZjZjUwLWEzZDEtNGNjOS05 MjYwLTk4N2IyY2EwYzkyNy8wLzM0MzkyZTMxMzUzNjJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxnDwwDQYJKoZIhvcN AQELBQADggEBAIa/5tkJiYBoBvrfLATzWM5VYGX351WM9RIGdcUCRU6DtVC2h750 kyRHF+AxodeP/bGWm2+dy40EZ8RJ+eD0IU69nPTdq1CpQgBV8Wc5Yld25H3TdGjb 8YzdJ/cRM+NVCeluqEjZWe17DGU0HRRFYHhlS8S2OYf/XJQ/cDrKes0ieWzTkMFu ifRidgZ0V06FkyNIE87uf4VgbRZ0omkKqgVu7raAYDCZ0BfwrDxQbRRZy9E8CRN1 pNWOZ73GC0q/qoui4uF+j8iMut+7aFLS5FyWyWivYdZ6P89x9dVzxpdGk91iZuEJ 2F1hNAIPGcHzuaOLvE/oz2P1AIHjgkvR9FY= -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:31 2024 by rpki-client on console-ams.rpki-client.org