$ rpki-client -vvf repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa File: 33362e35302e3231372e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: Dh81cXDVuaj6dBnZvbvezQMx/a5Vk1rSL6DeD6afOjw= Subject key identifier: BA:D6:08:59:15:CA:6A:86:5F:BF:8A:AF:64:A3:04:17:01:D1:50:A4 Certificate issuer: /CN=6DBB100D8D4669AB8A5C7EE057228ED67A98099E Certificate serial: 44FB746C4A812349258F50F00DD4E019A9607625 Authority key identifier: 6D:BB:10:0D:8D:46:69:AB:8A:5C:7E:E0:57:22:8E:D6:7A:98:09:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa Signing time: Sat 11 May 2024 12:24:16 +0000 ROA not before: Sat 11 May 2024 12:19:16 +0000 ROA not after: Sat 10 May 2025 12:24:16 +0000 asID: 147128 IP address blocks: 36.50.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.crl rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:fb:74:6c:4a:81:23:49:25:8f:50:f0:0d:d4:e0:19:a9:60:76:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DBB100D8D4669AB8A5C7EE057228ED67A98099E Validity Not Before: May 11 12:19:16 2024 GMT Not After : May 10 12:24:16 2025 GMT Subject: CN=BAD6085915CA6A865FBF8AAF64A3041701D150A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0d:4c:84:10:65:8a:75:03:b2:24:07:ee:83: 28:46:d6:af:20:53:8a:db:a4:12:e2:71:48:9b:80: 96:ac:4c:f7:8a:6a:72:a1:55:02:20:d4:69:1e:6c: 73:9c:13:38:cf:ba:ed:00:a0:c2:79:d3:ae:f7:49: ec:83:1a:cb:bf:05:4a:76:13:65:8d:85:0a:91:73: 99:5b:ae:08:88:37:41:ac:cc:ff:a0:2a:ec:a5:8b: e4:dc:a9:42:13:21:3e:d0:ee:6e:33:51:ba:71:3e: 66:1b:2f:c2:e8:14:37:b3:e1:1d:55:83:e8:b7:3d: 60:c5:a5:be:ba:17:e0:bf:88:c9:ae:78:b4:89:52: 97:73:c4:42:5e:1d:d6:d1:48:1f:e1:02:98:c9:17: c6:0a:fb:5e:27:c6:92:f2:53:9e:24:9f:34:7b:8a: b6:a7:86:b5:7a:44:5e:73:a9:d6:ed:ce:2e:ac:2f: 9b:88:4a:96:f9:59:b2:21:45:07:76:d7:22:bf:79: 1d:57:0b:64:27:56:01:74:4a:ce:87:a6:50:e8:43: 5e:a0:8f:43:e8:fb:ed:a0:4c:17:ce:13:93:ea:72: 3c:1c:a4:4a:9e:08:b0:1a:ca:5d:7e:54:29:d5:db: 15:8b:84:a9:03:b1:bf:37:ab:59:3b:cd:fa:1c:65: d6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D6:08:59:15:CA:6A:86:5F:BF:8A:AF:64:A3:04:17:01:D1:50:A4 X509v3 Authority Key Identifier: keyid:6D:BB:10:0D:8D:46:69:AB:8A:5C:7E:E0:57:22:8E:D6:7A:98:09:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.217.0/24 Signature Algorithm: sha256WithRSAEncryption 41:73:c1:7f:78:22:71:be:3a:32:f2:2c:4d:bf:ee:30:b6:7e: 5e:e4:20:21:2d:5c:c2:60:e0:47:c9:12:d0:86:02:75:a1:1a: ec:64:a4:8c:ad:15:8e:65:4d:a0:ac:34:fd:74:0d:85:96:ad: 68:7e:34:1d:8a:38:d5:8e:ab:42:41:99:ea:68:e5:85:7f:4c: 0b:81:1c:48:da:07:70:43:fa:4f:fd:86:eb:6e:c9:50:14:48: d7:e8:95:a4:31:cc:64:62:6e:0c:db:72:fc:ed:3a:0c:e6:d3: 57:f8:30:1f:77:99:0d:44:ec:8b:9a:41:a3:2d:a2:25:c8:5d: ba:ae:60:80:ce:3e:f3:df:53:d6:52:ab:77:9c:63:9a:ea:2e: 64:0e:4b:1d:2c:02:b3:e1:94:63:fd:f1:21:a9:6d:d6:5a:eb: 9e:63:80:27:7b:fb:c8:b6:4c:95:94:bb:5f:e7:1e:db:e9:12: 1c:74:78:a3:e2:6b:08:87:51:cf:d2:db:ca:76:04:c7:9b:8e: 54:52:ac:e1:0c:2e:a3:ba:83:04:8a:5c:9c:c4:7e:87:17:af: 14:f7:73:f6:55:b4:29:f7:cd:f5:86:a9:1b:41:12:71:38:55: 46:de:7a:60:76:09:fa:ea:04:ce:63:0d:3f:cd:fa:57:2a:98: 9a:79:ca:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURPt0bEqBI0klj1DwDdTgGalgdiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRCQjEwMEQ4RDQ2NjlBQjhBNUM3RUUwNTcyMjhFRDY3 QTk4MDk5RTAeFw0yNDA1MTExMjE5MTZaFw0yNTA1MTAxMjI0MTZaMDMxMTAvBgNV BAMTKEJBRDYwODU5MTVDQTZBODY1RkJGOEFBRjY0QTMwNDE3MDFEMTUwQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLDUyEEGWKdQOyJAfugyhG1q8g U4rbpBLicUibgJasTPeKanKhVQIg1GkebHOcEzjPuu0AoMJ50673SeyDGsu/BUp2 E2WNhQqRc5lbrgiIN0GszP+gKuyli+TcqUITIT7Q7m4zUbpxPmYbL8LoFDez4R1V g+i3PWDFpb66F+C/iMmueLSJUpdzxEJeHdbRSB/hApjJF8YK+14nxpLyU54knzR7 iranhrV6RF5zqdbtzi6sL5uISpb5WbIhRQd21yK/eR1XC2QnVgF0Ss6HplDoQ16g j0Po++2gTBfOE5PqcjwcpEqeCLAayl1+VCnV2xWLhKkDsb83q1k7zfocZdZJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUutYIWRXKaoZfv4qvZKMEFwHRUKQwHwYDVR0j BBgwFoAUbbsQDY1GaauKXH7gVyKO1nqYCZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTk4OWZhZi00OGZiLTRmNDAtOWU3Ny0yNDNkNzhhNWI1YzQvMC82REJCMTAwRDhE NDY2OUFCOEE1QzdFRTA1NzIyOEVENjdBOTgwOTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRCQjEwMEQ4RDQ2NjlBQjhBNUM3RUUwNTcyMjhFRDY3QTk4 MDk5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1OTg5ZmFmLTQ4ZmItNGY0MC05 ZTc3LTI0M2Q3OGE1YjVjNC8wLzMzMzYyZTM1MzAyZTMyMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMxMzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy2TANBgkqhkiG 9w0BAQsFAAOCAQEAQXPBf3gicb46MvIsTb/uMLZ+XuQgIS1cwmDgR8kS0IYCdaEa 7GSkjK0VjmVNoKw0/XQNhZataH40HYo41Y6rQkGZ6mjlhX9MC4EcSNoHcEP6T/2G 627JUBRI1+iVpDHMZGJuDNty/O06DObTV/gwH3eZDUTsi5pBoy2iJchduq5ggM4+ 899T1lKrd5xjmuouZA5LHSwCs+GUY/3xIalt1lrrnmOAJ3v7yLZMlZS7X+ce2+kS HHR4o+JrCIdRz9LbynYEx5uOVFKs4Qwuo7qDBIpcnMR+hxevFPdz9lW0KffN9Yap G0EScThVRt56YHYJ+uoEzmMNP836VyqYmnnKYA== -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org