$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34392e35302e342e302f32342d3234203d3e203435333233.roa File: 34392e35302e342e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: 33N6Bmvqy83MAMjrfqz1c5HjvqCh0AkEpsKILkk9IYE= Subject key identifier: A0:CB:6A:95:86:D2:63:CB:F2:0C:EC:23:86:3B:A0:24:49:DC:DA:70 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 557EDC0EE4DC6423F994CF6EE1FBE9548DA2BE25 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34392e35302e342e302f32342d3234203d3e203435333233.roa Signing time: Wed 04 Dec 2024 14:00:01 +0000 ROA not before: Wed 04 Dec 2024 13:55:01 +0000 ROA not after: Wed 03 Dec 2025 14:00:01 +0000 asID: 45323 IP address blocks: 49.50.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:7e:dc:0e:e4:dc:64:23:f9:94:cf:6e:e1:fb:e9:54:8d:a2:be:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Dec 4 13:55:01 2024 GMT Not After : Dec 3 14:00:01 2025 GMT Subject: CN=A0CB6A9586D263CBF20CEC23863BA02449DCDA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:9f:d3:5a:f3:75:cb:f7:ff:9d:1c:63:4b: e6:08:27:c5:e0:9a:02:8b:d1:09:7c:c0:6f:bb:6d: 50:d5:cf:f6:47:0d:cf:9f:a9:61:bd:f5:41:1b:8c: 14:62:1e:4b:00:93:f6:82:b8:13:65:d1:0e:57:a8: b2:8a:7e:72:19:c9:79:67:90:cc:7b:22:78:93:ad: 0c:3e:7d:7c:00:67:2c:40:68:8d:c0:45:73:8d:bf: 7f:97:c7:31:cf:1c:cc:41:de:3a:47:31:16:0a:bd: cc:20:c4:ed:b9:fb:57:e5:1e:f9:82:29:6b:ba:d9: 8e:c0:64:aa:72:50:4d:9f:9d:81:93:11:1c:ec:83: 59:59:05:f9:28:bc:88:d4:85:26:37:00:68:8b:66: a3:ed:8b:db:14:29:aa:ba:7c:36:a0:e5:2d:8f:e0: df:83:80:24:2e:40:26:e8:b3:b7:1f:28:c3:f6:37: cc:36:bd:8e:ba:66:96:01:63:05:ed:18:39:db:13: 00:a1:21:75:e6:db:dd:8a:d1:35:89:41:a5:48:29: d8:de:57:9e:71:11:c6:08:96:c8:4e:3c:a7:1d:3e: c9:cc:b5:41:de:d8:d7:b9:da:cf:df:9d:ee:f1:3e: 5e:3a:03:a3:d6:af:e1:55:00:8d:8d:02:6b:07:37: 2d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CB:6A:95:86:D2:63:CB:F2:0C:EC:23:86:3B:A0:24:49:DC:DA:70 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34392e35302e342e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.50.4.0/24 Signature Algorithm: sha256WithRSAEncryption 76:94:35:03:46:f9:8d:0d:d3:87:83:c1:15:0f:cd:c8:91:c5: 7e:a7:45:fd:b1:e7:04:26:27:6b:c6:d8:fd:1e:91:5f:89:25: db:33:5e:03:fe:f8:ac:eb:3f:02:27:df:be:86:77:74:34:34: 62:0c:7b:88:66:7b:87:17:50:17:df:d9:18:3f:33:2d:a1:a3: 3f:a8:fc:a0:93:47:55:12:55:ef:7d:40:96:fe:40:88:b4:34: 87:82:54:a5:fb:1b:7b:95:39:4e:94:64:b7:d3:b8:67:04:62: 84:f0:7c:77:d8:45:bc:5b:62:47:1f:1f:c7:9e:b0:cb:a7:2d: 77:08:15:33:28:e8:46:32:6e:9f:6d:0b:8c:8b:89:62:cd:85: 57:40:54:c9:40:26:07:17:39:85:09:8b:91:50:6f:ba:f1:d4: 93:57:63:bf:f2:9c:c5:6c:8f:6b:07:90:f4:10:31:1c:fa:fc: d2:da:67:b6:fc:9e:f7:e3:a2:4b:31:01:52:9e:49:f8:a4:12: 8c:df:7d:e7:e1:30:61:f9:46:1f:7e:2a:34:e5:18:83:4d:86: 0d:b9:e5:a9:fb:ba:d6:6a:5e:58:bd:ac:35:28:7b:1d:7b:e5: 7f:f4:ff:03:04:66:9d:f6:39:64:61:61:92:ae:1e:58:99:73: ba:07:b2:b7 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUVX7cDuTcZCP5lM9u4fvpVI2iviUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNDEyMDQxMzU1MDFaFw0yNTEyMDMxNDAwMDFaMDMxMTAvBgNV BAMTKEEwQ0I2QTk1ODZEMjYzQ0JGMjBDRUMyMzg2M0JBMDI0NDlEQ0RBNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4i5/TWvN1y/f/nRxjS+YIJ8Xg mgKL0Ql8wG+7bVDVz/ZHDc+fqWG99UEbjBRiHksAk/aCuBNl0Q5XqLKKfnIZyXln kMx7IniTrQw+fXwAZyxAaI3ARXONv3+XxzHPHMxB3jpHMRYKvcwgxO25+1flHvmC KWu62Y7AZKpyUE2fnYGTERzsg1lZBfkovIjUhSY3AGiLZqPti9sUKaq6fDag5S2P 4N+DgCQuQCbos7cfKMP2N8w2vY66ZpYBYwXtGDnbEwChIXXm292K0TWJQaVIKdje V55xEcYIlshOPKcdPsnMtUHe2Ne52s/fne7xPl46A6PWr+FVAI2NAmsHNy1JAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUoMtqlYbSY8vyDOwjhjugJEnc2nAwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVlYzI1ZTQtOWFhOC00YmVmLTkw OTctYzBiZWMwYjI2NmE3LzAvMzQzOTJlMzUzMDJlMzQyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNDM1MzMzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAMTIEMA0GCSqGSIb3DQEBCwUA A4IBAQB2lDUDRvmNDdOHg8EVD83IkcV+p0X9secEJidrxtj9HpFfiSXbM14D/vis 6z8CJ9++hnd0NDRiDHuIZnuHF1AX39kYPzMtoaM/qPygk0dVElXvfUCW/kCItDSH glSl+xt7lTlOlGS307hnBGKE8Hx32EW8W2JHHx/HnrDLpy13CBUzKOhGMm6fbQuM i4lizYVXQFTJQCYHFzmFCYuRUG+68dSTV2O/8pzFbI9rB5D0EDEc+vzS2me2/J73 46JLMQFSnkn4pBKM333n4TBh+UYffio05RiDTYYNueWp+7rWal5Yvaw1KHsde+V/ 9P8DBGad9jlkYWGSrh5YmXO6B7K3 -----END CERTIFICATE-----Generated at Mon Apr 7 01:08:04 2025 by rpki-client