$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231362e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3231362e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: C1ful6krFD/D/NQklV2H82Wf+t1lC80LwN0uOUSrxSc= Subject key identifier: 68:A4:6D:16:09:7D:B5:C9:9D:12:2C:D2:F1:33:6F:12:50:EE:9F:37 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 5F939688DEC9E66EEF7DDDEF3A9D24FD85890931 Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231362e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Nov 2024 05:00:01 +0000 ROA not before: Fri 08 Nov 2024 04:55:01 +0000 ROA not after: Fri 07 Nov 2025 05:00:01 +0000 asID: 55668 IP address blocks: 49.236.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:93:96:88:de:c9:e6:6e:ef:7d:dd:ef:3a:9d:24:fd:85:89:09:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Nov 8 04:55:01 2024 GMT Not After : Nov 7 05:00:01 2025 GMT Subject: CN=68A46D16097DB5C99D122CD2F1336F1250EE9F37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d9:38:b6:e9:28:06:53:35:04:81:f9:9b:e3: 9c:c0:1c:ba:a6:ef:d8:0a:8b:39:4a:f1:49:f6:a9: 93:e0:55:d6:22:fb:01:bb:6a:06:83:cd:c1:d7:ec: 9f:d3:e2:9b:f3:a3:f5:e1:48:33:fa:73:ee:d5:cc: 7f:3c:e4:ba:0a:a1:67:5e:6b:61:cf:9f:06:64:5c: da:33:59:51:57:92:0d:dc:66:ff:3e:15:52:9c:31: ba:5f:25:5a:80:33:4c:fd:07:0b:ab:b0:8a:f5:29: ff:4f:73:15:82:39:f6:9c:f9:ff:98:34:d2:c8:47: 20:30:28:54:30:fe:f4:09:c3:20:bb:52:61:49:17: 38:79:3d:9d:82:1d:f1:ad:3c:32:9c:70:6c:cb:6f: 1b:a4:c0:f4:47:fd:28:58:32:ad:af:b2:a8:78:c0: 11:b6:db:c9:f3:ba:da:82:aa:09:0a:f4:ea:59:59: ac:97:56:44:15:47:18:4a:7e:6c:ab:58:df:ff:8b: b9:ec:a1:39:03:77:93:c4:78:f3:c4:33:32:35:98: b9:bf:87:f5:83:74:0b:e5:e9:b0:a9:a9:52:25:ae: d6:b7:07:d6:7c:8e:7a:1b:91:93:2f:b4:6c:5a:f4: 3a:22:4e:a2:6b:ba:fe:87:38:d3:85:b6:fc:29:3e: 0a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A4:6D:16:09:7D:B5:C9:9D:12:2C:D2:F1:33:6F:12:50:EE:9F:37 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231362e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.216.0/24 Signature Algorithm: sha256WithRSAEncryption 51:a7:d1:57:a2:fd:5b:96:72:fc:37:8b:de:4e:be:ca:e8:8b: a9:a7:88:d9:83:c4:68:4c:b2:b7:b6:02:e2:7e:2c:6d:1a:e1: ee:0f:aa:70:a4:20:5d:24:81:b6:9d:d8:e8:21:38:e5:08:23: 1a:f3:5b:19:8d:07:00:e8:41:f2:f5:05:a0:a4:af:85:72:c3: 1c:36:62:b3:39:7f:16:5e:b2:91:13:61:1a:a6:09:99:c4:92: 34:d5:fd:ca:da:9f:32:af:30:7d:91:f3:24:f6:3f:3f:64:c4: b7:54:11:09:45:17:fc:a1:23:5f:4e:5e:c6:4f:ad:c3:bf:c6: 4c:80:35:be:31:02:48:3f:03:7d:4a:b3:cd:e4:be:8c:e5:0e: fe:1e:ff:d9:a4:1f:60:a4:9a:d5:14:9b:a0:1f:79:f8:af:c7: ab:3f:47:da:89:27:b9:46:b8:44:c0:f4:ee:f4:25:7e:8f:4f: 18:93:cf:62:fe:8a:29:07:58:c4:dd:22:ed:40:4b:d8:e1:07: b6:74:1e:f1:d7:3d:34:4f:f0:87:49:6e:f1:a1:a2:90:41:24: 12:de:89:7d:e7:ab:2c:e1:e9:cc:a3:9e:74:31:fa:96:60:f0: cd:98:bd:79:38:88:c1:b3:93:fc:ba:ab:ff:e5:0c:2a:24:00: 65:ed:78:b6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX5OWiN7J5m7vfd3vOp0k/YWJCTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNDExMDgwNDU1MDFaFw0yNTExMDcwNTAwMDFaMDMxMTAvBgNV BAMTKDY4QTQ2RDE2MDk3REI1Qzk5RDEyMkNEMkYxMzM2RjEyNTBFRTlGMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF2Ti26SgGUzUEgfmb45zAHLqm 79gKizlK8Un2qZPgVdYi+wG7agaDzcHX7J/T4pvzo/XhSDP6c+7VzH885LoKoWde a2HPnwZkXNozWVFXkg3cZv8+FVKcMbpfJVqAM0z9BwursIr1Kf9PcxWCOfac+f+Y NNLIRyAwKFQw/vQJwyC7UmFJFzh5PZ2CHfGtPDKccGzLbxukwPRH/ShYMq2vsqh4 wBG228nzutqCqgkK9OpZWayXVkQVRxhKfmyrWN//i7nsoTkDd5PEePPEMzI1mLm/ h/WDdAvl6bCpqVIlrta3B9Z8jnobkZMvtGxa9DoiTqJruv6HONOFtvwpPgqJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaKRtFgl9tcmdEizS8TNvElDunzcwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs2DANBgkqhkiG 9w0BAQsFAAOCAQEAUafRV6L9W5Zy/DeL3k6+yuiLqaeI2YPEaEyyt7YC4n4sbRrh 7g+qcKQgXSSBtp3Y6CE45QgjGvNbGY0HAOhB8vUFoKSvhXLDHDZiszl/Fl6ykRNh GqYJmcSSNNX9ytqfMq8wfZHzJPY/P2TEt1QRCUUX/KEjX05exk+tw7/GTIA1vjEC SD8DfUqzzeS+jOUO/h7/2aQfYKSa1RSboB95+K/Hqz9H2oknuUa4RMD07vQlfo9P GJPPYv6KKQdYxN0i7UBL2OEHtnQe8dc9NE/wh0lu8aGikEEkEt6JfeerLOHpzKOe dDH6lmDwzZi9eTiIwbOT/Lqr/+UMKiQAZe14tg== -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:21 2024 by rpki-client on console-fra.rpki-client.org