$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231382e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3231382e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: cndHnN7Y2CkZsc1bcXRUS17ntMjtPGamuBmM/0sBScA= Subject key identifier: 42:C9:E7:64:E8:EE:B5:DF:6D:19:50:3A:AC:8C:D8:AC:0C:5C:47:53 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 24839146D3152F989F14A3798FB4AC14C691CD75 Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231382e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Nov 2024 04:00:01 +0000 ROA not before: Fri 08 Nov 2024 03:55:01 +0000 ROA not after: Fri 07 Nov 2025 04:00:01 +0000 asID: 55668 IP address blocks: 49.236.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:83:91:46:d3:15:2f:98:9f:14:a3:79:8f:b4:ac:14:c6:91:cd:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Nov 8 03:55:01 2024 GMT Not After : Nov 7 04:00:01 2025 GMT Subject: CN=42C9E764E8EEB5DF6D19503AAC8CD8AC0C5C4753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:21:e0:ce:78:89:f7:08:e2:4f:46:71:b6:72: 47:39:9f:83:65:54:ff:85:e0:c7:19:80:15:b6:c2: 78:5e:53:f5:26:78:e7:52:a9:89:83:e7:9f:2b:3f: 84:ee:23:89:5f:8b:81:64:89:da:be:19:aa:13:6a: 29:35:af:25:92:58:82:39:13:9a:db:55:3a:93:0b: 98:a0:29:28:57:11:06:d5:b4:8a:60:1a:95:23:ed: 49:05:59:b1:cb:22:63:a8:51:49:62:f4:56:67:c9: 04:23:d8:0e:1d:54:78:ba:3c:d8:43:d5:03:1f:6f: 10:ca:1f:d2:e7:9b:b2:63:0c:84:fa:49:86:d5:44: db:75:40:25:57:47:c0:23:1b:48:3d:7c:05:b6:17: 7c:e1:cd:7d:75:c8:f3:3f:b2:cb:6b:54:18:5d:6a: 2f:11:13:34:71:c4:34:d2:70:c2:31:d0:b8:c8:cc: 04:1a:04:07:23:88:6a:f3:99:2d:3b:f1:86:53:a4: 5b:db:52:9e:d1:fd:3a:0b:fb:28:97:60:c7:9f:7f: 98:d6:ef:a9:96:d8:93:b0:a4:72:75:8f:76:41:49: 6c:f4:bd:e9:ad:d3:fb:82:d8:a3:a4:1c:89:1e:48: 42:7a:51:ec:f4:d5:ef:4e:ce:82:2d:ff:18:a3:26: 32:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C9:E7:64:E8:EE:B5:DF:6D:19:50:3A:AC:8C:D8:AC:0C:5C:47:53 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231382e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.218.0/24 Signature Algorithm: sha256WithRSAEncryption b8:40:69:bd:ab:28:96:e4:bc:26:fb:88:ab:73:eb:10:e8:40: 70:7d:50:e5:ee:ee:aa:67:49:1d:24:af:b5:46:6c:8a:b9:35: 13:c1:e0:14:00:d1:ca:9a:78:21:b8:96:88:67:9b:45:9b:85: 81:e0:64:31:62:ed:5c:93:82:ec:3d:4b:02:72:2c:12:db:a7: 55:52:6a:63:40:d0:5e:25:4b:82:cd:01:c7:9d:bd:52:47:ac: 11:2a:2b:84:aa:70:89:a8:90:9b:b2:13:2d:a3:a3:72:2b:b2: c0:ec:07:ff:47:47:c7:18:9c:dd:75:02:2d:71:e8:97:8a:e6: a6:4a:20:38:17:24:99:77:0c:fc:57:ff:e0:d6:ed:7e:86:05: 89:2c:07:77:1c:56:3a:2c:b7:77:90:63:8e:7b:25:da:f6:c3: 5a:0e:09:03:18:11:a9:b8:3d:07:34:a6:cf:9c:e2:e9:f3:7e: 16:44:7d:0d:49:f0:03:50:20:17:b6:e6:8f:90:4e:45:a3:4a: 8d:5f:bf:e8:d1:92:e6:29:89:0b:1e:81:df:7a:d8:7d:5b:b5: 51:b5:cd:69:9e:3a:83:56:f7:3c:0a:96:45:bd:6f:09:40:05: d0:f6:9f:3b:a0:f4:7f:14:fc:4d:da:e6:e8:1b:2c:f9:bd:cd: b5:28:64:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJIORRtMVL5ifFKN5j7SsFMaRzXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNDExMDgwMzU1MDFaFw0yNTExMDcwNDAwMDFaMDMxMTAvBgNV BAMTKDQyQzlFNzY0RThFRUI1REY2RDE5NTAzQUFDOENEOEFDMEM1QzQ3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEIeDOeIn3COJPRnG2ckc5n4Nl VP+F4McZgBW2wnheU/UmeOdSqYmD558rP4TuI4lfi4Fkidq+GaoTaik1ryWSWII5 E5rbVTqTC5igKShXEQbVtIpgGpUj7UkFWbHLImOoUUli9FZnyQQj2A4dVHi6PNhD 1QMfbxDKH9Lnm7JjDIT6SYbVRNt1QCVXR8AjG0g9fAW2F3zhzX11yPM/sstrVBhd ai8REzRxxDTScMIx0LjIzAQaBAcjiGrzmS078YZTpFvbUp7R/ToL+yiXYMeff5jW 76mW2JOwpHJ1j3ZBSWz0vemt0/uC2KOkHIkeSEJ6Uez01e9OzoIt/xijJjKzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQsnnZOjutd9tGVA6rIzYrAxcR1MwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs2jANBgkqhkiG 9w0BAQsFAAOCAQEAuEBpvasoluS8JvuIq3PrEOhAcH1Q5e7uqmdJHSSvtUZsirk1 E8HgFADRypp4IbiWiGebRZuFgeBkMWLtXJOC7D1LAnIsEtunVVJqY0DQXiVLgs0B x529UkesESorhKpwiaiQm7ITLaOjciuywOwH/0dHxxic3XUCLXHol4rmpkogOBck mXcM/Ff/4NbtfoYFiSwHdxxWOiy3d5Bjjnsl2vbDWg4JAxgRqbg9BzSmz5zi6fN+ FkR9DUnwA1AgF7bmj5BORaNKjV+/6NGS5imJCx6B33rYfVu1UbXNaZ46g1b3PAqW Rb1vCUAF0PafO6D0fxT8Tdrm6Bss+b3NtShk3g== -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:21 2024 by rpki-client on console-fra.rpki-client.org