$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231392e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3231392e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: 3dUHFOcTvL6SRCYfkh3xOumINLAjfoUSiaeyY80AmMU= Subject key identifier: 26:A9:58:C9:0D:18:A8:B5:B9:B6:64:CD:FD:69:32:F3:15:7C:0C:E8 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 5894E2758A7D2B58ACFED0612D8D06B23BB829BF Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231392e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Nov 2024 05:00:01 +0000 ROA not before: Fri 08 Nov 2024 04:55:01 +0000 ROA not after: Fri 07 Nov 2025 05:00:01 +0000 asID: 55668 IP address blocks: 49.236.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:94:e2:75:8a:7d:2b:58:ac:fe:d0:61:2d:8d:06:b2:3b:b8:29:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Nov 8 04:55:01 2024 GMT Not After : Nov 7 05:00:01 2025 GMT Subject: CN=26A958C90D18A8B5B9B664CDFD6932F3157C0CE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c5:61:f9:3e:78:31:7e:6d:39:04:d1:e1:9c: 57:14:eb:97:d4:82:01:9a:ae:72:04:24:3d:29:2b: ba:18:5c:b1:35:96:e0:fa:ef:a7:0b:e8:7c:a9:89: 6a:7a:b1:1b:6e:8b:93:20:b3:93:2a:b3:4c:87:2e: d1:60:ee:2b:08:2c:f1:61:c5:e8:33:cd:49:bc:32: e7:c3:a4:d2:b2:13:9b:89:5b:6a:ba:52:94:79:84: 7d:57:8c:f4:a1:f5:47:10:45:ec:73:3b:77:01:56: c4:ce:4c:b9:2d:58:da:4a:f8:a3:d5:c2:b7:fe:41: df:d9:45:32:84:b6:26:7d:3b:53:07:0b:5a:51:b9: 1c:51:6f:63:68:eb:fa:f8:89:c6:70:12:55:fd:6e: 40:15:52:dc:2f:46:cc:e1:43:6a:de:ab:5a:7d:6c: 35:ac:d3:7c:a2:7e:bf:9f:39:c1:17:56:1e:ed:1b: 89:bb:04:47:c4:1c:ba:bc:b1:e3:06:cb:36:78:2a: 45:c4:3b:2d:06:7b:73:53:ff:53:b2:c6:d6:48:c4: c3:6d:4a:2b:19:f7:11:5f:df:ec:39:8a:f5:63:57: 4f:48:9e:4b:2e:fe:1a:06:52:9e:32:10:dd:09:41: d2:bd:1f:5b:7a:6a:3c:6e:2d:c4:2c:89:b7:ea:45: 7f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A9:58:C9:0D:18:A8:B5:B9:B6:64:CD:FD:69:32:F3:15:7C:0C:E8 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231392e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.219.0/24 Signature Algorithm: sha256WithRSAEncryption 70:e9:a4:a2:fc:1a:7c:1e:58:3b:63:1d:9d:1b:4b:9b:ae:34: af:f4:0d:aa:19:a0:b2:dc:93:c9:6b:4d:a1:05:e0:e9:58:9e: 8b:af:e3:1a:5d:b4:2f:13:c6:80:d7:f4:5c:f2:0b:f0:c2:f3: 45:5e:b9:b5:61:f8:47:a1:6a:c8:9b:02:77:4f:f1:38:0b:ec: 3a:08:a9:c4:15:b0:0e:8a:4c:fa:9a:6e:bd:52:0d:63:2b:a1: eb:77:c2:e2:26:45:c6:2b:09:38:b2:63:16:4a:c3:d5:52:1e: f2:52:56:2d:58:87:ad:ed:24:21:c1:ae:e0:05:86:31:c7:2f: 1f:7a:ef:86:1e:7d:c9:9d:5b:9f:25:99:d6:ae:6b:d0:08:92: 8a:4e:7e:9b:da:64:70:ad:1a:d7:a3:bd:0a:6b:74:19:c4:d2: 48:b9:36:1c:84:f8:36:bc:8b:aa:2d:a4:14:d1:90:8b:13:f3: 1d:b3:80:51:8c:8e:44:b3:1b:79:e5:b5:fe:65:7a:a0:4e:ed: d4:bb:f7:5d:2e:79:34:50:3a:ed:83:c9:0b:32:c2:18:d8:b2: 51:94:34:4a:1c:5c:f8:64:2d:5b:95:6b:72:fe:0b:cb:dc:39: 8b:56:66:0f:59:24:cf:fd:27:c8:71:3d:f0:7a:0c:14:eb:94: 2b:34:06:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWJTidYp9K1is/tBhLY0Gsju4Kb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNDExMDgwNDU1MDFaFw0yNTExMDcwNTAwMDFaMDMxMTAvBgNV BAMTKDI2QTk1OEM5MEQxOEE4QjVCOUI2NjRDREZENjkzMkYzMTU3QzBDRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHxWH5Pngxfm05BNHhnFcU65fU ggGarnIEJD0pK7oYXLE1luD676cL6HypiWp6sRtui5Mgs5Mqs0yHLtFg7isILPFh xegzzUm8MufDpNKyE5uJW2q6UpR5hH1XjPSh9UcQRexzO3cBVsTOTLktWNpK+KPV wrf+Qd/ZRTKEtiZ9O1MHC1pRuRxRb2No6/r4icZwElX9bkAVUtwvRszhQ2req1p9 bDWs03yifr+fOcEXVh7tG4m7BEfEHLq8seMGyzZ4KkXEOy0Ge3NT/1OyxtZIxMNt SisZ9xFf3+w5ivVjV09Inksu/hoGUp4yEN0JQdK9H1t6ajxuLcQsibfqRX+tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJqlYyQ0YqLW5tmTN/Wky8xV8DOgwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs2zANBgkqhkiG 9w0BAQsFAAOCAQEAcOmkovwafB5YO2MdnRtLm640r/QNqhmgstyTyWtNoQXg6Vie i6/jGl20LxPGgNf0XPIL8MLzRV65tWH4R6FqyJsCd0/xOAvsOgipxBWwDopM+ppu vVINYyuh63fC4iZFxisJOLJjFkrD1VIe8lJWLViHre0kIcGu4AWGMccvH3rvhh59 yZ1bnyWZ1q5r0AiSik5+m9pkcK0a16O9Cmt0GcTSSLk2HIT4NryLqi2kFNGQixPz HbOAUYyORLMbeeW1/mV6oE7t1Lv3XS55NFA67YPJCzLCGNiyUZQ0Shxc+GQtW5Vr cv4Ly9w5i1ZmD1kkz/0nyHE98HoMFOuUKzQGwA== -----END CERTIFICATE-----Generated at Sun Nov 24 11:23:25 2024 by rpki-client on console-ams.rpki-client.org