$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232302e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3232302e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: KZESdVYPyK5UDmppEqYu4UgDw6S2JiyC9Aylq3V7KK8= Subject key identifier: 3F:F3:55:26:77:F3:FF:1D:35:92:AE:7D:16:47:AE:23:D2:B3:52:01 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 332279DAB86767F3BA99FE5920CBEF94876C371F Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232302e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Nov 2024 05:00:02 +0000 ROA not before: Fri 08 Nov 2024 04:55:02 +0000 ROA not after: Fri 07 Nov 2025 05:00:02 +0000 asID: 55668 IP address blocks: 49.236.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:22:79:da:b8:67:67:f3:ba:99:fe:59:20:cb:ef:94:87:6c:37:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Nov 8 04:55:02 2024 GMT Not After : Nov 7 05:00:02 2025 GMT Subject: CN=3FF3552677F3FF1D3592AE7D1647AE23D2B35201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:36:c6:53:a0:5e:98:54:c1:da:98:1c:c6: bd:33:cd:50:4b:73:29:a3:a6:2e:f4:c6:aa:94:a4: 2b:61:19:03:14:75:cb:63:b7:a8:b2:b0:98:62:cc: 62:d9:44:64:79:b7:59:25:64:ab:76:53:ba:c5:b3: 53:be:b9:9c:92:a7:2e:61:6a:3a:38:19:2f:6e:40: 87:26:3a:36:3a:ad:9a:74:5c:a6:f3:3d:b0:b0:b0: 12:0e:ba:c4:12:df:bc:3c:8a:02:ca:79:87:3e:b8: 7b:33:be:88:53:ce:cf:8c:1a:9b:ea:43:48:87:36: b9:a9:b0:5b:ef:9d:0f:32:ce:59:07:ca:ab:ab:87: d5:ae:b5:09:42:25:69:f7:35:75:7a:34:2f:9b:43: 08:0c:44:08:a1:09:5a:8a:33:85:fc:51:b7:93:d4: 23:2c:11:1d:b2:56:1e:f7:f3:6a:df:83:8d:fa:92: f6:c4:d8:73:d4:e9:ad:2d:0d:09:80:f2:07:d9:f5: 06:29:cd:7c:f3:39:c4:bd:2b:68:99:bd:4a:c8:51: 02:15:f9:fe:eb:b6:27:b2:be:14:bc:6b:6c:c7:86: b6:ee:27:54:3d:ab:e4:3f:b1:3f:b3:60:7d:88:7c: 13:10:ee:51:ac:58:f7:44:2a:bd:48:86:1c:5c:8e: 9e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F3:55:26:77:F3:FF:1D:35:92:AE:7D:16:47:AE:23:D2:B3:52:01 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232302e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.220.0/24 Signature Algorithm: sha256WithRSAEncryption c3:7d:9d:96:65:fb:75:ec:03:78:99:e8:c0:d4:1b:2d:e5:5d: 21:0a:15:60:c7:c6:5a:61:5a:c0:67:b4:81:8a:f9:67:d3:03: 88:be:b0:88:ea:e1:15:0c:64:41:b8:08:96:91:d7:84:89:81: bc:0b:a9:41:43:a6:69:c3:a2:d8:37:b9:8d:52:c0:c8:b9:b5: dc:ed:af:75:55:fa:e0:33:ba:db:2a:66:4c:a0:fb:8e:55:ed: 89:06:c0:7a:a7:77:ba:ad:73:3b:81:0b:f5:f2:f1:96:fd:1c: 39:78:f7:ca:9d:06:a0:c3:70:06:14:70:f9:f8:c0:cc:dc:cb: b4:f6:35:60:b4:65:8a:ab:57:6b:ee:5a:ba:73:69:f9:1e:b5: 66:39:1c:16:31:04:31:76:cf:61:4c:ab:ab:ed:ec:d0:47:2d: ef:08:7b:12:0a:98:5a:5d:de:ef:df:de:c5:13:ed:07:f4:04: 0b:67:fe:c1:14:99:da:f0:5b:67:d8:c4:c9:9f:d3:e5:3a:cb: 8a:d5:25:31:1f:96:cc:c9:f1:4b:b7:8b:5d:b6:8c:11:51:ac: ce:a3:39:4c:31:34:6c:01:68:99:15:2b:86:d6:43:31:fb:e4: 77:0a:22:89:ea:c0:5a:27:6e:67:e2:f4:99:ab:2f:8f:78:39: 49:80:ef:4f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMyJ52rhnZ/O6mf5ZIMvvlIdsNx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNDExMDgwNDU1MDJaFw0yNTExMDcwNTAwMDJaMDMxMTAvBgNV BAMTKDNGRjM1NTI2NzdGM0ZGMUQzNTkyQUU3RDE2NDdBRTIzRDJCMzUyMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfhzbGU6BemFTB2pgcxr0zzVBL cymjpi70xqqUpCthGQMUdctjt6iysJhizGLZRGR5t1klZKt2U7rFs1O+uZySpy5h ajo4GS9uQIcmOjY6rZp0XKbzPbCwsBIOusQS37w8igLKeYc+uHszvohTzs+MGpvq Q0iHNrmpsFvvnQ8yzlkHyqurh9WutQlCJWn3NXV6NC+bQwgMRAihCVqKM4X8UbeT 1CMsER2yVh7382rfg436kvbE2HPU6a0tDQmA8gfZ9QYpzXzzOcS9K2iZvUrIUQIV +f7rtieyvhS8a2zHhrbuJ1Q9q+Q/sT+zYH2IfBMQ7lGsWPdEKr1Ihhxcjp7ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUP/NVJnfz/x01kq59FkeuI9KzUgEwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs3DANBgkqhkiG 9w0BAQsFAAOCAQEAw32dlmX7dewDeJnowNQbLeVdIQoVYMfGWmFawGe0gYr5Z9MD iL6wiOrhFQxkQbgIlpHXhImBvAupQUOmacOi2De5jVLAyLm13O2vdVX64DO62ypm TKD7jlXtiQbAeqd3uq1zO4EL9fLxlv0cOXj3yp0GoMNwBhRw+fjAzNzLtPY1YLRl iqtXa+5aunNp+R61ZjkcFjEEMXbPYUyrq+3s0Ect7wh7EgqYWl3e79/exRPtB/QE C2f+wRSZ2vBbZ9jEyZ/T5TrLitUlMR+WzMnxS7eLXbaMEVGszqM5TDE0bAFomRUr htZDMfvkdwoiierAWiduZ+L0masvj3g5SYDvTw== -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:21 2024 by rpki-client on console-fra.rpki-client.org