$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232312e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3232312e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: P3qaAQS+9Hmz4InOLYsrCr6O0nuBDwpieqmijzpxLgQ= Subject key identifier: 5F:79:A1:56:48:AB:2A:D1:B2:69:91:3E:43:03:29:8E:AE:3C:1A:8A Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 2610D77DDE24729E67A13244A6B3C9C66E31709B Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232312e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Nov 2024 05:00:01 +0000 ROA not before: Fri 08 Nov 2024 04:55:01 +0000 ROA not after: Fri 07 Nov 2025 05:00:01 +0000 asID: 55668 IP address blocks: 49.236.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:10:d7:7d:de:24:72:9e:67:a1:32:44:a6:b3:c9:c6:6e:31:70:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Nov 8 04:55:01 2024 GMT Not After : Nov 7 05:00:01 2025 GMT Subject: CN=5F79A15648AB2AD1B269913E4303298EAE3C1A8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5c:4c:e9:d4:7e:5c:a9:df:a2:42:4c:58:e3: c2:b0:74:fc:36:06:9a:85:26:66:f3:a6:ef:9c:1d: 49:e9:be:c1:e7:8c:e4:be:ff:82:09:7c:c7:2b:48: 22:bf:0d:ad:66:65:b1:55:57:6f:6b:dc:45:f7:7b: 1c:68:56:40:cb:5e:96:0e:3b:ae:bf:99:21:57:7a: 85:2d:79:58:8d:34:8a:79:48:cb:26:0f:c5:18:8d: 0b:03:08:92:a5:f5:b9:04:18:0e:c6:11:1b:09:cf: fc:00:72:41:bf:6c:41:fe:e3:eb:16:2e:63:07:7b: 5c:e9:d9:72:f6:11:ff:42:63:1e:ff:7a:8c:10:3a: d6:53:74:ee:e8:27:57:d5:2c:c9:e8:44:cd:d8:6c: e9:73:de:3b:20:b8:3e:b6:e4:c4:de:c6:3e:d1:69: 32:60:c6:4d:36:9e:8a:94:d6:70:07:98:3d:e8:4b: da:32:05:cb:79:8f:ea:9f:b7:8c:d0:a9:57:af:fe: 6b:56:fd:b7:7a:97:cf:f3:5b:cf:27:e0:2c:d1:dd: a0:c5:63:6d:1d:45:fa:ba:af:e6:ad:0e:16:d3:e4: 44:da:62:e0:7f:62:a5:c0:3b:f1:dd:c1:e3:de:ec: f3:26:6e:44:28:97:99:4e:04:69:60:30:e4:db:ae: e2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:79:A1:56:48:AB:2A:D1:B2:69:91:3E:43:03:29:8E:AE:3C:1A:8A X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232312e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.221.0/24 Signature Algorithm: sha256WithRSAEncryption aa:5a:c6:9c:01:a7:3c:52:74:07:60:c4:be:8f:87:d4:04:05: 3a:85:12:d5:57:b6:f4:2f:51:d2:c4:4f:35:28:1b:c2:51:6b: 4f:ff:0b:74:2d:47:ce:4e:51:9a:85:cb:7e:56:a9:ce:78:b7: 1a:99:77:60:1f:33:a2:9f:1f:92:a8:72:4a:69:ed:bc:d7:df: 9b:16:20:ec:bc:f2:af:70:e1:47:e0:85:69:ec:82:2a:22:d2: 69:a2:69:2c:f5:da:9a:11:28:61:b8:10:a3:30:55:17:8e:53: e2:e8:3b:ad:ff:b6:7d:60:77:c4:a6:51:b5:2c:fc:97:f2:09: b4:e5:b2:87:49:65:91:97:ae:ea:66:19:25:a9:18:f3:86:ec: 35:07:e1:64:94:ec:a6:d6:54:5e:bc:9e:41:be:44:51:6a:47: ae:7e:82:25:e7:2c:49:24:a7:da:06:0d:32:b6:47:de:9e:09: 7f:93:c8:ff:25:96:d3:e7:58:ed:e3:18:e3:96:6f:3a:d0:e9: 27:21:1f:91:63:e4:a5:51:16:a4:c5:a7:b3:75:47:ad:aa:90: 92:59:07:b3:bf:8d:21:74:65:81:23:dc:cd:21:e0:97:f4:0c: 7b:15:c3:4a:d0:d1:54:69:96:9a:12:ea:a0:55:70:ab:42:92: d0:bd:12:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJhDXfd4kcp5noTJEprPJxm4xcJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNDExMDgwNDU1MDFaFw0yNTExMDcwNTAwMDFaMDMxMTAvBgNV BAMTKDVGNzlBMTU2NDhBQjJBRDFCMjY5OTEzRTQzMDMyOThFQUUzQzFBOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCXEzp1H5cqd+iQkxY48KwdPw2 BpqFJmbzpu+cHUnpvsHnjOS+/4IJfMcrSCK/Da1mZbFVV29r3EX3exxoVkDLXpYO O66/mSFXeoUteViNNIp5SMsmD8UYjQsDCJKl9bkEGA7GERsJz/wAckG/bEH+4+sW LmMHe1zp2XL2Ef9CYx7/eowQOtZTdO7oJ1fVLMnoRM3YbOlz3jsguD625MTexj7R aTJgxk02noqU1nAHmD3oS9oyBct5j+qft4zQqVev/mtW/bd6l8/zW88n4CzR3aDF Y20dRfq6r+atDhbT5ETaYuB/YqXAO/HdwePe7PMmbkQol5lOBGlgMOTbruJ1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUX3mhVkirKtGyaZE+QwMpjq48GoowHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs3TANBgkqhkiG 9w0BAQsFAAOCAQEAqlrGnAGnPFJ0B2DEvo+H1AQFOoUS1Ve29C9R0sRPNSgbwlFr T/8LdC1Hzk5RmoXLflapzni3Gpl3YB8zop8fkqhySmntvNffmxYg7Lzyr3DhR+CF aeyCKiLSaaJpLPXamhEoYbgQozBVF45T4ug7rf+2fWB3xKZRtSz8l/IJtOWyh0ll kZeu6mYZJakY84bsNQfhZJTsptZUXryeQb5EUWpHrn6CJecsSSSn2gYNMrZH3p4J f5PI/yWW0+dY7eMY45ZvOtDpJyEfkWPkpVEWpMWns3VHraqQklkHs7+NIXRlgSPc zSHgl/QMexXDStDRVGmWmhLqoFVwq0KS0L0SBw== -----END CERTIFICATE-----Generated at Sun Nov 24 11:23:25 2024 by rpki-client on console-ams.rpki-client.org