$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232322e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3232322e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: KzlTyJZTxvZfEM8NNzBArTKDbw2Jw6okmjZUpKLdaTA= Subject key identifier: DD:11:C3:5E:BA:B6:F8:71:13:36:6F:76:3E:CB:20:5E:FE:08:C0:A1 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 4EC485E059D56704B322F91F666D597BF8A3EFF5 Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232322e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Dec 2023 04:00:01 +0000 ROA not before: Fri 08 Dec 2023 03:55:01 +0000 ROA not after: Fri 06 Dec 2024 04:00:01 +0000 asID: 55668 IP address blocks: 49.236.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 05:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c4:85:e0:59:d5:67:04:b3:22:f9:1f:66:6d:59:7b:f8:a3:ef:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Dec 8 03:55:01 2023 GMT Not After : Dec 6 04:00:01 2024 GMT Subject: CN=DD11C35EBAB6F87113366F763ECB205EFE08C0A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9c:41:b2:b1:8d:11:a7:2d:b6:8a:74:5a:78: ef:06:e3:ba:ab:48:cc:9a:1e:ec:15:df:d8:56:aa: 7d:f2:56:95:7e:68:33:c0:de:ac:a4:dd:82:fd:b5: 0b:d4:ce:3c:9b:d9:39:45:49:88:00:ee:41:6c:68: 37:cb:e1:4c:4c:b9:da:c7:a8:d4:24:76:64:97:8b: 8f:6c:03:5f:ec:ae:95:09:34:34:e4:d2:b7:8b:a0: 7c:db:58:a5:58:7e:81:89:90:4c:a6:31:7f:2e:7a: 49:e2:eb:24:24:97:c5:10:d0:93:f1:b3:1e:42:1c: 06:57:f7:e6:8b:de:bc:20:36:dc:40:be:8b:6c:84: 9c:6e:e1:9c:36:23:32:35:c5:e6:a7:00:62:61:ca: cc:d2:79:d6:45:dd:0e:4e:94:88:05:cd:7c:6b:d4: 31:ea:9e:5c:08:00:2e:51:46:b1:d6:5e:fb:de:fe: 03:36:07:ee:1e:86:33:e8:93:1a:27:7a:18:09:68: bf:ed:5e:f6:49:09:60:4a:f9:e2:2a:fd:87:80:8d: f5:d8:ab:89:55:09:fc:88:0e:7d:0d:52:7c:07:d2: 0b:5f:d0:89:65:21:5e:23:a6:04:11:78:a7:8c:68: ef:57:30:f8:c3:12:7d:ae:db:76:a7:c4:83:6a:72: cb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:11:C3:5E:BA:B6:F8:71:13:36:6F:76:3E:CB:20:5E:FE:08:C0:A1 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232322e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.222.0/24 Signature Algorithm: sha256WithRSAEncryption ae:7a:1c:d1:3e:b7:12:26:a0:d3:47:c6:94:58:38:2b:cd:44: 98:6d:1a:53:f0:1b:b1:04:fa:cf:99:37:36:09:86:16:bd:1e: a1:f2:56:13:ec:e9:e0:e7:fd:f4:64:e6:87:9e:80:00:01:a3: 42:96:26:a9:f3:86:df:71:5b:0a:35:ea:bc:79:3b:68:f8:1e: 94:48:04:d1:34:c3:fd:0d:cf:70:5b:9b:03:4b:5f:dd:eb:26: 77:3b:58:a1:b9:bb:c4:a6:6c:d7:e4:c5:c9:8f:b4:e4:60:19: 71:a3:9f:94:fe:3f:16:8e:01:cb:91:09:ab:79:bf:fd:5e:27: ff:94:15:16:45:28:52:c2:70:6e:fa:32:5e:6a:35:df:22:6f: 30:e4:ef:b8:4b:7a:53:8d:6d:7f:4b:57:09:2d:46:b0:3a:e7: 04:42:30:91:1b:34:59:1d:ba:21:94:63:ef:9b:79:90:5c:2f: 7e:21:d9:2c:35:80:d9:a8:d7:06:30:d3:7b:d7:bd:fb:11:10: 37:68:b4:0b:ac:76:0c:4d:99:23:f9:99:e4:1e:ce:03:6f:91: 80:f2:b0:cb:73:9b:88:88:02:01:84:a0:44:be:13:2d:0a:60: b6:8a:59:c9:ef:17:79:96:e7:9f:76:27:3e:4d:dd:cc:c4:73: 78:ce:6f:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTsSF4FnVZwSzIvkfZm1Ze/ij7/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yMzEyMDgwMzU1MDFaFw0yNDEyMDYwNDAwMDFaMDMxMTAvBgNV BAMTKEREMTFDMzVFQkFCNkY4NzExMzM2NkY3NjNFQ0IyMDVFRkUwOEMwQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJnEGysY0Rpy22inRaeO8G47qr SMyaHuwV39hWqn3yVpV+aDPA3qyk3YL9tQvUzjyb2TlFSYgA7kFsaDfL4UxMudrH qNQkdmSXi49sA1/srpUJNDTk0reLoHzbWKVYfoGJkEymMX8uekni6yQkl8UQ0JPx sx5CHAZX9+aL3rwgNtxAvotshJxu4Zw2IzI1xeanAGJhyszSedZF3Q5OlIgFzXxr 1DHqnlwIAC5RRrHWXvve/gM2B+4ehjPokxonehgJaL/tXvZJCWBK+eIq/YeAjfXY q4lVCfyIDn0NUnwH0gtf0IllIV4jpgQReKeMaO9XMPjDEn2u23anxINqcsvLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3RHDXrq2+HETNm92PssgXv4IwKEwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs3jANBgkqhkiG 9w0BAQsFAAOCAQEArnoc0T63Eiag00fGlFg4K81EmG0aU/AbsQT6z5k3NgmGFr0e ofJWE+zp4Of99GTmh56AAAGjQpYmqfOG33FbCjXqvHk7aPgelEgE0TTD/Q3PcFub A0tf3esmdztYobm7xKZs1+TFyY+05GAZcaOflP4/Fo4By5EJq3m//V4n/5QVFkUo UsJwbvoyXmo13yJvMOTvuEt6U41tf0tXCS1GsDrnBEIwkRs0WR26IZRj75t5kFwv fiHZLDWA2ajXBjDTe9e9+xEQN2i0C6x2DE2ZI/mZ5B7OA2+RgPKwy3ObiIgCAYSg RL4TLQpgtopZye8XeZbnn3YnPk3dzMRzeM5vgA== -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:28 2024 by rpki-client on console-fra.rpki-client.org