$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232332e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3232332e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: 6Ss/J4jbsHWttbGBWZAXrFLeP7zMzLu10fV9oC9kRxs= Subject key identifier: 75:E5:96:01:D3:2B:79:D0:C6:6A:1C:0E:D0:EA:DA:7C:D5:FA:2B:03 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 3FDA16CAED0B2F456DB819FE037C8363DA5E0314 Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232332e302f32342d3234203d3e203535363638.roa Signing time: Fri 08 Nov 2024 05:00:01 +0000 ROA not before: Fri 08 Nov 2024 04:55:01 +0000 ROA not after: Fri 07 Nov 2025 05:00:01 +0000 asID: 55668 IP address blocks: 49.236.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:da:16:ca:ed:0b:2f:45:6d:b8:19:fe:03:7c:83:63:da:5e:03:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Nov 8 04:55:01 2024 GMT Not After : Nov 7 05:00:01 2025 GMT Subject: CN=75E59601D32B79D0C66A1C0ED0EADA7CD5FA2B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0a:3d:8e:b4:4e:89:43:30:dc:b5:bb:9b:38: c7:dd:ac:49:36:16:df:c8:c0:7d:a4:fc:2a:61:b3: 31:81:d5:7f:8b:14:81:8c:4b:5e:1e:e3:56:11:9b: 20:49:65:c1:55:3b:06:50:e2:d4:d3:33:2f:11:c2: e4:8a:c6:a6:f3:d2:27:a0:a6:ea:6f:a2:19:cd:de: 49:db:8c:cd:ac:a1:68:97:10:3f:ac:57:e9:1a:c0: 4a:8d:0f:a2:f2:f5:6f:a9:0e:56:e5:36:6b:e2:40: 44:0b:f7:01:a0:a0:f0:6f:cf:f8:bf:d4:4f:3f:73: ff:97:b8:66:90:7f:f9:05:6f:f6:81:3b:8b:60:60: c8:34:c5:3f:72:37:8a:9e:86:20:52:d9:15:82:2b: 07:b3:4b:48:94:29:e8:b2:d6:b1:e5:26:1e:6a:43: 92:82:69:6c:b6:95:e6:9f:26:1c:3b:e3:7e:cd:c5: 91:b3:71:08:17:7f:0b:c2:28:53:7e:51:e7:b9:d5: 76:a7:e5:93:8b:c2:dc:4b:0e:33:78:ad:26:e0:5b: 19:0e:3c:d1:e3:db:28:2c:0e:0d:7d:27:f9:59:3d: d4:f2:80:dc:76:31:26:f9:e6:62:de:b4:61:5d:25: 5c:53:a3:8f:c9:f6:44:c5:ab:3b:1e:fb:e1:05:04: fc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E5:96:01:D3:2B:79:D0:C6:6A:1C:0E:D0:EA:DA:7C:D5:FA:2B:03 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232332e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.223.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:d5:4a:4f:1b:0f:33:9e:a2:fa:7b:c4:77:d7:a8:b5:b7:8f: 2f:10:96:f5:14:35:24:a2:3b:79:7d:14:f7:ab:6d:1a:1c:d4: 3b:d4:ca:5e:09:30:56:52:d3:f9:b5:20:19:4c:64:b6:3b:5c: 71:2d:c8:f9:68:e0:d3:8b:26:15:f5:24:be:28:96:dd:bb:40: d4:62:8b:f4:aa:48:cc:1e:4c:25:6f:13:c2:9e:26:2a:82:29: 61:76:f9:ec:99:8c:70:ef:1e:8f:f2:cc:5a:11:61:4b:2f:00: f7:0d:5d:a6:27:f5:d9:56:cb:d9:ae:c1:58:56:04:9b:9c:04: 50:92:6e:f8:93:b4:dd:ed:d2:9c:11:46:0a:1c:9f:1a:da:da: 28:07:a9:ff:fd:c5:b7:68:20:f7:9d:30:ee:c5:ab:76:34:ec: 7b:f3:8a:7e:31:0d:ab:53:e1:d9:52:1e:d9:08:46:5e:9d:28: 98:f0:88:42:c7:22:46:51:14:be:43:2f:48:6a:5e:62:a8:1d: bd:04:f0:45:73:f6:8f:12:cf:61:75:8e:52:65:49:85:57:50: 20:d4:29:98:83:e0:2a:0d:b4:3b:a6:56:64:f7:0d:d3:46:05: d3:e5:b8:b1:ad:8b:0a:cd:39:dc:f8:5d:85:73:c4:44:13:b7: b5:8b:ff:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP9oWyu0LL0VtuBn+A3yDY9peAxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNDExMDgwNDU1MDFaFw0yNTExMDcwNTAwMDFaMDMxMTAvBgNV BAMTKDc1RTU5NjAxRDMyQjc5RDBDNjZBMUMwRUQwRUFEQTdDRDVGQTJCMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQCj2OtE6JQzDctbubOMfdrEk2 Ft/IwH2k/CphszGB1X+LFIGMS14e41YRmyBJZcFVOwZQ4tTTMy8RwuSKxqbz0ieg pupvohnN3knbjM2soWiXED+sV+kawEqND6Ly9W+pDlblNmviQEQL9wGgoPBvz/i/ 1E8/c/+XuGaQf/kFb/aBO4tgYMg0xT9yN4qehiBS2RWCKwezS0iUKeiy1rHlJh5q Q5KCaWy2leafJhw7437NxZGzcQgXfwvCKFN+Uee51Xan5ZOLwtxLDjN4rSbgWxkO PNHj2ygsDg19J/lZPdTygNx2MSb55mLetGFdJVxTo4/J9kTFqzse++EFBPxHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdeWWAdMredDGahwO0OrafNX6KwMwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs3zANBgkqhkiG 9w0BAQsFAAOCAQEAbNVKTxsPM56i+nvEd9eotbePLxCW9RQ1JKI7eX0U96ttGhzU O9TKXgkwVlLT+bUgGUxktjtccS3I+Wjg04smFfUkviiW3btA1GKL9KpIzB5MJW8T wp4mKoIpYXb57JmMcO8ej/LMWhFhSy8A9w1dpif12VbL2a7BWFYEm5wEUJJu+JO0 3e3SnBFGChyfGtraKAep//3Ft2gg950w7sWrdjTse/OKfjENq1Ph2VIe2QhGXp0o mPCIQsciRlEUvkMvSGpeYqgdvQTwRXP2jxLPYXWOUmVJhVdQINQpmIPgKg20O6ZW ZPcN00YF0+W4sa2LCs053PhdhXPERBO3tYv/WQ== -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:21 2024 by rpki-client on console-fra.rpki-client.org