$ rpki-client -vvf repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa File: 34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa (raw, json) Hash identifier: TKlrYYxdW4d0W7hA0lV/DSzBaApabiKYJpgjro7Ns1Y= Subject key identifier: 7D:EC:67:B0:7C:75:8E:FD:DD:CE:20:1A:8E:E6:D3:5B:69:55:3B:E9 Certificate issuer: /CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Certificate serial: 046D30DE28243FC5AC491072D3D836FAE299F18D Authority key identifier: 4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa Signing time: Mon 01 Jul 2024 01:04:52 +0000 ROA not before: Mon 01 Jul 2024 00:59:52 +0000 ROA not after: Mon 30 Jun 2025 01:04:52 +0000 asID: 135457 IP address blocks: 45.120.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:6d:30:de:28:24:3f:c5:ac:49:10:72:d3:d8:36:fa:e2:99:f1:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Validity Not Before: Jul 1 00:59:52 2024 GMT Not After : Jun 30 01:04:52 2025 GMT Subject: CN=7DEC67B07C758EFDDDCE201A8EE6D35B69553BE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5b:a4:df:49:e1:50:8d:91:a9:b1:30:36:e2: 83:ef:14:8c:08:02:3f:dc:52:f6:21:f1:84:bb:e8: 3b:9d:26:27:e1:dd:e2:b9:c9:7c:0c:84:3e:08:3e: 66:6e:21:e6:d6:a3:16:2a:ef:84:0b:73:7a:81:0f: 9f:80:f4:25:77:1b:06:c7:7a:a6:cd:ac:3c:bd:70: 3e:1b:c7:81:d8:b8:db:82:2b:c0:b0:96:8f:df:d6: 94:79:bb:6a:37:33:80:c1:90:f2:27:91:c8:25:5f: bd:9c:5e:3c:1a:d0:25:e4:af:10:51:f7:14:47:1a: 0c:c7:f5:46:9b:fd:cb:14:d0:94:1e:6c:5c:27:10: 57:74:47:36:d8:f9:46:17:f8:4b:fd:37:ab:f4:3e: 78:8e:31:98:c5:8d:4b:bf:b2:50:1f:8c:53:ad:eb: e5:fe:a0:96:45:29:95:a2:de:47:fc:8a:f5:d3:c4: 5d:40:67:94:17:5c:e1:25:37:b3:50:7f:a5:76:29: e8:ac:8f:47:32:c6:8d:63:9e:00:17:29:c9:04:4e: 65:64:08:fe:2f:da:25:ed:42:54:07:e2:b7:de:62: 85:2d:27:9e:c5:91:1b:9a:4c:8d:eb:bd:73:fd:3f: 0e:df:e6:fe:19:6d:00:02:58:14:25:55:0d:0f:43: 57:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:EC:67:B0:7C:75:8E:FD:DD:CE:20:1A:8E:E6:D3:5B:69:55:3B:E9 X509v3 Authority Key Identifier: keyid:4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.120.244.0/22 Signature Algorithm: sha256WithRSAEncryption 38:81:95:59:67:e6:f2:7b:1b:55:7d:1a:44:c2:3b:b5:5c:b8: 09:99:94:de:87:fb:42:92:a5:e0:75:50:ad:c9:58:d7:2a:c9: 74:e8:ea:0a:cd:60:6a:66:34:53:a4:eb:61:e9:00:e6:1c:ea: bf:fa:af:40:f9:12:fe:66:3e:42:bc:91:9f:89:f6:52:b2:d6: 8b:2f:fc:86:66:e9:b3:6e:05:1d:66:ce:9a:2e:59:6c:5d:5a: c1:92:39:88:11:e1:0b:59:97:bd:38:e0:17:2b:5c:bc:04:91: f4:2f:93:8e:d5:33:eb:1b:aa:6c:9a:90:b5:79:30:71:b2:a9: 4b:a3:a0:9f:3a:b1:83:92:78:df:5c:be:93:c7:85:93:34:db: c2:30:31:74:14:0f:e5:ee:bc:ef:2b:82:8e:ca:89:b1:38:0a: f9:dd:64:77:b3:39:26:d2:09:e7:98:66:54:50:2e:e5:b7:53: 1f:67:d4:37:01:aa:00:dd:d8:54:eb:bf:a3:60:a6:2d:84:cb: e5:a8:b3:db:0d:43:ac:c6:12:12:3b:22:13:02:be:5e:9d:7e: 27:68:61:be:1e:69:67:7f:d2:1d:01:7a:68:bf:05:39:f4:bb: b1:48:61:52:cc:17:a9:74:91:82:6b:6d:c9:c6:62:51:d1:68: 27:e3:be:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBG0w3igkP8WsSRBy09g2+uKZ8Y0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMURE MERDMTdGMjAeFw0yNDA3MDEwMDU5NTJaFw0yNTA2MzAwMTA0NTJaMDMxMTAvBgNV BAMTKDdERUM2N0IwN0M3NThFRkRERENFMjAxQThFRTZEMzVCNjk1NTNCRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiW6TfSeFQjZGpsTA24oPvFIwI Aj/cUvYh8YS76DudJifh3eK5yXwMhD4IPmZuIebWoxYq74QLc3qBD5+A9CV3GwbH eqbNrDy9cD4bx4HYuNuCK8Cwlo/f1pR5u2o3M4DBkPInkcglX72cXjwa0CXkrxBR 9xRHGgzH9Uab/csU0JQebFwnEFd0RzbY+UYX+Ev9N6v0PniOMZjFjUu/slAfjFOt 6+X+oJZFKZWi3kf8ivXTxF1AZ5QXXOElN7NQf6V2Keisj0cyxo1jngAXKckETmVk CP4v2iXtQlQH4rfeYoUtJ57FkRuaTI3rvXP9Pw7f5v4ZbQACWBQlVQ0PQ1dXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfexnsHx1jv3dziAajubTW2lVO+kwHwYDVR0j BBgwFoAUTdDJW0O4tlNgH+05qwEOHdDcF/IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Mjc4MGY4NS1lZjJmLTRjZjgtYTRiOC01MjI1YzQ1Yjk2YTEvMC80REQwQzk1QjQz QjhCNjUzNjAxRkVEMzlBQjAxMEUxREQwREMxN0YyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMUREMERD MTdGMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNzgwZjg1LWVmMmYtNGNmOC1h NGI4LTUyMjVjNDViOTZhMS8wLzM0MzUyZTMxMzIzMDJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXj0MA0GCSqG SIb3DQEBCwUAA4IBAQA4gZVZZ+byextVfRpEwju1XLgJmZTeh/tCkqXgdVCtyVjX Ksl06OoKzWBqZjRTpOth6QDmHOq/+q9A+RL+Zj5CvJGfifZSstaLL/yGZumzbgUd Zs6aLllsXVrBkjmIEeELWZe9OOAXK1y8BJH0L5OO1TPrG6psmpC1eTBxsqlLo6Cf OrGDknjfXL6Tx4WTNNvCMDF0FA/l7rzvK4KOyomxOAr53WR3szkm0gnnmGZUUC7l t1MfZ9Q3AaoA3dhU67+jYKYthMvlqLPbDUOsxhISOyITAr5enX4naGG+Hmlnf9Id AXpovwU59LuxSGFSzBepdJGCa23JxmJR0Wgn4760 -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org