$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa File: 34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: X4Pk8WgmhA0dbNOl0G7YhvirhZLSY9c290PzK0yXcPw= Subject key identifier: F6:73:59:B4:98:F8:5C:3D:C9:E6:11:86:10:6F:4E:4E:BC:47:9A:F9 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 636AC99DF255252409544397C3BD0A40B5A0E291 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:35 +0000 ROA not before: Mon 01 Jul 2024 00:58:35 +0000 ROA not after: Mon 30 Jun 2025 01:03:35 +0000 asID: 131745 IP address blocks: 49.128.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:6a:c9:9d:f2:55:25:24:09:54:43:97:c3:bd:0a:40:b5:a0:e2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 1 00:58:35 2024 GMT Not After : Jun 30 01:03:35 2025 GMT Subject: CN=F67359B498F85C3DC9E61186106F4E4EBC479AF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:60:fb:43:d6:6c:97:00:60:de:bc:1d:40:a1: 7e:a2:0f:66:d0:f2:99:65:4b:2a:a1:62:8f:6e:73: 2c:6a:d8:56:03:df:8a:af:d7:53:41:20:58:17:72: dc:75:58:08:76:ee:0b:1d:36:c1:3b:f4:f4:f7:09: ea:a3:56:1f:5b:9c:c7:32:3a:7b:0b:82:c2:a8:14: 66:75:5f:a7:33:80:f9:72:0b:34:fe:e0:a0:29:f0: da:2d:ba:3c:a4:70:b7:f2:d6:13:a7:1f:e6:06:f4: bf:8e:50:d6:bd:d1:c8:f6:29:a3:b3:e0:50:41:62: 75:a0:78:85:5b:cb:33:17:73:aa:55:65:45:82:8a: aa:97:24:14:b3:32:92:2b:6f:83:3f:aa:8b:68:69: c6:d2:0e:26:a6:4d:35:e3:dd:4e:f3:30:87:af:64: 05:e2:fe:c0:c8:d8:2a:a7:41:ab:12:f5:8c:b0:63: 57:e4:ce:92:07:fb:2f:69:95:78:86:4b:29:41:22: e2:ea:ba:ff:70:63:6d:be:71:04:b0:ed:b9:a8:6f: 77:02:36:1c:46:e5:05:b1:3a:bb:6e:e0:9d:b5:a0: e0:84:7d:4c:f8:93:c8:21:d4:e8:63:7d:a4:2d:a3: 8f:b0:96:76:a8:dd:3d:a1:20:97:de:ff:54:d7:af: 45:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:73:59:B4:98:F8:5C:3D:C9:E6:11:86:10:6F:4E:4E:BC:47:9A:F9 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.184.0/22 Signature Algorithm: sha256WithRSAEncryption 42:e0:19:89:71:dd:b5:23:1e:9a:00:03:6b:56:8e:ab:30:41: 6b:a9:6c:da:56:06:5c:17:70:88:a8:1d:43:3d:ce:e1:41:d2: 3d:1c:4a:84:06:89:73:50:66:6f:22:55:e1:c7:c9:a2:37:80: 90:e8:b6:58:b2:41:bb:a8:48:bf:14:90:95:7d:ca:6d:73:5b: 85:06:b5:51:5e:9c:1a:35:d1:a4:0c:e5:3c:54:6c:38:8e:f1: 62:e4:0f:84:a4:85:71:04:5a:71:d5:a8:75:66:8f:66:03:de: b0:ad:bb:27:9a:07:9a:59:51:15:25:46:91:76:76:03:ce:a3: d0:00:60:b9:b6:7c:44:67:6e:ef:9e:bf:3d:a3:11:5b:0e:90: cf:fc:eb:df:b3:05:ee:b1:41:7e:03:30:1d:a9:20:8d:f9:ac: 93:74:f8:a1:23:49:02:5a:fa:0c:50:ae:21:05:f3:d8:8d:8f: 46:7b:9a:22:bc:d2:04:7c:6a:dd:5e:7d:dd:15:61:c7:0a:d7: 84:f4:44:42:3e:45:a7:02:1e:54:6e:1c:98:b6:9b:10:d8:5a: d6:87:98:d0:5c:1e:49:c6:08:e5:41:b3:41:54:a6:88:4e:d5: ee:8b:86:1a:3e:37:31:55:69:cd:89:15:eb:54:5e:a9:16:65: a7:b5:98:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY2rJnfJVJSQJVEOXw70KQLWg4pEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA3MDEwMDU4MzVaFw0yNTA2MzAwMTAzMzVaMDMxMTAvBgNV BAMTKEY2NzM1OUI0OThGODVDM0RDOUU2MTE4NjEwNkY0RTRFQkM0NzlBRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD/YPtD1myXAGDevB1AoX6iD2bQ 8pllSyqhYo9ucyxq2FYD34qv11NBIFgXctx1WAh27gsdNsE79PT3CeqjVh9bnMcy OnsLgsKoFGZ1X6czgPlyCzT+4KAp8NotujykcLfy1hOnH+YG9L+OUNa90cj2KaOz 4FBBYnWgeIVbyzMXc6pVZUWCiqqXJBSzMpIrb4M/qotoacbSDiamTTXj3U7zMIev ZAXi/sDI2CqnQasS9YywY1fkzpIH+y9plXiGSylBIuLquv9wY22+cQSw7bmob3cC NhxG5QWxOrtu4J21oOCEfUz4k8gh1OhjfaQto4+wlnao3T2hIJfe/1TXr0VBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9nNZtJj4XD3J5hGGEG9OTrxHmvkwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzM0MzkyZTMxMzIzODJlMzEzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCMYC4MA0GCSqG SIb3DQEBCwUAA4IBAQBC4BmJcd21Ix6aAANrVo6rMEFrqWzaVgZcF3CIqB1DPc7h QdI9HEqEBolzUGZvIlXhx8miN4CQ6LZYskG7qEi/FJCVfcptc1uFBrVRXpwaNdGk DOU8VGw4jvFi5A+EpIVxBFpx1ah1Zo9mA96wrbsnmgeaWVEVJUaRdnYDzqPQAGC5 tnxEZ27vnr89oxFbDpDP/OvfswXusUF+AzAdqSCN+ayTdPihI0kCWvoMUK4hBfPY jY9Ge5oivNIEfGrdXn3dFWHHCteE9ERCPkWnAh5UbhyYtpsQ2FrWh5jQXB5Jxgjl QbNBVKaITtXui4YaPjcxVWnNiRXrVF6pFmWntZjv -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org