$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3135302e3132392e35362e302f32322d3234203d3e203435323837.roa File: 3135302e3132392e35362e302f32322d3234203d3e203435323837.roa (raw, json) Hash identifier: tqUKv7tErLGQvp6ntAe6oI+l6KjJLTNQkTevpmkwiwA= Subject key identifier: 2F:40:B5:A9:D7:93:58:A9:35:F3:F9:CB:E4:61:66:E5:6E:1A:DA:09 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 6C49AB9CE45E00A3A40432DFE27686911E69D9F9 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3135302e3132392e35362e302f32322d3234203d3e203435323837.roa Signing time: Mon 01 Jul 2024 01:02:25 +0000 ROA not before: Mon 01 Jul 2024 00:57:25 +0000 ROA not after: Mon 30 Jun 2025 01:02:25 +0000 asID: 45287 IP address blocks: 150.129.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:49:ab:9c:e4:5e:00:a3:a4:04:32:df:e2:76:86:91:1e:69:d9:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jul 1 00:57:25 2024 GMT Not After : Jun 30 01:02:25 2025 GMT Subject: CN=2F40B5A9D79358A935F3F9CBE46166E56E1ADA09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3f:62:48:ed:16:57:00:bb:e7:a4:c4:66:1c: 1c:b6:66:c5:08:1d:cd:44:1a:10:e5:56:d5:fc:27: a3:20:ff:06:98:54:77:b3:68:e2:3b:72:14:aa:7c: 57:8b:bd:95:4c:ab:c1:1c:73:85:27:10:39:ad:e5: 45:bd:10:9b:1a:9d:cd:e5:79:49:4c:29:64:df:1d: fa:16:c5:c4:5b:e4:99:2a:32:c5:b8:e6:61:c5:98: 36:8b:35:af:0d:9d:a3:68:6f:09:1b:07:e3:61:54: 12:1c:03:01:a0:13:4b:72:72:01:13:4e:39:92:b6: 57:e4:8e:e5:1f:d5:af:e7:9c:df:fb:e3:fe:7c:82: 93:e6:3f:98:89:78:6f:bc:46:05:b7:02:57:cc:c9: 0d:23:c8:26:9c:4e:c3:c0:43:5d:de:2a:cc:93:48: 97:fa:13:54:75:0b:48:50:c4:8f:76:74:e6:22:72: d5:42:07:92:ef:a6:5e:d2:fc:76:a2:2a:27:14:0e: 22:cf:c5:4b:cc:ae:56:66:8c:ec:11:ff:7c:d1:38: e8:d1:70:97:1c:d0:94:1f:65:62:4a:4e:9f:0d:b7: 8e:d4:a2:8e:f6:68:13:f2:33:6c:fa:3d:bd:02:61: 19:16:b4:44:b6:d9:af:aa:1f:c5:0e:24:ce:57:b8: 11:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:40:B5:A9:D7:93:58:A9:35:F3:F9:CB:E4:61:66:E5:6E:1A:DA:09 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3135302e3132392e35362e302f32322d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.56.0/22 Signature Algorithm: sha256WithRSAEncryption 90:8e:ea:15:4b:a5:b3:fe:7b:30:e6:30:ac:8e:5c:e4:fd:76: e5:08:73:ac:72:ad:ab:37:1d:34:29:0d:25:5c:f9:67:f4:0c: 8c:a8:7a:2f:52:5b:60:5f:dc:40:95:81:af:0a:91:35:2d:eb: b9:71:ea:b0:66:ed:76:7a:18:e9:bc:be:73:ce:50:9a:53:3e: 94:49:90:34:52:fe:73:0f:33:78:0d:13:87:ce:16:a3:c8:17: 25:7f:06:ce:bf:3b:48:b5:e9:83:05:f5:63:ab:61:d7:76:31: 41:e7:96:7f:ab:f5:eb:d8:76:3a:6b:cf:e3:e3:2f:94:8a:90: 27:94:0d:89:d7:62:48:0d:36:7b:d0:bd:ee:3e:ce:0c:ec:16: 90:6b:b4:3e:1c:9f:5f:7b:c0:0b:9d:d0:36:bf:1e:ad:e1:83: d8:87:77:a8:89:ce:8e:17:bc:bf:ad:03:85:9c:2d:b6:82:bf: b7:24:45:a8:af:aa:d7:88:bc:55:12:58:82:98:ab:2a:8e:14: e5:67:be:d9:2a:5f:c1:4f:35:29:aa:d3:3d:12:2f:4f:26:cb: 1a:31:b1:e4:9e:68:64:7e:66:bc:4d:4a:55:dc:87:b6:09:67: 1f:1a:78:34:ec:02:b3:3f:03:57:27:6a:57:e9:06:c2:5f:fe: 86:ce:f2:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbEmrnOReAKOkBDLf4naGkR5p2fkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNDA3MDEwMDU3MjVaFw0yNTA2MzAwMTAyMjVaMDMxMTAvBgNV BAMTKDJGNDBCNUE5RDc5MzU4QTkzNUYzRjlDQkU0NjE2NkU1NkUxQURBMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0P2JI7RZXALvnpMRmHBy2ZsUI Hc1EGhDlVtX8J6Mg/waYVHezaOI7chSqfFeLvZVMq8Ecc4UnEDmt5UW9EJsanc3l eUlMKWTfHfoWxcRb5JkqMsW45mHFmDaLNa8NnaNobwkbB+NhVBIcAwGgE0tycgET TjmStlfkjuUf1a/nnN/74/58gpPmP5iJeG+8RgW3AlfMyQ0jyCacTsPAQ13eKsyT SJf6E1R1C0hQxI92dOYictVCB5Lvpl7S/HaiKicUDiLPxUvMrlZmjOwR/3zROOjR cJcc0JQfZWJKTp8Nt47Uoo72aBPyM2z6Pb0CYRkWtES22a+qH8UOJM5XuBGXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL0C1qdeTWKk18/nL5GFm5W4a2gkwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMxMzUzMDJlMzEzMjM5MmUzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEApaBODANBgkqhkiG 9w0BAQsFAAOCAQEAkI7qFUuls/57MOYwrI5c5P125QhzrHKtqzcdNCkNJVz5Z/QM jKh6L1JbYF/cQJWBrwqRNS3ruXHqsGbtdnoY6by+c85QmlM+lEmQNFL+cw8zeA0T h84Wo8gXJX8Gzr87SLXpgwX1Y6th13YxQeeWf6v169h2OmvP4+MvlIqQJ5QNiddi SA02e9C97j7ODOwWkGu0PhyfX3vAC53QNr8ereGD2Id3qInOjhe8v60DhZwttoK/ tyRFqK+q14i8VRJYgpirKo4U5We+2SpfwU81KarTPRIvTybLGjGx5J5oZH5mvE1K VdyHtglnHxp4NOwCsz8DVydqV+kGwl/+hs7y3w== -----END CERTIFICATE-----Generated at Sat Nov 23 05:00:44 2024 by rpki-client on console-fra.rpki-client.org