$ rpki-client -vvf repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa File: 34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa (raw, json) Hash identifier: Ot4At1+tUgvIlqttQWFd4UQN09/rD5hlu+pQJL/AHeA= Subject key identifier: 9A:CC:48:73:25:7E:5B:BF:0C:4D:1A:3B:EA:D9:73:8E:34:12:03:97 Certificate issuer: /CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Certificate serial: 457DF5650953BD3C7523CFBD15CE2B5542276360 Authority key identifier: 12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa Signing time: Tue 02 Apr 2024 04:00:55 +0000 ROA not before: Tue 02 Apr 2024 03:55:55 +0000 ROA not after: Tue 01 Apr 2025 04:00:55 +0000 asID: 139396 IP address blocks: 45.113.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:7d:f5:65:09:53:bd:3c:75:23:cf:bd:15:ce:2b:55:42:27:63:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Validity Not Before: Apr 2 03:55:55 2024 GMT Not After : Apr 1 04:00:55 2025 GMT Subject: CN=9ACC4873257E5BBF0C4D1A3BEAD9738E34120397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2d:e4:62:5a:38:78:67:9a:88:86:fe:29:d3: 4f:d7:d5:38:4d:85:58:08:21:f8:8b:bb:3a:fe:ab: 62:af:20:5a:f5:22:c5:38:e1:8e:7b:49:d5:27:5f: 8e:8b:b1:06:ee:27:1c:b0:f2:8d:e9:5f:64:bd:28: d4:12:fb:53:d4:6f:f3:28:62:b4:21:99:47:cf:64: 93:62:6f:cd:f3:f9:8c:a9:25:9d:3f:5d:25:84:5d: 33:04:3b:c1:38:f1:45:43:67:4f:d9:ca:b0:cf:b4: 4f:21:97:43:e4:e4:ca:cf:38:43:58:92:6d:fb:89: 28:d6:85:d3:43:5e:8f:0f:f7:15:88:51:24:cd:70: 0e:94:dd:8b:92:c9:67:33:f5:1f:ac:df:bc:aa:48: cc:26:0a:45:b0:1f:17:fb:20:3e:c8:9f:15:b4:70: be:63:d2:d3:53:18:90:3c:a5:a3:1d:e8:b0:fd:e3: 47:ef:cd:04:2b:27:57:c5:39:e2:cf:3b:35:fb:ab: af:07:ee:8c:ce:d4:31:1d:a4:96:b4:f9:d7:f5:78: c5:49:b8:32:08:f8:bf:d0:23:87:52:d8:32:0d:1a: d1:d5:bb:bb:79:61:27:ca:c6:46:a0:0f:a1:0a:82: 3a:84:7b:d5:53:c0:dd:8f:d2:db:2d:46:50:11:34: 63:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CC:48:73:25:7E:5B:BF:0C:4D:1A:3B:EA:D9:73:8E:34:12:03:97 X509v3 Authority Key Identifier: keyid:12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 Signature Algorithm: sha256WithRSAEncryption 81:35:bf:92:c4:b1:8a:59:0c:2c:3f:cd:e2:6e:63:cc:9d:5f: 47:0b:d2:0c:9e:f4:53:bb:48:39:c9:52:13:16:b1:41:dc:c9: d9:b8:8d:e8:80:ae:b9:c9:ca:6d:d4:e9:5d:eb:42:21:e8:90: 63:91:34:9a:07:55:ab:71:4d:b5:bf:53:7c:0d:2f:e9:0c:16: ae:4a:be:84:38:a4:ce:1c:3b:25:87:32:a3:b9:33:42:8c:c2: c0:1e:83:23:c1:b7:97:2a:06:71:1a:cd:a9:62:76:5f:d5:d3: c6:f8:67:0d:4b:51:6d:75:9b:83:c3:c0:0b:69:bf:2a:8f:c8: b0:5a:1c:1f:98:aa:55:63:04:1d:ba:e1:c6:38:f3:af:0b:3d: fd:e7:62:f4:b4:f6:7e:3c:14:6e:4f:10:04:f9:5c:64:c2:60: 18:58:07:e4:63:0f:9c:3b:84:d9:93:87:e0:99:c8:38:03:92: 90:4f:50:fb:ce:8c:c7:b1:8f:83:cd:2c:32:a1:0b:c0:b9:6f: 76:21:7d:6a:05:1f:b5:d3:4b:6e:06:02:0f:22:8a:2b:9f:e0: c7:28:4e:b9:7a:12:e1:fc:08:7e:28:38:ea:7b:4b:79:ed:39: 98:85:48:b2:e7:4f:54:11:c7:85:44:32:7e:4d:53:df:ba:57: 88:70:89:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURX31ZQlTvTx1I8+9Fc4rVUInY2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERD M0NFNTdGOTAeFw0yNDA0MDIwMzU1NTVaFw0yNTA0MDEwNDAwNTVaMDMxMTAvBgNV BAMTKDlBQ0M0ODczMjU3RTVCQkYwQzREMUEzQkVBRDk3MzhFMzQxMjAzOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDULeRiWjh4Z5qIhv4p00/X1ThN hVgIIfiLuzr+q2KvIFr1IsU44Y57SdUnX46LsQbuJxyw8o3pX2S9KNQS+1PUb/Mo YrQhmUfPZJNib83z+YypJZ0/XSWEXTMEO8E48UVDZ0/ZyrDPtE8hl0Pk5MrPOENY km37iSjWhdNDXo8P9xWIUSTNcA6U3YuSyWcz9R+s37yqSMwmCkWwHxf7ID7InxW0 cL5j0tNTGJA8paMd6LD940fvzQQrJ1fFOeLPOzX7q68H7ozO1DEdpJa0+df1eMVJ uDII+L/QI4dS2DINGtHVu7t5YSfKxkagD6EKgjqEe9VTwN2P0tstRlARNGPdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmsxIcyV+W78MTRo76tlzjjQSA5cwHwYDVR0j BBgwFoAUEpqu/AjSBOm+VDnIB/+EDcPOV/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM2NTVmMS0zOGI2LTQ0MTUtOGZhZi0yYjViOTE1M2U1MmQvMC8xMjlBQUVGQzA4 RDIwNEU5QkU1NDM5QzgwN0ZGODQwREMzQ0U1N0Y5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERDM0NF NTdGOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzY1NWYxLTM4YjYtNDQxNS04 ZmFmLTJiNWI5MTUzZTUyZC8wLzM0MzUyZTMxMzEzMzJlMzIzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXHkMA0GCSqG SIb3DQEBCwUAA4IBAQCBNb+SxLGKWQwsP83ibmPMnV9HC9IMnvRTu0g5yVITFrFB 3MnZuI3ogK65ycpt1Old60Ih6JBjkTSaB1WrcU21v1N8DS/pDBauSr6EOKTOHDsl hzKjuTNCjMLAHoMjwbeXKgZxGs2pYnZf1dPG+GcNS1FtdZuDw8ALab8qj8iwWhwf mKpVYwQduuHGOPOvCz3952L0tPZ+PBRuTxAE+VxkwmAYWAfkYw+cO4TZk4fgmcg4 A5KQT1D7zozHsY+DzSwyoQvAuW92IX1qBR+100tuBgIPIoorn+DHKE65ehLh/Ah+ KDjqe0t57TmYhUiy509UEceFRDJ+TVPfuleIcImL -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org