$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32322d3232203d3e203633353031.roa File: 36312e31342e3234382e302f32322d3232203d3e203633353031.roa (raw, json) Hash identifier: 8ipLlntRcAgzxP5NkTTo5hrXyepoS087CiJmQYhl9m8= Subject key identifier: EC:9D:C1:D2:18:C4:A5:2A:3E:45:43:E9:9C:CC:3C:06:AB:28:D3:FF Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Certificate serial: 378387F90115AD4C8E179E6C54208C9EB8ECE402 Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32322d3232203d3e203633353031.roa Signing time: Sun 23 Jun 2024 18:00:01 +0000 ROA not before: Sun 23 Jun 2024 17:55:01 +0000 ROA not after: Sun 22 Jun 2025 18:00:01 +0000 asID: 63501 IP address blocks: 61.14.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:83:87:f9:01:15:ad:4c:8e:17:9e:6c:54:20:8c:9e:b8:ec:e4:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Validity Not Before: Jun 23 17:55:01 2024 GMT Not After : Jun 22 18:00:01 2025 GMT Subject: CN=EC9DC1D218C4A52A3E4543E99CCC3C06AB28D3FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8a:b4:3e:f0:d8:ed:ad:28:d8:5c:eb:e3:9f: 8d:c7:2c:c0:64:11:0e:b1:08:c7:f6:f2:30:ae:7c: 63:db:fd:7e:69:62:81:89:1d:d3:f2:a6:d9:0e:02: fe:59:8b:11:25:7f:99:47:5f:d9:08:97:5d:6d:22: 39:10:26:7a:4e:39:64:09:ac:37:a2:ca:d3:93:d2: bf:aa:2c:ee:bc:0a:cc:e3:dc:73:9d:16:82:a0:99: 5d:e6:2a:92:7a:00:fd:bc:2c:1d:d7:5c:32:0e:20: 6d:f8:40:6b:c9:04:cc:65:3e:26:af:2a:d6:2a:21: d7:3f:ee:eb:92:af:c5:d6:ca:bb:07:2d:01:8c:c5: 5c:93:97:55:2e:e2:e8:4d:1e:95:ae:da:11:98:e4: 5a:0e:02:9d:28:7f:8b:9d:4f:fc:d3:90:de:fc:4d: ff:e9:80:06:07:89:b4:4a:2d:0c:3a:aa:35:f2:e0: 2b:b3:b2:2b:cd:f7:77:11:1a:4f:90:22:cb:77:79: 84:3e:61:14:03:f3:d6:4a:68:c2:85:b7:d2:fe:30: e5:fa:42:d8:4d:47:35:5d:3e:02:04:ff:a1:91:a8: 0c:c1:37:0e:6a:a7:63:92:a3:d9:cf:f1:68:ed:87: a8:73:3d:51:32:02:58:f8:9e:29:af:47:70:8e:24: 77:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9D:C1:D2:18:C4:A5:2A:3E:45:43:E9:9C:CC:3C:06:AB:28:D3:FF X509v3 Authority Key Identifier: keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32322d3232203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.14.248.0/22 Signature Algorithm: sha256WithRSAEncryption 35:91:8b:19:cd:4f:3a:ea:66:5b:c0:70:92:80:5b:72:5f:23: 40:5f:f1:57:25:b9:21:eb:b0:cb:7e:2c:49:5e:c0:64:75:36: 00:36:5a:3f:49:eb:2f:23:3e:cc:d6:91:52:c9:1e:07:77:63: 1b:75:81:ee:1b:31:34:6f:ab:d7:db:4a:a4:cc:7f:aa:36:e0: 9e:c3:15:09:56:96:c2:89:d6:a8:3a:ec:5f:a0:2f:06:86:1d: 5a:18:91:d9:f3:bf:d8:39:b2:81:25:7e:a5:16:79:28:07:64: 40:50:73:90:dc:12:fe:02:67:e0:e7:66:25:9a:83:c6:81:74: 31:0f:51:32:8c:13:f9:2d:dd:50:4d:b2:39:6a:b6:ce:02:8a: 23:b6:df:b4:4b:a7:f4:32:c0:96:59:5e:14:31:85:a8:d0:18: c9:7a:ea:9c:09:07:d4:da:38:9d:8b:b8:be:e7:76:c4:2b:0b: 6e:7b:56:4a:0c:cc:68:2a:be:4d:0a:71:9e:2c:1f:a0:b9:bb: 8e:27:04:d6:54:e0:18:e1:eb:dc:84:31:c9:33:1d:08:e4:ac: 76:c3:c3:0a:df:04:cf:4b:0e:7c:0e:d1:7d:a4:e6:29:3c:39: 9f:70:88:17:61:ca:3d:a6:ac:cb:40:93:a4:cc:4c:d6:f0:c1: de:b6:5b:9b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUN4OH+QEVrUyOF55sVCCMnrjs5AIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4 NTVBMThFMTAeFw0yNDA2MjMxNzU1MDFaFw0yNTA2MjIxODAwMDFaMDMxMTAvBgNV BAMTKEVDOURDMUQyMThDNEE1MkEzRTQ1NDNFOTlDQ0MzQzA2QUIyOEQzRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSirQ+8NjtrSjYXOvjn43HLMBk EQ6xCMf28jCufGPb/X5pYoGJHdPyptkOAv5ZixElf5lHX9kIl11tIjkQJnpOOWQJ rDeiytOT0r+qLO68Cszj3HOdFoKgmV3mKpJ6AP28LB3XXDIOIG34QGvJBMxlPiav KtYqIdc/7uuSr8XWyrsHLQGMxVyTl1Uu4uhNHpWu2hGY5FoOAp0of4udT/zTkN78 Tf/pgAYHibRKLQw6qjXy4CuzsivN93cRGk+QIst3eYQ+YRQD89ZKaMKFt9L+MOX6 QthNRzVdPgIE/6GRqAzBNw5qp2OSo9nP8Wjth6hzPVEyAlj4nimvR3COJHeXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7J3B0hjEpSo+RUPpnMw8Bqso0/8wHwYDVR0j BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB MThFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzM2MzEyZTMxMzQyZTMyMzQzODJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM2MzMzNTMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9DvgwDQYJKoZIhvcN AQELBQADggEBADWRixnNTzrqZlvAcJKAW3JfI0Bf8VcluSHrsMt+LElewGR1NgA2 Wj9J6y8jPszWkVLJHgd3Yxt1ge4bMTRvq9fbSqTMf6o24J7DFQlWlsKJ1qg67F+g LwaGHVoYkdnzv9g5soElfqUWeSgHZEBQc5DcEv4CZ+DnZiWag8aBdDEPUTKME/kt 3VBNsjlqts4CiiO237RLp/QywJZZXhQxhajQGMl66pwJB9TaOJ2LuL7ndsQrC257 VkoMzGgqvk0KcZ4sH6C5u44nBNZU4Bjh69yEMckzHQjkrHbDwwrfBM9LDnwO0X2k 5ik8OZ9wiBdhyj2mrMtAk6TMTNbwwd62W5s= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org