$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa File: 34392e3132382e3137362e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: peoi92UYki92OlMKYXE7q6FGXu3QDKL092I9QxG8hOk= Subject key identifier: 5A:3B:BB:B5:07:AA:67:3A:93:F2:7A:D8:B0:9E:B4:D5:5A:CE:58:87 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 0F098015488E31E61950E9001F9F8028A23902B8 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa Signing time: Mon 01 Jul 2024 01:06:11 +0000 ROA not before: Mon 01 Jul 2024 01:01:11 +0000 ROA not after: Mon 30 Jun 2025 01:06:11 +0000 asID: 55666 IP address blocks: 49.128.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:09:80:15:48:8e:31:e6:19:50:e9:00:1f:9f:80:28:a2:39:02:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 1 01:01:11 2024 GMT Not After : Jun 30 01:06:11 2025 GMT Subject: CN=5A3BBBB507AA673A93F27AD8B09EB4D55ACE5887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:5e:5f:60:bf:04:13:46:03:22:35:fb:39: 1e:81:d9:31:cb:27:13:9d:2c:e8:1f:a3:02:ce:c7: 15:73:98:7d:11:f7:8f:3c:2a:98:85:65:50:a7:0d: 2c:9a:61:d8:5e:37:9a:f1:12:ca:88:37:63:f8:9e: f6:1f:6a:4e:ee:3b:85:61:69:41:49:b7:08:82:c7: bd:62:72:a1:3b:73:61:4d:a5:d7:2a:89:e8:c3:0e: aa:fc:bb:24:15:b3:72:2d:4c:cd:21:57:e3:3b:0e: c8:a6:f1:d4:31:37:22:0e:95:be:28:4a:55:13:23: 1d:ae:89:17:38:30:f6:b0:7e:ad:35:fb:9e:a4:9e: 72:cd:f7:ad:f1:f5:bc:02:71:13:91:c7:81:ba:91: a8:7e:8e:bb:1a:04:6f:d8:f9:b3:4e:e5:37:3f:9b: 26:0c:1e:11:29:b4:1d:69:81:ca:19:58:e9:4b:34: e3:20:14:8d:2e:f3:2f:35:6b:0a:fa:7c:c1:2c:04: 0e:47:33:19:96:6c:74:13:bf:87:82:05:60:d8:62: 5d:7c:47:b4:f7:5e:e4:4a:d4:9e:65:ed:50:36:cf: 52:73:92:da:98:b5:79:d0:32:51:22:a4:ec:51:cd: 7f:22:a3:bd:ed:48:01:63:4e:81:eb:7b:93:49:25: 88:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3B:BB:B5:07:AA:67:3A:93:F2:7A:D8:B0:9E:B4:D5:5A:CE:58:87 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.176.0/21 Signature Algorithm: sha256WithRSAEncryption 90:75:e9:66:f2:71:17:a7:9b:1c:94:45:c1:0f:17:db:0c:f6: 5b:1d:55:9b:05:7d:af:4f:08:31:f8:ec:3c:31:e5:d0:8c:60: c2:3b:7b:c3:2b:55:ea:82:2f:29:a9:0c:98:c0:92:07:c8:0c: ae:eb:07:cd:23:2c:5e:28:e3:31:84:9c:e8:fe:0c:db:ac:90: f5:68:ee:e9:a4:83:3c:a7:d9:9c:12:a5:87:31:16:f0:7f:5c: 3d:fd:5b:00:e3:b6:75:fc:71:f0:0b:3e:aa:d9:fd:55:b1:d8: 99:10:13:09:75:9e:c7:d9:06:93:0b:1a:39:47:c0:38:a2:1f: 49:78:1a:ee:ce:33:ed:69:46:34:2e:ac:e8:88:34:86:c6:76: 2d:4a:f6:67:b4:27:58:7d:31:0e:06:48:99:0e:a4:03:be:18: 9e:3c:18:1c:ab:1b:fb:eb:74:83:63:a9:c4:d4:d1:45:75:ab: e8:40:78:ac:b0:e3:dc:af:fd:05:36:a5:86:6b:ba:86:7f:e3: 53:87:67:bc:4b:42:b5:c9:68:84:4c:41:75:11:13:d2:40:26: 29:b2:9d:7f:fc:69:ae:b0:b3:8c:ef:4a:f5:e0:27:6d:84:71: 66:65:08:4d:80:f1:7d:77:85:65:6a:36:25:2a:a0:8c:e9:2d: 5d:f0:15:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDwmAFUiOMeYZUOkAH5+AKKI5ArgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDA3MDEwMTAxMTFaFw0yNTA2MzAwMTA2MTFaMDMxMTAvBgNV BAMTKDVBM0JCQkI1MDdBQTY3M0E5M0YyN0FEOEIwOUVCNEQ1NUFDRTU4ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZiV5fYL8EE0YDIjX7OR6B2THL JxOdLOgfowLOxxVzmH0R9488KpiFZVCnDSyaYdheN5rxEsqIN2P4nvYfak7uO4Vh aUFJtwiCx71icqE7c2FNpdcqiejDDqr8uyQVs3ItTM0hV+M7Dsim8dQxNyIOlb4o SlUTIx2uiRc4MPawfq01+56knnLN963x9bwCcRORx4G6kah+jrsaBG/Y+bNO5Tc/ myYMHhEptB1pgcoZWOlLNOMgFI0u8y81awr6fMEsBA5HMxmWbHQTv4eCBWDYYl18 R7T3XuRK1J5l7VA2z1JzktqYtXnQMlEipOxRzX8io73tSAFjToHre5NJJYg9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWju7tQeqZzqT8nrYsJ601VrOWIcwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzkyZTMxMzIzODJlMzEzNzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzGAsDANBgkqhkiG 9w0BAQsFAAOCAQEAkHXpZvJxF6ebHJRFwQ8X2wz2Wx1VmwV9r08IMfjsPDHl0Ixg wjt7wytV6oIvKakMmMCSB8gMrusHzSMsXijjMYSc6P4M26yQ9Wju6aSDPKfZnBKl hzEW8H9cPf1bAOO2dfxx8As+qtn9VbHYmRATCXWex9kGkwsaOUfAOKIfSXga7s4z 7WlGNC6s6Ig0hsZ2LUr2Z7QnWH0xDgZImQ6kA74YnjwYHKsb++t0g2OpxNTRRXWr 6EB4rLDj3K/9BTalhmu6hn/jU4dnvEtCtclohExBdRET0kAmKbKdf/xprrCzjO9K 9eAnbYRxZmUITYDxfXeFZWo2JSqgjOktXfAVnQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org