$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa File: 34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa (raw, json) Hash identifier: uQXGM2cnzjEJ+e+qYTRcu8Q2bkfF87zDJZZFwMyns1U= Subject key identifier: AD:D4:23:FE:44:8E:31:B9:B3:86:42:5D:5B:F4:F9:BA:8D:17:BA:04 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 0672136E1DDEBC0DD24FA7ED84204180BA803142 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:43 +0000 ROA not before: Mon 01 Jul 2024 00:57:43 +0000 ROA not after: Mon 30 Jun 2025 01:02:43 +0000 asID: 131717 IP address blocks: 45.118.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:72:13:6e:1d:de:bc:0d:d2:4f:a7:ed:84:20:41:80:ba:80:31:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:43 2024 GMT Not After : Jun 30 01:02:43 2025 GMT Subject: CN=ADD423FE448E31B9B386425D5BF4F9BA8D17BA04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a1:89:d5:19:67:4c:dc:d0:6a:dd:bb:95:4f: 17:4c:35:fd:40:3b:c1:29:89:85:2d:32:09:0a:22: c8:73:da:83:d0:15:6e:d2:9c:ea:1e:64:72:7e:34: ba:16:01:7f:cc:e9:43:22:ca:7a:90:33:a7:52:cf: cc:77:38:0f:aa:77:82:f8:c0:49:2b:da:af:69:17: 22:54:00:d1:34:d3:66:11:66:f7:5c:e6:be:ab:ab: 91:13:31:4a:4c:47:fb:f8:48:e9:71:9d:7b:55:64: e8:38:57:1e:2c:09:16:79:7f:f2:2f:ad:0d:cf:bc: f4:c1:f1:2f:07:de:42:af:ca:91:45:50:8b:d7:80: 63:72:fc:90:33:27:25:9e:f0:67:a3:1b:97:cc:e2: 37:a7:1c:20:6d:c3:6b:37:7b:23:ae:68:f7:e9:56: ff:12:e9:4a:83:dd:63:c9:56:91:30:a9:07:dc:3e: 1c:2c:66:35:00:32:19:07:e7:76:6b:65:6a:b8:89: cb:f6:30:d7:9a:f6:c9:ca:b1:6b:ea:26:1c:45:79: d9:50:35:dd:b1:ef:19:73:e8:15:fd:17:2f:14:d9: ff:a4:33:73:68:38:42:b9:17:5c:76:96:13:39:41: ae:2f:d5:10:d3:18:20:57:d7:04:8c:4c:aa:20:ed: ed:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D4:23:FE:44:8E:31:B9:B3:86:42:5D:5B:F4:F9:BA:8D:17:BA:04 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/22 Signature Algorithm: sha256WithRSAEncryption 63:8c:09:00:6d:57:39:4a:ff:d7:6e:c0:b2:de:e9:97:8c:d1: 54:3b:fb:07:9b:ff:53:9a:a1:10:69:bf:e9:42:84:eb:a6:87: 54:bc:96:27:5c:74:ee:60:4b:a9:02:09:d7:29:08:40:7c:94: bc:a8:2d:87:9d:38:b7:b9:5d:9e:24:b0:e3:95:fd:dd:e4:94: 10:16:e7:ef:83:a0:e6:88:4d:ba:9d:23:e7:1c:c5:71:c6:5f: d6:36:2f:a9:ea:2c:30:25:01:62:8c:7b:61:88:04:0c:31:8e: 80:ed:93:bd:38:23:e1:39:53:b6:00:f8:d0:18:be:24:64:63: 7f:c1:dd:95:9b:8a:22:c0:f7:72:4b:1d:9a:2b:20:37:84:0a: db:ae:f0:90:3c:97:75:1e:eb:d5:d8:84:c6:4e:d8:9f:c5:2e: c7:1d:32:9f:c6:a1:33:6a:bf:71:4a:df:e3:f7:cc:1d:50:a1: 12:e2:88:c4:b7:77:f3:57:9b:7c:72:e7:29:f7:f5:6a:b7:56: 30:f8:24:1d:5c:d7:01:22:df:b0:e3:06:ee:e7:03:fd:b3:8a: 06:e7:df:45:1e:be:2f:67:c0:d2:02:74:47:7a:7f:7c:f5:a7: f2:d8:d4:72:c2:92:03:c7:b9:b1:c1:5e:a6:49:38:a0:dd:02: 99:2e:07:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBnITbh3evA3ST6fthCBBgLqAMUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDNaFw0yNTA2MzAwMTAyNDNaMDMxMTAvBgNV BAMTKEFERDQyM0ZFNDQ4RTMxQjlCMzg2NDI1RDVCRjRGOUJBOEQxN0JBMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGoYnVGWdM3NBq3buVTxdMNf1A O8EpiYUtMgkKIshz2oPQFW7SnOoeZHJ+NLoWAX/M6UMiynqQM6dSz8x3OA+qd4L4 wEkr2q9pFyJUANE002YRZvdc5r6rq5ETMUpMR/v4SOlxnXtVZOg4Vx4sCRZ5f/Iv rQ3PvPTB8S8H3kKvypFFUIvXgGNy/JAzJyWe8GejG5fM4jenHCBtw2s3eyOuaPfp Vv8S6UqD3WPJVpEwqQfcPhwsZjUAMhkH53ZrZWq4icv2MNea9snKsWvqJhxFedlQ Nd2x7xlz6BX9Fy8U2f+kM3NoOEK5F1x2lhM5Qa4v1RDTGCBX1wSMTKog7e0hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrdQj/kSOMbmzhkJdW/T5uo0XugQwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXZwMA0GCSqG SIb3DQEBCwUAA4IBAQBjjAkAbVc5Sv/XbsCy3umXjNFUO/sHm/9TmqEQab/pQoTr podUvJYnXHTuYEupAgnXKQhAfJS8qC2HnTi3uV2eJLDjlf3d5JQQFufvg6DmiE26 nSPnHMVxxl/WNi+p6iwwJQFijHthiAQMMY6A7ZO9OCPhOVO2APjQGL4kZGN/wd2V m4oiwPdySx2aKyA3hArbrvCQPJd1HuvV2ITGTtifxS7HHTKfxqEzar9xSt/j98wd UKES4ojEt3fzV5t8cucp9/Vqt1Yw+CQdXNcBIt+w4wbu5wP9s4oG599FHr4vZ8DS AnRHen989afy2NRywpIDx7mxwV6mSTig3QKZLgd+ -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org