$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa File: 34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: XT+BpWNDktvWNwFTQkLNNS/w5oWhizouaSiWM8/abUU= Subject key identifier: 7B:8D:93:63:87:02:44:3F:64:21:A7:17:45:CE:9E:AB:E9:75:90:F1 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 4CD8FA150867050D06C2FA5F68ECE31D69F88BCB Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:43 +0000 ROA not before: Mon 01 Jul 2024 00:57:43 +0000 ROA not after: Mon 30 Jun 2025 01:02:43 +0000 asID: 131717 IP address blocks: 45.118.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d8:fa:15:08:67:05:0d:06:c2:fa:5f:68:ec:e3:1d:69:f8:8b:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:43 2024 GMT Not After : Jun 30 01:02:43 2025 GMT Subject: CN=7B8D93638702443F6421A71745CE9EABE97590F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c9:b7:b7:78:d7:c2:24:a2:23:70:cf:5f:ec: 24:04:b3:ca:f0:7e:1c:f0:dc:f2:5f:c6:f6:9d:5b: 6a:cd:5e:d9:dd:bb:e2:91:72:26:7c:5d:be:9f:04: 03:d2:31:ca:89:8e:6b:a8:a6:18:4d:c5:19:a0:b6: 89:57:2d:69:78:aa:77:90:4f:3b:6b:fd:0d:31:3b: 5e:e0:d1:0b:a1:33:27:eb:31:cc:3c:67:41:48:b9: db:20:aa:c0:c6:86:8f:02:50:de:8e:44:58:97:43: b1:05:e3:69:ba:e4:32:3c:eb:91:40:b7:f2:ef:52: 3e:3c:0c:23:8d:c6:98:af:28:36:33:0c:80:ad:94: 47:78:c3:7f:50:1a:8e:75:7a:bf:1c:db:fe:45:b1: 4e:de:e1:d2:64:26:2f:2b:72:58:1d:94:61:b7:71: 23:d1:e5:20:c6:4e:c2:6e:49:ee:26:1c:e1:80:b0: de:86:b1:61:24:ce:86:cb:46:90:0a:2c:65:af:82: 55:52:b2:a1:0e:f4:79:56:db:29:3e:a9:a3:b2:41: d2:fb:e5:10:f2:ca:0a:12:aa:84:af:42:97:46:dc: 6a:5c:44:27:d0:45:00:42:f7:97:31:e8:9e:bb:54: 96:11:85:54:38:7a:d4:df:ed:1d:7c:ff:ae:87:bf: a0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8D:93:63:87:02:44:3F:64:21:A7:17:45:CE:9E:AB:E9:75:90:F1 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/23 Signature Algorithm: sha256WithRSAEncryption 82:33:83:a0:5d:40:fe:b1:7c:c8:84:c2:6d:c4:16:5d:46:15: b7:4d:99:e1:49:d0:6f:8d:7c:aa:4d:62:44:f1:49:bf:f5:09: 6e:06:f9:33:fd:d7:26:8c:55:69:8a:04:4e:60:cf:42:07:6a: 82:87:22:b9:21:71:70:43:33:f4:d3:b3:49:6d:ce:54:7d:5b: 67:9f:76:92:a3:80:32:1b:0e:e2:96:17:22:bd:1b:49:43:cc: 50:c7:53:b4:9b:6f:6b:41:c2:43:c9:d1:d1:0f:65:44:db:4a: 95:e4:a3:6a:fc:a1:e0:78:fd:0f:f4:bc:28:e4:ff:41:06:73: 88:aa:50:d8:b3:f4:50:8c:2d:ba:71:76:c3:e6:48:fa:6b:14: 3e:7f:69:fc:37:77:99:01:ea:50:08:68:a0:81:e4:21:95:94: fa:5a:5b:14:86:cb:85:b1:11:40:7f:55:55:50:61:3b:c7:de: 1e:bb:6e:4a:a1:64:17:f8:6d:57:c1:8b:cc:6e:cf:24:f5:7d: 35:c3:71:13:99:29:95:93:83:87:f3:7a:c4:18:17:25:04:61: 62:d6:f7:79:b2:f5:92:41:a7:36:35:8c:23:dd:95:24:2a:97: 80:a1:bd:37:b4:73:d8:dc:cd:8b:de:71:2a:c7:02:07:9e:2b: e5:cc:9f:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTNj6FQhnBQ0GwvpfaOzjHWn4i8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDNaFw0yNTA2MzAwMTAyNDNaMDMxMTAvBgNV BAMTKDdCOEQ5MzYzODcwMjQ0M0Y2NDIxQTcxNzQ1Q0U5RUFCRTk3NTkwRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPybe3eNfCJKIjcM9f7CQEs8rw fhzw3PJfxvadW2rNXtndu+KRciZ8Xb6fBAPSMcqJjmuophhNxRmgtolXLWl4qneQ Tztr/Q0xO17g0QuhMyfrMcw8Z0FIudsgqsDGho8CUN6ORFiXQ7EF42m65DI865FA t/LvUj48DCONxpivKDYzDICtlEd4w39QGo51er8c2/5FsU7e4dJkJi8rclgdlGG3 cSPR5SDGTsJuSe4mHOGAsN6GsWEkzobLRpAKLGWvglVSsqEO9HlW2yk+qaOyQdL7 5RDyygoSqoSvQpdG3GpcRCfQRQBC95cx6J67VJYRhVQ4etTf7R18/66Hv6DNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe42TY4cCRD9kIacXRc6eq+l1kPEwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXZwMA0GCSqG SIb3DQEBCwUAA4IBAQCCM4OgXUD+sXzIhMJtxBZdRhW3TZnhSdBvjXyqTWJE8Um/ 9QluBvkz/dcmjFVpigROYM9CB2qChyK5IXFwQzP007NJbc5UfVtnn3aSo4AyGw7i lhcivRtJQ8xQx1O0m29rQcJDydHRD2VE20qV5KNq/KHgeP0P9Lwo5P9BBnOIqlDY s/RQjC26cXbD5kj6axQ+f2n8N3eZAepQCGiggeQhlZT6WlsUhsuFsRFAf1VVUGE7 x94eu25KoWQX+G1XwYvMbs8k9X01w3ETmSmVk4OH83rEGBclBGFi1vd5svWSQac2 NYwj3ZUkKpeAob03tHPY3M2L3nEqxwIHnivlzJ+F -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org