$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: /cpzswwTNxt4PA+y5NQBd3j9f6qF16C52KUQtHtdF0o= Subject key identifier: A4:4E:42:6E:33:B6:C4:61:D6:C0:46:D0:12:EB:DB:EB:7A:17:C0:C0 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 281AD9CF7711EA9ACA86B86A37C88473EF8307E1 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:44 +0000 ROA not before: Mon 01 Jul 2024 00:57:44 +0000 ROA not after: Mon 30 Jun 2025 01:02:44 +0000 asID: 131717 IP address blocks: 45.118.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1a:d9:cf:77:11:ea:9a:ca:86:b8:6a:37:c8:84:73:ef:83:07:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:44 2024 GMT Not After : Jun 30 01:02:44 2025 GMT Subject: CN=A44E426E33B6C461D6C046D012EBDBEB7A17C0C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5f:72:65:f6:a1:94:87:25:3a:2c:6d:d1:0f: d9:27:bc:e2:ad:31:a3:70:d9:bf:fc:72:2e:37:b3: ad:20:dc:b8:ef:a1:22:31:7c:b7:b4:f5:99:e4:68: 5d:2f:06:ee:a7:39:47:e8:25:6f:31:34:04:32:ee: b3:64:5f:03:c7:cb:98:43:d3:ae:86:43:4c:47:ed: b8:13:0f:db:89:eb:df:17:22:fa:88:10:31:17:02: e0:9c:4d:78:5f:ba:f1:5f:cf:dc:52:93:12:db:2b: 83:f3:ae:56:4c:22:53:7f:51:4c:d6:ac:17:3f:1e: 1c:19:dc:29:4d:d0:16:f6:0a:5e:0e:2b:aa:4a:5b: 6c:e9:9c:9e:5a:72:1f:02:e8:f2:41:81:70:9f:25: 36:ad:c0:ea:a3:3d:b8:e6:1e:6a:7b:67:88:39:64: f5:13:61:30:de:e8:70:f0:5a:09:08:55:15:f4:da: 89:3e:c6:19:d8:c7:f6:3f:f1:38:75:00:28:fa:aa: e8:0a:e8:0b:a0:4b:77:e1:b1:f2:7f:3b:69:fa:f9: dc:06:cb:ef:fd:3c:4f:9f:77:af:87:72:f6:31:10: 24:6f:fb:c7:76:63:8b:3c:16:20:12:b7:e7:6c:5d: 23:e4:47:15:a4:3c:6b:42:04:db:2c:fd:2d:3a:ce: 7e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:4E:42:6E:33:B6:C4:61:D6:C0:46:D0:12:EB:DB:EB:7A:17:C0:C0 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.114.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:5d:19:9e:77:2d:55:a9:0c:2f:5d:9a:d5:3b:5d:e9:a8:3e: 26:57:96:e4:ac:b4:ba:52:f6:3b:cf:49:2b:eb:43:59:5e:16: 5e:07:d1:be:92:fd:2e:72:4b:f2:cb:c5:74:a9:c4:e6:61:bd: 07:c0:4d:04:4f:3d:01:08:7f:36:36:29:9a:5e:8e:2e:79:92: e2:86:bd:69:8f:2b:d2:92:d2:ff:66:18:15:84:fc:5f:55:18: 14:08:c0:00:66:9c:66:a6:1a:af:eb:16:ca:f4:da:ef:7e:29: 08:3c:ba:74:fe:1b:0a:fd:76:fa:c5:ae:72:70:e7:48:53:a5: 1d:de:bc:44:70:7a:51:dc:bb:67:05:e5:09:60:08:1e:a1:6c: e1:67:64:96:63:21:4b:ad:28:2e:7b:a4:97:4f:93:bf:fd:4a: b2:06:2d:8c:ea:c3:26:6e:e7:e0:1e:48:ee:91:da:6e:0f:c4: 13:50:9b:b3:ae:65:be:03:9d:91:73:59:69:3a:10:49:e6:9a: 9e:58:6a:1b:5e:6f:f1:71:dd:f1:f3:e1:60:99:18:19:d8:c2: 74:dc:f6:91:f3:0c:76:1d:49:fc:6a:86:b8:8b:b1:c1:3f:1f: 93:b9:77:38:64:03:4a:92:cd:b7:8e:5c:dd:1c:c1:f8:bb:59: 00:fa:e7:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKBrZz3cR6prKhrhqN8iEc++DB+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDRaFw0yNTA2MzAwMTAyNDRaMDMxMTAvBgNV BAMTKEE0NEU0MjZFMzNCNkM0NjFENkMwNDZEMDEyRUJEQkVCN0ExN0MwQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhX3Jl9qGUhyU6LG3RD9knvOKt MaNw2b/8ci43s60g3LjvoSIxfLe09ZnkaF0vBu6nOUfoJW8xNAQy7rNkXwPHy5hD 066GQ0xH7bgTD9uJ698XIvqIEDEXAuCcTXhfuvFfz9xSkxLbK4PzrlZMIlN/UUzW rBc/HhwZ3ClN0Bb2Cl4OK6pKW2zpnJ5ach8C6PJBgXCfJTatwOqjPbjmHmp7Z4g5 ZPUTYTDe6HDwWgkIVRX02ok+xhnYx/Y/8Th1ACj6qugK6AugS3fhsfJ/O2n6+dwG y+/9PE+fd6+HcvYxECRv+8d2Y4s8FiASt+dsXSPkRxWkPGtCBNss/S06zn4VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpE5CbjO2xGHWwEbQEuvb63oXwMAwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZyMA0GCSqG SIb3DQEBCwUAA4IBAQAaXRmedy1VqQwvXZrVO13pqD4mV5bkrLS6UvY7z0kr60NZ XhZeB9G+kv0uckvyy8V0qcTmYb0HwE0ETz0BCH82NimaXo4ueZLihr1pjyvSktL/ ZhgVhPxfVRgUCMAAZpxmphqv6xbK9NrvfikIPLp0/hsK/Xb6xa5ycOdIU6Ud3rxE cHpR3LtnBeUJYAgeoWzhZ2SWYyFLrSgue6SXT5O//UqyBi2M6sMmbufgHkjukdpu D8QTUJuzrmW+A52Rc1lpOhBJ5pqeWGobXm/xcd3x8+FgmRgZ2MJ03PaR8wx2HUn8 aoa4i7HBPx+TuXc4ZANKks23jlzdHMH4u1kA+udb -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org