$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: w3Ks91mwkS7NztUtNLKYf1Zt3ODkRQznfK1tF6ldT8k= Subject key identifier: 96:A2:E4:6C:B6:59:DD:02:0E:DC:40:63:B5:4C:23:2C:8B:1D:00:04 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 2D53233A4D7E0F2E0B4D12C6B50CBDF864CF1C72 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:45 +0000 ROA not before: Mon 01 Jul 2024 00:57:45 +0000 ROA not after: Mon 30 Jun 2025 01:02:45 +0000 asID: 131717 IP address blocks: 45.118.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:53:23:3a:4d:7e:0f:2e:0b:4d:12:c6:b5:0c:bd:f8:64:cf:1c:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:45 2024 GMT Not After : Jun 30 01:02:45 2025 GMT Subject: CN=96A2E46CB659DD020EDC4063B54C232C8B1D0004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5c:61:66:57:76:ef:5a:47:5b:f4:4f:97:3a: 97:10:38:76:ee:fb:cf:3f:dd:10:a1:ea:7e:ca:13: 4b:04:52:1a:08:1e:5a:67:bb:4b:de:78:2f:4f:14: 6b:96:f8:20:84:66:20:7b:cf:04:53:fa:dc:0f:33: 31:56:d7:03:a1:25:0a:dd:38:3d:23:1d:3e:4c:96: de:2b:49:03:91:38:89:97:f2:5b:3d:78:20:41:7f: 28:b9:43:87:ab:3e:c8:9d:35:e7:d3:e6:6b:ba:de: 56:da:ca:68:f4:44:9d:85:4b:1a:81:9c:a9:2c:83: 41:cd:bb:43:36:9b:36:05:fd:da:58:f8:bb:e7:05: 65:e7:7d:07:a8:37:8f:9a:1b:e0:39:7a:35:f9:4e: 1d:89:8b:b0:59:56:0f:71:b6:3d:ea:fa:e1:67:78: 18:a0:e4:43:91:24:fb:71:9d:97:45:19:92:1f:df: 57:f5:2e:54:6c:fc:50:48:fc:cf:30:fc:ca:28:40: db:f8:d9:a0:58:ba:80:94:2d:19:d5:7a:c4:dd:76: f2:b6:ae:4b:e3:3b:1a:58:8a:1f:ad:e4:82:00:1c: cd:e9:52:d3:4c:cf:71:dc:fd:c1:7f:31:87:a3:b5: b7:96:2e:07:47:35:cc:75:54:06:5d:b1:08:3c:f4: 93:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A2:E4:6C:B6:59:DD:02:0E:DC:40:63:B5:4C:23:2C:8B:1D:00:04 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.115.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:b7:1a:af:60:de:3d:b2:df:ee:dc:61:cc:5c:83:05:c0:41: d6:bc:9c:e6:d7:ea:07:94:c5:a1:dd:5f:9e:d8:05:18:e3:20: 35:8f:7f:da:20:4e:3e:60:82:c0:ca:23:d9:e0:31:fa:3e:45: e1:ac:20:f2:99:5a:7f:fd:97:80:a4:a6:61:36:b4:17:c3:df: 11:e4:5a:c9:ff:b1:82:ac:96:52:1d:ed:39:fe:61:af:f1:ef: 0d:fa:01:68:b0:36:b1:16:35:7e:77:1d:2c:c9:7b:e6:b0:b5: 0f:8f:cf:5c:8f:53:1c:c6:bd:85:37:40:6b:99:93:55:7b:4e: c9:04:cb:de:b4:ec:aa:c9:7b:00:53:59:72:16:05:a3:ec:e0: 1c:55:51:2d:1b:c7:f7:f2:23:f1:4c:bf:64:0e:72:3b:65:f0: b8:85:b6:66:77:b7:42:7b:76:1d:c7:f1:ab:1f:b9:b8:b7:5b: f7:c8:3f:9f:ca:b0:80:8b:1d:6d:38:aa:88:4c:41:e8:bc:6d: c7:06:f6:62:69:af:90:aa:13:74:eb:17:c2:66:54:9f:3d:2a: b5:c6:64:47:83:8d:64:af:c4:cb:d1:e8:31:70:77:cb:f7:e3: 8b:36:36:cf:7e:e8:94:0b:19:b0:0f:31:be:c8:65:dc:c8:f1: b8:ae:02:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULVMjOk1+Dy4LTRLGtQy9+GTPHHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDVaFw0yNTA2MzAwMTAyNDVaMDMxMTAvBgNV BAMTKDk2QTJFNDZDQjY1OUREMDIwRURDNDA2M0I1NEMyMzJDOEIxRDAwMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbXGFmV3bvWkdb9E+XOpcQOHbu +88/3RCh6n7KE0sEUhoIHlpnu0veeC9PFGuW+CCEZiB7zwRT+twPMzFW1wOhJQrd OD0jHT5Mlt4rSQOROImX8ls9eCBBfyi5Q4erPsidNefT5mu63lbaymj0RJ2FSxqB nKksg0HNu0M2mzYF/dpY+LvnBWXnfQeoN4+aG+A5ejX5Th2Ji7BZVg9xtj3q+uFn eBig5EORJPtxnZdFGZIf31f1LlRs/FBI/M8w/MooQNv42aBYuoCULRnVesTddvK2 rkvjOxpYih+t5IIAHM3pUtNMz3Hc/cF/MYejtbeWLgdHNcx1VAZdsQg89JMfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlqLkbLZZ3QIO3EBjtUwjLIsdAAQwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZzMA0GCSqG SIb3DQEBCwUAA4IBAQBctxqvYN49st/u3GHMXIMFwEHWvJzm1+oHlMWh3V+e2AUY 4yA1j3/aIE4+YILAyiPZ4DH6PkXhrCDymVp//ZeApKZhNrQXw98R5FrJ/7GCrJZS He05/mGv8e8N+gFosDaxFjV+dx0syXvmsLUPj89cj1Mcxr2FN0BrmZNVe07JBMve tOyqyXsAU1lyFgWj7OAcVVEtG8f38iPxTL9kDnI7ZfC4hbZmd7dCe3Ydx/GrH7m4 t1v3yD+fyrCAix1tOKqITEHovG3HBvZiaa+QqhN06xfCZlSfPSq1xmRHg41kr8TL 0egxcHfL9+OLNjbPfuiUCxmwDzG+yGXcyPG4rgIt -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org