$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa File: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: 8FHuasztaiBgjf8vTeP7NOsj9KO7tgGptX2jJQvDg4Q= Subject key identifier: E0:88:36:8E:1A:81:EF:0D:59:01:54:B1:2B:08:A8:E6:ED:2C:C3:C3 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 560AE7AA51DCA85D36301AB3FC0B5003B235EC19 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa Signing time: Mon 01 Jul 2024 01:06:10 +0000 ROA not before: Mon 01 Jul 2024 01:01:10 +0000 ROA not after: Mon 30 Jun 2025 01:06:10 +0000 asID: 58477 IP address blocks: 45.127.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0a:e7:aa:51:dc:a8:5d:36:30:1a:b3:fc:0b:50:03:b2:35:ec:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jul 1 01:01:10 2024 GMT Not After : Jun 30 01:06:10 2025 GMT Subject: CN=E088368E1A81EF0D590154B12B08A8E6ED2CC3C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c0:23:0a:a5:fc:48:57:dc:92:c8:41:5a:99: fa:e5:15:c6:f9:ab:b2:33:fc:97:2a:e3:53:6e:f0: c9:e8:45:10:cb:00:09:19:d3:c9:7f:d8:f3:9d:4c: 11:44:3a:da:6d:e3:9a:79:97:d8:ad:c8:8b:9a:80: 69:d9:3c:3f:28:75:1a:38:ab:b5:40:7a:e0:f0:c5: c3:3a:03:2a:9a:2e:6d:36:8d:99:f3:3a:6f:2e:3d: 8f:c9:57:54:6d:be:79:f9:dd:03:d4:db:db:a7:e6: 3d:db:76:11:04:73:b8:cb:ed:86:fe:e4:63:f3:4c: 1b:b5:cc:f2:00:6a:28:bd:93:db:7d:72:f3:1d:fe: b0:9b:59:91:58:cd:f2:cc:e5:c2:c2:bd:ee:7c:1d: bc:57:f2:d6:c6:2f:fe:c8:4e:02:4f:cb:e6:97:42: 51:55:96:44:57:6d:0a:89:79:c5:26:70:4f:77:b7: 92:b7:ee:c5:27:d4:42:6b:b1:5c:8c:e5:48:2b:80: 19:7d:5c:c2:92:17:47:46:7b:0b:1d:17:97:61:a6: 18:7a:68:0e:5a:41:a5:8a:3d:c6:d5:30:46:c8:c4: 3d:9f:b0:4a:65:a9:07:5c:ae:14:9b:08:33:13:2e: 7d:61:11:ca:99:3b:5e:8c:66:45:fb:de:de:2b:6f: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:88:36:8E:1A:81:EF:0D:59:01:54:B1:2B:08:A8:E6:ED:2C:C3:C3 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.133.0/24 Signature Algorithm: sha256WithRSAEncryption b4:cd:25:ab:b1:68:43:6e:4c:b7:21:33:ef:e0:40:17:e3:23: a8:3c:e8:9e:c7:01:23:34:1f:bc:84:bc:4b:b1:e9:49:37:95: 81:6a:b8:b9:78:07:3e:1c:de:73:f5:fd:a1:f9:d9:53:3f:79: aa:f4:94:6a:03:5f:f9:41:a3:ba:31:06:43:0e:4c:41:6f:23: 12:67:5b:7f:c3:35:c8:86:9a:63:b9:12:e3:db:cb:ea:1c:12: 3e:e0:9a:17:78:50:a7:e1:c3:e0:74:b8:f1:17:70:c8:1e:e8: fe:0e:17:c1:ed:f5:f2:23:1c:24:e6:86:3d:ea:f1:09:9e:7d: 53:41:d8:47:f6:3a:d1:31:f5:cb:04:89:ca:2e:d5:fa:bc:d4: a5:c9:fa:0a:bf:91:ae:3e:a7:86:a8:c7:7b:59:43:23:18:8a: 11:71:29:88:ae:47:83:32:94:ac:a5:bc:1e:80:d9:46:96:a3: d0:0a:59:4f:b0:d0:30:50:ee:fe:97:97:ee:ca:f6:0d:c1:b9: 75:dd:d6:0e:15:e1:c6:95:26:34:ff:d2:ee:d0:78:9c:e5:73: a7:5a:87:f7:69:75:e3:72:4d:8d:1b:32:d7:03:0f:f6:e5:0d: 01:84:ae:f2:ae:c4:12:15:58:3e:f6:76:e3:ac:d2:8b:b3:99: 0e:4b:8b:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVgrnqlHcqF02MBqz/AtQA7I17BkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNDA3MDEwMTAxMTBaFw0yNTA2MzAwMTA2MTBaMDMxMTAvBgNV BAMTKEUwODgzNjhFMUE4MUVGMEQ1OTAxNTRCMTJCMDhBOEU2RUQyQ0MzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWwCMKpfxIV9ySyEFamfrlFcb5 q7Iz/Jcq41Nu8MnoRRDLAAkZ08l/2POdTBFEOtpt45p5l9ityIuagGnZPD8odRo4 q7VAeuDwxcM6AyqaLm02jZnzOm8uPY/JV1Rtvnn53QPU29un5j3bdhEEc7jL7Yb+ 5GPzTBu1zPIAaii9k9t9cvMd/rCbWZFYzfLM5cLCve58HbxX8tbGL/7ITgJPy+aX QlFVlkRXbQqJecUmcE93t5K37sUn1EJrsVyM5UgrgBl9XMKSF0dGewsdF5dhphh6 aA5aQaWKPcbVMEbIxD2fsEplqQdcrhSbCDMTLn1hEcqZO16MZkX73t4rb+Z1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4Ig2jhqB7w1ZAVSxKwio5u0sw8MwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1/hTANBgkqhkiG 9w0BAQsFAAOCAQEAtM0lq7FoQ25MtyEz7+BAF+MjqDzonscBIzQfvIS8S7HpSTeV gWq4uXgHPhzec/X9ofnZUz95qvSUagNf+UGjujEGQw5MQW8jEmdbf8M1yIaaY7kS 49vL6hwSPuCaF3hQp+HD4HS48RdwyB7o/g4Xwe318iMcJOaGPerxCZ59U0HYR/Y6 0TH1ywSJyi7V+rzUpcn6Cr+Rrj6nhqjHe1lDIxiKEXEpiK5HgzKUrKW8HoDZRpaj 0ApZT7DQMFDu/peX7sr2DcG5dd3WDhXhxpUmNP/S7tB4nOVzp1qH92l143JNjRsy 1wMP9uUNAYSu8q7EEhVYPvZ246zSi7OZDkuLDw== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org