$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa File: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: iRjHonxZNqRpHeZ0vSjogTmxhWUG8ZWyfMHmIt7qmdQ= Subject key identifier: C0:B5:03:30:0D:FD:61:6B:86:17:9E:2E:18:D4:4A:01:94:3E:9D:D1 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 669C2115CE7E8F91CBD5B9BFA81D0C064D8A0E88 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa Signing time: Mon 01 Jul 2024 01:06:09 +0000 ROA not before: Mon 01 Jul 2024 01:01:09 +0000 ROA not after: Mon 30 Jun 2025 01:06:09 +0000 asID: 135360 IP address blocks: 45.127.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9c:21:15:ce:7e:8f:91:cb:d5:b9:bf:a8:1d:0c:06:4d:8a:0e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jul 1 01:01:09 2024 GMT Not After : Jun 30 01:06:09 2025 GMT Subject: CN=C0B503300DFD616B86179E2E18D44A01943E9DD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:e1:ea:b2:4f:aa:e1:75:0f:8a:2a:54:b6: 2b:ff:fe:74:87:23:5a:f2:ca:b4:8e:c6:f3:35:00: 95:2c:4c:1c:0f:7a:42:54:33:ae:26:07:82:1a:2b: 36:e8:7f:2f:de:d6:69:34:b2:5a:b8:3f:27:84:33: ff:7e:38:13:25:45:6c:53:42:ff:ea:a5:31:eb:7f: 14:0b:36:4d:66:95:db:d6:9e:8f:1f:b1:8e:75:06: 2f:b4:84:6e:e7:72:e5:d7:cb:31:d3:5a:5c:fc:33: 63:99:cd:bc:06:22:db:c7:de:9f:78:e2:5c:b9:02: 85:d5:90:7b:c6:fc:a4:86:b3:e2:83:e1:94:c1:af: d8:be:1d:99:8b:f8:b3:34:58:2d:c9:de:b6:0a:cf: 72:5c:2e:e7:aa:b0:8a:8a:92:6b:38:c4:05:4b:cd: 20:e3:86:89:d9:88:8e:8a:3a:e2:04:57:64:a2:43: 74:ae:e8:0c:2f:ce:65:99:8d:36:a7:b5:0d:f1:5b: ba:98:98:95:7c:29:2a:68:35:3a:d9:c4:66:8f:a3: 7d:a7:33:99:70:7c:96:ba:fb:50:0c:28:93:98:07: 57:c7:82:8e:cc:c8:46:79:4e:87:a1:bf:47:83:a4: 76:e7:76:f9:52:ab:48:f3:14:b4:0f:d9:b9:49:d3: 1a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B5:03:30:0D:FD:61:6B:86:17:9E:2E:18:D4:4A:01:94:3E:9D:D1 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.135.0/24 Signature Algorithm: sha256WithRSAEncryption 08:ff:b1:77:0e:34:8e:c0:3e:7b:fe:05:cf:af:4c:07:d4:0a: 30:b2:75:1a:33:a1:b0:d1:0e:65:80:e6:5a:df:1a:07:11:98: 43:99:a2:f4:a0:70:ed:8d:5d:b6:1a:a8:68:bb:b8:d1:39:f3: 2a:fc:ff:6b:1b:5c:ac:06:45:f6:4c:71:3a:6a:20:a3:35:a2: 98:bc:4a:03:f4:ec:9f:c6:e5:be:6d:90:36:7f:29:d3:6e:70: ae:82:c9:2b:79:c3:73:6c:03:e9:a7:01:30:dd:9d:9c:87:be: 64:9d:e2:7e:3a:cd:a9:de:81:c8:82:29:b4:64:27:02:4a:10: 14:13:be:ac:fa:6a:55:f7:c3:b9:11:6d:57:8e:d8:72:c8:5c: 74:32:05:c7:bc:b5:f1:7d:24:93:9a:9d:f5:3c:a6:cf:6e:fa: e2:4c:95:40:02:e3:83:1d:ba:43:72:5d:a8:29:1c:0e:07:4b: 3b:9a:a1:2d:47:82:37:95:e7:a5:35:b5:6b:c1:0b:cc:69:b3: b7:c1:ce:e2:1c:2a:f2:aa:9c:bc:59:dd:de:f2:dd:1f:a6:8d: 05:b9:e1:69:f1:71:54:a6:45:bc:4a:e0:8c:68:8a:ef:7c:cf: 0c:2d:56:9d:a6:99:8a:dc:5c:71:94:61:e3:70:f5:3a:27:e4: 06:49:be:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZpwhFc5+j5HL1bm/qB0MBk2KDogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNDA3MDEwMTAxMDlaFw0yNTA2MzAwMTA2MDlaMDMxMTAvBgNV BAMTKEMwQjUwMzMwMERGRDYxNkI4NjE3OUUyRTE4RDQ0QTAxOTQzRTlERDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE8OHqsk+q4XUPiipUtiv//nSH I1ryyrSOxvM1AJUsTBwPekJUM64mB4IaKzbofy/e1mk0slq4PyeEM/9+OBMlRWxT Qv/qpTHrfxQLNk1mldvWno8fsY51Bi+0hG7ncuXXyzHTWlz8M2OZzbwGItvH3p94 4ly5AoXVkHvG/KSGs+KD4ZTBr9i+HZmL+LM0WC3J3rYKz3JcLueqsIqKkms4xAVL zSDjhonZiI6KOuIEV2SiQ3Su6AwvzmWZjTantQ3xW7qYmJV8KSpoNTrZxGaPo32n M5lwfJa6+1AMKJOYB1fHgo7MyEZ5Toehv0eDpHbndvlSq0jzFLQP2blJ0xqRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwLUDMA39YWuGF54uGNRKAZQ+ndEwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALX+HMA0GCSqG SIb3DQEBCwUAA4IBAQAI/7F3DjSOwD57/gXPr0wH1AowsnUaM6Gw0Q5lgOZa3xoH EZhDmaL0oHDtjV22Gqhou7jROfMq/P9rG1ysBkX2THE6aiCjNaKYvEoD9OyfxuW+ bZA2fynTbnCugskrecNzbAPppwEw3Z2ch75kneJ+Os2p3oHIgim0ZCcCShAUE76s +mpV98O5EW1XjthyyFx0MgXHvLXxfSSTmp31PKbPbvriTJVAAuODHbpDcl2oKRwO B0s7mqEtR4I3leelNbVrwQvMabO3wc7iHCryqpy8Wd3e8t0fpo0FueFp8XFUpkW8 SuCMaIrvfM8MLVadppmK3FxxlGHjcPU6J+QGSb6z -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org