$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa File: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: 8C3xiGo6nG+ikxQtcnAMoDIZm8X0CHTX+y3LQvuICic= Subject key identifier: 2E:0F:DF:6F:4B:7A:BA:88:17:4B:18:74:FE:D7:47:98:60:0B:C6:6E Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 21DC12D948B1584D26F451E9837AA5A8BF169D3D Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa Signing time: Mon 31 Jul 2023 00:14:33 +0000 ROA not before: Mon 31 Jul 2023 00:09:33 +0000 ROA not after: Mon 29 Jul 2024 00:14:33 +0000 asID: 135360 IP address blocks: 45.127.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:dc:12:d9:48:b1:58:4d:26:f4:51:e9:83:7a:a5:a8:bf:16:9d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jul 31 00:09:33 2023 GMT Not After : Jul 29 00:14:33 2024 GMT Subject: CN=2E0FDF6F4B7ABA88174B1874FED74798600BC66E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:1b:3a:67:91:67:b5:8b:bb:5d:2e:f0:95: 95:95:40:97:a9:5b:67:c4:0a:c4:ff:3d:c2:40:91: a2:14:b2:57:36:fa:30:78:6c:d5:6e:e7:6e:4c:c7: 2b:07:ae:68:d1:47:dd:8c:1c:a4:22:cd:45:5d:98: ac:6a:bf:2e:6c:32:54:98:8b:e6:ca:da:a4:fd:1b: b0:ed:ff:51:4d:4e:5b:11:3f:ba:e3:e2:7d:ee:8d: ac:b7:65:8d:8c:43:37:6d:91:2e:a6:00:4b:92:56: 43:26:bc:07:79:4b:c3:ff:07:6e:3b:fa:90:bb:f6: 3e:a3:44:2b:8c:ab:a5:21:c3:5b:f3:59:11:63:be: 97:ac:81:17:71:5c:93:87:36:f5:c0:c9:b4:16:54: e0:81:f8:a2:a6:3f:9c:17:19:80:44:3a:5d:3f:4b: 6e:1a:3a:c5:e3:f4:81:51:dc:43:3d:cd:8f:6b:b0: de:d0:c2:34:55:76:9a:ed:f1:67:f8:50:79:a7:75: ca:28:7c:a6:e3:0e:f0:51:83:f7:8c:28:51:4e:54: 69:7d:5b:86:3f:35:5c:3f:a2:7a:0a:86:ba:fd:18: 37:a3:91:75:3f:89:78:cb:13:c2:64:f3:f2:97:65: e8:30:bc:88:b9:73:9c:03:cc:91:dc:d0:16:14:93: 11:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:0F:DF:6F:4B:7A:BA:88:17:4B:18:74:FE:D7:47:98:60:0B:C6:6E X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.135.0/24 Signature Algorithm: sha256WithRSAEncryption 01:d5:48:4f:18:44:f6:cc:9f:45:1d:61:73:ae:03:42:60:4b: f9:04:1c:b3:e2:db:cc:f0:6e:e2:6a:db:73:3b:44:de:40:6f: 0b:c1:45:d6:ba:48:b2:a6:b7:5a:cc:d7:2a:2c:40:86:b0:6b: 4b:07:29:21:08:e2:d9:4c:2b:5d:f6:c7:62:f8:f1:6d:81:ce: 18:a8:b7:30:87:fb:df:b1:24:bb:c8:54:1a:8d:01:1c:4d:e7: 51:73:65:ec:a4:68:8a:eb:83:92:77:cd:5b:89:63:75:6a:bc: b8:8c:c1:6c:33:d3:bf:e7:1d:33:2f:5e:59:6c:af:9c:38:e3: df:58:a0:42:33:04:b3:fc:40:23:3e:86:c1:17:7d:e3:b8:ff: 50:71:d6:18:4f:4a:cf:f9:96:89:c4:da:e8:f7:16:87:7f:37: d3:74:d1:98:a8:e4:13:77:16:6a:8d:2d:b0:de:c1:c4:6b:d3: 3b:24:6f:c3:ff:6d:89:1f:0d:ef:d1:50:3c:ac:ca:47:89:69: 5f:b8:0d:e6:1e:24:2d:5f:f2:7a:df:4d:c2:74:d3:ac:7f:87: 93:ad:f4:69:22:97:2f:4a:31:48:9b:49:67:da:4d:8a:ef:c9: ff:e3:1d:20:f4:21:af:3c:e1:4e:37:1d:7c:79:48:91:68:45: aa:9d:f8:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIdwS2UixWE0m9FHpg3qlqL8WnT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yMzA3MzEwMDA5MzNaFw0yNDA3MjkwMDE0MzNaMDMxMTAvBgNV BAMTKDJFMEZERjZGNEI3QUJBODgxNzRCMTg3NEZFRDc0Nzk4NjAwQkM2NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3shs6Z5FntYu7XS7wlZWVQJep W2fECsT/PcJAkaIUslc2+jB4bNVu525MxysHrmjRR92MHKQizUVdmKxqvy5sMlSY i+bK2qT9G7Dt/1FNTlsRP7rj4n3ujay3ZY2MQzdtkS6mAEuSVkMmvAd5S8P/B247 +pC79j6jRCuMq6Uhw1vzWRFjvpesgRdxXJOHNvXAybQWVOCB+KKmP5wXGYBEOl0/ S24aOsXj9IFR3EM9zY9rsN7QwjRVdprt8Wf4UHmndcoofKbjDvBRg/eMKFFOVGl9 W4Y/NVw/onoKhrr9GDejkXU/iXjLE8Jk8/KXZegwvIi5c5wDzJHc0BYUkxG5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULg/fb0t6uogXSxh0/tdHmGALxm4wHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALX+HMA0GCSqG SIb3DQEBCwUAA4IBAQAB1UhPGET2zJ9FHWFzrgNCYEv5BByz4tvM8G7iattzO0Te QG8LwUXWukiyprdazNcqLECGsGtLBykhCOLZTCtd9sdi+PFtgc4YqLcwh/vfsSS7 yFQajQEcTedRc2XspGiK64OSd81biWN1ary4jMFsM9O/5x0zL15ZbK+cOOPfWKBC MwSz/EAjPobBF33juP9QcdYYT0rP+ZaJxNro9xaHfzfTdNGYqOQTdxZqjS2w3sHE a9M7JG/D/22JHw3v0VA8rMpHiWlfuA3mHiQtX/J6303CdNOsf4eTrfRpIpcvSjFI m0ln2k2K78n/4x0g9CGvPOFONx18eUiRaEWqnfhs -----END CERTIFICATE-----Generated at Thu May 2 04:01:23 2024 by rpki-client on console-fra.rpki-client.org