$ rpki-client -vvf repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa File: 34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa (raw, json) Hash identifier: ROzSHjIj4d0A5I5xwPcr8qcP04vsXN3kHThsDDQGeag= Subject key identifier: F3:71:D7:8F:A1:64:37:5F:73:2F:14:F0:D8:BD:FA:FD:00:F2:EF:17 Certificate issuer: /CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Certificate serial: 3B4CB8FDA90A12C48AAAD12202B77ECC42DA6EFD Authority key identifier: 30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa Signing time: Sat 09 Nov 2024 07:00:01 +0000 ROA not before: Sat 09 Nov 2024 06:55:01 +0000 ROA not after: Sat 08 Nov 2025 07:00:01 +0000 asID: 152027 IP address blocks: 45.249.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4c:b8:fd:a9:0a:12:c4:8a:aa:d1:22:02:b7:7e:cc:42:da:6e:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Validity Not Before: Nov 9 06:55:01 2024 GMT Not After : Nov 8 07:00:01 2025 GMT Subject: CN=F371D78FA164375F732F14F0D8BDFAFD00F2EF17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:4b:ee:19:00:05:d0:6f:f2:e7:f9:11:58: 22:8d:a8:7f:21:6a:88:c7:84:1e:3e:49:43:58:47: 28:ac:f7:0b:40:80:df:03:1b:d6:f5:82:2d:6d:04: c6:4e:b0:84:66:11:bb:d5:5b:10:de:c6:b0:41:a6: b7:32:73:47:ac:ba:3a:75:b6:79:c1:42:03:ad:31: c2:d2:cb:71:34:8f:ac:e0:28:47:e0:eb:9c:b9:87: 06:eb:ad:0f:46:69:9f:ab:b2:46:85:57:ce:90:e7: e4:60:82:47:ca:7c:e9:af:2b:1b:cd:68:08:34:2f: 57:5c:85:36:09:42:b3:f2:ff:10:2d:00:3f:47:b9: c3:4c:90:b3:1e:f9:99:e9:8c:9d:c9:ae:d2:e6:88: b2:9b:4a:4b:5a:f7:ea:bc:dd:38:e8:0a:85:19:72: 7a:4d:fc:96:29:6c:c1:21:0c:1c:7d:1d:97:2c:69: 0c:bd:c7:03:37:86:5a:60:d5:0b:49:24:3b:ca:2f: c0:b0:4f:d1:cb:90:ee:96:61:51:f2:fe:66:55:ba: 36:54:22:ce:fb:47:00:b8:97:c6:1b:e6:ff:b1:ea: ce:09:39:36:65:c0:98:64:43:be:fd:f2:11:05:d7: 35:5e:23:7d:01:c4:62:ce:85:92:36:2b:66:ca:9f: 1c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:71:D7:8F:A1:64:37:5F:73:2F:14:F0:D8:BD:FA:FD:00:F2:EF:17 X509v3 Authority Key Identifier: keyid:30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.224.0/23 Signature Algorithm: sha256WithRSAEncryption d7:16:a3:f5:26:21:77:3d:a6:29:d3:80:c3:ca:31:e9:4c:16: 70:64:cb:85:22:9c:09:13:9a:e5:65:4a:36:82:f5:69:cb:84: fe:84:d4:3a:4e:7b:33:a2:4c:d1:59:60:a9:26:49:59:d2:3e: 71:08:00:d6:c2:85:ae:83:75:60:6c:8a:b8:25:58:00:6a:14: 7f:c1:65:50:aa:50:83:50:a8:16:ce:56:b9:b4:fa:3d:95:53: 52:51:c1:3c:7d:27:79:04:64:d3:b6:c6:69:72:51:93:e5:00: 43:47:24:39:cf:e9:54:4b:c0:be:32:79:fa:18:ba:70:a7:5d: 72:44:ee:84:3c:7c:d4:46:e0:9f:48:3d:b9:54:e2:9d:f1:c7: 67:3c:56:be:b8:05:18:b4:8f:bb:4a:00:ab:3b:a6:bf:30:84: 34:94:7d:be:fc:03:2f:c6:7a:83:89:e4:34:8c:b7:b7:fa:f3: 1a:c8:b0:6d:04:70:88:2a:a8:5f:42:c7:71:5a:55:1d:40:3c: 05:60:f8:a7:6b:12:ca:50:8e:fe:0e:3f:14:19:15:8e:6b:f4: 29:df:14:5d:69:c2:a3:4a:d5:41:05:f4:ad:0e:cc:9c:8e:46: 1c:76:b1:42:50:1a:a3:5c:99:ce:1b:e9:8c:7c:eb:21:d4:77: a6:3b:e3:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO0y4/akKEsSKqtEiArd+zELabv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlG MEE0QTdFRjAeFw0yNDExMDkwNjU1MDFaFw0yNTExMDgwNzAwMDFaMDMxMTAvBgNV BAMTKEYzNzFENzhGQTE2NDM3NUY3MzJGMTRGMEQ4QkRGQUZEMDBGMkVGMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzTkvuGQAF0G/y5/kRWCKNqH8h aojHhB4+SUNYRyis9wtAgN8DG9b1gi1tBMZOsIRmEbvVWxDexrBBprcyc0esujp1 tnnBQgOtMcLSy3E0j6zgKEfg65y5hwbrrQ9GaZ+rskaFV86Q5+RggkfKfOmvKxvN aAg0L1dchTYJQrPy/xAtAD9HucNMkLMe+ZnpjJ3JrtLmiLKbSkta9+q83TjoCoUZ cnpN/JYpbMEhDBx9HZcsaQy9xwM3hlpg1QtJJDvKL8CwT9HLkO6WYVHy/mZVujZU Is77RwC4l8Yb5v+x6s4JOTZlwJhkQ7798hEF1zVeI30BxGLOhZI2K2bKnxynAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU83HXj6FkN19zLxTw2L36/QDy7xcwHwYDVR0j BBgwFoAUMNIal+Hu2QLxUcMCI3TZefCkp+8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWI4OTlhYy00ODcwLTRlMjgtOGU0ZS0yYzIzNzUyYTRhNjAvMC8zMEQyMUE5N0Ux RUVEOTAyRjE1MUMzMDIyMzc0RDk3OUYwQTRBN0VGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlGMEE0 QTdFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5Yjg5OWFjLTQ4NzAtNGUyOC04 ZTRlLTJjMjM3NTJhNGE2MC8wLzM0MzUyZTMyMzQzOTJlMzIzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLfngMA0GCSqG SIb3DQEBCwUAA4IBAQDXFqP1JiF3PaYp04DDyjHpTBZwZMuFIpwJE5rlZUo2gvVp y4T+hNQ6TnszokzRWWCpJklZ0j5xCADWwoWug3VgbIq4JVgAahR/wWVQqlCDUKgW zla5tPo9lVNSUcE8fSd5BGTTtsZpclGT5QBDRyQ5z+lUS8C+Mnn6GLpwp11yRO6E PHzURuCfSD25VOKd8cdnPFa+uAUYtI+7SgCrO6a/MIQ0lH2+/AMvxnqDieQ0jLe3 +vMayLBtBHCIKqhfQsdxWlUdQDwFYPinaxLKUI7+Dj8UGRWOa/Qp3xRdacKjStVB BfStDsycjkYcdrFCUBqjXJnOG+mMfOsh1HemO+PX -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:48 2024 by rpki-client on console-ams.rpki-client.org