$ rpki-client -vvf repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa File: 34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa (raw, json) Hash identifier: nmoiRM53K6xpzn1bErPhguSmoFMNRryI2xbTQlBLJ8Q= Subject key identifier: 34:7B:47:B7:08:CD:34:70:37:EF:25:00:D8:09:08:1C:A0:E3:4D:2B Certificate issuer: /CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Certificate serial: 2D0C6ED4C88B232C3D56748C4140BB2AA50FB1C9 Authority key identifier: 30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa Signing time: Sat 09 Nov 2024 07:00:01 +0000 ROA not before: Sat 09 Nov 2024 06:55:01 +0000 ROA not after: Sat 08 Nov 2025 07:00:01 +0000 asID: 152027 IP address blocks: 45.249.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0c:6e:d4:c8:8b:23:2c:3d:56:74:8c:41:40:bb:2a:a5:0f:b1:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Validity Not Before: Nov 9 06:55:01 2024 GMT Not After : Nov 8 07:00:01 2025 GMT Subject: CN=347B47B708CD347037EF2500D809081CA0E34D2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:eb:e2:32:94:da:33:33:d4:65:87:40:13:e8: 4f:3a:70:5d:1d:68:33:6b:5d:15:14:37:0e:fc:4a: 73:e8:36:86:f8:2a:61:7c:be:29:39:c4:14:55:94: 0f:64:58:cd:d9:09:23:35:05:87:f8:99:f2:ea:47: 58:b7:f7:3b:28:9c:19:25:79:74:ce:c7:59:2f:5d: d1:ea:d7:cc:38:5c:67:15:1d:25:73:41:f7:8a:19: 73:47:3f:01:c3:df:05:1b:50:ca:ed:c3:c6:ef:b2: 08:fe:81:d7:17:75:b2:69:56:2f:a6:7f:a7:23:fc: 15:a2:1d:8e:6f:77:87:0c:19:22:75:1f:e2:9f:15: 45:2c:c0:63:a7:e1:65:47:2a:b5:2e:ca:f7:64:51: 0b:1b:89:e9:66:3e:fc:40:34:2a:14:d7:36:6d:43: 59:cc:9c:cb:54:d5:af:4a:72:28:01:1a:6d:7f:fd: 97:bd:e7:93:8f:a5:46:42:91:96:14:18:1d:e7:94: 23:6e:4b:cf:58:12:69:ab:99:7e:ca:cf:2e:a5:1d: 82:69:8d:59:96:94:6c:74:6d:bd:15:ae:a9:a3:c1: b0:8e:12:c9:07:14:1e:c0:36:00:a5:3a:b8:8b:0c: c3:05:ee:83:0d:ee:6b:bc:74:c0:e2:8a:1a:17:c5: 62:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7B:47:B7:08:CD:34:70:37:EF:25:00:D8:09:08:1C:A0:E3:4D:2B X509v3 Authority Key Identifier: keyid:30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.224.0/24 Signature Algorithm: sha256WithRSAEncryption 72:d0:eb:a5:56:61:a0:d4:fe:1a:bf:b6:a7:c5:83:24:39:ac: 87:00:f2:51:c7:5d:9a:a4:e3:0d:dd:1c:6e:77:b6:f6:81:9d: f8:f4:2b:b0:1b:28:c2:b0:34:46:be:62:22:4f:e2:c1:42:5b: 48:95:29:2a:61:e2:29:b4:e4:09:51:7c:0a:35:2f:22:96:56: 75:0b:b9:6c:f6:f6:e5:b1:46:81:df:64:41:ee:1a:07:23:45: fc:5c:65:cd:8b:4c:6e:e3:81:6a:87:dd:82:35:7b:e0:58:48: 8c:76:0d:3a:b4:dd:88:17:81:27:8e:d5:df:ef:05:ac:2e:f8: 09:c6:c1:b1:0c:d7:28:8d:b7:bd:2a:ad:22:e7:f5:1e:7a:0c: a3:a0:c0:dd:02:dc:81:c1:bc:d3:86:18:26:71:39:ea:8c:6a: 5d:ac:bb:b6:69:cb:a8:5c:3e:75:0f:e3:eb:29:db:d2:ea:b3: 26:8a:42:cf:50:6d:91:c8:89:c7:ce:94:17:25:f6:1f:87:be: 93:73:10:97:e8:77:82:3b:1e:0c:b5:06:06:a8:50:a8:45:68: 68:1d:7d:ba:ed:e3:f7:67:88:c2:a4:1d:e1:42:be:6c:00:0a: eb:bb:a1:4e:d3:bb:86:de:93:d5:8e:c4:25:65:0b:11:ab:46: 35:7b:a0:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULQxu1MiLIyw9VnSMQUC7KqUPsckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlG MEE0QTdFRjAeFw0yNDExMDkwNjU1MDFaFw0yNTExMDgwNzAwMDFaMDMxMTAvBgNV BAMTKDM0N0I0N0I3MDhDRDM0NzAzN0VGMjUwMEQ4MDkwODFDQTBFMzREMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX6+IylNozM9Rlh0AT6E86cF0d aDNrXRUUNw78SnPoNob4KmF8vik5xBRVlA9kWM3ZCSM1BYf4mfLqR1i39zsonBkl eXTOx1kvXdHq18w4XGcVHSVzQfeKGXNHPwHD3wUbUMrtw8bvsgj+gdcXdbJpVi+m f6cj/BWiHY5vd4cMGSJ1H+KfFUUswGOn4WVHKrUuyvdkUQsbielmPvxANCoU1zZt Q1nMnMtU1a9KcigBGm1//Ze955OPpUZCkZYUGB3nlCNuS89YEmmrmX7Kzy6lHYJp jVmWlGx0bb0VrqmjwbCOEskHFB7ANgClOriLDMMF7oMN7mu8dMDiihoXxWKhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNHtHtwjNNHA37yUA2AkIHKDjTSswHwYDVR0j BBgwFoAUMNIal+Hu2QLxUcMCI3TZefCkp+8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWI4OTlhYy00ODcwLTRlMjgtOGU0ZS0yYzIzNzUyYTRhNjAvMC8zMEQyMUE5N0Ux RUVEOTAyRjE1MUMzMDIyMzc0RDk3OUYwQTRBN0VGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlGMEE0 QTdFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5Yjg5OWFjLTQ4NzAtNGUyOC04 ZTRlLTJjMjM3NTJhNGE2MC8wLzM0MzUyZTMyMzQzOTJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALfngMA0GCSqG SIb3DQEBCwUAA4IBAQBy0OulVmGg1P4av7anxYMkOayHAPJRx12apOMN3Rxud7b2 gZ349CuwGyjCsDRGvmIiT+LBQltIlSkqYeIptOQJUXwKNS8illZ1C7ls9vblsUaB 32RB7hoHI0X8XGXNi0xu44Fqh92CNXvgWEiMdg06tN2IF4EnjtXf7wWsLvgJxsGx DNcojbe9Kq0i5/UeegyjoMDdAtyBwbzThhgmcTnqjGpdrLu2acuoXD51D+PrKdvS 6rMmikLPUG2RyInHzpQXJfYfh76TcxCX6HeCOx4MtQYGqFCoRWhoHX267eP3Z4jC pB3hQr5sAArru6FO07uG3pPVjsQlZQsRq0Y1e6DK -----END CERTIFICATE-----Generated at Wed Nov 20 18:42:09 2024 by rpki-client on console-fra.rpki-client.org