$ rpki-client -vvf repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa File: 34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa (raw, json) Hash identifier: lGxv0hhUzCj7M28hqKeyqRqBKDDJKTxW9siQxZRW/8Q= Subject key identifier: 82:C4:CE:C6:EF:15:21:F4:9C:54:7A:C8:76:2B:44:13:85:74:67:0B Certificate issuer: /CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Certificate serial: 6116939A3896F55F5FBA6700A327B0255657862D Authority key identifier: 30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa Signing time: Sat 09 Nov 2024 07:00:01 +0000 ROA not before: Sat 09 Nov 2024 06:55:01 +0000 ROA not after: Sat 08 Nov 2025 07:00:01 +0000 asID: 152027 IP address blocks: 45.249.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:16:93:9a:38:96:f5:5f:5f:ba:67:00:a3:27:b0:25:56:57:86:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Validity Not Before: Nov 9 06:55:01 2024 GMT Not After : Nov 8 07:00:01 2025 GMT Subject: CN=82C4CEC6EF1521F49C547AC8762B44138574670B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:30:76:ae:59:28:14:e2:5f:3d:99:5d:49: be:c7:dc:58:52:58:fa:4b:bc:d0:f0:4a:6e:f4:d2: 76:9d:02:fa:80:e2:a9:01:5e:76:51:56:55:0e:3d: e3:f9:ec:f1:a2:17:cc:14:9f:62:16:72:ba:ca:f3: 17:1f:b5:2c:57:84:84:ec:ef:8b:c3:45:cf:54:14: 00:f6:43:2b:88:1f:2d:d4:eb:48:a5:0b:56:99:0b: 0a:c3:eb:71:28:7e:99:92:89:58:24:33:6a:cb:c0: 89:5f:3c:c5:46:c6:b3:b3:f1:55:bd:be:6b:55:20: 9c:fe:12:15:ad:20:64:2c:7f:be:3d:9f:35:a9:45: 5d:e6:7f:ca:37:9f:05:51:76:01:0e:6c:c5:fa:83: df:8c:55:75:63:dd:12:16:ca:4a:a4:98:ba:ec:ed: cd:42:1c:36:60:29:37:13:96:ff:5e:79:8d:0a:f4: 98:f2:5c:69:2d:f5:8e:9d:e1:17:08:d4:5b:51:79: 6b:ed:9d:18:d7:86:4d:dc:61:9d:30:a4:2d:45:3f: e6:c7:88:15:c2:bb:3f:32:bb:91:e2:e1:9c:89:f9: 5e:93:75:35:79:3b:53:4e:f3:a4:d7:76:ab:19:7a: 35:c2:c5:65:d0:39:05:b3:f8:1e:b2:0b:fc:30:5e: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C4:CE:C6:EF:15:21:F4:9C:54:7A:C8:76:2B:44:13:85:74:67:0B X509v3 Authority Key Identifier: keyid:30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.225.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:6f:af:97:8c:e0:aa:ac:c3:2e:24:e8:c7:95:e8:5a:71:64: c4:45:7b:5e:06:18:db:ac:65:25:d5:20:8e:a9:8c:51:9b:26: 6c:cb:29:cb:8d:68:3f:4d:b1:6b:42:10:df:9f:a4:95:db:eb: 9c:44:ee:0e:43:be:fa:62:f5:ae:86:70:e5:2c:fd:1b:33:04: 67:c1:5a:ad:37:db:d0:db:86:7c:b5:37:08:9a:18:53:fe:3a: 25:e8:e2:0c:e4:fa:01:35:b4:56:9b:68:56:92:51:5e:86:a5: 69:a1:c6:8d:fd:be:47:93:e2:fc:8f:7b:90:19:09:8a:25:78: 62:ef:79:1d:2d:b2:db:27:cf:b8:bc:15:d4:91:1f:b6:28:b6: fe:b8:f6:85:b4:0f:f5:76:68:33:be:a5:a7:9c:48:ae:a1:d0: f0:8e:fc:81:2a:ed:22:51:c3:dc:0e:c4:72:54:d8:5b:1a:e0: 28:f5:66:82:61:ed:20:68:1c:5d:ab:ab:71:e0:00:52:83:8e: 14:dc:cc:c2:b2:c7:ea:9d:bd:e3:2c:6b:5c:d4:1e:7e:27:df: d5:1f:05:54:f0:c9:d4:76:a5:69:4b:43:7b:1b:b8:6b:b5:a8: d6:1a:0c:7b:ea:48:69:8c:be:bf:f7:06:e0:f2:bd:fb:e2:2c: 52:03:11:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYRaTmjiW9V9fumcAoyewJVZXhi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlG MEE0QTdFRjAeFw0yNDExMDkwNjU1MDFaFw0yNTExMDgwNzAwMDFaMDMxMTAvBgNV BAMTKDgyQzRDRUM2RUYxNTIxRjQ5QzU0N0FDODc2MkI0NDEzODU3NDY3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPKzB2rlkoFOJfPZldSb7H3FhS WPpLvNDwSm700nadAvqA4qkBXnZRVlUOPeP57PGiF8wUn2IWcrrK8xcftSxXhITs 74vDRc9UFAD2QyuIHy3U60ilC1aZCwrD63EofpmSiVgkM2rLwIlfPMVGxrOz8VW9 vmtVIJz+EhWtIGQsf749nzWpRV3mf8o3nwVRdgEObMX6g9+MVXVj3RIWykqkmLrs 7c1CHDZgKTcTlv9eeY0K9JjyXGkt9Y6d4RcI1FtReWvtnRjXhk3cYZ0wpC1FP+bH iBXCuz8yu5Hi4ZyJ+V6TdTV5O1NO86TXdqsZejXCxWXQOQWz+B6yC/wwXpPLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgsTOxu8VIfScVHrIditEE4V0ZwswHwYDVR0j BBgwFoAUMNIal+Hu2QLxUcMCI3TZefCkp+8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWI4OTlhYy00ODcwLTRlMjgtOGU0ZS0yYzIzNzUyYTRhNjAvMC8zMEQyMUE5N0Ux RUVEOTAyRjE1MUMzMDIyMzc0RDk3OUYwQTRBN0VGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlGMEE0 QTdFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5Yjg5OWFjLTQ4NzAtNGUyOC04 ZTRlLTJjMjM3NTJhNGE2MC8wLzM0MzUyZTMyMzQzOTJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALfnhMA0GCSqG SIb3DQEBCwUAA4IBAQAPb6+XjOCqrMMuJOjHlehacWTERXteBhjbrGUl1SCOqYxR myZsyynLjWg/TbFrQhDfn6SV2+ucRO4OQ776YvWuhnDlLP0bMwRnwVqtN9vQ24Z8 tTcImhhT/jol6OIM5PoBNbRWm2hWklFehqVpocaN/b5Hk+L8j3uQGQmKJXhi73kd LbLbJ8+4vBXUkR+2KLb+uPaFtA/1dmgzvqWnnEiuodDwjvyBKu0iUcPcDsRyVNhb GuAo9WaCYe0gaBxdq6tx4ABSg44U3MzCssfqnb3jLGtc1B5+J9/VHwVU8MnUdqVp S0N7G7hrtajWGgx76khpjL6/9wbg8r374ixSAxFx -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:48 2024 by rpki-client on console-ams.rpki-client.org