$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/34352e3132362e38302e302f32322d3234203d3e20313335343738.roa File: 34352e3132362e38302e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: kxN5+JBKDl4rg19rseBT1deAXuEpcgLhZqmn7IO9XsA= Subject key identifier: 47:73:C0:8A:77:11:A1:41:64:B5:86:13:D2:57:5D:2E:C4:CB:8E:57 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 66570579C600556D54E851197AE9CBFBB80B1C49 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/34352e3132362e38302e302f32322d3234203d3e20313335343738.roa Signing time: Mon 22 Jul 2024 16:46:17 +0000 ROA not before: Mon 22 Jul 2024 16:41:17 +0000 ROA not after: Mon 21 Jul 2025 16:46:17 +0000 asID: 135478 IP address blocks: 45.126.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:57:05:79:c6:00:55:6d:54:e8:51:19:7a:e9:cb:fb:b8:0b:1c:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 22 16:41:17 2024 GMT Not After : Jul 21 16:46:17 2025 GMT Subject: CN=4773C08A7711A14164B58613D2575D2EC4CB8E57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e7:1e:45:66:6e:3e:9f:38:37:09:dc:2f:eb: 2f:e1:72:9f:50:99:fc:24:26:34:f4:3c:e5:f0:55: eb:1d:df:d1:7a:98:1a:25:67:90:8b:87:f8:9e:7e: bc:04:2f:7a:78:6a:49:c1:01:73:dd:f7:e8:a3:24: 71:37:a5:b6:a3:d6:18:f3:cd:ac:62:c9:32:f8:3f: b7:ee:11:22:e8:08:e2:f2:f0:ac:71:07:b5:e8:ed: 71:02:d6:0b:11:b8:66:dd:ef:d1:b8:15:d9:e1:c8: ed:4a:30:20:44:e0:1e:4e:98:18:d4:26:a2:e5:b7: 67:e3:ab:dd:94:a1:69:98:17:59:4e:97:be:ec:5f: fc:c6:26:7e:0b:30:2b:4b:12:07:cb:b4:e1:78:65: 50:ee:4f:80:b3:07:36:ed:7a:a9:36:cf:24:f1:b0: 58:bc:4f:ae:f0:2a:0c:b7:ef:80:8b:80:fe:b2:05: 14:ba:16:06:45:66:c4:0d:15:01:d5:fe:d7:d1:de: f7:1c:52:4c:6b:73:df:4c:c1:72:83:6f:56:cd:04: b8:59:98:36:d4:31:f8:f4:bd:8e:ba:52:26:6b:44: 3e:5d:46:db:cd:2d:b8:57:e6:02:e2:61:c1:48:fa: cd:13:92:65:ed:1e:31:86:68:2a:e6:8f:10:00:ba: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:73:C0:8A:77:11:A1:41:64:B5:86:13:D2:57:5D:2E:C4:CB:8E:57 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/34352e3132362e38302e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.80.0/22 Signature Algorithm: sha256WithRSAEncryption 15:04:9d:26:c9:48:11:17:e6:66:7f:e8:90:c0:38:64:37:4f: 8a:ac:31:65:49:30:1a:f8:b6:75:bb:e1:1b:4b:7b:99:d0:67: af:ae:51:69:99:2c:ee:72:5d:14:d2:e3:39:66:dc:6f:51:78: 21:a8:43:ce:b5:b2:2a:8c:a8:c8:81:2a:de:aa:3c:62:8a:58: c7:d8:74:21:a9:f3:c7:de:9d:05:7f:75:70:c0:4b:9d:87:b0: 2f:19:be:50:54:b1:92:6b:0f:89:96:c1:39:55:4e:45:3c:5f: 68:7d:9e:b8:04:27:b5:e9:91:2e:f9:ba:de:46:dc:d9:37:04: 9d:f6:a5:c4:a3:30:d2:c3:91:a7:6c:01:eb:f0:ce:96:89:a3: 61:ff:94:f8:61:51:89:5a:7f:47:3e:c0:81:f8:41:fa:6a:8a: c8:c2:f2:b1:ba:44:4f:63:f2:c3:ae:3f:68:30:66:ac:8c:ab: bc:12:0c:d6:21:61:1b:0e:6c:c4:c5:55:f0:b6:75:79:5c:10: e8:d9:09:bb:06:90:49:2d:44:2d:e3:da:50:07:49:c7:8a:eb: 92:0c:ec:e0:8f:c0:8c:01:50:9a:cb:cc:a0:88:b1:dc:47:51: 51:c9:38:66:81:15:98:f9:1a:de:c9:e7:bf:55:b4:bd:94:d7: 80:dc:1b:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZlcFecYAVW1U6FEZeunL+7gLHEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNDA3MjIxNjQxMTdaFw0yNTA3MjExNjQ2MTdaMDMxMTAvBgNV BAMTKDQ3NzNDMDhBNzcxMUExNDE2NEI1ODYxM0QyNTc1RDJFQzRDQjhFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF5x5FZm4+nzg3Cdwv6y/hcp9Q mfwkJjT0POXwVesd39F6mBolZ5CLh/iefrwEL3p4aknBAXPd9+ijJHE3pbaj1hjz zaxiyTL4P7fuESLoCOLy8KxxB7Xo7XEC1gsRuGbd79G4FdnhyO1KMCBE4B5OmBjU JqLlt2fjq92UoWmYF1lOl77sX/zGJn4LMCtLEgfLtOF4ZVDuT4CzBzbteqk2zyTx sFi8T67wKgy374CLgP6yBRS6FgZFZsQNFQHV/tfR3vccUkxrc99MwXKDb1bNBLhZ mDbUMfj0vY66UiZrRD5dRtvNLbhX5gLiYcFI+s0TkmXtHjGGaCrmjxAAuk1tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR3PAincRoUFktYYT0lddLsTLjlcwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzM0MzUyZTMxMzIzNjJlMzgzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1+UDANBgkqhkiG 9w0BAQsFAAOCAQEAFQSdJslIERfmZn/okMA4ZDdPiqwxZUkwGvi2dbvhG0t7mdBn r65RaZks7nJdFNLjOWbcb1F4IahDzrWyKoyoyIEq3qo8YopYx9h0Ianzx96dBX91 cMBLnYewLxm+UFSxkmsPiZbBOVVORTxfaH2euAQntemRLvm63kbc2TcEnfalxKMw 0sORp2wB6/DOlomjYf+U+GFRiVp/Rz7AgfhB+mqKyMLysbpET2Pyw64/aDBmrIyr vBIM1iFhGw5sxMVV8LZ1eVwQ6NkJuwaQSS1ELePaUAdJx4rrkgzs4I/AjAFQmsvM oIix3EdRUck4ZoEVmPka3snnv1W0vZTXgNwbbQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org