$ rpki-client -vvf repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/34352e3131352e3133362e302f32322d3234203d3e203633383733.roa File: 34352e3131352e3133362e302f32322d3234203d3e203633383733.roa (raw, json) Hash identifier: 4Fy1MO5D9rdEzPzjV8yYwjb6zi9KIcJmdt+1Q2c+4Uo= Subject key identifier: 6F:C0:F4:D1:74:22:92:08:4A:D2:4B:B9:65:81:F5:A5:3E:DB:A1:B6 Certificate issuer: /CN=6E740E0191A423D6D9A0908C8B778DD2416F842E Certificate serial: 5221B8B4807169A2C7E926C4C759EDBC35BEE285 Authority key identifier: 6E:74:0E:01:91:A4:23:D6:D9:A0:90:8C:8B:77:8D:D2:41:6F:84:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/34352e3131352e3133362e302f32322d3234203d3e203633383733.roa Signing time: Mon 01 Jul 2024 01:05:42 +0000 ROA not before: Mon 01 Jul 2024 01:00:42 +0000 ROA not after: Mon 30 Jun 2025 01:05:42 +0000 asID: 63873 IP address blocks: 45.115.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.crl rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:21:b8:b4:80:71:69:a2:c7:e9:26:c4:c7:59:ed:bc:35:be:e2:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E740E0191A423D6D9A0908C8B778DD2416F842E Validity Not Before: Jul 1 01:00:42 2024 GMT Not After : Jun 30 01:05:42 2025 GMT Subject: CN=6FC0F4D1742292084AD24BB96581F5A53EDBA1B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:e5:46:fc:19:ff:ea:8c:f7:74:06:5a:10: d2:f9:2f:6b:45:47:44:6d:d2:c7:4f:79:6a:3f:50: 68:ff:92:34:66:e2:e1:cb:8e:42:20:d3:9c:4e:97: 13:aa:3b:26:30:b2:01:13:1f:e1:94:0a:cd:40:4e: 21:d6:8d:4f:69:b9:7d:ab:15:53:c3:5e:6f:69:e5: 9a:9e:d2:dd:8d:35:ab:40:87:8f:ec:00:eb:d4:b9: 8d:2c:64:e3:92:82:6f:18:fc:cb:13:e7:d2:e0:a6: cc:24:a3:58:fe:1a:a8:b9:25:78:c5:89:52:ad:95: 2d:87:47:66:d8:0e:07:39:c3:32:37:53:fb:f0:68: 1c:38:52:6b:1f:d7:25:35:8a:d2:d5:c8:a6:ce:f8: cb:35:c8:ad:ea:a8:18:10:ea:e2:b6:82:36:de:ba: c8:a8:75:18:26:e3:87:64:08:fd:6c:3f:71:8e:8a: 63:1c:ec:ca:ac:a5:93:58:67:2a:89:d8:0b:e5:05: c4:aa:0e:cc:e6:4b:56:2d:68:cf:b8:54:77:eb:1d: 20:19:1e:5d:89:72:8e:0b:95:d4:8a:b5:7b:7d:b9: 29:a2:1c:2e:b4:7d:63:4b:1a:9e:13:82:1b:66:c9: 37:aa:ac:77:ec:78:1c:bc:00:f8:d3:ce:95:b0:dc: 74:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C0:F4:D1:74:22:92:08:4A:D2:4B:B9:65:81:F5:A5:3E:DB:A1:B6 X509v3 Authority Key Identifier: keyid:6E:74:0E:01:91:A4:23:D6:D9:A0:90:8C:8B:77:8D:D2:41:6F:84:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/34352e3131352e3133362e302f32322d3234203d3e203633383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.115.136.0/22 Signature Algorithm: sha256WithRSAEncryption 95:ab:37:ed:ca:7c:aa:66:a2:96:46:dc:f2:c6:40:7b:11:6b: 4f:37:ba:06:05:86:c6:53:fc:5d:4b:10:22:9d:ea:65:f0:3e: cf:21:22:64:2a:aa:ab:f4:74:55:a9:4f:fb:ad:89:40:ba:f2: d9:a1:00:93:14:55:eb:89:cd:3a:9d:2c:0b:73:f4:7b:73:64: 85:db:fc:dd:01:39:73:95:47:87:3e:c7:d7:31:c9:52:ed:40: 54:7c:14:e2:f0:e7:a9:70:f7:ad:5b:8c:68:7d:15:18:14:99: 01:3a:ff:47:84:46:b6:4b:de:38:87:35:56:22:ea:29:33:e6: ab:25:ce:da:f9:5a:9d:9b:1d:70:7c:14:19:24:2f:a7:a0:18: a1:07:2d:0b:98:9e:68:e2:df:f1:24:c1:dc:20:d9:12:db:be: 4f:53:13:8e:7c:e8:e9:85:a2:85:9c:66:81:c4:5a:17:a7:30: 1a:da:a8:c2:45:fe:4c:d9:26:7a:79:e8:47:cf:b4:bf:bb:fa: 9b:ea:1e:88:77:39:b2:9a:cc:d9:34:90:ea:f5:b9:27:6d:18: bd:df:75:4a:bb:03:68:12:41:4c:f1:2a:71:50:aa:49:4d:53: 79:2b:fb:83:2d:de:49:83:af:38:89:d9:83:b9:97:28:fd:bd: 1d:e3:7b:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUiG4tIBxaaLH6SbEx1ntvDW+4oUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU3NDBFMDE5MUE0MjNENkQ5QTA5MDhDOEI3NzhERDI0 MTZGODQyRTAeFw0yNDA3MDEwMTAwNDJaFw0yNTA2MzAwMTA1NDJaMDMxMTAvBgNV BAMTKDZGQzBGNEQxNzQyMjkyMDg0QUQyNEJCOTY1ODFGNUE1M0VEQkExQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHr+VG/Bn/6oz3dAZaENL5L2tF R0Rt0sdPeWo/UGj/kjRm4uHLjkIg05xOlxOqOyYwsgETH+GUCs1ATiHWjU9puX2r FVPDXm9p5Zqe0t2NNatAh4/sAOvUuY0sZOOSgm8Y/MsT59Lgpswko1j+Gqi5JXjF iVKtlS2HR2bYDgc5wzI3U/vwaBw4Umsf1yU1itLVyKbO+Ms1yK3qqBgQ6uK2gjbe usiodRgm44dkCP1sP3GOimMc7MqspZNYZyqJ2AvlBcSqDszmS1YtaM+4VHfrHSAZ Hl2Jco4LldSKtXt9uSmiHC60fWNLGp4TghtmyTeqrHfseBy8APjTzpWw3HSjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUb8D00XQikghK0ku5ZYH1pT7bobYwHwYDVR0j BBgwFoAUbnQOAZGkI9bZoJCMi3eN0kFvhC4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzUxZTdhYi1hNjM4LTRmYTAtYmJjYy1iMGY4NTZhOGExNTcvMC82RTc0MEUwMTkx QTQyM0Q2RDlBMDkwOEM4Qjc3OEREMjQxNkY4NDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkU3NDBFMDE5MUE0MjNENkQ5QTA5MDhDOEI3NzhERDI0MTZG ODQyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjNTFlN2FiLWE2MzgtNGZhMC1i YmNjLWIwZjg1NmE4YTE1Ny8wLzM0MzUyZTMxMzEzNTJlMzEzMzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM4MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1ziDANBgkqhkiG 9w0BAQsFAAOCAQEAlas37cp8qmailkbc8sZAexFrTze6BgWGxlP8XUsQIp3qZfA+ zyEiZCqqq/R0ValP+62JQLry2aEAkxRV64nNOp0sC3P0e3Nkhdv83QE5c5VHhz7H 1zHJUu1AVHwU4vDnqXD3rVuMaH0VGBSZATr/R4RGtkveOIc1ViLqKTPmqyXO2vla nZsdcHwUGSQvp6AYoQctC5ieaOLf8STB3CDZEtu+T1MTjnzo6YWihZxmgcRaF6cw GtqowkX+TNkmennoR8+0v7v6m+oeiHc5sprM2TSQ6vW5J20Yvd91SrsDaBJBTPEq cVCqSU1TeSv7gy3eSYOvOInZg7mXKP29HeN7Aw== -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org