$ rpki-client -vvf repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/34392e302e32342e302f32332d3234203d3e203137393935.roa File: 34392e302e32342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: Qay85z2tBE2gSsJ1As2R1DyRPFo67yuecJZbDwWzf5g= Subject key identifier: E1:CD:30:10:9A:57:89:B8:16:D8:10:87:43:58:1B:3B:A2:0E:FE:03 Certificate issuer: /CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Certificate serial: 4EA0699E987C40E92E59C23FDF19D562255A4968 Authority key identifier: E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/34392e302e32342e302f32332d3234203d3e203137393935.roa Signing time: Thu 24 Oct 2024 16:00:02 +0000 ROA not before: Thu 24 Oct 2024 15:55:02 +0000 ROA not after: Thu 23 Oct 2025 16:00:02 +0000 asID: 17995 IP address blocks: 49.0.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a0:69:9e:98:7c:40:e9:2e:59:c2:3f:df:19:d5:62:25:5a:49:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Validity Not Before: Oct 24 15:55:02 2024 GMT Not After : Oct 23 16:00:02 2025 GMT Subject: CN=E1CD30109A5789B816D8108743581B3BA20EFE03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:71:c3:40:c0:bc:55:bd:19:5e:40:ad:6c:4e: 6e:4a:0e:8c:12:ff:f5:11:fd:78:8b:8f:61:39:ac: 81:ef:e0:89:21:fc:d3:45:d2:16:e7:ee:c0:b7:a0: a6:bd:6a:5a:4f:d3:c7:cf:de:6c:ca:9b:30:54:4f: c4:ab:cc:d5:5a:b0:15:59:64:cb:37:2e:5d:48:be: fe:ca:d1:bb:f5:d3:1b:2e:b4:f5:94:a1:7d:4d:2f: 6f:d4:01:6d:a7:ab:56:20:32:c6:64:71:87:dc:f8: 78:fe:08:db:65:1b:4a:73:ed:c6:2a:cb:51:a9:a7: 59:2a:a9:de:96:71:d2:3d:58:a5:35:f8:88:f1:3c: 40:66:e0:6b:66:8f:48:3f:b8:86:0a:6b:d2:3d:a0: d2:48:06:ba:9b:c1:e5:f2:77:c3:4e:b6:93:6f:30: 17:cd:72:1d:a0:7c:e5:c9:2e:46:1a:e3:3b:b1:d5: c1:42:bb:5c:93:1e:ab:99:9b:9d:d1:f3:50:3b:df: 38:a4:b0:1c:25:08:b9:10:e3:94:d6:3a:1f:26:7e: 1d:d5:d5:a1:0e:9e:0d:c1:10:e2:3d:97:c0:df:97: 30:ad:72:3b:f4:59:4e:d6:48:c0:41:3a:bc:79:5d: 55:c7:0a:36:e9:39:13:d5:2c:fa:c8:d2:48:ec:01: 9b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:CD:30:10:9A:57:89:B8:16:D8:10:87:43:58:1B:3B:A2:0E:FE:03 X509v3 Authority Key Identifier: keyid:E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/34392e302e32342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.0.24.0/23 Signature Algorithm: sha256WithRSAEncryption 75:9e:76:52:72:ea:00:d5:04:4d:83:94:bd:4f:b2:3f:da:12: d2:0b:29:d0:cf:47:75:62:f0:44:15:b5:02:3f:a1:aa:a6:41: c3:e5:ca:4c:30:7c:97:32:22:a8:c9:94:3b:6d:30:a6:42:db: ee:8f:02:53:7e:80:26:d2:93:8b:36:f4:20:c2:11:86:58:40: 3f:97:47:1f:c1:be:30:b3:0a:72:98:66:cf:6a:ee:f2:ef:4f: 01:47:78:2d:3c:1d:51:57:5f:4d:89:a2:b7:77:6b:c2:df:2f: 27:e6:29:d8:d7:82:a2:9b:c7:79:20:6c:7a:2c:4a:5c:57:ca: 43:d7:fa:9b:0b:34:cd:48:c6:bb:6d:f1:b9:8d:bd:68:62:7e: 70:63:a6:5b:08:a8:6f:89:e0:cf:1d:5f:d8:3f:95:28:11:b3: 0d:87:a7:c5:d8:8f:68:d8:ef:a5:af:26:cd:57:9c:75:83:fb: be:bc:7b:88:35:ba:2c:76:8e:33:e7:ec:43:b1:a5:74:3f:2c: 16:f0:e6:54:d8:52:5e:0a:61:91:b8:76:39:97:1a:d5:be:96: 25:33:0b:4d:4b:29:dc:e6:c0:96:c1:ab:ca:34:87:0e:de:04: fe:a5:7b:5e:9e:6f:08:a7:75:d0:f9:cd:ee:19:32:c1:c2:f7: 5f:e9:11:b4 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUTqBpnph8QOkuWcI/3xnVYiVaSWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJB NDBFNjM3MDAeFw0yNDEwMjQxNTU1MDJaFw0yNTEwMjMxNjAwMDJaMDMxMTAvBgNV BAMTKEUxQ0QzMDEwOUE1Nzg5QjgxNkQ4MTA4NzQzNTgxQjNCQTIwRUZFMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLccNAwLxVvRleQK1sTm5KDowS //UR/XiLj2E5rIHv4Ikh/NNF0hbn7sC3oKa9alpP08fP3mzKmzBUT8SrzNVasBVZ ZMs3Ll1Ivv7K0bv10xsutPWUoX1NL2/UAW2nq1YgMsZkcYfc+Hj+CNtlG0pz7cYq y1Gpp1kqqd6WcdI9WKU1+IjxPEBm4Gtmj0g/uIYKa9I9oNJIBrqbweXyd8NOtpNv MBfNch2gfOXJLkYa4zux1cFCu1yTHquZm53R81A73ziksBwlCLkQ45TWOh8mfh3V 1aEOng3BEOI9l8DflzCtcjv0WU7WSMBBOrx5XVXHCjbpORPVLPrI0kjsAZupAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQU4c0wEJpXibgW2BCHQ1gbO6IO/gMwHwYDVR0j BBgwFoAU6U1AmQZHE/HDpeIR6BfPwqQOY3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjdhZTgyZi01MzdlLTQ2MjYtYmU5ZS0zMzM5NGEyZGM5NjkvMC9FOTRENDA5OTA2 NDcxM0YxQzNBNUUyMTFFODE3Q0ZDMkE0MEU2MzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJBNDBF NjM3MC5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmY3YWU4MmYtNTM3ZS00NjI2LWJl OWUtMzMzOTRhMmRjOTY5LzAvMzQzOTJlMzAyZTMyMzQyZTMwMmYzMjMzMmQzMjM0 MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBMQAYMA0GCSqGSIb3DQEBCwUA A4IBAQB1nnZScuoA1QRNg5S9T7I/2hLSCynQz0d1YvBEFbUCP6GqpkHD5cpMMHyX MiKoyZQ7bTCmQtvujwJTfoAm0pOLNvQgwhGGWEA/l0cfwb4wswpymGbPau7y708B R3gtPB1RV19NiaK3d2vC3y8n5inY14Kim8d5IGx6LEpcV8pD1/qbCzTNSMa7bfG5 jb1oYn5wY6ZbCKhvieDPHV/YP5UoEbMNh6fF2I9o2O+lrybNV5x1g/u+vHuINbos do4z5+xDsaV0PywW8OZU2FJeCmGRuHY5lxrVvpYlMwtNSync5sCWwavKNIcO3gT+ pXtenm8Ip3XQ+c3uGTLBwvdf6RG0 -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org