$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa File: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: yUy7Z6TdA+XV90QNiOLKs1QoHHl/ML7I57Z6+BQ+Xaw= Subject key identifier: F6:8D:F8:B0:AD:DC:FF:50:5B:AB:61:84:63:76:42:7C:9F:61:C6:CE Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 0644C893DCC677CA08E3D0B024D8D76BDC817C38 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa Signing time: Mon 07 Aug 2023 11:00:01 +0000 ROA not before: Mon 07 Aug 2023 10:55:01 +0000 ROA not after: Mon 05 Aug 2024 11:00:01 +0000 asID: 56233 IP address blocks: 43.252.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 02:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:44:c8:93:dc:c6:77:ca:08:e3:d0:b0:24:d8:d7:6b:dc:81:7c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Aug 7 10:55:01 2023 GMT Not After : Aug 5 11:00:01 2024 GMT Subject: CN=F68DF8B0ADDCFF505BAB61846376427C9F61C6CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:67:1d:de:bb:bb:42:4c:9d:07:e3:a7:08:8a: fc:a1:b9:af:37:14:a5:88:93:bd:20:9e:3d:54:94: ea:e8:e8:fa:07:b1:1e:b5:57:e1:da:98:9a:fa:d5: c9:38:af:84:0d:c3:8c:b0:5e:4f:2b:74:f2:9f:5d: 8e:c7:08:77:13:9d:0c:fc:37:3e:4a:4f:0f:10:76: d9:67:64:fa:d3:76:48:c6:e2:50:c2:d0:92:9c:b4: 16:cd:64:38:c7:d4:b5:ea:72:20:5a:1a:50:bb:3c: fc:1f:81:c1:86:32:31:83:f8:3c:e0:d6:c7:31:ed: 3b:10:88:36:1d:87:50:c8:ab:9f:10:ec:9d:25:42: f3:1a:45:39:b5:66:41:fe:12:41:56:44:d5:33:a4: 37:d6:b6:1c:1b:89:c3:de:16:3e:f8:ca:4f:76:28: 09:b6:ee:05:ee:0e:37:be:54:34:76:ca:a2:e6:ab: 44:2f:ea:39:f5:20:89:73:db:3f:44:b8:d7:c3:3c: db:9d:17:54:32:c6:c7:94:db:01:e8:9d:77:33:09: 08:40:71:cb:2a:24:ef:d1:97:30:13:a8:90:6a:2c: c0:ff:ef:f4:a2:04:2c:40:e9:52:f7:ab:30:88:df: a2:a9:23:a4:41:8f:c5:c8:c8:63:b7:bb:25:34:d5: 96:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8D:F8:B0:AD:DC:FF:50:5B:AB:61:84:63:76:42:7C:9F:61:C6:CE X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.144.0/23 Signature Algorithm: sha256WithRSAEncryption ca:b2:8f:ea:5c:46:2b:cd:9c:a5:03:0b:9a:81:9c:ea:54:ac: 13:6b:cd:30:34:4a:32:80:b1:ab:8b:a1:26:62:99:b3:52:ab: 1d:50:da:53:6b:74:21:5e:a9:ea:26:47:62:fb:fe:54:65:94: f1:5e:55:12:bf:f0:2f:46:1b:35:87:68:34:2e:66:06:45:d8: cd:bf:4f:20:9b:58:7d:a5:94:f6:87:13:95:44:aa:95:66:80: b9:6d:77:9b:8e:68:d6:c7:3a:f1:78:ec:08:a0:4d:c8:cc:7b: 3d:a0:2d:8c:38:57:21:e8:d4:24:90:d3:ad:53:eb:71:3c:79: ab:e4:82:4f:09:0c:de:07:b9:15:c6:e5:23:d7:37:ce:78:ce: 22:98:80:de:6d:40:10:b6:ec:28:8e:9c:16:f8:e5:06:3b:e4: 51:f2:01:a4:72:4f:19:4e:b2:42:bd:58:84:5e:cb:3f:3d:bd: d9:81:b8:54:2f:8f:7e:c0:eb:41:86:5a:12:5d:5a:87:9e:55: a1:d3:97:35:4b:52:c0:87:3c:97:92:3c:86:b4:4d:6d:f6:e6: 34:c7:bb:55:59:83:96:6e:38:bb:57:62:88:b7:f6:3a:2e:17: 00:4f:0f:b4:d4:d8:aa:59:cd:0a:a3:18:c8:02:6c:64:39:cb: 4a:52:70:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBkTIk9zGd8oI49CwJNjXa9yBfDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yMzA4MDcxMDU1MDFaFw0yNDA4MDUxMTAwMDFaMDMxMTAvBgNV BAMTKEY2OERGOEIwQUREQ0ZGNTA1QkFCNjE4NDYzNzY0MjdDOUY2MUM2Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Zx3eu7tCTJ0H46cIivyhua83 FKWIk70gnj1UlOro6PoHsR61V+HamJr61ck4r4QNw4ywXk8rdPKfXY7HCHcTnQz8 Nz5KTw8QdtlnZPrTdkjG4lDC0JKctBbNZDjH1LXqciBaGlC7PPwfgcGGMjGD+Dzg 1scx7TsQiDYdh1DIq58Q7J0lQvMaRTm1ZkH+EkFWRNUzpDfWthwbicPeFj74yk92 KAm27gXuDje+VDR2yqLmq0Qv6jn1IIlz2z9EuNfDPNudF1QyxseU2wHonXczCQhA ccsqJO/RlzATqJBqLMD/7/SiBCxA6VL3qzCI36KpI6RBj8XIyGO3uyU01ZahAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9o34sK3c/1Bbq2GEY3ZCfJ9hxs4wHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzM0MzMyZTMyMzUzMjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv8kDANBgkqhkiG 9w0BAQsFAAOCAQEAyrKP6lxGK82cpQMLmoGc6lSsE2vNMDRKMoCxq4uhJmKZs1Kr HVDaU2t0IV6p6iZHYvv+VGWU8V5VEr/wL0YbNYdoNC5mBkXYzb9PIJtYfaWU9ocT lUSqlWaAuW13m45o1sc68XjsCKBNyMx7PaAtjDhXIejUJJDTrVPrcTx5q+SCTwkM 3ge5FcblI9c3znjOIpiA3m1AELbsKI6cFvjlBjvkUfIBpHJPGU6yQr1YhF7LPz29 2YG4VC+PfsDrQYZaEl1ah55VodOXNUtSwIc8l5I8hrRNbfbmNMe7VVmDlm44u1di iLf2Oi4XAE8PtNTYqlnNCqMYyAJsZDnLSlJwtA== -----END CERTIFICATE-----Generated at Thu Apr 18 20:08:36 2024 by rpki-client on console-fra.rpki-client.org