$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/34332e3232392e3235342e302f32332d3234203d3e203233363739.roa File: 34332e3232392e3235342e302f32332d3234203d3e203233363739.roa (raw, json) Hash identifier: FNhSE8ibNYwXHWwgsx0vmsSt/depEGJBhK52j7Xyr6s= Subject key identifier: 7F:19:68:78:D8:35:21:12:26:FC:9A:B1:47:AC:32:32:71:84:A5:9A Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 34418D30090A668B686C1865DA94E5860C0525EE Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/34332e3232392e3235342e302f32332d3234203d3e203233363739.roa Signing time: Fri 22 Sep 2023 05:01:48 +0000 ROA not before: Fri 22 Sep 2023 04:56:48 +0000 ROA not after: Fri 20 Sep 2024 05:01:48 +0000 asID: 23679 IP address blocks: 43.229.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:41:8d:30:09:0a:66:8b:68:6c:18:65:da:94:e5:86:0c:05:25:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 22 04:56:48 2023 GMT Not After : Sep 20 05:01:48 2024 GMT Subject: CN=7F196878D835211226FC9AB147AC32327184A59A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0c:21:5e:0e:49:e8:03:90:31:18:50:19:7f: 9a:20:27:5e:a7:f9:5c:8a:42:ca:e3:a3:18:f6:cb: 37:8b:ab:f5:c7:5e:7f:79:f3:3a:c7:c1:ed:62:2e: 37:b5:18:f0:5f:91:35:c2:9a:ce:53:ad:73:72:d1: a7:75:65:7d:aa:e7:e5:6b:a7:dd:84:3f:04:a4:25: 2e:c7:16:67:93:a7:62:1b:59:61:30:b6:8d:68:5f: 77:68:8e:32:5d:16:39:17:5e:b1:9d:f1:f9:8d:61: 5c:9a:d4:f2:9d:91:ec:74:2f:59:64:5d:f7:67:13: e4:cc:68:15:8a:e0:b5:40:6f:d0:16:50:d0:1b:7a: dd:52:44:8f:fb:bb:a9:ff:d1:40:4a:6b:f0:e2:35: dd:6c:7e:15:fb:4d:65:9e:93:a2:66:7e:f3:fc:46: 67:b0:21:a1:60:c9:31:96:12:e4:13:46:e4:1f:a1: 10:29:09:87:1f:eb:87:62:a4:d2:4f:f8:c5:9f:19: 70:b3:65:60:86:c9:16:ba:e1:db:6f:98:66:d9:b6: 4e:20:e4:82:74:87:cc:78:e9:d6:6f:bd:47:ec:3f: c8:42:48:17:fb:26:80:bb:ac:ee:cb:e0:58:17:0b: 18:fa:fc:ea:f9:64:ef:c0:60:84:e1:15:b0:6a:1b: 7f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:19:68:78:D8:35:21:12:26:FC:9A:B1:47:AC:32:32:71:84:A5:9A X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/34332e3232392e3235342e302f32332d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.254.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:ae:09:17:63:ee:bf:d5:4d:cd:96:70:c4:3c:b1:8d:4e:d9: 18:c2:a4:68:ad:b5:3f:0c:e4:70:48:3a:bf:a4:cb:9a:cc:1d: 07:2d:61:18:84:22:b0:5c:9c:e2:16:73:ac:9d:da:2e:6c:a3: 87:7f:95:eb:8f:92:12:f4:05:25:05:ad:83:b3:a6:9a:ee:1f: 08:41:05:a6:ab:78:c3:4b:37:dd:40:f1:58:56:50:46:d4:77: c1:08:8c:b6:77:db:b2:28:7c:5e:50:ab:4f:e0:6d:b4:b5:f4: 05:f9:aa:11:f4:c6:83:8e:1d:1d:01:8a:fa:85:ab:d1:1f:14: 17:f0:d2:fa:9f:09:76:76:45:cd:00:db:6e:24:97:1a:84:1f: 78:7f:e6:9e:87:55:48:eb:ba:4a:f2:2a:8a:42:4f:10:03:69: ce:b8:70:d5:c9:07:f9:68:0a:1c:85:63:90:88:c7:89:a3:5f: d9:ce:18:91:23:fa:b7:62:e5:26:08:bb:20:8d:69:61:cb:e4: 02:12:b2:67:f3:d6:56:2f:05:30:9d:a7:17:5e:26:f5:2c:c3: 57:25:8a:da:f6:d8:ec:a5:df:3f:3c:19:d5:e6:dd:f9:5b:c5: 99:ed:83:42:38:42:70:4e:3c:1d:ae:bb:77:aa:68:4b:f3:74: 59:05:2d:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNEGNMAkKZotobBhl2pTlhgwFJe4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MjIwNDU2NDhaFw0yNDA5MjAwNTAxNDhaMDMxMTAvBgNV BAMTKDdGMTk2ODc4RDgzNTIxMTIyNkZDOUFCMTQ3QUMzMjMyNzE4NEE1OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKDCFeDknoA5AxGFAZf5ogJ16n +VyKQsrjoxj2yzeLq/XHXn958zrHwe1iLje1GPBfkTXCms5TrXNy0ad1ZX2q5+Vr p92EPwSkJS7HFmeTp2IbWWEwto1oX3dojjJdFjkXXrGd8fmNYVya1PKdkex0L1lk XfdnE+TMaBWK4LVAb9AWUNAbet1SRI/7u6n/0UBKa/DiNd1sfhX7TWWek6JmfvP8 RmewIaFgyTGWEuQTRuQfoRApCYcf64dipNJP+MWfGXCzZWCGyRa64dtvmGbZtk4g 5IJ0h8x46dZvvUfsP8hCSBf7JoC7rO7L4FgXCxj6/Or5ZO/AYIThFbBqG38xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfxloeNg1IRIm/JqxR6wyMnGEpZowHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzM0MzMyZTMyMzIzOTJlMzIzNTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvl/jANBgkqhkiG 9w0BAQsFAAOCAQEATa4JF2Puv9VNzZZwxDyxjU7ZGMKkaK21PwzkcEg6v6TLmswd By1hGIQisFyc4hZzrJ3aLmyjh3+V64+SEvQFJQWtg7Ommu4fCEEFpqt4w0s33UDx WFZQRtR3wQiMtnfbsih8XlCrT+BttLX0BfmqEfTGg44dHQGK+oWr0R8UF/DS+p8J dnZFzQDbbiSXGoQfeH/mnodVSOu6SvIqikJPEANpzrhw1ckH+WgKHIVjkIjHiaNf 2c4YkSP6t2LlJgi7II1pYcvkAhKyZ/PWVi8FMJ2nF14m9SzDVyWK2vbY7KXfPzwZ 1ebd+VvFme2DQjhCcE48Ha67d6poS/N0WQUtJA== -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org