$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233362e302f32332d3234203d3e203535373031.roa File: 34332e3235322e3233362e302f32332d3234203d3e203535373031.roa (raw, json) Hash identifier: du3Z2oZnm2xq9zBQHByivE5rx2uSP6RHoHgCE6kHXW8= Subject key identifier: DF:7B:C9:14:B4:23:77:FC:E5:9B:E8:9E:35:B0:8A:91:51:E0:D6:52 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 2181D43B8B2A71F47E4075FD054C934226178314 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233362e302f32332d3234203d3e203535373031.roa Signing time: Mon 31 Jul 2023 00:13:39 +0000 ROA not before: Mon 31 Jul 2023 00:08:39 +0000 ROA not after: Mon 29 Jul 2024 00:13:39 +0000 asID: 55701 IP address blocks: 43.252.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 10:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:81:d4:3b:8b:2a:71:f4:7e:40:75:fd:05:4c:93:42:26:17:83:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jul 31 00:08:39 2023 GMT Not After : Jul 29 00:13:39 2024 GMT Subject: CN=DF7BC914B42377FCE59BE89E35B08A9151E0D652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:31:af:b3:05:7d:a6:c6:05:ac:87:cb:d7:d7: b6:b7:b4:e2:fe:8a:09:19:9b:57:29:27:7c:b9:8f: 12:00:8b:1c:86:10:c9:80:97:3c:e8:28:89:fc:9e: 7c:c7:4a:0c:74:ad:78:af:4c:7f:9b:5b:f5:37:f5: 47:b4:47:1d:e4:ea:dc:01:6b:2b:52:b7:41:30:73: 53:ef:64:2b:3a:47:57:19:0e:62:d5:de:80:43:bc: f6:cd:00:05:ad:14:79:a5:1c:92:aa:5f:74:ac:78: 74:fd:03:24:eb:6b:e1:0a:7d:70:1c:66:00:ac:7c: c3:98:38:6e:db:97:04:ee:e1:54:9f:5f:e1:25:02: fa:27:be:1e:ea:63:7f:5e:7a:2f:c9:b4:73:3d:a5: 97:e3:ab:08:b6:11:d3:cf:59:c5:0c:21:6a:06:85: 99:c8:4c:f7:12:8f:e4:ed:2f:14:48:ea:18:12:d0: 4b:ff:89:13:40:4a:ff:24:9b:43:99:b7:1b:29:8c: a9:c7:db:57:61:b6:79:2e:62:e0:66:41:97:c8:ca: dc:05:98:30:7f:09:e5:52:3f:37:8a:73:4e:33:92: f4:d0:55:3f:fe:af:1b:c0:07:93:7b:64:8f:d1:cf: 05:cb:dc:bc:55:59:12:a2:00:35:90:ca:02:c6:91: e2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7B:C9:14:B4:23:77:FC:E5:9B:E8:9E:35:B0:8A:91:51:E0:D6:52 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233362e302f32332d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.236.0/23 Signature Algorithm: sha256WithRSAEncryption af:68:ae:23:4b:94:22:3c:30:41:04:41:b5:c5:d1:60:fb:22: e9:70:59:44:4d:e8:d0:6a:18:73:16:db:91:ba:d7:81:fd:80: a3:b7:19:bd:69:0f:25:61:49:36:99:32:ee:4b:13:96:02:ee: d3:05:0c:c4:c5:e6:0b:ee:fa:fb:9a:9f:c4:0a:7e:a4:7f:79: 5a:06:02:f4:f7:de:62:81:15:cb:08:d4:ad:d6:8a:a3:fa:16: cc:c3:6f:3f:f8:93:79:3d:bb:cc:4e:ee:f4:31:50:90:d2:27: ab:38:98:78:54:84:fa:20:63:c3:af:29:6e:ec:c3:72:96:c4: 47:ea:b3:0e:67:c9:90:a6:04:79:51:e1:31:a2:75:86:2b:7b: 56:ee:37:ce:7f:c8:1f:85:fa:b7:a3:6d:9c:97:88:23:9f:1e: d3:75:84:b5:55:5b:9b:86:9e:8c:a2:5b:44:62:ca:5d:40:0c: d6:9e:1f:cc:62:61:47:45:d9:0f:a4:39:1c:61:2f:8b:32:bc: c6:d3:ec:85:db:f1:b6:ec:e2:8f:75:e0:82:49:f9:0a:3a:70: b0:e0:51:54:1f:e1:44:43:f8:e0:44:03:7f:e1:ff:32:48:ff: f5:03:b6:d1:39:26:43:ac:c3:9d:57:3a:4e:76:c9:64:7a:9e: 2a:18:e6:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIYHUO4sqcfR+QHX9BUyTQiYXgxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA3MzEwMDA4MzlaFw0yNDA3MjkwMDEzMzlaMDMxMTAvBgNV BAMTKERGN0JDOTE0QjQyMzc3RkNFNTlCRTg5RTM1QjA4QTkxNTFFMEQ2NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYMa+zBX2mxgWsh8vX17a3tOL+ igkZm1cpJ3y5jxIAixyGEMmAlzzoKIn8nnzHSgx0rXivTH+bW/U39Ue0Rx3k6twB aytSt0Ewc1PvZCs6R1cZDmLV3oBDvPbNAAWtFHmlHJKqX3SseHT9AyTra+EKfXAc ZgCsfMOYOG7blwTu4VSfX+ElAvonvh7qY39eei/JtHM9pZfjqwi2EdPPWcUMIWoG hZnITPcSj+TtLxRI6hgS0Ev/iRNASv8km0OZtxspjKnH21dhtnkuYuBmQZfIytwF mDB/CeVSPzeKc04zkvTQVT/+rxvAB5N7ZI/RzwXL3LxVWRKiADWQygLGkeIJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU33vJFLQjd/zlm+ieNbCKkVHg1lIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzM0MzMyZTMyMzUzMjJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM3MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv87DANBgkqhkiG 9w0BAQsFAAOCAQEAr2iuI0uUIjwwQQRBtcXRYPsi6XBZRE3o0GoYcxbbkbrXgf2A o7cZvWkPJWFJNpky7ksTlgLu0wUMxMXmC+76+5qfxAp+pH95WgYC9PfeYoEVywjU rdaKo/oWzMNvP/iTeT27zE7u9DFQkNInqziYeFSE+iBjw68pbuzDcpbER+qzDmfJ kKYEeVHhMaJ1hit7Vu43zn/IH4X6t6NtnJeII58e03WEtVVbm4aejKJbRGLKXUAM 1p4fzGJhR0XZD6Q5HGEvizK8xtPshdvxtuzij3Xggkn5CjpwsOBRVB/hREP44EQD f+H/Mkj/9QO20TkmQ6zDnVc6TnbJZHqeKhjmmQ== -----END CERTIFICATE-----Generated at Fri Apr 19 11:24:27 2024 by rpki-client on console-fra.rpki-client.org