$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa File: 34332e3233302e342e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: R/C9PeIkqh907LKWqETxc7+iRmlLnSFqpVC9LKh0Ew8= Subject key identifier: 99:DE:7E:92:D3:B2:AC:20:8A:50:90:C4:98:91:F2:D8:9D:49:37:79 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 06AE08280BF838E712961200B0C88BBD3E6E6EE3 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa Signing time: Mon 31 Jul 2023 00:14:30 +0000 ROA not before: Mon 31 Jul 2023 00:09:30 +0000 ROA not after: Mon 29 Jul 2024 00:14:30 +0000 asID: 38788 IP address blocks: 43.230.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 08:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ae:08:28:0b:f8:38:e7:12:96:12:00:b0:c8:8b:bd:3e:6e:6e:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 31 00:09:30 2023 GMT Not After : Jul 29 00:14:30 2024 GMT Subject: CN=99DE7E92D3B2AC208A5090C49891F2D89D493779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9c:4d:ed:d1:66:3b:95:64:30:35:3e:68:bc: 18:d9:06:43:73:70:78:08:29:38:20:e9:b2:88:3a: d2:49:a1:5f:13:44:cc:98:fd:27:88:b4:cd:50:c0: 2a:61:17:b0:42:ed:1c:58:0c:90:02:2e:c5:8a:fc: a8:0f:69:e6:e2:31:4f:2f:60:ae:19:d7:cd:8a:8e: ab:f7:64:b3:e5:7b:df:ad:56:58:37:32:02:eb:0f: b5:7b:58:88:46:2a:48:53:4e:e8:75:44:10:10:94: 73:0c:e2:5f:6f:fc:3b:ea:1c:88:87:47:f6:f1:01: fc:79:57:c8:5b:3a:53:be:a5:76:ef:08:7b:47:3f: 66:53:ff:b1:a7:f0:ec:e7:af:ae:06:e1:27:42:38: e5:95:2c:43:b6:ed:aa:05:f5:e5:06:5c:d6:74:b1: af:56:72:f5:2a:dd:32:8e:23:69:0d:4f:0d:e5:f3: f2:60:13:c8:0d:9d:6f:68:16:97:1f:df:c1:f4:fe: ac:63:08:7e:f6:da:d2:55:45:2a:97:df:f6:20:98: 43:f1:8c:21:94:a9:27:34:42:ad:75:8e:41:ff:81: 45:bb:c3:2f:9a:85:da:04:ca:a3:06:9b:cb:35:89: 2f:5c:dd:10:8d:dd:95:eb:f8:55:26:37:c5:98:a5: 54:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:DE:7E:92:D3:B2:AC:20:8A:50:90:C4:98:91:F2:D8:9D:49:37:79 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.4.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:00:5a:f7:e0:61:b5:01:4b:c2:0f:73:df:2f:38:29:d1:d9: 82:cb:07:ea:e4:a1:60:34:6d:34:98:01:f5:4d:5a:c8:04:14: c9:e7:4d:b1:78:be:64:b7:5b:56:99:6d:43:32:97:a6:fd:db: 78:10:62:58:f1:49:47:d8:f8:7e:be:d1:ca:22:c9:0f:c7:ab: f3:4e:8e:96:7c:7c:b2:c9:ce:87:b1:6c:b7:c1:f6:a3:0c:00: 5f:54:c1:64:c2:27:89:75:49:a6:26:57:e9:35:09:a7:33:30: 50:2c:8a:70:cc:c6:22:19:73:28:ca:33:49:0d:25:be:6e:82: 77:20:20:64:ee:6d:f1:d7:47:ee:e0:d4:25:f7:dd:df:9b:d1: cc:fb:d0:51:70:fa:1b:61:70:ae:8d:e5:db:53:0d:a3:6d:b8: 03:b5:c8:8f:fd:61:8b:69:55:bc:67:36:c5:77:7f:fa:af:f6: 51:1a:a9:9e:15:89:e0:c7:46:e0:96:57:0b:8b:ac:a4:a1:7a: 12:e9:5b:54:0a:03:b3:be:0a:1e:1c:0f:4f:f9:ef:d5:1b:48: 39:8a:a4:03:48:24:ee:c6:85:52:4f:73:36:02:e9:a1:9a:92: 25:5c:94:36:53:27:44:1b:c8:71:9b:0b:61:72:ec:b5:15:61: e6:3e:6e:ea -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUBq4IKAv4OOcSlhIAsMiLvT5ubuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA3MzEwMDA5MzBaFw0yNDA3MjkwMDE0MzBaMDMxMTAvBgNV BAMTKDk5REU3RTkyRDNCMkFDMjA4QTUwOTBDNDk4OTFGMkQ4OUQ0OTM3NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfnE3t0WY7lWQwNT5ovBjZBkNz cHgIKTgg6bKIOtJJoV8TRMyY/SeItM1QwCphF7BC7RxYDJACLsWK/KgPaebiMU8v YK4Z182Kjqv3ZLPle9+tVlg3MgLrD7V7WIhGKkhTTuh1RBAQlHMM4l9v/DvqHIiH R/bxAfx5V8hbOlO+pXbvCHtHP2ZT/7Gn8Oznr64G4SdCOOWVLEO27aoF9eUGXNZ0 sa9WcvUq3TKOI2kNTw3l8/JgE8gNnW9oFpcf38H0/qxjCH722tJVRSqX3/YgmEPx jCGUqSc0Qq11jkH/gUW7wy+ahdoEyqMGm8s1iS9c3RCN3ZXr+FUmN8WYpVTHAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUmd5+ktOyrCCKUJDEmJHy2J1JN3kwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzQzMzJlMzIzMzMwMmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr5gQwDQYJKoZIhvcNAQEL BQADggEBACwAWvfgYbUBS8IPc98vOCnR2YLLB+rkoWA0bTSYAfVNWsgEFMnnTbF4 vmS3W1aZbUMyl6b923gQYljxSUfY+H6+0coiyQ/Hq/NOjpZ8fLLJzoexbLfB9qMM AF9UwWTCJ4l1SaYmV+k1CaczMFAsinDMxiIZcyjKM0kNJb5ugncgIGTubfHXR+7g 1CX33d+b0cz70FFw+hthcK6N5dtTDaNtuAO1yI/9YYtpVbxnNsV3f/qv9lEaqZ4V ieDHRuCWVwuLrKShehLpW1QKA7O+Ch4cD0/579UbSDmKpANIJO7GhVJPczYC6aGa kiVclDZTJ0QbyHGbC2Fy7LUVYeY+buo= -----END CERTIFICATE-----Generated at Fri Apr 19 06:27:57 2024 by rpki-client on console-fra.rpki-client.org