$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa File: 34332e3233302e372e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: zPWQTSnp8f/0kMDC3XL+3BNuen9SSN7n2MclvrGO0PI= Subject key identifier: E6:FF:9E:1B:B4:2B:77:C6:31:6F:8C:CC:A7:C3:5A:E1:AD:49:BF:B3 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 3C7F1075FC1E54E29F8F0AF8CBBAFC198806259E Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa Signing time: Mon 31 Jul 2023 00:14:30 +0000 ROA not before: Mon 31 Jul 2023 00:09:30 +0000 ROA not after: Mon 29 Jul 2024 00:14:30 +0000 asID: 38788 IP address blocks: 43.230.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 08:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7f:10:75:fc:1e:54:e2:9f:8f:0a:f8:cb:ba:fc:19:88:06:25:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 31 00:09:30 2023 GMT Not After : Jul 29 00:14:30 2024 GMT Subject: CN=E6FF9E1BB42B77C6316F8CCCA7C35AE1AD49BFB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3f:0f:2c:af:6a:d4:16:50:02:e4:4f:3e:ab: 7e:da:c6:e8:81:2e:b4:29:fb:17:5d:cf:7f:04:92: c1:9d:7c:c1:f4:2c:a5:25:8e:48:20:39:4f:bf:d3: f5:60:5c:e2:b8:5f:90:3d:f8:a5:2a:18:52:13:ca: bf:39:1c:92:64:81:b7:30:01:11:44:6b:21:4a:42: 12:84:e2:0f:9a:e1:45:de:6f:b9:d8:24:3f:c1:43: f4:3b:d3:ad:40:c3:92:f5:a6:06:f4:35:c2:29:36: 2e:fa:20:d7:05:b2:3e:ef:39:f4:e7:88:ed:38:5e: 63:93:c4:4d:36:80:ad:d5:b6:b0:bd:77:c4:90:3a: 61:d8:4a:23:fb:96:ac:3d:35:58:46:5f:59:9a:8a: a2:fb:a5:56:94:cc:53:4d:59:09:7d:90:67:e4:84: 0a:50:8c:c7:81:3a:09:6e:01:6f:b3:a3:f8:12:44: ed:c1:88:e5:34:bb:ff:1a:9c:e7:c0:58:16:00:97: 8a:4b:f5:4b:14:d9:ff:71:90:e9:6c:36:36:76:58: fd:ca:59:9f:d8:41:8b:cd:1c:85:72:95:36:57:8f: 6a:89:73:03:de:a9:15:d3:74:e8:08:fa:ae:95:9d: 2b:a3:58:44:68:39:58:a8:3c:c5:81:14:8d:5c:6f: b5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:FF:9E:1B:B4:2B:77:C6:31:6F:8C:CC:A7:C3:5A:E1:AD:49:BF:B3 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.7.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:15:80:9b:08:e4:8b:53:d4:5c:8e:ca:d6:e9:a5:e0:50:44: 74:d0:32:98:fe:26:dc:b6:cb:f4:c3:27:5f:d7:df:90:bd:a6: 71:da:eb:03:92:20:31:08:ca:37:0f:8d:74:c0:36:0e:9d:1b: f4:e9:13:f7:b0:58:63:f7:33:e7:6f:fa:d9:1d:7f:e3:90:68: 43:68:42:ec:41:ec:7c:45:bb:88:1b:ca:b0:d7:cb:00:04:56: a5:1f:38:b8:b2:94:a8:e5:10:0c:35:ec:e4:a8:e5:06:ec:5e: 3d:82:bc:9f:16:4c:45:3a:09:0d:ab:48:d6:3b:68:d8:bc:27: 59:37:36:fd:b5:1d:6f:19:61:cd:86:e1:02:4d:a8:8e:91:f1: ae:27:a3:77:bb:7e:92:ea:1c:de:69:e3:dc:3a:e6:9d:df:4a: 06:8a:fb:f8:0c:9c:d6:0a:de:25:0e:40:68:23:5f:28:2a:f6: b1:48:13:a7:80:6c:16:0b:9c:63:73:21:28:57:db:a0:4b:8a: dd:20:20:dd:2f:a3:fa:6d:06:c6:47:a7:6c:ab:91:7e:7e:6e: 1b:d1:1a:23:cb:4d:c1:60:b2:5a:7a:4d:35:29:67:16:8b:5f: 34:a1:41:65:9d:c2:87:85:60:92:87:54:ed:30:45:74:73:af: fb:75:24:02 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPH8QdfweVOKfjwr4y7r8GYgGJZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA3MzEwMDA5MzBaFw0yNDA3MjkwMDE0MzBaMDMxMTAvBgNV BAMTKEU2RkY5RTFCQjQyQjc3QzYzMTZGOENDQ0E3QzM1QUUxQUQ0OUJGQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuPw8sr2rUFlAC5E8+q37axuiB LrQp+xddz38EksGdfMH0LKUljkggOU+/0/VgXOK4X5A9+KUqGFITyr85HJJkgbcw ARFEayFKQhKE4g+a4UXeb7nYJD/BQ/Q7061Aw5L1pgb0NcIpNi76INcFsj7vOfTn iO04XmOTxE02gK3VtrC9d8SQOmHYSiP7lqw9NVhGX1maiqL7pVaUzFNNWQl9kGfk hApQjMeBOgluAW+zo/gSRO3BiOU0u/8anOfAWBYAl4pL9UsU2f9xkOlsNjZ2WP3K WZ/YQYvNHIVylTZXj2qJcwPeqRXTdOgI+q6VnSujWERoOVioPMWBFI1cb7UjAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU5v+eG7Qrd8Yxb4zMp8Na4a1Jv7MwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzQzMzJlMzIzMzMwMmUzNzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr5gcwDQYJKoZIhvcNAQEL BQADggEBAAoVgJsI5ItT1FyOytbppeBQRHTQMpj+Jty2y/TDJ1/X35C9pnHa6wOS IDEIyjcPjXTANg6dG/TpE/ewWGP3M+dv+tkdf+OQaENoQuxB7HxFu4gbyrDXywAE VqUfOLiylKjlEAw17OSo5QbsXj2CvJ8WTEU6CQ2rSNY7aNi8J1k3Nv21HW8ZYc2G 4QJNqI6R8a4no3e7fpLqHN5p49w65p3fSgaK+/gMnNYK3iUOQGgjXygq9rFIE6eA bBYLnGNzIShX26BLit0gIN0vo/ptBsZHp2yrkX5+bhvRGiPLTcFgslp6TTUpZxaL XzShQWWdwoeFYJKHVO0wRXRzr/t1JAI= -----END CERTIFICATE-----Generated at Fri Apr 19 06:27:57 2024 by rpki-client on console-fra.rpki-client.org