$ rpki-client -vvf repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/34352e3132362e34302e302f32332d3234203d3e203634333030.roa File: 34352e3132362e34302e302f32332d3234203d3e203634333030.roa (raw, json) Hash identifier: BZ5WEPANVwZc7pyWjchfTbmgLmpQ2YY1gwAcuL6ZxrE= Subject key identifier: CC:65:08:B9:9A:4E:DF:86:58:07:8A:14:55:59:B1:E2:06:C7:D4:84 Certificate issuer: /CN=43E94F4D6572FA61C908F2C122712EB0A696EF96 Certificate serial: 6E6987840C4876C0A4355FAD720301ED41C02F37 Authority key identifier: 43:E9:4F:4D:65:72:FA:61:C9:08:F2:C1:22:71:2E:B0:A6:96:EF:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43E94F4D6572FA61C908F2C122712EB0A696EF96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/34352e3132362e34302e302f32332d3234203d3e203634333030.roa Signing time: Thu 23 Nov 2023 04:55:52 +0000 ROA not before: Thu 23 Nov 2023 04:50:52 +0000 ROA not after: Thu 21 Nov 2024 04:55:52 +0000 asID: 64300 IP address blocks: 45.126.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/43E94F4D6572FA61C908F2C122712EB0A696EF96.crl rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/43E94F4D6572FA61C908F2C122712EB0A696EF96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43E94F4D6572FA61C908F2C122712EB0A696EF96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:69:87:84:0c:48:76:c0:a4:35:5f:ad:72:03:01:ed:41:c0:2f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E94F4D6572FA61C908F2C122712EB0A696EF96 Validity Not Before: Nov 23 04:50:52 2023 GMT Not After : Nov 21 04:55:52 2024 GMT Subject: CN=CC6508B99A4EDF8658078A145559B1E206C7D484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:82:86:c0:01:b2:0f:60:85:e0:a5:b9:75: 28:d7:59:01:aa:18:eb:52:17:d7:79:f9:8e:00:85: 12:b0:a3:42:a0:bf:41:42:b7:49:26:49:db:6e:ef: 7e:2a:c0:c0:74:bc:ef:d7:12:eb:e3:7d:e3:c2:ad: 91:2c:9e:89:6e:a8:e9:04:43:eb:2b:da:01:cd:29: b3:65:e2:3e:ff:bf:9a:95:f3:04:94:ae:bb:aa:01: 01:ee:20:88:8b:a9:72:8e:2d:7e:1b:e8:5b:06:5f: f4:8a:21:84:ec:93:13:81:c1:46:af:9f:5f:44:73: 80:c6:31:bf:e2:e1:49:e3:be:42:de:aa:1d:86:0f: d9:b2:ff:8a:2e:ae:ce:ae:b9:67:b1:8f:89:d1:2b: 53:31:6d:33:cb:db:f1:10:72:0e:3f:38:33:be:95: cc:08:90:dc:40:cc:f8:29:99:f9:78:ee:6b:f8:af: 5a:15:6e:aa:24:84:41:63:e0:0a:a0:8d:32:32:dd: e1:d5:ce:78:e8:a8:96:c9:6a:c8:83:a4:f5:c1:13: 5d:8e:ef:2c:f7:69:d8:0a:f6:9b:cb:57:e1:65:48: 49:0b:e7:88:38:d5:b5:ee:65:c2:d0:8d:54:76:a8: 00:71:6f:4e:73:61:56:aa:38:e4:9a:fc:0d:b6:3d: 11:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:65:08:B9:9A:4E:DF:86:58:07:8A:14:55:59:B1:E2:06:C7:D4:84 X509v3 Authority Key Identifier: keyid:43:E9:4F:4D:65:72:FA:61:C9:08:F2:C1:22:71:2E:B0:A6:96:EF:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/43E94F4D6572FA61C908F2C122712EB0A696EF96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43E94F4D6572FA61C908F2C122712EB0A696EF96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/34352e3132362e34302e302f32332d3234203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.40.0/23 Signature Algorithm: sha256WithRSAEncryption 85:c6:26:1e:e1:a1:22:fb:aa:38:a4:3d:e5:94:a9:54:e7:0a: cb:71:74:c6:3f:52:59:9e:a9:78:79:67:e1:81:f7:29:36:a5: 83:c9:c5:8e:e5:f0:9f:0c:12:4c:b9:d0:b1:8b:45:8a:f8:c1: d8:5e:ac:34:67:00:ea:58:83:29:b6:63:cf:64:7e:aa:aa:31: 44:bd:af:d7:05:fd:69:3d:f0:c6:07:65:ca:fa:77:72:3a:8f: 4b:87:4f:fa:13:6a:7f:42:dd:d5:df:a1:d3:bd:e2:19:6c:06: c4:6d:46:e4:a2:db:ee:67:2f:24:6b:83:fa:cd:dc:97:7b:b3: d0:cb:1b:a2:91:9b:90:09:18:d8:df:84:68:c4:c6:9c:15:cf: 18:6e:17:5c:ca:e0:32:6d:b7:4f:13:b8:f8:80:59:5c:42:c7: 24:c2:cf:4f:3b:a3:c9:8c:b9:db:69:52:5f:2d:a4:36:76:bf: 15:21:42:1d:83:01:82:4d:c3:77:2f:62:c8:e1:74:29:a2:22: f5:65:08:fc:51:a9:8a:4f:ad:e2:2d:84:4f:85:26:0f:02:7e: 1e:e1:b4:fc:7a:4f:4a:38:8d:43:b3:a6:a1:bf:97:7c:8b:f3: f5:d5:39:5a:91:47:15:9a:a6:54:7b:3f:eb:db:ca:2c:e0:66: 37:37:47:a0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbmmHhAxIdsCkNV+tcgMB7UHALzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFOTRGNEQ2NTcyRkE2MUM5MDhGMkMxMjI3MTJFQjBB Njk2RUY5NjAeFw0yMzExMjMwNDUwNTJaFw0yNDExMjEwNDU1NTJaMDMxMTAvBgNV BAMTKENDNjUwOEI5OUE0RURGODY1ODA3OEExNDU1NTlCMUUyMDZDN0Q0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtC4KGwAGyD2CF4KW5dSjXWQGq GOtSF9d5+Y4AhRKwo0Kgv0FCt0kmSdtu734qwMB0vO/XEuvjfePCrZEsnoluqOkE Q+sr2gHNKbNl4j7/v5qV8wSUrruqAQHuIIiLqXKOLX4b6FsGX/SKIYTskxOBwUav n19Ec4DGMb/i4UnjvkLeqh2GD9my/4ours6uuWexj4nRK1MxbTPL2/EQcg4/ODO+ lcwIkNxAzPgpmfl47mv4r1oVbqokhEFj4AqgjTIy3eHVznjoqJbJasiDpPXBE12O 7yz3adgK9pvLV+FlSEkL54g41bXuZcLQjVR2qABxb05zYVaqOOSa/A22PRGtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzGUIuZpO34ZYB4oUVVmx4gbH1IQwHwYDVR0j BBgwFoAUQ+lPTWVy+mHJCPLBInEusKaW75YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDg0MDdlMy0yY2IxLTRjNmUtOGFlYi01ZTBkMzU1ZThjOTYvMC80M0U5NEY0RDY1 NzJGQTYxQzkwOEYyQzEyMjcxMkVCMEE2OTZFRjk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNFOTRGNEQ2NTcyRkE2MUM5MDhGMkMxMjI3MTJFQjBBNjk2 RUY5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0ODQwN2UzLTJjYjEtNGM2ZS04 YWViLTVlMGQzNTVlOGM5Ni8wLzM0MzUyZTMxMzIzNjJlMzQzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM2MzQzMzMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtfigwDQYJKoZIhvcN AQELBQADggEBAIXGJh7hoSL7qjikPeWUqVTnCstxdMY/UlmeqXh5Z+GB9yk2pYPJ xY7l8J8MEky50LGLRYr4wdherDRnAOpYgym2Y89kfqqqMUS9r9cF/Wk98MYHZcr6 d3I6j0uHT/oTan9C3dXfodO94hlsBsRtRuSi2+5nLyRrg/rN3Jd7s9DLG6KRm5AJ GNjfhGjExpwVzxhuF1zK4DJtt08TuPiAWVxCxyTCz087o8mMudtpUl8tpDZ2vxUh Qh2DAYJNw3cvYsjhdCmiIvVlCPxRqYpPreIthE+FJg8Cfh7htPx6T0o4jUOzpqG/ l3yL8/XVOVqRRxWaplR7P+vbyizgZjc3R6A= -----END CERTIFICATE-----Generated at Mon May 6 15:04:04 2024 by rpki-client on console-ams.rpki-client.org