$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3232392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: zgJX4XF8J1tMAV4Cr19+s0eBsghQDHlbU6J1YLttAwU= Subject key identifier: 01:F7:C8:16:E2:5E:60:CA:49:56:91:6D:F8:F2:B4:4E:D2:9A:60:04 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0C4D7730A86B21EBECD1C5A6E224DF9165DA02FD Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa Signing time: Mon 31 Jul 2023 00:03:57 +0000 ROA not before: Sun 30 Jul 2023 23:58:57 +0000 ROA not after: Mon 29 Jul 2024 00:03:57 +0000 asID: 58552 IP address blocks: 43.240.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 21:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:4d:77:30:a8:6b:21:eb:ec:d1:c5:a6:e2:24:df:91:65:da:02:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 30 23:58:57 2023 GMT Not After : Jul 29 00:03:57 2024 GMT Subject: CN=01F7C816E25E60CA4956916DF8F2B44ED29A6004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a0:3c:c5:50:2e:8f:70:e6:16:e5:6a:e2:a4: 04:f4:9d:e6:26:17:54:a6:ae:32:eb:02:ca:c7:cb: 64:de:fa:2d:f1:8e:dd:3b:dd:0d:9f:a5:4c:9b:d0: 57:c1:69:d4:17:a2:7c:3d:86:81:81:16:bc:b5:d7: cf:fc:87:02:60:2b:5e:2c:c6:60:ef:e9:f5:9e:69: 05:2b:1b:03:78:9c:eb:c4:6d:39:de:64:fa:6f:23: a2:d4:7a:28:fc:61:96:f8:09:74:dc:3b:5c:0e:30: 5b:94:59:4b:20:e3:29:82:98:1c:9f:6a:60:0b:32: 7f:2b:83:5e:3d:9f:d5:6f:fd:e1:da:e9:9c:01:0f: 74:0f:c4:07:fd:0c:f4:25:42:ba:6a:8e:9b:d6:37: 9b:77:8e:5e:a5:6e:52:b6:40:28:f5:f6:1d:6f:2b: ff:47:d8:57:e9:2c:0f:c1:fb:0c:91:fc:6f:f8:33: 3d:e8:be:54:53:e3:46:e2:6f:9e:92:2b:8d:07:12: 43:05:ad:bf:e8:db:52:60:d5:a5:2a:82:45:9f:cc: 4f:f6:15:0f:95:42:d2:f3:c7:f3:ce:70:bc:e7:5d: 0d:e6:e3:8f:d3:70:9f:b5:bc:13:2f:7c:a9:e2:05: 20:a7:3f:ee:ae:77:0d:97:49:9f:44:1c:14:f9:91: 4f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F7:C8:16:E2:5E:60:CA:49:56:91:6D:F8:F2:B4:4E:D2:9A:60:04 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.229.0/24 Signature Algorithm: sha256WithRSAEncryption 38:6f:88:09:ab:c4:31:68:55:35:07:89:81:48:01:e4:67:cb: 87:c3:87:b0:8b:c0:49:48:37:0c:a5:98:4d:5e:b5:04:6c:c5: 92:a5:26:0f:4b:4b:b1:b7:99:82:f3:a9:6c:3c:fd:1c:2a:92: 9b:ba:01:bc:cf:e0:46:80:37:31:16:3a:d2:b6:64:c0:1f:e6: 10:12:c5:aa:f6:42:3b:1f:2b:5b:12:45:da:a5:36:03:55:c0: 59:d9:a0:ae:e8:0c:6c:74:b7:0b:c5:73:3e:95:6c:38:38:14: 18:f4:55:58:71:4e:c6:11:dd:49:10:17:7a:18:2c:fc:f9:a6: c1:d4:c0:f8:e3:f4:6c:45:6b:5c:38:de:75:4b:fa:98:81:ff: 1b:7a:4d:52:4f:af:dd:e5:ef:1c:e9:4a:ec:c0:22:f4:af:15: d3:c2:f3:01:86:1a:95:84:7d:6f:ab:5b:9b:64:4b:da:45:b5: 91:c0:f0:a8:db:76:a2:30:36:2e:3e:e9:1d:29:18:3b:aa:27: f4:23:f8:05:48:0b:a4:09:ef:7b:e8:cc:4e:6a:22:a6:ac:e1: d5:5f:8c:d3:bf:35:5f:cb:6a:4f:0d:7e:48:cc:67:fe:b4:01: cf:45:f3:a3:a0:0d:bb:b7:7b:47:2d:a2:e1:b5:13:b3:77:60: 08:c6:86:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDE13MKhrIevs0cWm4iTfkWXaAv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzA3MzAyMzU4NTdaFw0yNDA3MjkwMDAzNTdaMDMxMTAvBgNV BAMTKDAxRjdDODE2RTI1RTYwQ0E0OTU2OTE2REY4RjJCNDRFRDI5QTYwMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVoDzFUC6PcOYW5WripAT0neYm F1SmrjLrAsrHy2Te+i3xjt073Q2fpUyb0FfBadQXonw9hoGBFry118/8hwJgK14s xmDv6fWeaQUrGwN4nOvEbTneZPpvI6LUeij8YZb4CXTcO1wOMFuUWUsg4ymCmByf amALMn8rg149n9Vv/eHa6ZwBD3QPxAf9DPQlQrpqjpvWN5t3jl6lblK2QCj19h1v K/9H2FfpLA/B+wyR/G/4Mz3ovlRT40bib56SK40HEkMFrb/o21Jg1aUqgkWfzE/2 FQ+VQtLzx/POcLznXQ3m44/TcJ+1vBMvfKniBSCnP+6udw2XSZ9EHBT5kU9JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAffIFuJeYMpJVpFt+PK0TtKaYAQwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5TANBgkqhkiG 9w0BAQsFAAOCAQEAOG+ICavEMWhVNQeJgUgB5GfLh8OHsIvASUg3DKWYTV61BGzF kqUmD0tLsbeZgvOpbDz9HCqSm7oBvM/gRoA3MRY60rZkwB/mEBLFqvZCOx8rWxJF 2qU2A1XAWdmgrugMbHS3C8VzPpVsODgUGPRVWHFOxhHdSRAXehgs/PmmwdTA+OP0 bEVrXDjedUv6mIH/G3pNUk+v3eXvHOlK7MAi9K8V08LzAYYalYR9b6tbm2RL2kW1 kcDwqNt2ojA2Lj7pHSkYO6on9CP4BUgLpAnve+jMTmoipqzh1V+M0781X8tqTw1+ SMxn/rQBz0Xzo6ANu7d7Ry2i4bUTs3dgCMaG4w== -----END CERTIFICATE-----Generated at Tue Apr 23 22:55:04 2024 by rpki-client on console-ams.rpki-client.org