$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3234203d3e203538343832.roa File: 34332e3235342e3132342e302f32322d3234203d3e203538343832.roa (raw, json) Hash identifier: bOcqzNKKCzOEiumbcqx108z3D9fEuqeGbLCa1XWttek= Subject key identifier: CC:CB:4A:0B:7F:4A:EF:89:DE:8D:2A:4C:0A:FE:8B:4E:98:12:BF:09 Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 50B869E046FB63C638138E16BA3992BDE3AA2095 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3234203d3e203538343832.roa Signing time: Mon 31 Jul 2023 00:03:19 +0000 ROA not before: Sun 30 Jul 2023 23:58:19 +0000 ROA not after: Mon 29 Jul 2024 00:03:19 +0000 asID: 58482 IP address blocks: 43.254.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b8:69:e0:46:fb:63:c6:38:13:8e:16:ba:39:92:bd:e3:aa:20:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Jul 30 23:58:19 2023 GMT Not After : Jul 29 00:03:19 2024 GMT Subject: CN=CCCB4A0B7F4AEF89DE8D2A4C0AFE8B4E9812BF09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bc:ed:16:6e:4a:91:42:01:7d:b3:25:f0:69: c8:db:75:75:c0:d7:05:0a:01:33:13:ff:31:c7:42: ee:9a:30:a1:fd:f6:76:b2:c9:79:49:90:a7:00:fc: 80:4e:78:a5:4a:75:ba:11:f0:63:cd:0d:e0:34:9d: e0:0a:78:1b:bd:70:87:87:50:e4:ed:3b:c7:36:2e: db:3a:7a:d7:9f:67:a9:45:f4:e4:36:2b:aa:be:4d: 18:8d:d5:21:6f:ce:3c:1b:04:89:f5:eb:ed:2b:e5: af:7c:13:7a:af:d0:6d:3d:13:ae:57:2b:bc:de:76: c2:89:a1:72:60:3e:45:28:64:d8:df:17:d3:e8:47: fb:ad:a4:45:65:1e:86:36:6a:0b:f9:59:d3:a4:a6: 4a:0d:56:ad:a2:4f:79:88:87:4e:c1:01:d2:7e:b0: a2:5e:df:40:56:a9:10:9c:ce:a4:4b:ca:0a:eb:05: e9:07:d8:84:a1:0a:83:f9:4d:14:19:95:e5:ab:f2: 79:57:75:7c:40:08:1d:0e:9e:a7:97:38:57:f2:72: f3:b3:08:91:d5:12:7a:20:94:a2:0a:3c:bd:85:d0: f3:1f:2d:c9:8e:ef:d3:0e:90:62:80:e7:c7:7c:07: 25:8e:21:44:ea:f0:e6:07:bb:27:61:9c:85:46:73: 40:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CB:4A:0B:7F:4A:EF:89:DE:8D:2A:4C:0A:FE:8B:4E:98:12:BF:09 X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.124.0/22 Signature Algorithm: sha256WithRSAEncryption c6:99:73:75:74:d0:62:5c:fd:8a:7d:5c:ce:6e:be:69:45:db: a4:07:7f:59:d9:a3:ca:ed:68:af:de:87:93:8d:4c:96:44:38: 7a:4e:8f:c1:64:55:f1:a8:09:3c:36:18:bc:55:8c:8c:e3:e3: b4:d0:08:4e:9a:a3:0e:1e:47:70:a1:3e:c3:69:19:2c:78:2b: 38:20:9d:08:b7:8d:58:55:0e:38:24:f5:97:a8:7b:f4:66:06: 0f:3a:99:66:3f:3b:c2:3e:f3:c9:f3:fc:0b:ff:2a:85:55:dc: d7:7f:1f:18:8c:52:9f:da:44:82:53:a2:b6:f8:7c:46:5e:6c: 3b:50:dc:48:5b:8b:e0:a9:a6:87:26:25:26:dd:fa:74:bc:8c: 52:ed:ec:39:24:f3:7a:c2:ee:e8:0e:7e:e7:95:02:3b:cf:6b: e9:04:43:6f:24:9a:b9:f3:7a:50:f4:f2:f8:31:14:11:86:5b: ee:c5:a3:0c:e8:68:0a:e5:5c:57:6e:03:33:41:ee:cf:47:09: 4a:fe:c7:8e:2e:9c:5a:bf:c5:f5:0a:5e:19:8d:98:f4:e4:3a: 6b:45:0f:c7:dd:68:ed:00:aa:c4:9f:7c:60:75:a1:f0:40:b3: 2e:aa:de:59:ca:9a:3f:21:f5:c7:4d:f5:6a:fb:bc:8b:e2:e1: fb:7c:f4:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUULhp4Eb7Y8Y4E44WujmSveOqIJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yMzA3MzAyMzU4MTlaFw0yNDA3MjkwMDAzMTlaMDMxMTAvBgNV BAMTKENDQ0I0QTBCN0Y0QUVGODlERThEMkE0QzBBRkU4QjRFOTgxMkJGMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZvO0WbkqRQgF9syXwacjbdXXA 1wUKATMT/zHHQu6aMKH99nayyXlJkKcA/IBOeKVKdboR8GPNDeA0neAKeBu9cIeH UOTtO8c2Lts6etefZ6lF9OQ2K6q+TRiN1SFvzjwbBIn16+0r5a98E3qv0G09E65X K7zedsKJoXJgPkUoZNjfF9PoR/utpEVlHoY2agv5WdOkpkoNVq2iT3mIh07BAdJ+ sKJe30BWqRCczqRLygrrBekH2IShCoP5TRQZleWr8nlXdXxACB0OnqeXOFfycvOz CJHVEnoglKIKPL2F0PMfLcmO79MOkGKA58d8ByWOIUTq8OYHuydhnIVGc0CzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzMtKC39K74nejSpMCv6LTpgSvwkwHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv+fDANBgkqhkiG 9w0BAQsFAAOCAQEAxplzdXTQYlz9in1czm6+aUXbpAd/Wdmjyu1or96Hk41MlkQ4 ek6PwWRV8agJPDYYvFWMjOPjtNAITpqjDh5HcKE+w2kZLHgrOCCdCLeNWFUOOCT1 l6h79GYGDzqZZj87wj7zyfP8C/8qhVXc138fGIxSn9pEglOitvh8Rl5sO1DcSFuL 4KmmhyYlJt36dLyMUu3sOSTzesLu6A5+55UCO89r6QRDbySaufN6UPTy+DEUEYZb 7sWjDOhoCuVcV24DM0Huz0cJSv7Hji6cWr/F9QpeGY2Y9OQ6a0UPx91o7QCqxJ98 YHWh8ECzLqreWcqaPyH1x031avu8i+Lh+3z0Vw== -----END CERTIFICATE-----Generated at Thu Apr 18 05:01:04 2024 by rpki-client on console-ams.rpki-client.org