$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133362e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: gGSb6UlTXlbMS7NNsB+MxN8fFYpbgNoMMYZOqkxuIvg= Subject key identifier: 0C:D7:CB:51:48:A5:75:D9:9F:E1:E1:F4:A3:87:CA:00:85:50:1D:86 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 1391A5F18940845AD43A1EAFD17CE67EA478A88D Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa Signing time: Fri 20 Oct 2023 11:00:01 +0000 ROA not before: Fri 20 Oct 2023 10:55:01 +0000 ROA not after: Fri 18 Oct 2024 11:00:01 +0000 asID: 58404 IP address blocks: 43.252.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 10:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:91:a5:f1:89:40:84:5a:d4:3a:1e:af:d1:7c:e6:7e:a4:78:a8:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Oct 20 10:55:01 2023 GMT Not After : Oct 18 11:00:01 2024 GMT Subject: CN=0CD7CB5148A575D99FE1E1F4A387CA0085501D86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:63:83:92:ca:8d:31:5a:08:24:db:9f:ef:86: f7:c6:2e:a3:11:82:70:08:4a:a7:09:c1:cd:38:5d: 91:ec:1d:3c:bc:5b:39:ee:8c:df:7b:e4:b6:20:b0: dc:bd:64:ee:9f:6a:4d:de:b1:ee:ed:a7:68:5a:5d: bd:92:87:5b:49:34:74:09:79:83:3f:75:8e:ab:6f: 8c:69:f8:7a:e9:0e:34:5e:ae:f1:3b:14:18:03:29: a5:2f:f6:4d:46:bc:5e:1a:e0:df:1c:46:70:cd:39: 5d:23:01:4f:34:3d:78:e9:a3:aa:52:9f:5e:63:9d: c1:f4:ec:bc:d6:c5:75:6b:11:89:11:2c:86:a8:b2: bd:bf:ff:bc:eb:8d:a4:10:d4:de:96:30:27:35:c1: 15:e2:4e:33:a4:3b:9e:67:c9:93:e0:ba:d5:85:f1: 36:e3:c6:46:f3:9b:27:fb:e4:69:fb:9a:b5:6a:2f: 3b:2f:e3:85:c0:a0:30:b1:c1:2f:8d:29:85:5c:2c: 5e:29:98:f1:ec:d5:83:57:06:b2:75:74:3d:f9:6c: c0:2c:01:37:86:81:af:3b:74:66:f4:16:26:00:e3: f9:2c:57:7e:96:c0:53:0a:2d:c5:ef:fe:95:eb:1f: a7:1e:fb:f1:7a:e4:17:11:4e:28:8e:c2:e5:28:9f: c3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D7:CB:51:48:A5:75:D9:9F:E1:E1:F4:A3:87:CA:00:85:50:1D:86 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.136.0/24 Signature Algorithm: sha256WithRSAEncryption 66:72:41:0a:82:84:80:72:94:06:38:ae:95:4c:23:54:cf:76: 02:cf:9e:31:41:4e:61:64:de:b8:40:5a:90:47:d6:ca:f5:ef: d8:a1:f4:24:9b:c4:66:4f:73:04:25:b2:a5:45:78:c6:ad:86: 96:ae:93:92:4d:2c:05:5e:0b:fe:56:ad:32:6c:73:19:10:be: da:98:f8:6d:84:68:b5:7b:0e:33:47:94:61:79:9c:08:2b:5c: db:61:f9:f6:f2:2f:e3:4c:f1:cd:22:fb:55:6a:a7:c9:b2:69: 66:b9:e1:04:8b:03:35:30:cb:16:e2:6c:cf:2b:3d:00:7d:67: b0:e5:2c:52:10:92:bb:17:50:f3:0e:6a:1b:e3:21:20:c7:2d: 8d:05:97:5b:b7:18:57:ab:ce:66:8a:b9:0b:1e:be:f2:d6:aa: dd:4c:c6:bb:e3:8f:cb:65:9d:ad:67:74:04:3c:bd:6d:62:91: 78:87:81:a3:10:51:9d:1a:7f:d1:33:00:ab:52:d5:38:14:31: b2:7d:62:92:d6:b0:68:52:bd:32:9b:f8:79:aa:1b:58:c2:88: b3:f9:9e:25:53:86:b1:56:de:89:a9:4e:c0:18:0f:43:ab:88: f4:0a:30:b8:cf:a4:49:2b:f9:7d:c0:cc:a1:f6:35:66:d2:73: 7e:07:f8:7d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE5Gl8YlAhFrUOh6v0XzmfqR4qI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yMzEwMjAxMDU1MDFaFw0yNDEwMTgxMTAwMDFaMDMxMTAvBgNV BAMTKDBDRDdDQjUxNDhBNTc1RDk5RkUxRTFGNEEzODdDQTAwODU1MDFEODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdY4OSyo0xWggk25/vhvfGLqMR gnAISqcJwc04XZHsHTy8WznujN975LYgsNy9ZO6fak3ese7tp2haXb2Sh1tJNHQJ eYM/dY6rb4xp+HrpDjRervE7FBgDKaUv9k1GvF4a4N8cRnDNOV0jAU80PXjpo6pS n15jncH07LzWxXVrEYkRLIaosr2//7zrjaQQ1N6WMCc1wRXiTjOkO55nyZPgutWF 8Tbjxkbzmyf75Gn7mrVqLzsv44XAoDCxwS+NKYVcLF4pmPHs1YNXBrJ1dD35bMAs ATeGga87dGb0FiYA4/ksV36WwFMKLcXv/pXrH6ce+/F65BcRTiiOwuUon8OZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDNfLUUilddmf4eH0o4fKAIVQHYYwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8iDANBgkqhkiG 9w0BAQsFAAOCAQEAZnJBCoKEgHKUBjiulUwjVM92As+eMUFOYWTeuEBakEfWyvXv 2KH0JJvEZk9zBCWypUV4xq2Glq6Tkk0sBV4L/latMmxzGRC+2pj4bYRotXsOM0eU YXmcCCtc22H59vIv40zxzSL7VWqnybJpZrnhBIsDNTDLFuJszys9AH1nsOUsUhCS uxdQ8w5qG+MhIMctjQWXW7cYV6vOZoq5Cx6+8taq3UzGu+OPy2WdrWd0BDy9bWKR eIeBoxBRnRp/0TMAq1LVOBQxsn1iktawaFK9Mpv4eaobWMKIs/meJVOGsVbeialO wBgPQ6uI9AowuM+kSSv5fcDMofY1ZtJzfgf4fQ== -----END CERTIFICATE-----Generated at Fri Apr 26 13:34:42 2024 by rpki-client on console-ams.rpki-client.org