$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa File: 34332e3234372e32302e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: jDlQknjTzCAH0MG8hdH2xAqqvd2DKZ+TWHMy5LzwSDM= Subject key identifier: 05:C4:87:F8:8B:FF:5D:24:7E:E0:62:B3:8F:0D:41:31:41:D6:3A:0B Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 4D9FFA22550F85BFB81D41A867B8C7E39CA647C3 Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa Signing time: Sat 01 Jul 2023 09:00:01 +0000 ROA not before: Sat 01 Jul 2023 08:55:01 +0000 ROA not after: Sat 29 Jun 2024 09:00:01 +0000 asID: 24523 IP address blocks: 43.247.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:9f:fa:22:55:0f:85:bf:b8:1d:41:a8:67:b8:c7:e3:9c:a6:47:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Jul 1 08:55:01 2023 GMT Not After : Jun 29 09:00:01 2024 GMT Subject: CN=05C487F88BFF5D247EE062B38F0D413141D63A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d2:54:83:87:ad:06:11:89:17:49:83:05:c8: 70:7e:96:9f:74:f9:e5:e4:9c:4e:77:66:37:75:0d: b2:ca:f8:54:5f:2c:2c:aa:21:bf:8b:7e:e5:15:f3: 71:ad:a8:53:5b:e0:63:04:7a:64:20:81:e6:1b:8e: 24:68:84:95:49:f1:34:c0:ca:69:b0:0c:00:28:1c: c0:cb:2f:5a:68:2e:cf:88:88:27:34:16:f4:be:68: 13:35:2b:8a:1a:7e:5c:ba:6a:b1:a4:a6:37:71:62: 72:23:99:75:5f:2a:b0:04:81:69:ed:eb:9e:85:8b: 7f:be:04:95:85:58:aa:e4:29:95:a6:bd:1f:bd:b5: ce:4b:e0:b3:49:35:7d:1c:7e:7d:47:00:a7:ad:e1: 30:2d:28:1c:72:82:c3:64:0d:bf:6f:75:20:40:b5: 12:27:94:05:fb:ab:19:07:ae:a3:1f:1b:c8:49:47: 35:56:c1:4d:8a:be:19:c6:6b:5a:2a:86:21:88:42: 20:29:04:86:bc:ab:8d:b1:53:af:19:3f:4e:af:7d: 37:57:89:60:e4:73:7c:2e:da:4c:b2:0e:98:a1:3b: 5d:c5:1e:23:65:0c:d4:13:40:6f:c0:ab:d3:a4:0b: f3:1a:67:71:fc:67:c4:b5:16:5c:23:a2:04:0e:0b: 1a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C4:87:F8:8B:FF:5D:24:7E:E0:62:B3:8F:0D:41:31:41:D6:3A:0B X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.20.0/22 Signature Algorithm: sha256WithRSAEncryption 32:46:96:56:fc:2b:73:c7:87:3d:6e:5a:88:24:34:4c:3c:ed: 55:f9:57:de:1c:8a:83:e6:3c:57:3f:1e:99:dc:b3:f6:11:33: b4:c6:ca:58:bf:04:ed:50:ec:06:81:5f:63:f1:9f:3c:2c:33: 47:52:a9:bf:90:d7:09:dd:21:80:02:e0:21:12:a4:8a:17:d4: ca:aa:28:ad:98:6c:f8:8f:4d:cf:4c:1f:c2:d2:45:ba:1c:aa: de:5d:b6:f4:99:3e:04:44:4c:db:73:d8:0d:e2:98:27:65:b1: 36:0d:88:6b:10:6c:d7:8f:5b:f5:28:6d:db:b5:63:f1:2b:6a: cf:c7:ed:d9:24:78:28:45:db:ad:c1:9f:90:67:9a:55:9b:47: ad:90:12:ae:69:8c:0b:74:bb:bf:ec:48:85:e5:0f:c8:b3:1b: 11:9c:4c:ab:4f:d5:24:a1:4f:37:02:1a:69:b7:ff:d9:46:3a: ff:70:c0:91:00:28:ad:86:a3:2a:78:22:48:9c:38:7c:a5:f1: af:e9:05:37:76:6e:c7:57:f7:4b:8e:44:1c:ee:e9:00:96:7e: 8b:ed:a2:ae:49:9c:43:2b:c2:82:d9:60:cf:73:33:de:1b:dc: c0:cf:20:31:be:24:22:2a:5f:d2:f1:81:f0:65:ec:f5:1c:01: d3:f0:74:48 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTZ/6IlUPhb+4HUGoZ7jH45ymR8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yMzA3MDEwODU1MDFaFw0yNDA2MjkwOTAwMDFaMDMxMTAvBgNV BAMTKDA1QzQ4N0Y4OEJGRjVEMjQ3RUUwNjJCMzhGMEQ0MTMxNDFENjNBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn0lSDh60GEYkXSYMFyHB+lp90 +eXknE53Zjd1DbLK+FRfLCyqIb+LfuUV83GtqFNb4GMEemQggeYbjiRohJVJ8TTA ymmwDAAoHMDLL1poLs+IiCc0FvS+aBM1K4oafly6arGkpjdxYnIjmXVfKrAEgWnt 656Fi3++BJWFWKrkKZWmvR+9tc5L4LNJNX0cfn1HAKet4TAtKBxygsNkDb9vdSBA tRInlAX7qxkHrqMfG8hJRzVWwU2KvhnGa1oqhiGIQiApBIa8q42xU68ZP06vfTdX iWDkc3wu2kyyDpihO13FHiNlDNQTQG/Aq9OkC/MaZ3H8Z8S1FlwjogQOCxqHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBcSH+Iv/XSR+4GKzjw1BMUHWOgswHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9xQwDQYJKoZIhvcN AQELBQADggEBADJGllb8K3PHhz1uWogkNEw87VX5V94cioPmPFc/Hpncs/YRM7TG yli/BO1Q7AaBX2PxnzwsM0dSqb+Q1wndIYAC4CESpIoX1MqqKK2YbPiPTc9MH8LS Rbocqt5dtvSZPgRETNtz2A3imCdlsTYNiGsQbNePW/Uobdu1Y/Eras/H7dkkeChF 263Bn5BnmlWbR62QEq5pjAt0u7/sSIXlD8izGxGcTKtP1SShTzcCGmm3/9lGOv9w wJEAKK2Goyp4IkicOHyl8a/pBTd2bsdX90uORBzu6QCWfovtoq5JnEMrwoLZYM9z M94b3MDPIDG+JCIqX9LxgfBl7PUcAdPwdEg= -----END CERTIFICATE-----Generated at Fri May 3 10:33:22 2024 by rpki-client on console-ams.rpki-client.org