$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32322e302f32342d3234203d3e20313331373830.roa File: 34332e3234372e32322e302f32342d3234203d3e20313331373830.roa (raw, json) Hash identifier: S9gPJK5L6o1S0w1M8txYDL3sTXGmtsIUs5UlQOJS5nQ= Subject key identifier: 67:86:7E:E7:E4:8D:FE:0F:0D:E3:C4:82:96:36:5E:F5:05:1C:1F:77 Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 0E63BCC326487DD47EA800D5DBA2A09CFC6BF546 Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32322e302f32342d3234203d3e20313331373830.roa Signing time: Fri 22 Sep 2023 12:00:00 +0000 ROA not before: Fri 22 Sep 2023 11:55:00 +0000 ROA not after: Fri 20 Sep 2024 12:00:00 +0000 asID: 131780 IP address blocks: 43.247.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:63:bc:c3:26:48:7d:d4:7e:a8:00:d5:db:a2:a0:9c:fc:6b:f5:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Sep 22 11:55:00 2023 GMT Not After : Sep 20 12:00:00 2024 GMT Subject: CN=67867EE7E48DFE0F0DE3C48296365EF5051C1F77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:ad:2e:de:4b:e9:4a:26:05:4c:19:ae:ca: 76:f0:60:26:1d:0d:de:92:a6:57:db:58:0e:ac:4f: f5:35:33:4a:39:78:47:06:ae:f5:80:ed:d8:38:99: 3f:4e:f2:ee:5f:1f:78:3a:62:3e:34:7f:4b:98:0a: 6b:ed:30:ea:2e:7b:19:d3:f2:67:3d:da:ab:b4:8e: 72:49:d3:15:fc:ae:8a:41:5f:cf:a3:3a:1d:83:0e: 99:d9:2d:5f:05:39:32:fc:07:d4:2a:f3:1e:8f:63: d5:fc:e3:33:8b:f6:f9:57:80:e6:39:c2:2f:42:be: 4d:d7:d1:35:1c:77:ea:db:20:80:cc:34:68:ea:29: 03:97:86:d8:21:83:bc:e7:b4:a8:af:ec:25:c5:6c: 5b:2a:87:b3:23:bf:ef:2f:be:ac:52:c5:d7:43:b9: c1:ae:60:cb:90:72:b7:80:4c:d9:c2:e3:d3:e0:7b: 86:7a:da:c6:49:51:56:b9:23:48:19:6a:54:9a:89: 8d:be:08:83:f0:c1:fb:23:84:cf:13:07:de:c4:67: 90:03:cd:63:b0:b7:06:50:0a:d9:18:33:17:70:69: 38:58:cb:90:bf:e6:5e:87:fd:37:61:3b:4d:bc:14: df:88:77:11:2c:cc:ad:ea:ce:a2:88:7e:c1:55:c5: ec:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:86:7E:E7:E4:8D:FE:0F:0D:E3:C4:82:96:36:5E:F5:05:1C:1F:77 X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32322e302f32342d3234203d3e20313331373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.22.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:77:af:fd:a6:8e:ea:a8:d3:31:21:3d:b8:c5:29:6c:e9:04: e5:c0:f0:c9:46:30:ec:ab:54:30:75:ee:aa:68:f9:80:06:24: 37:ba:ea:58:18:c1:0b:4a:88:62:44:7c:73:43:24:b8:af:f2: 9e:d6:a2:2a:87:8d:01:a8:36:02:3b:5f:0a:d3:74:ca:e6:92: fe:48:53:6d:dc:d9:09:e8:e0:34:e8:f6:3c:07:57:e2:f0:a5: c7:7a:26:6a:be:bf:52:8c:18:a0:08:4d:59:33:dd:74:f4:5b: 34:9b:f5:eb:63:29:1e:6a:4f:2e:a0:e9:02:3d:6e:17:b3:cd: 97:c4:b7:af:d8:7d:b3:b6:53:3c:39:3f:aa:83:e8:bd:fc:d0: 33:51:b3:d8:46:9d:a8:b9:5b:3c:ee:7f:25:97:73:dd:3c:aa: 80:22:5d:12:1d:cb:47:af:fb:95:95:f3:32:07:c7:2b:10:b8: 93:26:88:2a:02:7d:d3:bd:d2:4d:96:73:65:dd:06:cb:20:ea: 77:d6:c7:c4:40:4c:4b:eb:08:ff:10:5c:ce:eb:61:79:4b:25: e3:76:36:ae:59:57:a5:49:ae:0a:6e:08:1b:06:a2:de:53:45: db:5a:ee:5d:98:73:dd:ce:45:40:46:7a:b0:51:d8:ac:9f:7c: 25:c4:18:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDmO8wyZIfdR+qADV26KgnPxr9UYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yMzA5MjIxMTU1MDBaFw0yNDA5MjAxMjAwMDBaMDMxMTAvBgNV BAMTKDY3ODY3RUU3RTQ4REZFMEYwREUzQzQ4Mjk2MzY1RUY1MDUxQzFGNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ja0u3kvpSiYFTBmuynbwYCYd Dd6SplfbWA6sT/U1M0o5eEcGrvWA7dg4mT9O8u5fH3g6Yj40f0uYCmvtMOouexnT 8mc92qu0jnJJ0xX8ropBX8+jOh2DDpnZLV8FOTL8B9Qq8x6PY9X84zOL9vlXgOY5 wi9Cvk3X0TUcd+rbIIDMNGjqKQOXhtghg7zntKiv7CXFbFsqh7Mjv+8vvqxSxddD ucGuYMuQcreATNnC49Pge4Z62sZJUVa5I0gZalSaiY2+CIPwwfsjhM8TB97EZ5AD zWOwtwZQCtkYMxdwaThYy5C/5l6H/TdhO028FN+IdxEszK3qzqKIfsFVxez5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ4Z+5+SN/g8N48SCljZe9QUcH3cwHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv3FjANBgkqhkiG 9w0BAQsFAAOCAQEAe3ev/aaO6qjTMSE9uMUpbOkE5cDwyUYw7KtUMHXuqmj5gAYk N7rqWBjBC0qIYkR8c0MkuK/yntaiKoeNAag2AjtfCtN0yuaS/khTbdzZCejgNOj2 PAdX4vClx3omar6/UowYoAhNWTPddPRbNJv162MpHmpPLqDpAj1uF7PNl8S3r9h9 s7ZTPDk/qoPovfzQM1Gz2EadqLlbPO5/JZdz3TyqgCJdEh3LR6/7lZXzMgfHKxC4 kyaIKgJ9073STZZzZd0GyyDqd9bHxEBMS+sI/xBczutheUsl43Y2rllXpUmuCm4I Gwai3lNF21ruXZhz3c5FQEZ6sFHYrJ98JcQYng== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:08 2024 by rpki-client on console-fra.rpki-client.org