$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa File: 34332e3234372e33322e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: Hcq+MLcGRuBF8nHqrOgjQCqNAoi+GnUJwwoNCi4b5K4= Subject key identifier: CE:E4:35:BF:BA:16:7A:BD:BD:2A:72:DF:E0:E8:3F:5A:B9:9C:76:32 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 559F316FB86E89F8B5C0046170F55F8CE3B4CCF9 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa Signing time: Mon 31 Jul 2023 00:06:27 +0000 ROA not before: Mon 31 Jul 2023 00:01:27 +0000 ROA not after: Mon 29 Jul 2024 00:06:27 +0000 asID: 45312 IP address blocks: 43.247.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:9f:31:6f:b8:6e:89:f8:b5:c0:04:61:70:f5:5f:8c:e3:b4:cc:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jul 31 00:01:27 2023 GMT Not After : Jul 29 00:06:27 2024 GMT Subject: CN=CEE435BFBA167ABDBD2A72DFE0E83F5AB99C7632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c2:1f:79:63:9c:3c:89:6f:2e:ab:2a:4f:d4: 59:d4:dc:bc:c4:9a:1a:09:ac:da:c3:c1:38:0e:41: 3a:08:58:a4:1b:cb:c8:ae:fd:f7:33:b1:88:a4:60: 50:be:40:3a:f6:1b:f8:13:c0:b3:d7:19:53:e2:48: 47:1d:12:38:55:28:40:13:13:46:73:b0:df:23:55: f4:65:d0:70:39:ac:ba:54:68:4c:1c:41:60:42:af: ef:d4:be:81:40:ee:8e:dc:62:9c:20:cf:8d:09:83: 4c:f4:71:80:14:38:e1:f7:bb:09:93:4f:e6:7a:70: 5d:c6:7b:80:b6:87:42:9a:61:a1:4a:2a:ce:b8:1a: 3a:54:0e:58:d6:d0:f2:34:cc:c2:a5:71:c3:f1:51: 71:c3:2c:d7:b8:4a:4d:05:95:9d:4c:15:5e:d7:ff: 9e:87:6f:27:39:e6:00:72:13:d6:ce:89:52:fd:7e: 8f:ac:f7:78:6a:3b:dd:8c:82:5b:85:26:c3:f6:4b: 60:6b:43:f4:a5:2a:e6:f0:eb:3c:e8:6b:d8:02:4c: af:a4:59:31:20:1e:8d:92:b7:2a:76:55:11:5a:c9: 5d:f0:c0:4f:62:d0:07:58:f4:bf:4f:e2:62:a3:79: ca:b6:b8:57:ee:16:ce:7c:7b:02:71:71:28:e4:0f: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E4:35:BF:BA:16:7A:BD:BD:2A:72:DF:E0:E8:3F:5A:B9:9C:76:32 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.32.0/24 Signature Algorithm: sha256WithRSAEncryption 77:2f:cb:49:4b:28:cb:ac:e9:5d:fa:74:39:7f:ac:5e:82:b2: a7:6f:09:10:64:d9:0c:c3:00:61:5d:1a:b7:d9:71:f5:37:ea: aa:16:26:4a:df:9c:5e:46:2c:21:00:95:df:68:66:3d:66:49: 78:c7:7a:9d:16:b4:28:40:61:bf:0d:24:4f:40:72:ba:d5:84: d4:06:57:80:47:21:c2:66:9e:6d:54:b1:bb:8f:2f:11:34:06: 70:c8:3f:6b:00:7e:16:c1:bb:f5:81:05:c5:1f:9f:ee:89:78: 3f:39:fd:f9:66:a0:62:9e:5a:c9:17:64:45:c3:6e:d7:37:76: 40:0f:72:87:91:6b:a9:c5:0e:ad:2c:b9:8b:91:ee:f8:3a:22: 32:e1:50:08:65:01:08:38:2c:32:0e:9d:d6:57:f9:6a:ee:13: 0f:78:34:e3:2e:c9:f9:6c:09:5b:63:aa:54:29:09:8a:07:6c: 3b:1c:24:be:22:64:e1:d1:56:79:d3:02:e9:3c:08:2d:06:8e: f3:dc:de:13:ec:48:07:90:bc:14:96:6b:de:d6:3f:a9:46:fa: 51:35:df:c3:c7:a3:81:49:0f:56:af:fa:87:85:dd:f3:a0:3b: 92:e0:43:97:42:7f:79:f2:af:32:d5:23:14:ad:c6:3d:80:1f: 9a:fb:01:be -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVZ8xb7huifi1wARhcPVfjOO0zPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yMzA3MzEwMDAxMjdaFw0yNDA3MjkwMDA2MjdaMDMxMTAvBgNV BAMTKENFRTQzNUJGQkExNjdBQkRCRDJBNzJERkUwRTgzRjVBQjk5Qzc2MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfwh95Y5w8iW8uqypP1FnU3LzE mhoJrNrDwTgOQToIWKQby8iu/fczsYikYFC+QDr2G/gTwLPXGVPiSEcdEjhVKEAT E0ZzsN8jVfRl0HA5rLpUaEwcQWBCr+/UvoFA7o7cYpwgz40Jg0z0cYAUOOH3uwmT T+Z6cF3Ge4C2h0KaYaFKKs64GjpUDljW0PI0zMKlccPxUXHDLNe4Sk0FlZ1MFV7X /56Hbyc55gByE9bOiVL9fo+s93hqO92MgluFJsP2S2BrQ/SlKubw6zzoa9gCTK+k WTEgHo2Styp2VRFayV3wwE9i0AdY9L9P4mKjecq2uFfuFs58ewJxcSjkDyaLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzuQ1v7oWer29KnLf4Og/WrmcdjIwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr9yAwDQYJKoZIhvcN AQELBQADggEBAHcvy0lLKMus6V36dDl/rF6CsqdvCRBk2QzDAGFdGrfZcfU36qoW JkrfnF5GLCEAld9oZj1mSXjHep0WtChAYb8NJE9AcrrVhNQGV4BHIcJmnm1UsbuP LxE0BnDIP2sAfhbBu/WBBcUfn+6JeD85/flmoGKeWskXZEXDbtc3dkAPcoeRa6nF Dq0suYuR7vg6IjLhUAhlAQg4LDIOndZX+WruEw94NOMuyflsCVtjqlQpCYoHbDsc JL4iZOHRVnnTAuk8CC0GjvPc3hPsSAeQvBSWa97WP6lG+lE138PHo4FJD1av+oeF 3fOgO5LgQ5dCf3nyrzLVIxStxj2AH5r7Ab4= -----END CERTIFICATE-----Generated at Wed Apr 24 05:31:33 2024 by rpki-client on console-fra.rpki-client.org