$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31302e302f32342d3234203d3e203436303233.roa File: 34332e3235322e31302e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: 3t7rVbGj2HZ7RlfqG6UUQNAJ6tAq+cVlFYuIkSDl/rI= Subject key identifier: 89:C2:45:59:57:EC:1D:4F:A4:96:DA:05:A8:28:1B:C3:9F:E5:CF:78 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 6A9F47C4A20E9E8A83750791471A61D0FFD82981 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31302e302f32342d3234203d3e203436303233.roa Signing time: Mon 12 Aug 2024 15:18:38 +0000 ROA not before: Mon 12 Aug 2024 15:13:38 +0000 ROA not after: Mon 11 Aug 2025 15:18:38 +0000 asID: 46023 IP address blocks: 43.252.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9f:47:c4:a2:0e:9e:8a:83:75:07:91:47:1a:61:d0:ff:d8:29:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Aug 12 15:13:38 2024 GMT Not After : Aug 11 15:18:38 2025 GMT Subject: CN=89C2455957EC1D4FA496DA05A8281BC39FE5CF78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a8:fd:21:b9:eb:6d:61:8e:31:83:cd:01:e9: 5e:21:bd:c3:4c:b4:cb:d6:17:f5:ba:10:6e:0d:37: 00:a9:bc:db:9e:e8:71:29:65:9f:62:66:64:20:25: 0f:0f:33:16:2e:55:f4:39:8b:fb:34:85:b8:c8:87: a5:b0:5b:19:c5:f6:65:46:2f:19:ed:d1:b4:41:72: 1e:77:47:f6:c6:9d:68:65:ca:5d:91:c4:5d:b9:5d: df:6e:91:46:5d:76:67:78:03:f1:33:c5:86:c2:a1: a3:99:c7:18:19:35:ad:3a:f5:f1:ca:68:a6:2c:3b: d3:e3:b8:ff:3f:e1:5c:e6:51:32:81:1d:46:fa:b0: d6:48:29:06:aa:02:18:53:5e:d8:99:db:b0:41:54: c3:0c:f8:1e:aa:f8:75:45:b1:fa:97:69:e9:6d:94: 98:d7:d9:1a:58:c9:48:48:bf:77:35:ba:49:58:61: 51:3e:81:aa:da:17:43:2f:12:83:2b:5d:1c:a5:b3: 05:a0:bf:e7:da:02:f6:d3:bc:50:78:32:be:d4:5a: 49:60:da:0b:d2:78:2b:3e:65:e7:9a:f7:93:1e:db: 82:ef:2e:46:b7:4a:ec:d7:11:b1:c3:82:98:84:88: 68:11:12:92:b7:e4:ee:8c:e1:99:9d:ff:9c:5a:7c: c6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C2:45:59:57:EC:1D:4F:A4:96:DA:05:A8:28:1B:C3:9F:E5:CF:78 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31302e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.10.0/24 Signature Algorithm: sha256WithRSAEncryption b6:f0:39:b4:68:1a:25:73:14:45:80:50:2d:41:22:16:df:bf: ef:32:f8:df:53:ae:51:68:fe:0f:3c:e4:32:cd:34:29:c2:62: 14:38:f6:8f:20:21:c2:c7:06:05:d8:fe:4a:38:e5:2b:02:f2: 7f:36:00:8d:d1:a3:d6:38:d7:7a:22:d3:fd:e9:8e:53:4a:e4: 08:7b:db:5c:e4:a6:d2:78:58:72:7b:7b:6f:f7:6d:df:f9:3a: bf:8e:83:0d:32:4b:e1:23:4b:7a:50:4e:31:56:ea:f8:70:6b: e2:1b:fd:be:73:10:01:79:8e:37:6f:6f:60:d3:bb:b7:85:62: 86:cc:c8:c3:33:d8:58:22:5c:a8:de:d9:94:4f:1f:4d:a8:ef: 20:13:69:79:7b:66:75:c7:ee:57:4a:f9:f1:c4:a7:54:a9:36: bd:0b:18:7e:c1:f9:71:4d:4e:5f:ab:98:c4:80:78:35:11:01: cd:a6:f0:61:a6:aa:54:0e:ac:05:d8:14:71:04:15:a1:a3:c2: 71:b6:f3:c2:34:5e:a3:e9:d3:d9:96:93:5c:f8:72:70:e9:76: c8:81:f0:f8:e1:ca:5b:74:9b:54:c4:91:aa:e0:0f:08:f5:a9: b0:d6:8e:b1:50:ec:0e:32:86:61:d7:d0:a1:14:b9:f9:31:4d: bb:d9:19:d1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUap9HxKIOnoqDdQeRRxph0P/YKYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDA4MTIxNTEzMzhaFw0yNTA4MTExNTE4MzhaMDMxMTAvBgNV BAMTKDg5QzI0NTU5NTdFQzFENEZBNDk2REEwNUE4MjgxQkMzOUZFNUNGNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXqP0huettYY4xg80B6V4hvcNM tMvWF/W6EG4NNwCpvNue6HEpZZ9iZmQgJQ8PMxYuVfQ5i/s0hbjIh6WwWxnF9mVG Lxnt0bRBch53R/bGnWhlyl2RxF25Xd9ukUZddmd4A/EzxYbCoaOZxxgZNa069fHK aKYsO9PjuP8/4VzmUTKBHUb6sNZIKQaqAhhTXtiZ27BBVMMM+B6q+HVFsfqXaelt lJjX2RpYyUhIv3c1uklYYVE+garaF0MvEoMrXRylswWgv+faAvbTvFB4Mr7UWklg 2gvSeCs+Zeea95Me24LvLka3SuzXEbHDgpiEiGgREpK35O6M4Zmd/5xafMZNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUicJFWVfsHU+kltoFqCgbw5/lz3gwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzM0MzMyZTMyMzUzMjJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr/AowDQYJKoZIhvcN AQELBQADggEBALbwObRoGiVzFEWAUC1BIhbfv+8y+N9TrlFo/g885DLNNCnCYhQ4 9o8gIcLHBgXY/ko45SsC8n82AI3Ro9Y413oi0/3pjlNK5Ah721zkptJ4WHJ7e2/3 bd/5Or+Ogw0yS+EjS3pQTjFW6vhwa+Ib/b5zEAF5jjdvb2DTu7eFYobMyMMz2Fgi XKje2ZRPH02o7yATaXl7ZnXH7ldK+fHEp1SpNr0LGH7B+XFNTl+rmMSAeDURAc2m 8GGmqlQOrAXYFHEEFaGjwnG288I0XqPp09mWk1z4cnDpdsiB8Pjhylt0m1TEkarg Dwj1qbDWjrFQ7A4yhmHX0KEUufkxTbvZGdE= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org