$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31312e302f32342d3234203d3e203436303233.roa File: 34332e3235322e31312e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: nfM+mzrwZ8ISoMmxN0HgnsKFecpdMji77HuFzdLUYo4= Subject key identifier: E2:05:11:43:8D:F5:A8:18:04:71:6C:94:5D:C6:7C:CB:42:76:AB:79 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 6A2E71C798DD579D49EE67D7642398475D4CFC43 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31312e302f32342d3234203d3e203436303233.roa Signing time: Mon 12 Aug 2024 15:18:57 +0000 ROA not before: Mon 12 Aug 2024 15:13:57 +0000 ROA not after: Mon 11 Aug 2025 15:18:57 +0000 asID: 46023 IP address blocks: 43.252.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:2e:71:c7:98:dd:57:9d:49:ee:67:d7:64:23:98:47:5d:4c:fc:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Aug 12 15:13:57 2024 GMT Not After : Aug 11 15:18:57 2025 GMT Subject: CN=E20511438DF5A81804716C945DC67CCB4276AB79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:a8:91:c4:ee:67:c6:a1:69:20:a2:f7:da: 2d:a2:cf:4a:4c:d7:de:46:cd:12:a6:7f:de:e7:db: 4e:f6:0c:ad:3c:e5:0c:92:17:4c:c4:89:fc:30:f1: 91:7b:c1:c1:38:5b:74:dc:53:58:0c:52:b9:ac:82: 08:ab:e0:7e:5b:db:d4:bc:78:70:02:fe:f5:ee:69: 91:f3:ca:33:2e:7d:bb:7a:a2:1d:ce:42:c3:51:bd: 75:79:f0:d3:5d:fd:04:ac:f2:31:b6:2d:2c:a1:ba: af:01:3f:f5:da:ef:6e:79:98:62:af:e4:41:92:e0: 1b:1a:60:8a:6b:2d:3d:59:63:c1:42:db:3d:80:92: b6:96:91:a4:11:cd:e6:ab:0a:6f:95:c4:1e:01:3c: 50:7e:50:e6:14:42:d2:90:6e:5a:8a:74:87:aa:19: fe:01:93:d7:b7:b6:7e:97:e3:00:6a:16:e9:8b:18: 34:f8:2b:45:6d:20:52:a6:f0:81:6f:f9:46:5e:c8: 30:a7:60:e6:0a:c5:df:57:44:9d:25:ad:1e:31:77: 86:69:74:33:aa:8e:af:40:5d:13:ff:58:b0:7b:55: 60:20:03:41:92:1c:e2:fb:9d:a6:ce:c1:c5:03:31: 28:85:fc:80:f6:25:b4:cb:8c:75:fa:43:81:e6:74: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:05:11:43:8D:F5:A8:18:04:71:6C:94:5D:C6:7C:CB:42:76:AB:79 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31312e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.11.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:b1:9d:25:2f:9c:3a:ab:6f:7a:76:45:b6:ea:cd:a1:6b:61: a4:d4:a9:aa:f0:b7:ab:cc:b4:d5:ab:d1:e0:6a:e4:4e:ea:f7: 79:d5:61:19:0a:95:e1:3c:c1:c4:a4:bc:02:11:94:03:9a:31: 76:67:77:bf:45:b1:86:20:85:7f:d1:2c:5e:dc:f3:23:14:c6: 73:93:44:31:18:40:1e:19:94:ef:f3:7c:e8:31:0f:4e:65:1e: 4a:34:f6:81:06:aa:b1:cb:ec:4a:ab:63:22:1b:14:08:d1:37: 8e:ea:45:a0:4f:18:cb:49:27:af:ac:4d:28:f4:34:0d:dc:1c: 0e:9c:94:2a:ac:78:6a:f3:cf:b8:07:60:96:89:af:d2:8e:e3: dc:dd:de:8e:81:ff:93:02:38:90:40:41:f8:1e:a0:2c:e4:e8: 69:2e:98:f5:b7:05:35:64:b7:8b:ef:1d:d0:99:6f:99:07:64: 3e:26:f2:d8:28:bd:72:3f:59:8f:2c:33:4d:2c:e2:f4:4c:65: 39:6b:7c:f9:ed:07:52:ab:70:ac:c4:d9:1d:46:16:72:47:3b: 43:97:27:dc:37:20:3a:03:70:8e:d5:fe:29:94:b2:64:94:e4: b7:11:bc:5a:e7:95:64:d3:a7:38:98:f5:9c:8d:61:44:a3:0d: 7a:19:cf:de -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUai5xx5jdV51J7mfXZCOYR11M/EMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDA4MTIxNTEzNTdaFw0yNTA4MTExNTE4NTdaMDMxMTAvBgNV BAMTKEUyMDUxMTQzOERGNUE4MTgwNDcxNkM5NDVEQzY3Q0NCNDI3NkFCNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxRaiRxO5nxqFpIKL32i2iz0pM 195GzRKmf97n2072DK085QySF0zEifww8ZF7wcE4W3TcU1gMUrmsggir4H5b29S8 eHAC/vXuaZHzyjMufbt6oh3OQsNRvXV58NNd/QSs8jG2LSyhuq8BP/Xa7255mGKv 5EGS4BsaYIprLT1ZY8FC2z2AkraWkaQRzearCm+VxB4BPFB+UOYUQtKQblqKdIeq Gf4Bk9e3tn6X4wBqFumLGDT4K0VtIFKm8IFv+UZeyDCnYOYKxd9XRJ0lrR4xd4Zp dDOqjq9AXRP/WLB7VWAgA0GSHOL7nabOwcUDMSiF/ID2JbTLjHX6Q4HmdKStAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU4gURQ431qBgEcWyUXcZ8y0J2q3kwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzM0MzMyZTMyMzUzMjJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr/AswDQYJKoZIhvcN AQELBQADggEBAH2xnSUvnDqrb3p2RbbqzaFrYaTUqarwt6vMtNWr0eBq5E7q93nV YRkKleE8wcSkvAIRlAOaMXZnd79FsYYghX/RLF7c8yMUxnOTRDEYQB4ZlO/zfOgx D05lHko09oEGqrHL7EqrYyIbFAjRN47qRaBPGMtJJ6+sTSj0NA3cHA6clCqseGrz z7gHYJaJr9KO49zd3o6B/5MCOJBAQfgeoCzk6GkumPW3BTVkt4vvHdCZb5kHZD4m 8tgovXI/WY8sM00s4vRMZTlrfPntB1KrcKzE2R1GFnJHO0OXJ9w3IDoDcI7V/imU smSU5LcRvFrnlWTTpziY9ZyNYUSjDXoZz94= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org