$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa File: 34332e3235322e382e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: wh6YvEPsdN+rtUvLzRndd8s+BcF5EgbJin4zSMGk4S0= Subject key identifier: 48:48:7C:7A:0E:87:B9:CB:76:B6:93:79:0D:E4:45:8D:A3:AC:87:74 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 1DF22C8EBF2F30DC54EAC41C509DBA93F1A089D2 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa Signing time: Mon 12 Aug 2024 15:17:10 +0000 ROA not before: Mon 12 Aug 2024 15:12:10 +0000 ROA not after: Mon 11 Aug 2025 15:17:10 +0000 asID: 46023 IP address blocks: 43.252.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f2:2c:8e:bf:2f:30:dc:54:ea:c4:1c:50:9d:ba:93:f1:a0:89:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Aug 12 15:12:10 2024 GMT Not After : Aug 11 15:17:10 2025 GMT Subject: CN=48487C7A0E87B9CB76B693790DE4458DA3AC8774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6c:69:f1:46:de:2d:c6:97:63:02:10:a0:3d: 3f:00:94:ea:aa:c4:4f:9d:53:25:c6:e8:e3:57:79: 8f:76:ae:00:07:9b:55:80:4d:a3:81:78:09:14:8e: 43:04:b6:a6:b7:93:8e:eb:4d:71:ea:94:e7:cd:41: b0:32:9d:21:6c:31:69:3e:08:ea:5f:24:20:18:5c: 83:cd:a2:fc:f6:4f:c7:75:18:cc:d1:a4:05:c8:d6: 6d:a0:de:14:f3:69:7c:b6:02:f8:36:e6:c4:31:a8: 89:28:d6:9a:7b:79:a4:68:f0:4e:9a:76:40:84:f1: bc:f1:13:46:ec:14:e5:c8:e3:47:c1:23:59:cb:12: cb:82:3e:a2:f3:b6:3f:89:0b:3d:a1:02:d4:61:dc: 36:6b:10:f0:1c:a9:73:02:fa:c7:e1:e9:4b:14:5a: 96:77:b7:be:fc:c9:05:ce:67:41:2b:f2:b1:ef:2f: 20:27:2d:85:a4:b5:f2:9c:10:f4:1d:fb:6d:c5:8c: 60:bd:b9:a1:85:25:0a:62:86:59:7d:e0:8a:92:ea: d7:a6:5f:2e:2c:d7:e9:9d:c6:a9:88:7b:21:6d:85: 3c:5a:b8:28:7e:3c:de:75:d6:1e:3e:59:2e:2a:fe: a2:fb:ea:a9:84:d0:ce:6b:4b:88:37:6a:f6:85:b2: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:48:7C:7A:0E:87:B9:CB:76:B6:93:79:0D:E4:45:8D:A3:AC:87:74 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.8.0/24 Signature Algorithm: sha256WithRSAEncryption be:e1:9b:80:aa:7b:6c:25:e3:69:13:19:e6:5e:f1:7b:82:9a: 53:ca:12:c7:01:6a:a3:95:9f:e8:d3:b0:b6:03:42:d0:4c:7c: 53:15:13:46:e2:89:c3:72:fb:33:c1:62:40:24:7a:57:b4:88: 52:1a:73:92:fe:4f:63:5e:d6:11:c9:6d:7f:8a:f6:c0:da:f8: 85:86:ce:62:fa:64:a6:fc:9a:d8:6e:95:82:53:6b:f4:c1:3e: 62:91:a1:d6:81:2a:46:d5:93:d0:00:e8:3c:4a:79:f1:55:0d: 5a:b2:f9:43:9f:25:1a:87:ca:08:1e:4a:75:ab:84:5f:aa:61: 8e:be:3c:5e:54:65:ef:2e:4b:77:1b:b3:2c:04:a4:3b:61:fd: 3a:6b:7b:ef:ae:ae:c8:05:c4:c5:df:e5:8c:82:1c:1a:42:17: 4b:2e:66:d6:b7:9e:2c:8f:6e:5d:16:4f:2c:f9:b5:0f:2c:9d: 66:5d:cb:4f:85:60:19:6c:10:73:81:8e:69:c8:97:e7:f9:83: 5d:e5:02:ec:37:36:75:d1:3b:56:1e:20:67:a4:69:7c:4c:fc: 34:45:b0:c8:ee:55:69:df:64:20:85:f8:b9:27:20:cd:5b:54: f6:d8:28:d8:6c:d1:fb:37:bf:ba:3c:83:db:42:28:ee:b2:32: af:5d:be:c4 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHfIsjr8vMNxU6sQcUJ26k/GgidIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDA4MTIxNTEyMTBaFw0yNTA4MTExNTE3MTBaMDMxMTAvBgNV BAMTKDQ4NDg3QzdBMEU4N0I5Q0I3NkI2OTM3OTBERTQ0NThEQTNBQzg3NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjbGnxRt4txpdjAhCgPT8AlOqq xE+dUyXG6ONXeY92rgAHm1WATaOBeAkUjkMEtqa3k47rTXHqlOfNQbAynSFsMWk+ COpfJCAYXIPNovz2T8d1GMzRpAXI1m2g3hTzaXy2Avg25sQxqIko1pp7eaRo8E6a dkCE8bzxE0bsFOXI40fBI1nLEsuCPqLztj+JCz2hAtRh3DZrEPAcqXMC+sfh6UsU WpZ3t778yQXOZ0Er8rHvLyAnLYWktfKcEPQd+23FjGC9uaGFJQpihll94IqS6tem Xy4s1+mdxqmIeyFthTxauCh+PN511h4+WS4q/qL76qmE0M5rS4g3avaFshxFAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUSEh8eg6Huct2tpN5DeRFjaOsh3QwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDBhOTg1YjAtZTE3YS00MjFiLTk2 NTUtMDMyNDVhMDFhZWY4LzAvMzQzMzJlMzIzNTMyMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr/AgwDQYJKoZIhvcNAQEL BQADggEBAL7hm4Cqe2wl42kTGeZe8XuCmlPKEscBaqOVn+jTsLYDQtBMfFMVE0bi icNy+zPBYkAkele0iFIac5L+T2Ne1hHJbX+K9sDa+IWGzmL6ZKb8mthulYJTa/TB PmKRodaBKkbVk9AA6DxKefFVDVqy+UOfJRqHyggeSnWrhF+qYY6+PF5UZe8uS3cb sywEpDth/Tpre++ursgFxMXf5YyCHBpCF0suZta3niyPbl0WTyz5tQ8snWZdy0+F YBlsEHOBjmnIl+f5g13lAuw3NnXRO1YeIGekaXxM/DRFsMjuVWnfZCCF+LknIM1b VPbYKNhs0fs3v7o8g9tCKO6yMq9dvsQ= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org