$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa File: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: DYNELf9QNXD54CkouWHTSPB4IedLMvPnvTBJhut8CJ0= Subject key identifier: 52:BC:8F:A1:D4:9E:5B:26:E5:35:52:93:47:DA:A7:D3:86:B9:DE:17 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 245008FBD1E9431280FC30E5D445F833AAA87BA8 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa Signing time: Mon 08 Jul 2024 11:00:02 +0000 ROA not before: Mon 08 Jul 2024 10:55:02 +0000 ROA not after: Mon 07 Jul 2025 11:00:02 +0000 asID: 56233 IP address blocks: 43.252.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:50:08:fb:d1:e9:43:12:80:fc:30:e5:d4:45:f8:33:aa:a8:7b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jul 8 10:55:02 2024 GMT Not After : Jul 7 11:00:02 2025 GMT Subject: CN=52BC8FA1D49E5B26E535529347DAA7D386B9DE17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:48:dd:c7:8e:9e:99:11:b7:23:d0:e9:b4:ac: 26:55:e8:bb:a5:3c:8d:68:cc:cc:2f:5e:61:59:45: e8:2b:6b:a5:05:7d:7f:3a:49:98:78:80:f8:2a:dd: 47:cb:d9:26:10:58:74:ad:12:9f:8f:91:7b:e8:74: a5:a1:f5:d9:13:2b:4a:11:f0:9d:2b:ae:45:54:41: 93:9d:31:5a:1e:a2:0a:52:a8:ab:5c:e2:cd:35:20: 74:f5:99:09:63:88:9e:50:33:3f:7f:7e:57:d1:04: 7d:db:bf:00:6d:bf:75:98:13:f0:91:1a:91:93:6f: c8:4b:26:07:54:91:96:34:7d:0f:79:f3:14:06:d2: d7:5a:c9:da:dc:e9:0f:53:9a:65:bf:4e:a2:11:80: be:52:a5:69:4b:30:30:0e:66:6c:8a:2c:ed:1d:e0: be:e1:f6:d7:7e:8a:3e:7d:f1:ad:d4:1b:25:a2:06: 3a:a6:c9:14:c4:de:b3:d4:c7:a2:f8:02:11:e4:99: 43:cb:6f:4a:19:c6:d8:b0:03:aa:cb:8c:0e:a9:7f: 39:2c:52:2d:7b:6c:df:db:d8:9d:39:39:82:fb:68: 55:15:83:a3:42:77:72:92:9c:1f:06:2b:b3:5a:42: bf:c6:1e:34:b0:51:d7:bc:88:0b:71:06:78:82:0a: ca:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BC:8F:A1:D4:9E:5B:26:E5:35:52:93:47:DA:A7:D3:86:B9:DE:17 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.144.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:59:5a:fe:ee:9e:90:a3:e0:65:ca:e7:ae:4d:bc:88:74:12: 9e:3d:9e:0f:00:5e:9c:21:f4:9d:00:60:a7:8b:87:e1:4f:d7: 5c:3e:19:04:70:70:4a:1f:e7:ea:88:72:65:d0:9f:6f:21:4d: 83:fd:92:58:78:f0:b1:ab:81:fa:09:c7:53:51:ed:d4:33:7e: 82:09:fd:b8:b6:2c:b0:ad:4b:bd:da:46:76:b8:4b:37:fc:36: 49:8b:ea:2e:d2:f4:79:49:e2:fa:9e:25:fe:d7:65:e1:8b:ea: 34:ab:75:0a:64:6b:e2:e1:b4:52:95:75:dd:4c:14:0e:26:50: 28:c4:03:fa:6e:f3:67:9d:25:c0:92:6d:f2:5b:f9:de:c1:ae: 9f:f1:35:67:ac:ed:fa:64:f5:b0:45:03:07:1b:ec:c6:6b:82: ec:e0:12:6f:95:5c:e5:a7:8b:6b:08:ff:22:6e:d9:a2:83:b7: 86:59:fe:99:c7:55:0c:f9:a3:49:79:ed:b0:cf:e7:6a:82:fc: 71:3d:97:57:47:9d:62:cc:b4:5a:28:b4:94:05:10:27:14:04: 6d:37:7c:cf:6f:56:55:1d:c7:79:0f:af:a7:cb:c7:3b:36:52: a4:03:8c:c5:4b:74:44:0b:6b:c6:d3:24:fa:de:0c:75:e7:c4: 7f:c3:f1:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJFAI+9HpQxKA/DDl1EX4M6qoe6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNDA3MDgxMDU1MDJaFw0yNTA3MDcxMTAwMDJaMDMxMTAvBgNV BAMTKDUyQkM4RkExRDQ5RTVCMjZFNTM1NTI5MzQ3REFBN0QzODZCOURFMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJSN3Hjp6ZEbcj0Om0rCZV6Lul PI1ozMwvXmFZRegra6UFfX86SZh4gPgq3UfL2SYQWHStEp+PkXvodKWh9dkTK0oR 8J0rrkVUQZOdMVoeogpSqKtc4s01IHT1mQljiJ5QMz9/flfRBH3bvwBtv3WYE/CR GpGTb8hLJgdUkZY0fQ958xQG0tdaydrc6Q9TmmW/TqIRgL5SpWlLMDAOZmyKLO0d 4L7h9td+ij598a3UGyWiBjqmyRTE3rPUx6L4AhHkmUPLb0oZxtiwA6rLjA6pfzks Ui17bN/b2J05OYL7aFUVg6NCd3KSnB8GK7NaQr/GHjSwUde8iAtxBniCCsqzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUryPodSeWyblNVKTR9qn04a53hcwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzM0MzMyZTMyMzUzMjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv8kDANBgkqhkiG 9w0BAQsFAAOCAQEAXVla/u6ekKPgZcrnrk28iHQSnj2eDwBenCH0nQBgp4uH4U/X XD4ZBHBwSh/n6ohyZdCfbyFNg/2SWHjwsauB+gnHU1Ht1DN+ggn9uLYssK1LvdpG drhLN/w2SYvqLtL0eUni+p4l/tdl4YvqNKt1CmRr4uG0UpV13UwUDiZQKMQD+m7z Z50lwJJt8lv53sGun/E1Z6zt+mT1sEUDBxvsxmuC7OASb5Vc5aeLawj/Im7ZooO3 hln+mcdVDPmjSXntsM/naoL8cT2XV0edYsy0Wii0lAUQJxQEbTd8z29WVR3HeQ+v p8vHOzZSpAOMxUt0RAtrxtMk+t4MdefEf8PxrA== -----END CERTIFICATE-----Generated at Sat Nov 23 16:20:59 2024 by rpki-client on console-ams.rpki-client.org