$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/34332e3234332e3134302e302f32322d3234203d3e20313331313131.roa File: 34332e3234332e3134302e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: Kr/Ffh87lyk2yI98uCludkSzupa5CSckPMurEC5ByLU= Subject key identifier: 7B:A3:63:93:B1:98:8C:70:5A:36:7D:F0:19:00:12:F5:44:56:06:78 Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 6965125E8CD2D1D09832AEC15681D0A0F582092F Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/34332e3234332e3134302e302f32322d3234203d3e20313331313131.roa Signing time: Tue 09 Jul 2024 16:00:01 +0000 ROA not before: Tue 09 Jul 2024 15:55:01 +0000 ROA not after: Tue 08 Jul 2025 16:00:01 +0000 asID: 131111 IP address blocks: 43.243.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:65:12:5e:8c:d2:d1:d0:98:32:ae:c1:56:81:d0:a0:f5:82:09:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jul 9 15:55:01 2024 GMT Not After : Jul 8 16:00:01 2025 GMT Subject: CN=7BA36393B1988C705A367DF0190012F544560678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:e7:6c:38:a1:7b:c2:6f:f6:56:14:91:98: d7:7d:1f:14:f7:de:de:9a:2e:c3:35:52:13:9b:94: 9c:f5:26:26:30:59:06:e9:6c:e8:f0:67:39:93:9f: 99:6d:3e:0b:6e:46:ca:29:bd:cc:55:38:16:5d:e8: 26:cf:59:ac:86:14:5a:14:f3:6a:83:c0:f1:fc:97: 00:18:5d:64:35:1e:a8:6b:2a:0c:8d:63:19:0d:9a: 0a:89:c7:6b:dc:fa:a1:84:da:af:c2:b5:0e:5c:54: a1:7b:06:03:c3:5d:7d:03:3c:51:bc:d2:4d:36:e6: 2d:93:22:65:14:0a:e4:34:b8:b0:ac:f6:00:12:80: bf:6e:0a:73:1a:4a:6d:52:12:d7:3c:76:0c:64:bb: 14:1f:08:1b:3b:f4:b5:70:db:27:b8:db:11:3d:44: fc:76:33:4a:37:46:63:fb:ea:95:24:27:77:b6:92: 62:e1:43:55:4c:02:11:9f:51:63:e9:44:b1:14:dc: 5f:5a:2a:b6:2c:a1:8f:78:26:f4:f0:13:f7:53:23: 80:1e:fc:c4:34:22:aa:11:3b:bb:41:15:87:6e:4b: 4d:a2:a6:55:d6:3f:17:63:19:31:cb:91:03:ec:29: 1c:8b:d4:72:a0:19:67:f5:14:71:9f:f5:7b:da:ef: ed:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:A3:63:93:B1:98:8C:70:5A:36:7D:F0:19:00:12:F5:44:56:06:78 X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/34332e3234332e3134302e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.140.0/22 Signature Algorithm: sha256WithRSAEncryption 63:d9:4d:4d:ad:b7:12:5a:e4:4e:b9:7f:73:00:19:7d:4c:23: 2b:03:23:95:76:10:36:59:32:9f:43:aa:fd:f1:09:ee:b3:e5: ce:18:6b:c1:4f:f2:8c:64:68:26:e5:a0:cb:b4:ca:c5:64:4d: 2b:48:9c:f5:54:0b:af:d4:de:a1:1c:74:43:69:8e:89:6f:c7: 2a:0c:65:ba:da:d0:6d:05:96:2b:c5:eb:95:f3:a6:60:e5:2c: 88:83:e2:a2:24:22:ad:b8:9c:69:d0:1f:64:80:7a:62:dc:99: 4e:14:23:9d:d0:7e:6c:bc:f3:21:58:c7:f5:79:fd:80:29:ac: 4f:3f:3f:19:e0:2e:0b:f6:3b:21:4f:f6:8b:fa:49:3b:2c:94: 17:31:8c:86:f2:69:7a:df:d4:e5:23:90:b3:9c:8e:d5:ac:f9: c8:ce:35:87:36:86:42:55:60:96:2e:9f:85:10:05:85:57:e3: d0:c6:5e:8d:5a:e7:29:2d:83:66:43:fb:27:81:e4:be:4c:e3: 6e:7c:93:bf:a7:0f:f8:17:68:39:c5:bb:89:93:44:ab:43:50: 5b:35:c8:a9:0a:39:20:3b:17:b5:ef:db:81:c0:a9:c0:5d:c3: b2:df:ad:03:e2:2a:ac:6a:ce:13:37:56:48:ae:8b:86:16:c4: 7c:66:6e:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaWUSXozS0dCYMq7BVoHQoPWCCS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDA3MDkxNTU1MDFaFw0yNTA3MDgxNjAwMDFaMDMxMTAvBgNV BAMTKDdCQTM2MzkzQjE5ODhDNzA1QTM2N0RGMDE5MDAxMkY1NDQ1NjA2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC78udsOKF7wm/2VhSRmNd9HxT3 3t6aLsM1UhOblJz1JiYwWQbpbOjwZzmTn5ltPgtuRsopvcxVOBZd6CbPWayGFFoU 82qDwPH8lwAYXWQ1HqhrKgyNYxkNmgqJx2vc+qGE2q/CtQ5cVKF7BgPDXX0DPFG8 0k025i2TImUUCuQ0uLCs9gASgL9uCnMaSm1SEtc8dgxkuxQfCBs79LVw2ye42xE9 RPx2M0o3RmP76pUkJ3e2kmLhQ1VMAhGfUWPpRLEU3F9aKrYsoY94JvTwE/dTI4Ae /MQ0IqoRO7tBFYduS02iplXWPxdjGTHLkQPsKRyL1HKgGWf1FHGf9Xva7+0hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe6Njk7GYjHBaNn3wGQAS9URWBngwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzM0MzMyZTMyMzQzMzJlMzEzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCK/OMMA0GCSqG SIb3DQEBCwUAA4IBAQBj2U1NrbcSWuROuX9zABl9TCMrAyOVdhA2WTKfQ6r98Qnu s+XOGGvBT/KMZGgm5aDLtMrFZE0rSJz1VAuv1N6hHHRDaY6Jb8cqDGW62tBtBZYr xeuV86Zg5SyIg+KiJCKtuJxp0B9kgHpi3JlOFCOd0H5svPMhWMf1ef2AKaxPPz8Z 4C4L9jshT/aL+kk7LJQXMYyG8ml639TlI5CznI7VrPnIzjWHNoZCVWCWLp+FEAWF V+PQxl6NWucpLYNmQ/sngeS+TONufJO/pw/4F2g5xbuJk0SrQ1BbNcipCjkgOxe1 79uBwKnAXcOy360D4iqsas4TN1ZIrouGFsR8Zm4O -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org