$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233382e302f32342d3234203d3e203535373031.roa File: 34332e3235322e3233382e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: VADGjqyzfgvRvW63/BxSrDuABTkzr/zJln7Q/LTjDIo= Subject key identifier: C6:66:42:86:5E:6E:61:A7:B2:A6:D0:62:69:5C:51:8E:0E:D8:84:1D Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 393D9020D38857D31B34A759128D558C3BFA4E63 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233382e302f32342d3234203d3e203535373031.roa Signing time: Mon 01 Jul 2024 01:05:58 +0000 ROA not before: Mon 01 Jul 2024 01:00:58 +0000 ROA not after: Mon 30 Jun 2025 01:05:58 +0000 asID: 55701 IP address blocks: 43.252.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3d:90:20:d3:88:57:d3:1b:34:a7:59:12:8d:55:8c:3b:fa:4e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jul 1 01:00:58 2024 GMT Not After : Jun 30 01:05:58 2025 GMT Subject: CN=C66642865E6E61A7B2A6D062695C518E0ED8841D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:59:d4:f1:14:38:16:78:50:1a:42:19:b0: b7:54:77:4d:4f:2e:5e:03:74:be:35:4b:45:03:5c: 4e:e2:f8:98:2c:e5:b5:8f:3b:c2:55:20:04:18:6e: e4:d6:3f:ae:c9:d4:20:4e:f9:84:34:bf:be:2b:d3: d4:4f:22:43:76:01:67:09:62:c4:78:db:c6:06:65: 84:44:39:e3:47:32:d1:a2:6e:a5:2b:e3:1e:9d:78: 4b:fb:8f:bd:44:3d:94:4c:bc:4d:3e:31:55:5c:40: 66:09:c7:10:05:76:23:43:5f:6d:ef:be:66:72:55: e6:27:b7:01:cb:cc:16:e9:c9:e5:7b:32:8c:a3:95: 26:f0:83:92:40:18:df:a5:4b:69:e2:c3:89:9a:20: dd:16:07:e6:12:2b:f8:f6:85:f2:c3:05:34:1b:bc: ae:9b:51:7f:9c:7a:40:e4:d9:45:37:52:2a:2d:5a: 68:1d:c8:28:5e:70:6c:7d:ef:43:7e:7f:70:d0:c3: 23:8e:b6:0f:e4:3d:d2:5f:c5:53:25:cf:ea:8f:7c: 9c:85:91:8a:85:e8:58:41:5a:9c:c0:a2:e0:a3:a3: a1:63:68:70:b4:9d:dd:14:47:11:b6:4d:2a:08:20: 38:fa:38:68:06:4e:71:e0:08:98:ec:b9:de:f9:7a: d9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:66:42:86:5E:6E:61:A7:B2:A6:D0:62:69:5C:51:8E:0E:D8:84:1D X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233382e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.238.0/24 Signature Algorithm: sha256WithRSAEncryption b8:b7:e7:25:34:8b:99:fd:b2:85:b3:86:bb:69:73:5a:f7:88: 85:47:f7:59:ae:30:6a:ed:55:8f:6b:11:fa:de:a5:ca:7e:b7: a8:db:03:b4:91:46:6a:54:c5:de:1e:de:a0:25:c7:11:1c:4b: 42:ed:d4:5a:1a:70:74:40:10:c4:7c:5f:b0:00:97:6c:9d:22: c9:de:f2:d0:44:e8:9a:cb:1a:b3:14:03:05:c8:e4:f6:23:1b: 01:81:c4:8d:6d:a3:88:49:48:b8:b2:95:a5:44:28:50:39:dc: 7c:e8:f6:a6:50:53:f4:78:28:26:cc:b7:f7:8f:98:9c:e4:91: 67:1f:55:ec:f8:34:c9:d2:cb:26:30:eb:9d:d7:f9:96:96:8e: de:55:b6:2c:e2:e3:33:e4:0d:5a:c4:54:d0:e0:86:14:1a:95: f9:fb:0b:2a:ba:d5:09:35:99:00:e1:c2:dc:bf:bd:16:1d:21: ff:58:04:93:f7:60:e9:ca:7f:9a:00:83:82:9b:a7:bb:42:12: 08:12:69:c9:f8:4c:1b:24:a2:d0:56:e3:13:a3:15:e2:55:e7: d0:8c:f4:d1:ae:5f:32:a2:5a:94:32:ac:bd:f6:da:3c:4c:a9: 74:c4:5a:d3:2b:03:4a:18:25:11:2d:6f:2f:ad:4a:2b:69:ef: 8a:f7:7f:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOT2QINOIV9MbNKdZEo1VjDv6TmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA3MDEwMTAwNThaFw0yNTA2MzAwMTA1NThaMDMxMTAvBgNV BAMTKEM2NjY0Mjg2NUU2RTYxQTdCMkE2RDA2MjY5NUM1MThFMEVEODg0MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Z1nU8RQ4FnhQGkIZsLdUd01P Ll4DdL41S0UDXE7i+Jgs5bWPO8JVIAQYbuTWP67J1CBO+YQ0v74r09RPIkN2AWcJ YsR428YGZYREOeNHMtGibqUr4x6deEv7j71EPZRMvE0+MVVcQGYJxxAFdiNDX23v vmZyVeYntwHLzBbpyeV7MoyjlSbwg5JAGN+lS2niw4maIN0WB+YSK/j2hfLDBTQb vK6bUX+cekDk2UU3UiotWmgdyChecGx970N+f3DQwyOOtg/kPdJfxVMlz+qPfJyF kYqF6FhBWpzAouCjo6FjaHC0nd0URxG2TSoIIDj6OGgGTnHgCJjsud75etkXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxmZChl5uYaeyptBiaVxRjg7YhB0wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzM0MzMyZTMyMzUzMjJlMzIzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM3MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv87jANBgkqhkiG 9w0BAQsFAAOCAQEAuLfnJTSLmf2yhbOGu2lzWveIhUf3Wa4wau1Vj2sR+t6lyn63 qNsDtJFGalTF3h7eoCXHERxLQu3UWhpwdEAQxHxfsACXbJ0iyd7y0ETomssasxQD Bcjk9iMbAYHEjW2jiElIuLKVpUQoUDncfOj2plBT9HgoJsy394+YnOSRZx9V7Pg0 ydLLJjDrndf5lpaO3lW2LOLjM+QNWsRU0OCGFBqV+fsLKrrVCTWZAOHC3L+9Fh0h /1gEk/dg6cp/mgCDgpunu0ISCBJpyfhMGySi0FbjE6MV4lXn0Iz00a5fMqJalDKs vfbaPEypdMRa0ysDShglES1vL61KK2nvivd/Ag== -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org