$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233392e302f32342d3234203d3e203435333136.roa File: 34332e3235322e3233392e302f32342d3234203d3e203435333136.roa (raw, json) Hash identifier: n5GwRFT+4p+dWOZD2YQMVGiqgHtU0KyqXkBI2jWSxdk= Subject key identifier: 1B:57:C6:67:56:28:62:04:B6:8F:1E:00:BB:04:89:1E:42:35:7E:A2 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 2E10B2752B8B7907F0DF6233B1B8B1D4749EDA49 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233392e302f32342d3234203d3e203435333136.roa Signing time: Sun 03 Mar 2024 05:33:44 +0000 ROA not before: Sun 03 Mar 2024 05:28:44 +0000 ROA not after: Sun 02 Mar 2025 05:33:44 +0000 asID: 45316 IP address blocks: 43.252.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:10:b2:75:2b:8b:79:07:f0:df:62:33:b1:b8:b1:d4:74:9e:da:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Mar 3 05:28:44 2024 GMT Not After : Mar 2 05:33:44 2025 GMT Subject: CN=1B57C66756286204B68F1E00BB04891E42357EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:94:43:5b:1d:5e:3d:98:67:d3:d1:eb:a4:4a: ce:90:66:15:e1:52:8b:81:d9:fd:6b:6e:ee:d7:f1: 30:80:4d:89:7d:c1:ce:0d:de:e3:fe:14:57:88:45: ec:7b:8c:06:b4:1b:9e:8a:3b:c9:b6:bd:30:1c:0c: f0:31:87:9c:b2:ae:c5:05:6e:5c:67:5d:65:92:09: 2b:e8:30:2e:fc:71:a3:01:dc:f0:2a:7a:13:85:43: 17:13:c6:20:de:49:79:b0:a9:5f:17:7d:3a:52:b6: 32:01:7e:2d:d5:28:e7:00:dc:bf:a6:29:f0:a0:80: 2b:6a:e7:db:1b:05:6e:df:64:70:21:0f:c1:28:11: f9:08:1a:a5:9a:d7:ad:a2:5a:cb:ec:95:f2:8b:eb: fb:6f:21:0e:0d:65:96:31:1b:e4:03:0b:5b:7f:78: 2a:2e:12:eb:98:15:43:79:b8:06:b6:64:3a:50:c6: f8:5c:e8:5a:3d:a6:06:fc:79:d6:b2:61:3f:86:10: ee:4f:2b:de:44:d4:5f:4e:19:24:0b:68:67:90:6b: 56:71:8b:05:47:1e:87:89:50:3d:93:18:4d:73:e9: 55:a5:31:25:8a:a9:f9:f2:4d:85:57:4f:da:e4:9b: da:76:fe:57:79:25:26:51:b1:59:f7:95:59:a9:cd: 21:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:57:C6:67:56:28:62:04:B6:8F:1E:00:BB:04:89:1E:42:35:7E:A2 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/34332e3235322e3233392e302f32342d3234203d3e203435333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.239.0/24 Signature Algorithm: sha256WithRSAEncryption 00:1b:f9:51:85:62:3d:20:d4:1e:15:52:20:28:79:6d:33:51: a7:a9:73:41:d8:da:93:7f:c2:68:f6:e1:2b:38:21:2e:1b:92: ad:1a:c6:a2:42:8c:4e:a8:4a:1a:67:43:f1:c9:b5:4c:6d:a2: f2:a3:24:5c:35:49:5c:3b:27:56:e5:ec:92:b1:18:a8:da:b1: 0b:ec:9c:d9:02:de:44:15:34:0c:94:49:b3:5c:fb:05:67:63: 18:b3:9f:6d:72:89:21:ea:7d:62:7e:fc:e0:34:f7:6b:38:79: af:86:e4:90:27:44:64:42:a3:56:53:3c:3b:dc:22:58:2f:60: e8:7f:a5:5d:01:9f:3c:f6:d2:06:10:d1:1d:72:55:d1:9e:ea: d6:14:62:c5:33:f5:fc:1b:c3:f6:5e:ad:79:d9:90:70:ff:02: 16:35:2c:f2:b7:bf:45:9e:be:ce:64:ae:58:69:5f:d0:c8:85: 9b:23:a2:3c:11:e3:ef:66:92:08:bf:83:79:34:35:d3:5e:07: 6d:af:19:00:a0:9f:a1:29:4d:68:cb:c1:4d:0f:89:e0:c5:e8: 4c:85:2e:24:41:8d:83:fa:76:70:9a:f7:31:dc:c3:57:5c:92: 67:ba:73:5c:98:97:f7:8c:a1:df:49:60:6a:a4:08:10:99:c3: 44:96:b1:2f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULhCydSuLeQfw32Izsbix1HSe2kkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDAzMDMwNTI4NDRaFw0yNTAzMDIwNTMzNDRaMDMxMTAvBgNV BAMTKDFCNTdDNjY3NTYyODYyMDRCNjhGMUUwMEJCMDQ4OTFFNDIzNTdFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAlENbHV49mGfT0eukSs6QZhXh UouB2f1rbu7X8TCATYl9wc4N3uP+FFeIRex7jAa0G56KO8m2vTAcDPAxh5yyrsUF blxnXWWSCSvoMC78caMB3PAqehOFQxcTxiDeSXmwqV8XfTpStjIBfi3VKOcA3L+m KfCggCtq59sbBW7fZHAhD8EoEfkIGqWa162iWsvslfKL6/tvIQ4NZZYxG+QDC1t/ eCouEuuYFUN5uAa2ZDpQxvhc6Fo9pgb8edayYT+GEO5PK95E1F9OGSQLaGeQa1Zx iwVHHoeJUD2TGE1z6VWlMSWKqfnyTYVXT9rkm9p2/ld5JSZRsVn3lVmpzSHhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUG1fGZ1YoYgS2jx4AuwSJHkI1fqIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzM0MzMyZTMyMzUzMjJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv87zANBgkqhkiG 9w0BAQsFAAOCAQEAABv5UYViPSDUHhVSICh5bTNRp6lzQdjak3/CaPbhKzghLhuS rRrGokKMTqhKGmdD8cm1TG2i8qMkXDVJXDsnVuXskrEYqNqxC+yc2QLeRBU0DJRJ s1z7BWdjGLOfbXKJIep9Yn784DT3azh5r4bkkCdEZEKjVlM8O9wiWC9g6H+lXQGf PPbSBhDRHXJV0Z7q1hRixTP1/BvD9l6tedmQcP8CFjUs8re/RZ6+zmSuWGlf0MiF myOiPBHj72aSCL+DeTQ1014Hba8ZAKCfoSlNaMvBTQ+J4MXoTIUuJEGNg/p2cJr3 MdzDV1ySZ7pzXJiX94yh30lgaqQIEJnDRJaxLw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org