$ rpki-client -vvf repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/34332e3232392e32302e302f32322d3234203d3e203233393439.roa File: 34332e3232392e32302e302f32322d3234203d3e203233393439.roa (raw, json) Hash identifier: 0Yirxx8XBleSKA0bTCFx3mrXeyPkUXsJ/tCBLNQm9GA= Subject key identifier: 84:10:A9:14:F1:31:F1:26:78:02:AE:6B:AB:1A:58:85:F2:9E:2E:9B Certificate issuer: /CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Certificate serial: 4781CD111D62B68369EC8942AE325EBAB5C76869 Authority key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/34332e3232392e32302e302f32322d3234203d3e203233393439.roa Signing time: Mon 01 Jul 2024 01:02:52 +0000 ROA not before: Mon 01 Jul 2024 00:57:52 +0000 ROA not after: Mon 30 Jun 2025 01:02:52 +0000 asID: 23949 IP address blocks: 43.229.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 12:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:81:cd:11:1d:62:b6:83:69:ec:89:42:ae:32:5e:ba:b5:c7:68:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Validity Not Before: Jul 1 00:57:52 2024 GMT Not After : Jun 30 01:02:52 2025 GMT Subject: CN=8410A914F131F1267802AE6BAB1A5885F29E2E9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2b:78:be:1b:82:74:86:09:78:b8:b5:80:76: 6e:17:45:b9:7a:e2:f6:5d:84:07:6f:9a:16:8d:34: cf:4e:64:70:82:5e:62:2d:df:ac:d9:2c:e4:87:b7: 29:6c:da:0c:bb:e9:0e:7f:98:53:a2:19:46:c7:6c: b9:c5:9e:e8:e6:5c:f2:91:19:0a:af:a6:44:cd:6b: 70:1f:53:59:6c:69:ee:66:f8:28:1a:33:85:17:67: 5d:61:a5:46:1b:0a:9d:25:4a:80:3a:40:57:2c:3d: 51:05:05:24:6c:91:cc:e5:24:e9:64:ea:fa:eb:2e: c1:c4:7e:73:4c:81:ce:ad:a8:48:c5:4e:fe:f5:54: 50:f2:7b:0b:fe:eb:c3:38:74:9e:b0:12:8b:3a:7a: a5:c1:17:c0:39:67:ac:01:32:48:b4:d0:e7:ef:16: 41:1c:bf:a0:db:db:72:5c:29:86:6f:8b:46:09:32: fd:a5:ef:67:de:b1:90:72:54:25:ae:8f:47:6f:6b: e1:c0:00:be:67:25:60:bb:66:2f:a4:8a:61:2e:9b: a5:09:21:ac:22:62:3e:de:0e:e9:0c:54:4e:6a:e8: 28:fc:9c:89:47:1c:73:f4:5d:1d:6d:1a:29:9b:72: 7a:7c:f6:ea:28:38:49:3b:be:b7:52:aa:b2:9c:59: 82:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:10:A9:14:F1:31:F1:26:78:02:AE:6B:AB:1A:58:85:F2:9E:2E:9B X509v3 Authority Key Identifier: keyid:8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/34332e3232392e32302e302f32322d3234203d3e203233393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.20.0/22 Signature Algorithm: sha256WithRSAEncryption 65:fc:20:2b:38:d5:b2:e0:bc:cc:d2:d1:53:e1:de:c2:8b:ee: 01:3e:53:4c:72:fb:0b:c8:b8:81:fa:ac:2e:a4:8a:5e:f2:bd: ad:5f:4d:48:69:71:87:c1:21:96:07:27:a7:03:b5:1d:b9:59: 18:99:68:95:80:ad:00:4c:92:62:7c:5d:6a:51:c5:9f:b2:7d: 28:a1:a3:82:ab:13:a0:19:b5:1f:ef:7f:9c:65:d2:57:59:87: 54:71:d6:63:13:09:59:81:75:32:aa:70:f5:ec:1a:ea:eb:f3: a4:ea:48:3b:4a:6b:ba:82:49:68:9b:05:b6:59:05:12:ef:f9: 42:7b:d4:07:92:14:df:bd:f3:14:cf:ba:41:a5:02:95:21:b2: e3:08:95:97:72:93:0f:55:4d:08:e9:7c:bb:e9:20:34:a7:3c: 6b:ac:ad:d0:c2:fb:b4:bf:f1:5a:25:b4:52:47:e7:aa:19:50: 87:18:71:6b:95:5c:5e:1f:f3:c0:3c:ea:e2:4e:90:ac:4d:89: 21:56:6a:27:eb:e5:3f:ac:19:00:27:16:5a:5c:d2:7e:96:ba: fa:3e:11:a8:78:a9:62:5d:ad:50:c7:1f:b7:f0:61:bb:02:2c: 51:d6:79:26:85:55:11:7e:4e:e1:7d:e1:27:de:b2:b5:f7:a9: e6:49:61:f7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUR4HNER1itoNp7IlCrjJeurXHaGkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0 NEY3RjRFNTAeFw0yNDA3MDEwMDU3NTJaFw0yNTA2MzAwMTAyNTJaMDMxMTAvBgNV BAMTKDg0MTBBOTE0RjEzMUYxMjY3ODAyQUU2QkFCMUE1ODg1RjI5RTJFOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrK3i+G4J0hgl4uLWAdm4XRbl6 4vZdhAdvmhaNNM9OZHCCXmIt36zZLOSHtyls2gy76Q5/mFOiGUbHbLnFnujmXPKR GQqvpkTNa3AfU1lsae5m+CgaM4UXZ11hpUYbCp0lSoA6QFcsPVEFBSRskczlJOlk 6vrrLsHEfnNMgc6tqEjFTv71VFDyewv+68M4dJ6wEos6eqXBF8A5Z6wBMki00Ofv FkEcv6Db23JcKYZvi0YJMv2l72fesZByVCWuj0dva+HAAL5nJWC7Zi+kimEum6UJ IawiYj7eDukMVE5q6Cj8nIlHHHP0XR1tGimbcnp89uooOEk7vrdSqrKcWYLpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhBCpFPEx8SZ4Aq5rqxpYhfKeLpswHwYDVR0j BBgwFoAUj7F3roNSbXE8EkDVzvr3OET39OUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMC84RkIxNzdBRTgz NTI2RDcxM0MxMjQwRDVDRUZBRjczODQ0RjdGNEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0NEY3 RjRFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJjLTJlMjItNDhiZS04 YmEyLTYzNGY1ODJjMmVjYi8wLzM0MzMyZTMyMzIzOTJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzMzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr5RQwDQYJKoZIhvcN AQELBQADggEBAGX8ICs41bLgvMzS0VPh3sKL7gE+U0xy+wvIuIH6rC6kil7yva1f TUhpcYfBIZYHJ6cDtR25WRiZaJWArQBMkmJ8XWpRxZ+yfSiho4KrE6AZtR/vf5xl 0ldZh1Rx1mMTCVmBdTKqcPXsGurr86TqSDtKa7qCSWibBbZZBRLv+UJ71AeSFN+9 8xTPukGlApUhsuMIlZdykw9VTQjpfLvpIDSnPGusrdDC+7S/8VoltFJH56oZUIcY cWuVXF4f88A86uJOkKxNiSFWaifr5T+sGQAnFlpc0n6Wuvo+Eah4qWJdrVDHH7fw YbsCLFHWeSaFVRF+TuF94SfesrX3qeZJYfc= -----END CERTIFICATE-----Generated at Fri Feb 21 11:17:49 2025 by rpki-client