$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa File: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: sOLICWbkOQCKZGJuOxKOtJraYeaZ/2+UOwySpa2U+Ms= Subject key identifier: 74:7F:45:47:0A:4A:6B:08:11:82:DA:89:50:2E:78:A5:D8:E7:CA:18 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 44A72A86647BEFEF3E33EB37D875303FEC310415 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa Signing time: Mon 04 Nov 2024 07:00:01 +0000 ROA not before: Mon 04 Nov 2024 06:55:01 +0000 ROA not after: Mon 03 Nov 2025 07:00:01 +0000 asID: 142327 IP address blocks: 43.252.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:a7:2a:86:64:7b:ef:ef:3e:33:eb:37:d8:75:30:3f:ec:31:04:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Nov 4 06:55:01 2024 GMT Not After : Nov 3 07:00:01 2025 GMT Subject: CN=747F45470A4A6B081182DA89502E78A5D8E7CA18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:64:f7:17:93:84:17:15:dc:94:15:d8:7e: 6b:28:57:a6:d4:e0:c2:d5:c3:59:3e:b8:13:a3:7d: 17:dc:b4:5a:cc:66:a0:4d:e7:1b:eb:09:e4:36:d7: e7:22:31:ed:82:6f:f3:06:89:61:99:76:7f:8c:2b: 9d:98:66:72:57:97:1f:46:48:2c:16:f0:d9:8a:18: c1:96:79:d7:a2:52:17:0d:66:b8:08:82:aa:ae:48: 9c:81:0e:20:0f:dd:25:4d:55:eb:0f:37:35:71:f6: e3:68:eb:52:8d:bf:29:14:50:28:70:7f:c3:f0:a2: 52:78:5f:6d:b8:ca:0f:d8:8e:fa:4f:40:63:d9:5b: 6e:98:92:79:62:c4:2c:11:70:8d:a1:ed:98:8d:10: dd:18:33:d0:fe:d7:1c:97:f9:a9:01:fc:54:32:9e: ed:3b:d3:21:db:ff:a0:16:8f:30:8e:f8:b0:6d:d0: 84:d1:94:da:5b:db:97:83:fc:2c:fc:94:cc:0d:e8: e6:b4:79:af:d4:a3:f0:f1:b3:0a:2a:93:f8:98:a5: 49:87:c3:26:f7:a1:ea:ea:c8:35:d7:1a:3f:ea:f6: 97:de:11:92:73:72:51:ca:9e:1c:23:f1:68:dd:d2: 67:23:c0:a6:09:85:ab:0a:73:cd:ab:96:28:c7:ad: 60:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:7F:45:47:0A:4A:6B:08:11:82:DA:89:50:2E:78:A5:D8:E7:CA:18 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.104.0/24 Signature Algorithm: sha256WithRSAEncryption 26:c8:14:f8:6e:ee:b6:a6:42:9b:9a:df:a3:ec:a7:5f:d1:cd: 7f:06:73:7c:c5:3f:ef:27:f2:33:5f:18:d1:f2:fe:ac:cc:34: 43:14:ae:69:e8:aa:1b:ed:7f:e3:8c:0a:12:0e:13:ba:4a:fe: 52:8b:61:06:72:87:db:f0:cf:ac:9d:16:74:28:9f:3d:1f:f3: c4:71:ce:6f:47:71:14:69:1e:f1:7d:74:57:dd:64:c0:a8:df: d4:2a:18:c8:35:2b:d0:52:9c:d1:c1:66:d5:01:39:d2:62:a4: 2a:e9:50:ca:68:64:ae:35:f4:42:f7:3e:d8:2c:dc:e1:94:65: c8:ff:ac:fa:b3:83:17:f7:ae:76:90:c9:85:51:a0:44:7c:0a: db:6c:e4:9f:43:e4:7b:22:05:4b:32:b1:9d:44:f2:17:1d:d0: 1a:46:be:9a:58:37:4c:b0:b1:38:ab:44:d7:11:a4:89:0b:4d: d5:f4:81:40:07:09:75:ee:e7:55:62:2e:6d:e4:09:3b:24:96: 2a:b2:f0:ae:a5:ab:02:b4:1b:6a:4e:4d:54:9f:86:03:21:af: 82:ac:05:37:f9:3b:cb:be:44:46:84:d6:0f:de:0b:b5:d0:c9: f2:11:42:1e:02:0e:f0:83:23:48:a6:9b:1f:a3:72:eb:6a:53: 86:72:94:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURKcqhmR77+8+M+s32HUwP+wxBBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNDExMDQwNjU1MDFaFw0yNTExMDMwNzAwMDFaMDMxMTAvBgNV BAMTKDc0N0Y0NTQ3MEE0QTZCMDgxMTgyREE4OTUwMkU3OEE1RDhFN0NBMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyNGT3F5OEFxXclBXYfmsoV6bU 4MLVw1k+uBOjfRfctFrMZqBN5xvrCeQ21+ciMe2Cb/MGiWGZdn+MK52YZnJXlx9G SCwW8NmKGMGWedeiUhcNZrgIgqquSJyBDiAP3SVNVesPNzVx9uNo61KNvykUUChw f8PwolJ4X224yg/YjvpPQGPZW26YknlixCwRcI2h7ZiNEN0YM9D+1xyX+akB/FQy nu070yHb/6AWjzCO+LBt0ITRlNpb25eD/Cz8lMwN6Oa0ea/Uo/Dxswoqk/iYpUmH wyb3oerqyDXXGj/q9pfeEZJzclHKnhwj8Wjd0mcjwKYJhasKc82rlijHrWA1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdH9FRwpKawgRgtqJUC54pdjnyhgwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzM0MzMyZTMyMzUzMjJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/xoMA0GCSqG SIb3DQEBCwUAA4IBAQAmyBT4bu62pkKbmt+j7Kdf0c1/BnN8xT/vJ/IzXxjR8v6s zDRDFK5p6Kob7X/jjAoSDhO6Sv5Si2EGcofb8M+snRZ0KJ89H/PEcc5vR3EUaR7x fXRX3WTAqN/UKhjINSvQUpzRwWbVATnSYqQq6VDKaGSuNfRC9z7YLNzhlGXI/6z6 s4MX9652kMmFUaBEfArbbOSfQ+R7IgVLMrGdRPIXHdAaRr6aWDdMsLE4q0TXEaSJ C03V9IFABwl17udVYi5t5Ak7JJYqsvCupasCtBtqTk1Un4YDIa+CrAU3+TvLvkRG hNYP3gu10MnyEUIeAg7wgyNIppsfo3LralOGcpRB -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org