$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: pg0ViMH1wjYLBratw2hvbKKsWrlS5/ljazg4HhV4YD8= Subject key identifier: 72:DA:17:EC:F1:00:55:77:02:DD:73:25:08:BE:F6:26:84:C3:8C:80 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 4AAEFE5E9BBC005AE83C912EF161335D0F41832E Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa Signing time: Sun 25 Aug 2024 05:00:02 +0000 ROA not before: Sun 25 Aug 2024 04:55:02 +0000 ROA not after: Sun 24 Aug 2025 05:00:02 +0000 asID: 58474 IP address blocks: 43.248.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ae:fe:5e:9b:bc:00:5a:e8:3c:91:2e:f1:61:33:5d:0f:41:83:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Aug 25 04:55:02 2024 GMT Not After : Aug 24 05:00:02 2025 GMT Subject: CN=72DA17ECF100557702DD732508BEF62684C38C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7d:ae:58:58:d2:10:56:46:6d:94:57:00:d8: ef:3c:99:43:89:2e:de:0d:28:cc:5a:38:e7:ad:86: 12:5e:d2:ef:fa:26:c8:7f:95:90:21:1f:56:a2:fb: 32:8b:43:b6:ed:2e:20:16:81:91:3b:04:37:2e:c7: e0:fc:32:d6:92:a8:dc:78:44:ab:cb:bd:ae:ee:76: 88:43:3b:c8:96:04:f5:eb:43:1b:3e:a1:88:72:6d: 0d:03:5d:eb:fe:42:43:55:b3:4d:b9:f6:29:d0:b5: dd:c3:8c:68:9a:4b:03:08:90:14:74:e3:87:a3:ad: bf:c7:7c:d6:89:59:36:8a:93:4e:9c:df:01:58:4d: 78:6b:f5:4f:3c:a3:c1:28:5e:02:e5:dd:a3:5b:ec: e2:15:ba:f3:1a:01:50:96:cd:67:98:2c:b9:1f:dc: 12:72:2e:56:f5:39:ba:4a:1c:fe:f7:ec:bf:d7:c8: c0:0c:ee:2c:1a:d0:07:08:83:81:04:11:6c:96:f3: 29:00:dc:fd:3d:a7:79:2d:86:ef:db:53:09:46:f6: 8c:2f:19:5c:a8:d4:55:98:6f:ea:7e:96:b5:98:86: 43:ca:da:21:1b:aa:fd:67:44:2b:d8:3b:64:07:0d: 3a:69:21:40:bb:ae:11:5e:b1:33:ad:49:6f:da:eb: 9f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DA:17:EC:F1:00:55:77:02:DD:73:25:08:BE:F6:26:84:C3:8C:80 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.212.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:15:69:2f:75:29:52:24:90:fc:e7:09:59:44:fe:44:78:9a: 8d:20:76:65:2a:b7:be:0d:d4:15:df:e3:75:54:e6:23:38:e4: 07:09:ed:fc:c6:e3:dd:98:7a:08:6a:61:c1:46:ab:4b:dc:44: 66:9f:fa:05:03:ed:24:53:64:0c:e0:5d:ef:05:5c:1a:0c:8a: 47:83:bd:91:cd:cd:9f:d3:50:a6:83:f4:ed:92:d9:fb:31:a6: e9:10:f0:80:c4:2e:43:21:44:9f:df:f6:35:2e:5a:81:2d:0f: 7c:25:0d:c5:c7:c9:ac:d2:2c:0c:b9:ba:ba:2e:7b:95:b6:9e: ad:13:8e:86:28:14:46:8f:f8:c3:f9:ef:5d:e0:d4:59:5f:34: 03:6a:be:f0:10:95:be:d6:18:e5:5a:60:6d:6f:82:7b:fe:66: 51:55:8c:9c:39:da:38:85:14:22:c9:7f:99:21:6e:6c:93:7e: 12:75:11:28:2e:45:c3:8a:c9:06:e9:91:93:ed:6d:e7:5c:4c: 61:47:8e:a4:b7:4b:ee:53:2f:1e:e9:26:96:56:48:79:b1:40: d6:15:d7:fa:31:15:73:4a:e6:af:4e:e0:0d:a5:ac:b2:69:a4: 83:21:07:71:c3:ff:00:79:a5:9f:64:24:93:bd:46:57:20:37: c3:b2:be:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSq7+Xpu8AFroPJEu8WEzXQ9Bgy4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNDA4MjUwNDU1MDJaFw0yNTA4MjQwNTAwMDJaMDMxMTAvBgNV BAMTKDcyREExN0VDRjEwMDU1NzcwMkRENzMyNTA4QkVGNjI2ODRDMzhDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwfa5YWNIQVkZtlFcA2O88mUOJ Lt4NKMxaOOethhJe0u/6Jsh/lZAhH1ai+zKLQ7btLiAWgZE7BDcux+D8MtaSqNx4 RKvLva7udohDO8iWBPXrQxs+oYhybQ0DXev+QkNVs0259inQtd3DjGiaSwMIkBR0 44ejrb/HfNaJWTaKk06c3wFYTXhr9U88o8EoXgLl3aNb7OIVuvMaAVCWzWeYLLkf 3BJyLlb1ObpKHP737L/XyMAM7iwa0AcIg4EEEWyW8ykA3P09p3kthu/bUwlG9owv GVyo1FWYb+p+lrWYhkPK2iEbqv1nRCvYO2QHDTppIUC7rhFesTOtSW/a658RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUctoX7PEAVXcC3XMlCL72JoTDjIAwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41DANBgkqhkiG 9w0BAQsFAAOCAQEAfBVpL3UpUiSQ/OcJWUT+RHiajSB2ZSq3vg3UFd/jdVTmIzjk Bwnt/Mbj3Zh6CGphwUarS9xEZp/6BQPtJFNkDOBd7wVcGgyKR4O9kc3Nn9NQpoP0 7ZLZ+zGm6RDwgMQuQyFEn9/2NS5agS0PfCUNxcfJrNIsDLm6ui57lbaerROOhigU Ro/4w/nvXeDUWV80A2q+8BCVvtYY5VpgbW+Ce/5mUVWMnDnaOIUUIsl/mSFubJN+ EnURKC5Fw4rJBumRk+1t51xMYUeOpLdL7lMvHukmllZIebFA1hXX+jEVc0rmr07g DaWssmmkgyEHccP/AHmln2Qkk71GVyA3w7K+jA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org