$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231332e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: 1buqcEkNcpZqwU2RTb5bdnOebm4gK/rhJeTPc24TtHw= Subject key identifier: E1:3A:74:40:B4:60:91:45:8D:5A:19:76:21:1E:3F:C5:34:A7:3F:5B Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 53185B8AB061833EC8C533EEDDF2B2F452F7D8F6 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231332e302f32342d3234203d3e203538343734.roa Signing time: Sun 25 Aug 2024 06:00:02 +0000 ROA not before: Sun 25 Aug 2024 05:55:02 +0000 ROA not after: Sun 24 Aug 2025 06:00:02 +0000 asID: 58474 IP address blocks: 43.248.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:18:5b:8a:b0:61:83:3e:c8:c5:33:ee:dd:f2:b2:f4:52:f7:d8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Aug 25 05:55:02 2024 GMT Not After : Aug 24 06:00:02 2025 GMT Subject: CN=E13A7440B46091458D5A1976211E3FC534A73F5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:bc:31:31:de:2d:43:a2:99:3f:d4:8e:69: ff:4e:3f:a0:ea:92:4a:71:2e:f3:d7:52:20:9e:ad: 85:62:12:a7:98:3b:a2:5d:44:a1:2c:ec:d6:2b:16: 97:ea:a2:ae:9f:a5:40:fc:38:fb:ed:26:e6:68:6c: fb:cf:20:17:91:96:a6:12:35:db:e2:8b:b8:ab:dd: 01:86:d1:a8:40:40:53:34:5d:ba:0b:13:05:58:e0: 97:e8:13:a6:68:e9:d3:f4:4d:06:f0:55:b0:a9:4d: 70:8a:c6:3a:50:b9:85:25:49:77:72:a9:38:9c:31: 84:d9:7c:3d:ed:5f:00:24:ec:f2:05:83:6e:8f:a1: 67:0b:bb:9a:6d:80:80:3a:f4:31:26:00:22:28:47: f5:54:7e:15:bb:93:00:70:37:ce:2a:8b:68:f4:0f: e6:24:ce:2c:19:52:d2:ec:64:1b:b0:3b:19:21:bf: 43:35:d8:b1:a6:b7:02:de:43:e3:9b:94:3e:6d:2d: 6a:f1:3d:41:ee:62:6d:4e:bd:dc:d9:de:59:13:41: bb:3d:95:cc:6c:7c:04:1a:90:61:55:5e:e6:23:02: d7:5b:ce:d7:30:94:a7:62:67:91:dc:8d:db:20:b3: c0:19:b0:41:bf:f9:bd:3a:85:9b:3b:a5:32:0a:27: 91:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:3A:74:40:B4:60:91:45:8D:5A:19:76:21:1E:3F:C5:34:A7:3F:5B X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231332e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.213.0/24 Signature Algorithm: sha256WithRSAEncryption 27:74:f7:85:44:d3:31:aa:1d:80:6c:cc:18:16:7c:49:6b:21: d3:6c:98:d7:78:9d:39:12:51:fb:c1:ff:7e:2f:8b:33:ff:5d: 38:3c:70:dd:38:65:a6:15:68:93:ea:45:4a:1b:63:f9:66:d0: d3:21:96:52:1e:d3:39:a1:93:03:f4:ee:a5:c5:eb:66:00:e6: 61:95:76:ba:26:12:1f:a9:cb:89:db:b1:4b:ad:4a:00:f1:8f: e8:9a:14:a8:b5:18:8f:cd:ca:bf:e4:c0:d1:e9:53:2d:77:8a: e0:81:f8:27:ac:6d:5e:62:37:46:1f:98:e5:3c:c3:40:12:5b: d5:6b:35:08:32:33:33:bd:fa:6d:6b:c9:59:2c:c5:b4:94:20: fb:f2:fd:f6:2b:3c:1f:50:71:dc:6d:34:39:35:69:70:49:23: 11:81:24:ef:eb:d4:97:cc:b8:60:70:57:da:2a:65:6f:ea:77: 54:be:b8:36:45:01:8e:86:c6:eb:de:de:7a:7a:25:c8:08:7d: ab:bc:40:6f:82:6e:ff:8a:ef:ef:68:3e:52:14:b7:fa:bc:dd: ad:b0:15:7d:e7:37:ca:67:d5:5e:5f:2c:66:44:62:cb:6f:a3: 01:3a:fc:64:91:f4:f4:a3:a8:a1:e8:d8:c6:af:4b:93:91:9c: 41:b2:41:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUxhbirBhgz7IxTPu3fKy9FL32PYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNDA4MjUwNTU1MDJaFw0yNTA4MjQwNjAwMDJaMDMxMTAvBgNV BAMTKEUxM0E3NDQwQjQ2MDkxNDU4RDVBMTk3NjIxMUUzRkM1MzRBNzNGNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB27wxMd4tQ6KZP9SOaf9OP6Dq kkpxLvPXUiCerYViEqeYO6JdRKEs7NYrFpfqoq6fpUD8OPvtJuZobPvPIBeRlqYS Ndvii7ir3QGG0ahAQFM0XboLEwVY4JfoE6Zo6dP0TQbwVbCpTXCKxjpQuYUlSXdy qTicMYTZfD3tXwAk7PIFg26PoWcLu5ptgIA69DEmACIoR/VUfhW7kwBwN84qi2j0 D+YkziwZUtLsZBuwOxkhv0M12LGmtwLeQ+OblD5tLWrxPUHuYm1OvdzZ3lkTQbs9 lcxsfAQakGFVXuYjAtdbztcwlKdiZ5Hcjdsgs8AZsEG/+b06hZs7pTIKJ5HvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4Tp0QLRgkUWNWhl2IR4/xTSnP1swHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41TANBgkqhkiG 9w0BAQsFAAOCAQEAJ3T3hUTTMaodgGzMGBZ8SWsh02yY13idORJR+8H/fi+LM/9d ODxw3ThlphVok+pFShtj+WbQ0yGWUh7TOaGTA/TupcXrZgDmYZV2uiYSH6nLidux S61KAPGP6JoUqLUYj83Kv+TA0elTLXeK4IH4J6xtXmI3Rh+Y5TzDQBJb1Ws1CDIz M736bWvJWSzFtJQg+/L99is8H1Bx3G00OTVpcEkjEYEk7+vUl8y4YHBX2iplb+p3 VL64NkUBjobG697eenolyAh9q7xAb4Ju/4rv72g+UhS3+rzdrbAVfec3ymfVXl8s ZkRiy2+jATr8ZJH09KOooejYxq9Lk5GcQbJBoA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org