$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231352e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: hgLfhjfwIZWutgOiENx1B/1zXLdWd6NT3iL2V0hzBm0= Subject key identifier: AD:DF:07:65:12:18:3B:D0:27:66:BC:7D:1B:18:49:D6:EE:85:F0:55 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 528EB64546E8DEA724D441521C58CFECCC026C43 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231352e302f32342d3234203d3e203538343734.roa Signing time: Sun 25 Aug 2024 05:00:03 +0000 ROA not before: Sun 25 Aug 2024 04:55:03 +0000 ROA not after: Sun 24 Aug 2025 05:00:03 +0000 asID: 58474 IP address blocks: 43.248.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8e:b6:45:46:e8:de:a7:24:d4:41:52:1c:58:cf:ec:cc:02:6c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Aug 25 04:55:03 2024 GMT Not After : Aug 24 05:00:03 2025 GMT Subject: CN=ADDF076512183BD02766BC7D1B1849D6EE85F055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2f:0e:d0:a2:7a:00:4c:92:69:11:05:9c:8b: 34:85:69:ba:b3:58:48:1d:36:be:f2:20:d4:5e:5a: 74:e1:a1:d8:10:41:4e:2a:fb:0b:3c:b2:43:40:3d: c1:2d:5d:ee:3f:51:ae:cd:be:54:66:17:2e:42:9c: 17:87:71:75:61:54:3b:61:ad:0d:44:fa:a4:0f:17: 12:bd:62:b0:2a:e4:77:4a:e8:b9:65:05:da:96:11: 92:58:3a:09:e1:19:ab:8d:0a:e0:d0:fd:e7:b4:08: 70:3c:10:70:f0:5c:22:88:e9:31:03:89:ed:70:8b: d4:a5:86:3a:fe:a0:70:34:18:ea:94:d2:71:4a:fc: c6:89:7a:bf:cc:8d:d7:1c:c8:f2:5b:11:62:91:59: d2:02:f0:cc:7d:b6:ed:a1:84:a4:f6:d1:ef:32:d8: 04:51:66:f7:49:ee:9d:bc:85:2f:0c:b0:76:bb:f0: 74:2e:43:82:5c:54:9c:8c:75:f0:bc:07:ae:41:d5: 23:16:f4:bd:68:49:2d:02:db:59:32:f4:57:81:8b: d3:ed:7b:ac:8f:7c:15:05:ff:e7:78:57:ba:c4:40: 5d:b4:41:d3:5f:68:71:ec:65:76:a3:dd:37:29:16: 3c:8f:b3:87:04:96:da:88:d2:7a:bc:45:21:7c:fa: 8b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DF:07:65:12:18:3B:D0:27:66:BC:7D:1B:18:49:D6:EE:85:F0:55 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231352e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.215.0/24 Signature Algorithm: sha256WithRSAEncryption c0:cd:e5:8e:03:a8:e5:00:75:c1:b4:52:85:9b:6a:42:84:b5: 5a:6f:97:34:bb:3a:d0:85:68:2a:e1:1b:96:41:ca:7f:02:0e: cf:57:5e:db:3a:f5:bb:9b:2b:ae:22:e7:e3:4a:76:b0:58:4d: ef:2a:40:60:09:0f:10:cd:87:27:b1:1c:f9:01:58:8a:9d:89: f3:af:50:4f:8c:e5:31:ab:be:50:f3:77:62:aa:cf:33:e2:78: 58:6e:b2:c4:22:34:9b:eb:ed:33:5b:5b:3e:0b:b2:e3:0d:3c: dc:20:e9:a3:b5:0d:df:d4:2f:4c:f9:92:51:c6:6b:7d:f9:01: 2a:f8:a3:72:e2:b8:f8:c4:a0:20:94:7d:83:c8:9a:79:7e:b9: 93:0f:b3:1f:ff:f8:9f:b7:94:81:19:47:f1:89:2d:e5:98:62: f7:ce:1e:51:cb:c0:58:29:ef:e2:6f:eb:36:2e:3d:04:23:2e: f9:8b:27:2a:d1:99:ad:18:1b:08:96:98:b8:59:2d:4d:ea:f6: 38:bb:5a:99:b2:12:cc:19:ae:22:f8:2a:04:cc:40:b0:1a:ac: d3:32:06:b7:cb:ee:2b:20:d8:41:30:08:f1:49:f5:de:1d:d8: af:9d:31:14:f3:09:67:de:fd:84:ad:0e:68:f8:52:b2:7e:10: ff:ac:20:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUo62RUbo3qck1EFSHFjP7MwCbEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNDA4MjUwNDU1MDNaFw0yNTA4MjQwNTAwMDNaMDMxMTAvBgNV BAMTKEFEREYwNzY1MTIxODNCRDAyNzY2QkM3RDFCMTg0OUQ2RUU4NUYwNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqLw7QonoATJJpEQWcizSFabqz WEgdNr7yINReWnThodgQQU4q+ws8skNAPcEtXe4/Ua7NvlRmFy5CnBeHcXVhVDth rQ1E+qQPFxK9YrAq5HdK6LllBdqWEZJYOgnhGauNCuDQ/ee0CHA8EHDwXCKI6TED ie1wi9Slhjr+oHA0GOqU0nFK/MaJer/MjdccyPJbEWKRWdIC8Mx9tu2hhKT20e8y 2ARRZvdJ7p28hS8MsHa78HQuQ4JcVJyMdfC8B65B1SMW9L1oSS0C21ky9FeBi9Pt e6yPfBUF/+d4V7rEQF20QdNfaHHsZXaj3TcpFjyPs4cEltqI0nq8RSF8+otHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrd8HZRIYO9AnZrx9GxhJ1u6F8FUwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41zANBgkqhkiG 9w0BAQsFAAOCAQEAwM3ljgOo5QB1wbRShZtqQoS1Wm+XNLs60IVoKuEblkHKfwIO z1de2zr1u5srriLn40p2sFhN7ypAYAkPEM2HJ7Ec+QFYip2J869QT4zlMau+UPN3 YqrPM+J4WG6yxCI0m+vtM1tbPguy4w083CDpo7UN39QvTPmSUcZrffkBKvijcuK4 +MSgIJR9g8iaeX65kw+zH//4n7eUgRlH8Ykt5Zhi984eUcvAWCnv4m/rNi49BCMu +YsnKtGZrRgbCJaYuFktTer2OLtambISzBmuIvgqBMxAsBqs0zIGt8vuKyDYQTAI 8Un13h3Yr50xFPMJZ979hK0OaPhSsn4Q/6wgfA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org