$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa File: 34332e3233302e342e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: 0nokqEKG1vAiG/aTJWu62GnbbPt3CoJsFSs/emKFKg4= Subject key identifier: DE:AF:A3:CA:D6:8F:BB:CD:A4:29:EB:DE:AA:CC:EA:81:C3:D5:3D:21 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 59C28E63B16BB67A954E2BDF5B2276741581A55A Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa Signing time: Mon 01 Jul 2024 01:06:07 +0000 ROA not before: Mon 01 Jul 2024 01:01:07 +0000 ROA not after: Mon 30 Jun 2025 01:06:07 +0000 asID: 38788 IP address blocks: 43.230.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c2:8e:63:b1:6b:b6:7a:95:4e:2b:df:5b:22:76:74:15:81:a5:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 1 01:01:07 2024 GMT Not After : Jun 30 01:06:07 2025 GMT Subject: CN=DEAFA3CAD68FBBCDA429EBDEAACCEA81C3D53D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:2f:1e:52:a4:c5:c4:50:2f:9e:7a:cd:41: 38:31:f8:52:0e:79:67:b6:aa:c3:3c:2f:86:f8:3f: 2f:3c:47:a9:60:66:31:24:fa:fb:5a:9a:23:8c:68: a6:74:6e:bd:3e:94:e8:44:9f:4f:33:07:99:07:35: 19:7d:fe:90:76:b7:1c:00:59:6f:89:67:7b:87:85: 4c:b6:ec:87:58:39:23:5e:8b:bc:db:67:76:cd:35: 5b:9e:3b:dd:9d:c5:24:45:77:87:b6:20:68:f4:8b: 4b:9c:6b:3b:8d:e4:0b:3d:6d:53:c0:f1:b4:e5:d2: be:97:91:f2:e3:e8:6a:6d:2a:36:f8:f0:fa:d3:23: 3b:29:cc:71:0e:d4:49:33:94:35:89:39:7e:d5:14: 6a:b0:e7:87:33:fb:8c:c8:02:a0:a0:e8:fe:70:b1: ac:82:33:b3:fa:02:ff:a7:fb:4d:60:c4:34:c3:42: 5f:f1:ef:d8:d7:f8:ae:5a:a4:90:bc:e3:ef:76:d6: 9f:be:80:8f:86:62:d8:69:bc:8a:46:90:25:7b:c4: 0c:8f:94:09:db:13:39:8b:05:e0:1d:04:ed:27:0a: f1:bc:39:6e:73:6c:3d:13:ba:60:de:fb:0a:2d:8e: 10:a2:75:35:4c:17:b8:d7:72:d1:a0:04:46:67:a6: de:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AF:A3:CA:D6:8F:BB:CD:A4:29:EB:DE:AA:CC:EA:81:C3:D5:3D:21 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.4.0/24 Signature Algorithm: sha256WithRSAEncryption 87:5b:c8:15:54:2c:bd:31:47:ea:18:18:6f:27:bf:d6:99:d9: 36:69:2e:55:d3:ba:94:97:26:7e:80:81:e5:7d:9a:47:1a:65: e2:86:50:cc:da:3d:6b:56:e0:41:d0:ab:fb:4b:61:f4:54:d1: 53:86:6e:73:72:c4:cd:bd:e3:78:12:bd:91:18:21:70:a9:71: 1d:7a:ba:2c:68:ff:15:9b:8c:5d:96:31:c7:3f:9d:9f:84:a9: 19:00:b6:04:74:3e:42:b9:0f:7b:42:3a:ef:b6:c3:ed:a4:84: 35:cd:d0:26:a7:ca:08:55:d5:39:f4:f1:b3:24:68:02:46:40: 2e:24:4e:44:a9:7d:bb:c3:df:ac:d9:39:ad:a0:0f:dc:9e:a1: 78:e5:ec:72:e6:2d:63:12:2f:dd:5b:9b:e4:c9:9a:90:3d:75: 7b:a7:31:18:42:c6:ee:7a:24:ed:5f:87:2f:1c:53:9a:f3:b4: e7:38:0b:d8:c6:04:de:90:96:35:5a:b3:c8:83:2c:c9:c2:2a: fc:05:20:d7:eb:65:59:ee:12:12:03:68:d3:fe:d0:b6:e6:58: bc:ae:16:41:35:5d:40:85:69:4d:63:a8:62:26:f4:a6:40:95: 23:f6:c8:11:74:2d:90:0a:28:e8:1a:cc:42:f2:9a:e5:f8:71: cb:a8:12:88 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWcKOY7FrtnqVTivfWyJ2dBWBpVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MDEwMTAxMDdaFw0yNTA2MzAwMTA2MDdaMDMxMTAvBgNV BAMTKERFQUZBM0NBRDY4RkJCQ0RBNDI5RUJERUFBQ0NFQTgxQzNENTNEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv3C8eUqTFxFAvnnrNQTgx+FIO eWe2qsM8L4b4Py88R6lgZjEk+vtamiOMaKZ0br0+lOhEn08zB5kHNRl9/pB2txwA WW+JZ3uHhUy27IdYOSNei7zbZ3bNNVueO92dxSRFd4e2IGj0i0ucazuN5As9bVPA 8bTl0r6XkfLj6GptKjb48PrTIzspzHEO1EkzlDWJOX7VFGqw54cz+4zIAqCg6P5w sayCM7P6Av+n+01gxDTDQl/x79jX+K5apJC84+921p++gI+GYthpvIpGkCV7xAyP lAnbEzmLBeAdBO0nCvG8OW5zbD0TumDe+wotjhCidTVMF7jXctGgBEZnpt7pAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU3q+jytaPu82kKeveqszqgcPVPSEwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzQzMzJlMzIzMzMwMmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr5gQwDQYJKoZIhvcNAQEL BQADggEBAIdbyBVULL0xR+oYGG8nv9aZ2TZpLlXTupSXJn6AgeV9mkcaZeKGUMza PWtW4EHQq/tLYfRU0VOGbnNyxM2943gSvZEYIXCpcR16uixo/xWbjF2WMcc/nZ+E qRkAtgR0PkK5D3tCOu+2w+2khDXN0CanyghV1Tn08bMkaAJGQC4kTkSpfbvD36zZ Oa2gD9yeoXjl7HLmLWMSL91bm+TJmpA9dXunMRhCxu56JO1fhy8cU5rztOc4C9jG BN6QljVas8iDLMnCKvwFINfrZVnuEhIDaNP+0LbmWLyuFkE1XUCFaU1jqGIm9KZA lSP2yBF0LZAKKOgazELymuX4ccuoEog= -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org