$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa File: 34332e3233302e372e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: uou3jhERhLb5Hf/nZdkvWtCXj/uGpfzUNB/Tz8NX434= Subject key identifier: 12:31:DB:A6:91:E0:83:7C:0E:1D:14:11:AE:52:2B:70:EB:E8:0D:A2 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 37E963B23A74E491A6390C71C041B2843397F9B2 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa Signing time: Mon 01 Jul 2024 01:06:07 +0000 ROA not before: Mon 01 Jul 2024 01:01:07 +0000 ROA not after: Mon 30 Jun 2025 01:06:07 +0000 asID: 38788 IP address blocks: 43.230.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e9:63:b2:3a:74:e4:91:a6:39:0c:71:c0:41:b2:84:33:97:f9:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 1 01:01:07 2024 GMT Not After : Jun 30 01:06:07 2025 GMT Subject: CN=1231DBA691E0837C0E1D1411AE522B70EBE80DA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d8:c3:dc:13:34:49:37:5a:fb:0f:b2:98:0f: dc:c2:52:29:1b:8c:ae:0b:ac:5f:5f:02:ee:d5:75: 37:0a:ee:43:f1:9c:b6:1d:8a:35:6e:25:31:bc:c9: 4a:df:a5:84:27:73:06:c6:cf:85:c8:ad:e8:b8:bb: 46:f4:ca:5e:85:7f:af:9b:4b:a6:08:6c:41:bd:9b: 20:98:24:b2:f3:a8:51:22:ce:cd:2c:b4:60:eb:df: 19:40:c7:a8:14:94:fe:45:36:be:e7:6c:b0:69:e6: 72:42:05:f4:c4:aa:95:9b:14:67:d5:cc:f4:20:65: 02:1b:98:60:74:c3:73:c5:49:fa:93:59:30:2d:e2: d7:ec:a2:b0:ae:71:28:5c:74:9c:7b:49:60:a3:7c: e0:9a:28:e1:3e:5b:69:29:3d:4e:dd:53:d7:ee:f8: 4a:0a:1d:9b:ba:9d:b1:fa:31:7f:52:f0:ee:53:61: 1f:6f:2e:87:e0:20:5f:2d:d1:ca:18:66:b0:94:52: 14:19:a2:0b:22:1f:68:4b:2b:ff:4d:12:c3:7c:1e: dc:5b:5a:d5:b4:ac:88:5f:97:7a:72:b7:4e:7c:68: 2c:03:ce:f8:f8:2b:b6:93:93:7d:fb:45:07:34:09: d6:d7:b2:41:20:39:88:cc:6d:2a:a1:23:0e:64:fe: 71:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:31:DB:A6:91:E0:83:7C:0E:1D:14:11:AE:52:2B:70:EB:E8:0D:A2 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.7.0/24 Signature Algorithm: sha256WithRSAEncryption 52:d8:c6:da:50:7f:ef:a5:b7:c0:ae:08:d6:ff:02:2f:4e:dc: 74:49:78:ea:3f:f6:c9:af:78:a5:b0:e0:13:a5:c7:c4:2f:e4: 37:03:70:bc:59:e7:87:08:0c:a8:87:71:0d:3b:4a:db:30:4f: f9:fa:27:92:ac:e3:d7:5b:7a:07:4f:a6:c5:3a:e4:df:4d:3b: 2f:2e:a0:28:d8:80:e7:90:fa:2f:bf:bf:b1:ba:95:22:8e:8c: eb:a8:cb:e5:c5:16:99:7f:3e:2d:5a:aa:47:b6:41:a3:57:5e: c9:4d:77:7a:25:17:67:54:04:f0:36:27:44:55:48:95:97:5f: d0:4f:67:bf:f1:bb:bc:c2:8e:c1:42:4a:12:55:b9:ff:39:3f: 33:6c:ad:f3:53:da:e7:d7:eb:94:78:6c:ad:19:a4:9f:ff:34: bc:54:fc:11:d2:3d:85:ae:34:c9:5a:a3:51:23:68:2c:ed:dc: d9:6a:5c:c0:9c:3f:21:88:c8:3d:a8:10:f7:8e:af:54:e8:88: e6:34:7e:87:27:be:a9:38:0c:71:bc:63:f3:e6:72:fd:d9:3f: 14:0f:8c:f7:a8:06:92:b9:78:39:83:c3:68:c3:e4:c5:ad:fb: 9c:57:86:c3:84:99:bb:14:48:d5:d4:ff:e5:24:43:34:fc:7a: 11:a5:87:cd -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUN+ljsjp05JGmOQxxwEGyhDOX+bIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MDEwMTAxMDdaFw0yNTA2MzAwMTA2MDdaMDMxMTAvBgNV BAMTKDEyMzFEQkE2OTFFMDgzN0MwRTFEMTQxMUFFNTIyQjcwRUJFODBEQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ2MPcEzRJN1r7D7KYD9zCUikb jK4LrF9fAu7VdTcK7kPxnLYdijVuJTG8yUrfpYQncwbGz4XIrei4u0b0yl6Ff6+b S6YIbEG9myCYJLLzqFEizs0stGDr3xlAx6gUlP5FNr7nbLBp5nJCBfTEqpWbFGfV zPQgZQIbmGB0w3PFSfqTWTAt4tfsorCucShcdJx7SWCjfOCaKOE+W2kpPU7dU9fu +EoKHZu6nbH6MX9S8O5TYR9vLofgIF8t0coYZrCUUhQZogsiH2hLK/9NEsN8Htxb WtW0rIhfl3pyt058aCwDzvj4K7aTk337RQc0CdbXskEgOYjMbSqhIw5k/nEvAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUEjHbppHgg3wOHRQRrlIrcOvoDaIwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzQzMzJlMzIzMzMwMmUzNzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr5gcwDQYJKoZIhvcNAQEL BQADggEBAFLYxtpQf++lt8CuCNb/Ai9O3HRJeOo/9smveKWw4BOlx8Qv5DcDcLxZ 54cIDKiHcQ07StswT/n6J5Ks49dbegdPpsU65N9NOy8uoCjYgOeQ+i+/v7G6lSKO jOuoy+XFFpl/Pi1aqke2QaNXXslNd3olF2dUBPA2J0RVSJWXX9BPZ7/xu7zCjsFC ShJVuf85PzNsrfNT2ufX65R4bK0ZpJ//NLxU/BHSPYWuNMlao1EjaCzt3NlqXMCc PyGIyD2oEPeOr1ToiOY0focnvqk4DHG8Y/Pmcv3ZPxQPjPeoBpK5eDmDw2jD5MWt +5xXhsOEmbsUSNXU/+UkQzT8ehGlh80= -----END CERTIFICATE-----Generated at Sat Nov 23 18:47:51 2024 by rpki-client on console-fra.rpki-client.org