$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa File: 34332e3233312e3132382e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: XJCfR7v/70LrZOt9dR7IMNA0zK9gR1i+67CWTOG1K2Y= Subject key identifier: 12:90:A0:C4:77:76:FB:CA:1B:B1:DA:4D:32:01:FF:6C:9B:AE:37:6E Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 039E13F18C5F65D1F20E3AA598B29A402B609A75 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa Signing time: Mon 01 Jul 2024 01:06:07 +0000 ROA not before: Mon 01 Jul 2024 01:01:07 +0000 ROA not after: Mon 30 Jun 2025 01:06:07 +0000 asID: 38788 IP address blocks: 43.231.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:9e:13:f1:8c:5f:65:d1:f2:0e:3a:a5:98:b2:9a:40:2b:60:9a:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 1 01:01:07 2024 GMT Not After : Jun 30 01:06:07 2025 GMT Subject: CN=1290A0C47776FBCA1BB1DA4D3201FF6C9BAE376E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:29:ae:79:e5:48:87:84:a9:17:56:1f:16:14: df:46:7b:c0:5c:ad:94:a6:59:7e:63:9d:c9:88:3e: bc:6a:b1:21:2d:7f:e6:61:0b:b8:48:49:11:e6:5b: fe:28:9c:e1:02:df:d6:f2:49:78:1b:50:03:0a:ca: ce:82:c8:08:e9:a0:f8:da:71:66:3d:da:aa:04:0b: 2e:57:bd:a7:2f:b4:f3:24:b2:d4:1c:e6:c8:a9:bb: 49:9e:24:2f:89:dd:52:e5:41:58:88:6d:e6:d7:50: 58:b4:c9:e2:bf:a6:79:73:b6:35:8e:2d:ae:66:8a: 7d:b5:1c:4d:25:d4:a1:75:19:63:20:47:1f:65:0f: 07:5b:91:13:59:1c:c0:f8:0c:5b:db:aa:e8:11:41: eb:5c:7a:3f:8b:b7:67:08:68:20:ce:75:5d:e0:cc: 9b:c8:14:6a:3b:a0:ec:ed:10:b6:01:e2:1b:ed:6a: 4f:c5:59:6b:0a:9f:7a:8c:64:9e:49:27:a7:8b:5d: d4:10:45:b3:27:56:41:63:54:16:88:8b:5d:4d:f8: 8a:cc:b7:20:e3:d4:66:4b:17:aa:1b:fc:cf:02:49: c6:8a:27:e0:8f:6e:36:af:7d:49:40:d4:3d:5a:a9: 83:dc:86:a8:ea:58:5e:c4:20:64:ff:07:b4:fd:63: 6c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:90:A0:C4:77:76:FB:CA:1B:B1:DA:4D:32:01:FF:6C:9B:AE:37:6E X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.128.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:3f:70:1c:e4:b4:c9:7c:6d:93:bb:f9:e5:fd:92:3c:a2:2b: 27:c9:d3:41:8c:64:1c:bc:a8:4f:b2:be:8b:34:83:9e:bd:ca: 03:45:ca:cd:c8:10:56:6a:83:7c:82:56:fd:4c:c8:55:7b:0a: dd:64:c1:16:9a:87:b9:c1:1e:ac:5a:ee:20:cc:d9:1f:4d:c4: 51:c2:a3:63:bd:68:76:df:ce:a6:f1:bc:45:12:89:7f:f3:8d: bc:d5:8e:0e:06:d0:8d:cb:a7:c5:18:13:e6:d5:40:a6:df:bb: 3a:30:29:b8:14:a9:68:8d:67:f3:b1:f0:f9:14:0a:87:22:91: c8:ba:fb:00:7f:f6:19:cb:78:b6:3e:4c:47:bd:fc:59:a8:cf: a2:88:2b:85:e0:85:2f:01:b3:f0:cd:6a:64:02:01:d8:03:89: 78:49:84:06:e3:a2:03:29:a4:ec:e4:60:17:09:7c:5e:6e:4a: 5d:33:b3:46:3e:c8:0b:62:a6:33:91:e3:87:16:e0:da:94:95: 60:64:29:7e:02:1d:c6:9d:ee:3e:b4:b1:98:ce:26:78:aa:6c: 55:1e:5b:a1:e9:97:b7:11:f2:b5:d0:da:ac:35:40:4b:7f:25: cd:2d:9e:f9:9d:6f:0c:90:89:16:27:b8:ae:1b:5d:53:60:51: 3c:32:a4:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA54T8YxfZdHyDjqlmLKaQCtgmnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MDEwMTAxMDdaFw0yNTA2MzAwMTA2MDdaMDMxMTAvBgNV BAMTKDEyOTBBMEM0Nzc3NkZCQ0ExQkIxREE0RDMyMDFGRjZDOUJBRTM3NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUKa555UiHhKkXVh8WFN9Ge8Bc rZSmWX5jncmIPrxqsSEtf+ZhC7hISRHmW/4onOEC39bySXgbUAMKys6CyAjpoPja cWY92qoECy5XvacvtPMkstQc5sipu0meJC+J3VLlQViIbebXUFi0yeK/pnlztjWO La5min21HE0l1KF1GWMgRx9lDwdbkRNZHMD4DFvbqugRQetcej+Lt2cIaCDOdV3g zJvIFGo7oOztELYB4hvtak/FWWsKn3qMZJ5JJ6eLXdQQRbMnVkFjVBaIi11N+IrM tyDj1GZLF6ob/M8CScaKJ+CPbjavfUlA1D1aqYPchqjqWF7EIGT/B7T9Y2wrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEpCgxHd2+8obsdpNMgH/bJuuN24wHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvngDANBgkqhkiG 9w0BAQsFAAOCAQEATj9wHOS0yXxtk7v55f2SPKIrJ8nTQYxkHLyoT7K+izSDnr3K A0XKzcgQVmqDfIJW/UzIVXsK3WTBFpqHucEerFruIMzZH03EUcKjY71odt/OpvG8 RRKJf/ONvNWODgbQjcunxRgT5tVApt+7OjApuBSpaI1n87Hw+RQKhyKRyLr7AH/2 Gct4tj5MR738WajPoogrheCFLwGz8M1qZAIB2AOJeEmEBuOiAymk7ORgFwl8Xm5K XTOzRj7IC2KmM5Hjhxbg2pSVYGQpfgIdxp3uPrSxmM4meKpsVR5boemXtxHytdDa rDVAS38lzS2e+Z1vDJCJFie4rhtdU2BRPDKkeA== -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org