$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132382e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: XWtNBehkXOlikMKWmDfAFFb/WHd7lr9UmM7MPjl2atY= Subject key identifier: 3B:8F:B4:5D:67:9E:D1:01:FA:1F:9A:65:78:6D:09:A6:A0:5D:E2:DC Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 04CC257F907D2085FEEF71809E4D7782D7E7E4FD Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa Signing time: Sat 13 Jul 2024 06:00:02 +0000 ROA not before: Sat 13 Jul 2024 05:55:02 +0000 ROA not after: Sat 12 Jul 2025 06:00:02 +0000 asID: 38788 IP address blocks: 43.231.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:cc:25:7f:90:7d:20:85:fe:ef:71:80:9e:4d:77:82:d7:e7:e4:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 13 05:55:02 2024 GMT Not After : Jul 12 06:00:02 2025 GMT Subject: CN=3B8FB45D679ED101FA1F9A65786D09A6A05DE2DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:14:1a:11:bf:66:8d:43:cb:61:d5:48:24: 96:9e:b1:d6:0b:f3:20:16:73:f8:73:a1:63:2a:be: 93:59:c5:cf:58:59:f1:1e:ad:d6:91:b7:d4:f2:a7: 08:8e:28:9f:fd:83:69:53:2f:a1:dd:5c:e3:55:12: 48:54:da:b2:b8:ea:48:bb:1a:87:d5:fe:4a:f6:3f: b6:a1:d0:27:59:04:4b:2c:21:2a:1c:1a:35:45:82: f1:c2:0a:53:da:ac:37:13:fc:de:26:3c:4e:a3:13: f2:27:12:f9:58:88:99:f4:07:c2:32:79:b4:f7:d7: 9a:34:02:ac:aa:75:b8:e9:ba:05:fd:1d:a3:f5:02: 42:11:74:29:f1:cf:bf:b7:ab:0d:9e:e2:f0:9d:ba: 3a:48:b5:d6:cc:d9:b5:33:f8:bd:fc:ce:45:26:0e: 89:e7:65:29:50:0e:4c:76:1d:99:62:a5:c4:48:c5: a6:a0:24:be:07:26:8a:7e:81:a8:fd:c3:16:26:a2: b0:a1:3a:1f:1e:d7:41:ca:9d:60:62:78:1b:dd:aa: e1:3b:a9:93:cd:94:f3:7b:1a:fb:ba:7d:c2:6b:7f: 90:ab:75:74:51:38:0e:3a:4c:33:43:a4:67:8d:7d: 65:4a:6f:2a:bd:c8:de:f5:4b:5d:fa:cc:27:ad:0e: cf:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8F:B4:5D:67:9E:D1:01:FA:1F:9A:65:78:6D:09:A6:A0:5D:E2:DC X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:bd:e3:86:97:89:03:a9:a9:1f:f7:14:b0:db:e8:35:5a:07: c7:f3:34:99:23:60:78:a1:3a:c5:00:48:b2:c7:a1:e7:33:66: d7:6a:9e:f1:52:43:bd:5e:98:b8:b0:33:85:b1:78:d4:3b:df: 95:fa:74:44:d8:05:00:9a:90:5a:08:ef:88:8c:73:9a:42:bb: 9f:eb:7d:35:4a:e8:07:46:42:9f:a0:da:99:8a:4c:f9:13:46: da:b3:5d:ba:b5:21:39:fd:5f:b0:04:41:ff:97:14:9d:71:7c: 85:31:eb:51:0f:e1:23:6f:56:be:60:bb:86:53:fa:db:74:83: fb:bc:f3:52:dc:bd:3a:d4:34:9c:c8:fc:bd:9f:2b:2e:22:6c: 6a:52:21:dc:9f:ea:8d:88:98:63:a5:1a:49:ee:96:6f:5a:45: f1:99:fb:57:0d:03:64:68:65:dc:1a:a8:d3:93:4c:5c:37:5b: e1:60:a3:8d:c2:c7:99:18:df:4f:24:e1:cc:25:36:d4:c7:0a: 61:17:c0:48:8c:2b:1c:37:24:a7:ae:39:31:09:61:64:e8:3c: b0:ba:9f:65:31:57:9f:28:d7:0f:f7:d0:05:e5:9c:74:c6:34: d1:48:bb:0c:d7:26:fb:bf:07:9a:cd:7a:09:e5:56:03:f9:9c: b0:b0:14:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBMwlf5B9IIX+73GAnk13gtfn5P0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MTMwNTU1MDJaFw0yNTA3MTIwNjAwMDJaMDMxMTAvBgNV BAMTKDNCOEZCNDVENjc5RUQxMDFGQTFGOUE2NTc4NkQwOUE2QTA1REUyREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw8RQaEb9mjUPLYdVIJJaesdYL 8yAWc/hzoWMqvpNZxc9YWfEerdaRt9TypwiOKJ/9g2lTL6HdXONVEkhU2rK46ki7 GofV/kr2P7ah0CdZBEssISocGjVFgvHCClParDcT/N4mPE6jE/InEvlYiJn0B8Iy ebT315o0AqyqdbjpugX9HaP1AkIRdCnxz7+3qw2e4vCdujpItdbM2bUz+L38zkUm DonnZSlQDkx2HZlipcRIxaagJL4HJop+gaj9wxYmorChOh8e10HKnWBieBvdquE7 qZPNlPN7Gvu6fcJrf5CrdXRROA46TDNDpGeNfWVKbyq9yN71S136zCetDs+dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO4+0XWee0QH6H5pleG0JpqBd4twwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngDANBgkqhkiG 9w0BAQsFAAOCAQEAC73jhpeJA6mpH/cUsNvoNVoHx/M0mSNgeKE6xQBIsseh5zNm 12qe8VJDvV6YuLAzhbF41Dvflfp0RNgFAJqQWgjviIxzmkK7n+t9NUroB0ZCn6Da mYpM+RNG2rNdurUhOf1fsARB/5cUnXF8hTHrUQ/hI29WvmC7hlP623SD+7zzUty9 OtQ0nMj8vZ8rLiJsalIh3J/qjYiYY6UaSe6Wb1pF8Zn7Vw0DZGhl3Bqo05NMXDdb 4WCjjcLHmRjfTyThzCU21McKYRfASIwrHDckp645MQlhZOg8sLqfZTFXnyjXD/fQ BeWcdMY00Ui7DNcm+78Hms16CeVWA/mcsLAUaQ== -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org