$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132382e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: Zb5MzFp7+Nny7jviVJCbZOvrIotwM5mlvuVCEf4IpwE= Subject key identifier: 26:BA:08:62:57:32:4E:15:FA:01:69:23:8E:93:39:DF:B5:69:3E:93 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 19D224C9C8EE90E3B45A6CE78D2DA68366FCC9E3 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa Signing time: Sat 12 Aug 2023 05:01:18 +0000 ROA not before: Sat 12 Aug 2023 04:56:18 +0000 ROA not after: Sat 10 Aug 2024 05:01:18 +0000 asID: 38788 IP address blocks: 43.231.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d2:24:c9:c8:ee:90:e3:b4:5a:6c:e7:8d:2d:a6:83:66:fc:c9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Aug 12 04:56:18 2023 GMT Not After : Aug 10 05:01:18 2024 GMT Subject: CN=26BA086257324E15FA0169238E9339DFB5693E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:4d:bd:40:27:e9:e8:fe:9c:7c:f0:d5:ba: 15:40:56:d1:ab:2b:e8:59:ff:45:a2:dc:7b:30:bc: 9f:a0:59:52:7b:7e:08:45:65:c3:86:90:f1:9c:b5: 49:10:81:25:34:98:38:7b:4c:f2:c5:cd:f8:e9:ec: 4f:f7:6f:10:29:3d:3c:07:d9:6e:40:61:d5:8a:5b: 58:7d:39:04:14:7f:5f:35:d8:e7:ea:dd:11:03:84: 6f:a2:44:7b:48:07:ed:a4:d1:a3:10:7c:08:9c:7f: 96:00:ec:e3:5c:93:a6:45:07:ed:86:47:c7:3a:f2: b9:6f:7e:92:0a:d9:b6:9e:88:c1:30:df:74:26:3a: 32:77:31:85:db:90:18:0a:0f:4e:b8:2c:98:88:98: 27:6e:a6:8b:e0:43:a0:df:0e:8b:c5:16:3b:08:d3: e5:2f:9a:74:b6:60:73:d5:1e:43:cc:5b:25:11:74: 6c:1b:7b:1c:ec:3f:71:32:2a:28:ac:ba:c6:1d:bb: 83:9a:39:58:44:84:87:36:fb:b4:f6:7f:4d:09:7f: 83:c1:84:6c:ec:ea:6d:32:e7:f1:08:c6:0c:ea:15: 9f:88:f8:f1:6a:54:1a:0e:6f:08:ad:3f:08:b7:26: 48:29:7f:af:e7:11:b8:6e:10:43:28:55:3c:18:ca: 6f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BA:08:62:57:32:4E:15:FA:01:69:23:8E:93:39:DF:B5:69:3E:93 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.128.0/24 Signature Algorithm: sha256WithRSAEncryption 52:9a:82:bc:37:e0:d7:e9:cf:7f:aa:7f:5a:b5:1a:11:9a:cb: 7b:6b:00:80:39:2c:d2:96:ce:c8:78:5e:26:f8:9d:5a:44:a7: cd:fc:bb:55:7a:1b:9a:a3:d6:36:98:b9:ef:69:93:0c:1a:e2: e7:f4:2b:d8:98:44:56:92:95:76:0f:dd:5d:2b:88:17:2c:c0: 92:a5:cc:a5:d1:6d:92:b8:b0:9d:f8:8b:0c:d7:23:4c:89:47: 1c:a4:14:a7:f5:65:ca:fd:21:61:ee:a9:d9:34:ec:0f:d0:90: bd:28:1a:28:cf:23:61:41:fb:15:34:08:14:07:37:c8:3a:8e: a2:57:e5:75:80:c4:89:dc:38:e7:fc:fd:07:9a:1d:cf:5c:3a: 88:32:45:e2:c4:42:14:e6:68:58:04:6e:77:26:9c:63:97:dc: 9b:da:85:96:9e:42:57:40:1c:0c:fd:a5:b7:43:32:fe:94:e0: 87:4d:39:c0:bc:25:9a:2d:36:97:b8:e9:5f:57:88:82:d0:5b: 3e:61:ba:ca:3a:21:26:c6:50:59:a2:8a:73:b8:0c:11:0d:74: d2:fa:33:66:53:31:ec:c4:00:be:ba:7e:c5:12:2b:60:a4:3a: 1b:cb:52:5f:31:e9:5a:ec:8a:54:f2:a0:33:8e:99:86:75:8f: b8:20:51:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGdIkycjukOO0WmznjS2mg2b8yeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA4MTIwNDU2MThaFw0yNDA4MTAwNTAxMThaMDMxMTAvBgNV BAMTKDI2QkEwODYyNTczMjRFMTVGQTAxNjkyMzhFOTMzOURGQjU2OTNFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5QE29QCfp6P6cfPDVuhVAVtGr K+hZ/0Wi3HswvJ+gWVJ7fghFZcOGkPGctUkQgSU0mDh7TPLFzfjp7E/3bxApPTwH 2W5AYdWKW1h9OQQUf1812Ofq3REDhG+iRHtIB+2k0aMQfAicf5YA7ONck6ZFB+2G R8c68rlvfpIK2baeiMEw33QmOjJ3MYXbkBgKD064LJiImCdupovgQ6DfDovFFjsI 0+UvmnS2YHPVHkPMWyURdGwbexzsP3EyKiisusYdu4OaOVhEhIc2+7T2f00Jf4PB hGzs6m0y5/EIxgzqFZ+I+PFqVBoObwitPwi3Jkgpf6/nEbhuEEMoVTwYym8pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJroIYlcyThX6AWkjjpM537VpPpMwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngDANBgkqhkiG 9w0BAQsFAAOCAQEAUpqCvDfg1+nPf6p/WrUaEZrLe2sAgDks0pbOyHheJvidWkSn zfy7VXobmqPWNpi572mTDBri5/Qr2JhEVpKVdg/dXSuIFyzAkqXMpdFtkriwnfiL DNcjTIlHHKQUp/Vlyv0hYe6p2TTsD9CQvSgaKM8jYUH7FTQIFAc3yDqOolfldYDE idw45/z9B5odz1w6iDJF4sRCFOZoWARudyacY5fcm9qFlp5CV0AcDP2lt0My/pTg h005wLwlmi02l7jpX1eIgtBbPmG6yjohJsZQWaKKc7gMEQ100vozZlMx7MQAvrp+ xRIrYKQ6G8tSXzHpWuyKVPKgM46ZhnWPuCBRrw== -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org