$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132392e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: rYe6DYVvEMVS+k+SjVX0fK2moli9sRVF9OmCPyWl2fc= Subject key identifier: 5E:B5:F4:3B:28:12:0D:41:F1:DC:73:4E:A1:10:B1:0B:E6:2F:09:1B Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 5C50A5B7FE0EF982C124644B4CB1FFB2DB698258 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa Signing time: Sat 13 Jul 2024 06:00:02 +0000 ROA not before: Sat 13 Jul 2024 05:55:02 +0000 ROA not after: Sat 12 Jul 2025 06:00:02 +0000 asID: 38788 IP address blocks: 43.231.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:50:a5:b7:fe:0e:f9:82:c1:24:64:4b:4c:b1:ff:b2:db:69:82:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 13 05:55:02 2024 GMT Not After : Jul 12 06:00:02 2025 GMT Subject: CN=5EB5F43B28120D41F1DC734EA110B10BE62F091B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2e:e3:48:33:34:6a:03:35:2e:e8:d8:c9:16: 83:fa:01:2b:43:f3:00:c3:b2:5e:ce:1b:58:de:77: fa:88:bd:b6:2e:ec:17:56:b7:18:77:1f:d8:38:81: 46:f5:3f:7f:5c:53:90:e8:c8:f9:27:b3:3e:68:7e: 2b:d1:da:6e:85:ac:ec:4c:41:db:fb:82:d1:3f:c3: 4e:4f:2b:f9:5a:12:f1:5b:d9:a0:3e:5b:16:97:64: 45:74:9a:9f:dc:69:e3:fa:8d:24:40:4a:0e:fb:ed: 5f:68:41:ba:36:a7:ba:87:6b:fe:3e:26:3f:e8:54: 41:fd:ac:ac:63:28:1e:d8:2e:c4:5e:e9:f0:23:f6: 9d:ec:f4:35:6c:0b:8e:e9:e4:6e:8e:48:53:33:17: a5:aa:9a:e1:f6:65:a1:0d:b3:96:f8:af:46:80:07: fd:80:4d:7f:d7:9f:ee:38:40:34:37:38:49:0d:5f: bb:52:2e:8b:3e:8e:dc:b2:04:08:b2:24:04:c9:c8: 94:0a:bb:df:18:1c:38:3a:4a:a3:74:06:b6:44:3b: 34:de:fd:03:4d:bd:91:4a:dd:50:80:1c:34:24:73: 50:35:0e:ac:d5:98:2c:70:65:9e:1c:6a:6d:92:37: c2:f2:ad:8f:e3:c1:4b:f6:ed:76:a5:f2:56:52:f9: ad:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B5:F4:3B:28:12:0D:41:F1:DC:73:4E:A1:10:B1:0B:E6:2F:09:1B X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.129.0/24 Signature Algorithm: sha256WithRSAEncryption 38:48:ce:52:1c:c3:38:9a:22:42:17:94:16:e2:f5:1e:02:22: 41:06:9d:ae:48:56:51:d1:8c:74:1a:a8:b9:76:7d:4d:9d:01: 28:88:7b:97:41:b2:bd:b2:1f:0d:78:83:ee:07:95:9c:ee:6c: e5:b4:0b:60:76:ea:7d:95:82:db:77:8e:66:71:5f:c7:af:cb: 33:a2:50:d3:41:77:73:d8:d3:a7:f5:f3:0c:37:cd:da:3f:e3: b9:90:5f:1d:96:9b:61:4e:11:8e:32:42:f7:f6:77:d4:ee:67: 27:cb:2b:e4:50:6d:06:d9:e4:95:de:4d:82:e0:00:95:49:59: 98:12:51:a0:7a:7f:03:79:a9:51:8d:2b:7c:cd:5d:3d:1b:4b: b1:f6:80:32:37:87:a7:2b:19:3d:36:53:4a:20:c2:38:f4:33: 63:95:48:d1:ad:a2:76:5e:a7:be:f0:5e:24:e9:5a:3e:f3:64: 7f:5f:84:9e:63:2e:17:0e:00:76:ad:28:ee:e8:4b:16:e0:df: 83:11:db:11:82:00:07:16:45:b1:a3:21:d2:b6:5d:0c:35:8a: 82:5b:58:3d:59:35:83:73:8f:d0:87:f9:86:68:24:59:8f:36: d0:4e:f2:5b:3b:62:24:36:5b:d0:b9:09:13:e4:aa:6b:f0:33: 45:df:b7:65 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXFClt/4O+YLBJGRLTLH/sttpglgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MTMwNTU1MDJaFw0yNTA3MTIwNjAwMDJaMDMxMTAvBgNV BAMTKDVFQjVGNDNCMjgxMjBENDFGMURDNzM0RUExMTBCMTBCRTYyRjA5MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCLuNIMzRqAzUu6NjJFoP6AStD 8wDDsl7OG1jed/qIvbYu7BdWtxh3H9g4gUb1P39cU5DoyPknsz5ofivR2m6FrOxM Qdv7gtE/w05PK/laEvFb2aA+WxaXZEV0mp/caeP6jSRASg777V9oQbo2p7qHa/4+ Jj/oVEH9rKxjKB7YLsRe6fAj9p3s9DVsC47p5G6OSFMzF6WqmuH2ZaENs5b4r0aA B/2ATX/Xn+44QDQ3OEkNX7tSLos+jtyyBAiyJATJyJQKu98YHDg6SqN0BrZEOzTe /QNNvZFK3VCAHDQkc1A1DqzVmCxwZZ4cam2SN8LyrY/jwUv27Xal8lZS+a3tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXrX0OygSDUHx3HNOoRCxC+YvCRswHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngTANBgkqhkiG 9w0BAQsFAAOCAQEAOEjOUhzDOJoiQheUFuL1HgIiQQadrkhWUdGMdBqouXZ9TZ0B KIh7l0GyvbIfDXiD7geVnO5s5bQLYHbqfZWC23eOZnFfx6/LM6JQ00F3c9jTp/Xz DDfN2j/juZBfHZabYU4RjjJC9/Z31O5nJ8sr5FBtBtnkld5NguAAlUlZmBJRoHp/ A3mpUY0rfM1dPRtLsfaAMjeHpysZPTZTSiDCOPQzY5VI0a2idl6nvvBeJOlaPvNk f1+EnmMuFw4Adq0o7uhLFuDfgxHbEYIABxZFsaMh0rZdDDWKgltYPVk1g3OP0If5 hmgkWY820E7yWztiJDZb0LkJE+Sqa/AzRd+3ZQ== -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org