$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132392e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: LZ1vdWz3/boVsbp321bRWV1XOQWdeFXuFo8nSi0dxK4= Subject key identifier: E9:F2:73:5A:01:5B:DE:A4:23:29:B8:F8:E9:6B:4A:43:A9:EC:D9:9F Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 0A9E1DE4EAC4F78CCEF72646CBAE61948772A740 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa Signing time: Sat 12 Aug 2023 05:01:18 +0000 ROA not before: Sat 12 Aug 2023 04:56:18 +0000 ROA not after: Sat 10 Aug 2024 05:01:18 +0000 asID: 38788 IP address blocks: 43.231.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:9e:1d:e4:ea:c4:f7:8c:ce:f7:26:46:cb:ae:61:94:87:72:a7:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Aug 12 04:56:18 2023 GMT Not After : Aug 10 05:01:18 2024 GMT Subject: CN=E9F2735A015BDEA42329B8F8E96B4A43A9ECD99F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2b:b6:0e:d0:5a:07:0e:13:ee:26:9b:2d:61: 66:aa:df:49:69:f3:6f:a1:f0:2f:e0:c7:87:53:24: f0:8f:54:97:da:fc:c4:4b:72:7a:29:5c:a5:eb:31: 42:6e:61:4c:41:ea:c1:15:a4:88:c6:51:8b:62:74: e7:82:d1:b1:b3:a6:be:63:de:38:ff:ba:c2:18:7b: ca:27:99:ed:52:eb:78:27:4b:2a:e1:dc:29:da:d9: 75:51:66:d7:b6:78:db:20:05:07:47:eb:f4:f3:4a: cd:ed:8e:cc:2e:11:fc:47:f9:90:d7:2e:04:9a:18: 01:cf:9b:f8:f8:5c:54:9a:e0:34:58:32:0a:f6:a6: 0f:0c:aa:87:46:33:e2:95:7e:ec:3c:ea:f7:b3:1d: a6:f0:44:11:99:e2:47:38:bd:05:e4:4c:84:ff:79: d7:98:7e:ea:f7:d4:e4:e1:c6:fa:72:68:ab:22:13: 2f:8e:9d:da:40:05:73:ea:3b:7f:d9:6b:18:bc:0f: e6:5e:60:db:48:99:f2:cb:36:5f:9a:02:8d:e1:cb: 96:e6:bd:98:1c:e5:9f:c5:f8:2b:9f:6b:78:e1:0c: 3d:c8:4e:7d:98:d2:e2:17:07:8a:a5:ac:81:6a:f4: 27:af:36:88:d5:7e:ad:ae:e8:17:1d:2d:44:37:c6: ff:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F2:73:5A:01:5B:DE:A4:23:29:B8:F8:E9:6B:4A:43:A9:EC:D9:9F X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.129.0/24 Signature Algorithm: sha256WithRSAEncryption 45:13:04:72:4a:59:39:35:24:c3:e1:37:c3:71:57:8c:6f:60: 22:8c:7c:1f:eb:40:52:26:51:09:ba:64:36:ce:23:ba:97:b9: e4:c4:32:a3:40:77:f8:ad:91:77:42:da:2e:21:db:bd:f4:d8: 40:09:14:c9:87:ac:85:00:a2:65:c5:98:63:ec:11:36:c4:b2: 43:ad:29:81:9c:42:82:e4:ee:8f:3b:5d:b5:7e:7c:bc:49:1c: 2c:5a:18:ff:8a:0f:aa:a9:a2:f2:05:98:37:04:c8:f3:04:b8: 4b:fe:3f:c3:a7:60:b3:eb:c5:aa:bc:e8:3c:45:10:27:bb:fd: 04:0f:e6:3e:25:ca:0d:13:2b:47:96:99:f0:67:79:c7:0c:15: 68:57:e4:70:22:d6:f9:5f:f0:b6:c1:a3:cd:43:38:4c:03:8e: 58:1a:27:5c:08:e5:1a:c1:84:04:25:88:57:54:34:90:d3:5a: bb:85:07:ec:05:20:e0:f4:a4:19:77:48:b8:a5:88:2e:32:fe: 98:24:34:86:ed:78:1b:c2:af:86:8e:62:39:da:c7:51:8c:9b: 97:8c:f2:d3:ed:2b:24:23:66:94:31:ad:de:4e:bf:e3:8b:1f: 95:9e:42:25:b5:96:12:19:5d:50:64:9b:31:95:4d:7c:f3:11: 6f:db:6f:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCp4d5OrE94zO9yZGy65hlIdyp0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA4MTIwNDU2MThaFw0yNDA4MTAwNTAxMThaMDMxMTAvBgNV BAMTKEU5RjI3MzVBMDE1QkRFQTQyMzI5QjhGOEU5NkI0QTQzQTlFQ0Q5OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbK7YO0FoHDhPuJpstYWaq30lp 82+h8C/gx4dTJPCPVJfa/MRLcnopXKXrMUJuYUxB6sEVpIjGUYtidOeC0bGzpr5j 3jj/usIYe8onme1S63gnSyrh3Cna2XVRZte2eNsgBQdH6/TzSs3tjswuEfxH+ZDX LgSaGAHPm/j4XFSa4DRYMgr2pg8MqodGM+KVfuw86vezHabwRBGZ4kc4vQXkTIT/ edeYfur31OThxvpyaKsiEy+OndpABXPqO3/Zaxi8D+ZeYNtImfLLNl+aAo3hy5bm vZgc5Z/F+Cufa3jhDD3ITn2Y0uIXB4qlrIFq9CevNojVfq2u6BcdLUQ3xv9ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6fJzWgFb3qQjKbj46WtKQ6ns2Z8wHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngTANBgkqhkiG 9w0BAQsFAAOCAQEARRMEckpZOTUkw+E3w3FXjG9gIox8H+tAUiZRCbpkNs4jupe5 5MQyo0B3+K2Rd0LaLiHbvfTYQAkUyYeshQCiZcWYY+wRNsSyQ60pgZxCguTujztd tX58vEkcLFoY/4oPqqmi8gWYNwTI8wS4S/4/w6dgs+vFqrzoPEUQJ7v9BA/mPiXK DRMrR5aZ8Gd5xwwVaFfkcCLW+V/wtsGjzUM4TAOOWBonXAjlGsGEBCWIV1Q0kNNa u4UH7AUg4PSkGXdIuKWILjL+mCQ0hu14G8Kvho5iOdrHUYybl4zy0+0rJCNmlDGt 3k6/44sflZ5CJbWWEhldUGSbMZVNfPMRb9tvQw== -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org