$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3232392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: MjaUbZ23mP4ahWEc6RlEd2+pFsreSZtbc6rO5LWDKyQ= Subject key identifier: 38:D9:92:66:D0:D5:A4:8C:F3:36:E6:1B:19:60:E2:55:50:08:A5:53 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 11832D46918E0C6167907CAFD9DB518EE1559A1E Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa Signing time: Mon 01 Jul 2024 01:03:05 +0000 ROA not before: Mon 01 Jul 2024 00:58:05 +0000 ROA not after: Mon 30 Jun 2025 01:03:05 +0000 asID: 58552 IP address blocks: 43.240.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:83:2d:46:91:8e:0c:61:67:90:7c:af:d9:db:51:8e:e1:55:9a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:05 2024 GMT Not After : Jun 30 01:03:05 2025 GMT Subject: CN=38D99266D0D5A48CF336E61B1960E2555008A553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:77:77:96:c6:b1:0e:7d:12:f6:13:e0:d7:30: 57:87:32:8a:09:d6:20:71:50:86:f2:fe:fe:75:cf: 3f:72:29:2b:dd:bc:36:da:b6:d4:4a:6f:b1:00:42: 9a:26:83:5c:f6:46:da:34:14:09:9a:73:63:52:c0: 33:c9:2c:c9:16:68:89:49:cf:2f:8b:e9:b0:88:e3: 93:a6:31:3d:4d:fa:f0:3b:ff:b7:0a:2f:60:3b:e1: 2c:d0:e6:b0:6f:b3:38:61:eb:aa:19:8e:a8:c9:1e: a6:7b:b8:c0:22:07:72:92:40:e3:d2:58:0e:13:c3: 92:7a:bc:d3:c9:fb:45:e2:11:b1:b3:f7:b7:85:89: c5:52:2d:89:00:9c:60:25:dd:62:99:04:19:e2:35: 5d:fa:13:44:59:f3:cf:51:fe:c2:37:72:c4:18:51: 08:bd:4b:9f:4c:40:56:4d:72:ab:bd:37:06:96:36: 1e:da:55:f3:4b:a6:4a:a9:c2:97:bb:b8:2c:46:4f: 93:08:4b:9d:20:f8:e4:fc:2c:51:8c:8b:d6:c3:6a: 1a:85:a1:15:d1:63:64:0f:61:7f:79:2e:2d:c4:08: 19:c1:dc:77:a6:89:09:f4:54:ed:e0:d2:cd:78:db: a8:06:d6:e7:fc:14:c9:1b:83:5f:82:52:e4:e1:1b: 73:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D9:92:66:D0:D5:A4:8C:F3:36:E6:1B:19:60:E2:55:50:08:A5:53 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.229.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:93:05:35:eb:05:cd:3c:b8:9b:bd:2b:73:a4:97:c3:7b:c8: d2:32:08:b3:86:b7:93:a3:c2:73:b7:e3:37:14:7a:4e:76:89: cc:97:7d:89:2b:40:13:ff:15:b2:8c:79:ef:37:bf:91:af:cf: a1:5c:9e:c8:db:ad:c9:4d:70:e2:a2:14:2a:22:67:64:c5:a8: f9:40:12:93:fc:be:04:02:15:d0:4a:24:4c:67:4d:86:db:5e: a4:77:11:a2:c9:56:7b:f4:51:ee:38:66:bb:cb:59:72:e8:5f: c5:ba:b5:3d:e5:d6:ac:81:59:4f:67:b0:12:0d:cd:2d:ed:84: 9c:6f:58:62:e0:10:6b:85:3f:db:65:87:4a:5b:9f:aa:70:7b: 13:25:2d:30:cf:97:04:33:72:ad:da:08:ad:fa:42:ef:dd:95: 0b:df:8a:ed:4b:1e:40:d6:7c:5c:95:3b:e4:00:2b:9b:4f:c1: 22:b8:50:f3:ba:67:bd:c6:65:60:8e:63:dd:ee:e8:38:c7:55: 82:45:c3:aa:21:d2:99:fc:42:56:22:a8:b8:5e:ff:1d:63:93: 03:59:03:a0:b2:79:7c:47:8f:37:72:ec:65:27:6e:f0:4c:e7: bd:2f:08:e0:c4:b5:4e:11:f2:a3:ba:2e:8b:2c:0f:d9:91:91: 13:d4:8a:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEYMtRpGODGFnkHyv2dtRjuFVmh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDVaFw0yNTA2MzAwMTAzMDVaMDMxMTAvBgNV BAMTKDM4RDk5MjY2RDBENUE0OENGMzM2RTYxQjE5NjBFMjU1NTAwOEE1NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJd3eWxrEOfRL2E+DXMFeHMooJ 1iBxUIby/v51zz9yKSvdvDbattRKb7EAQpomg1z2Rto0FAmac2NSwDPJLMkWaIlJ zy+L6bCI45OmMT1N+vA7/7cKL2A74SzQ5rBvszhh66oZjqjJHqZ7uMAiB3KSQOPS WA4Tw5J6vNPJ+0XiEbGz97eFicVSLYkAnGAl3WKZBBniNV36E0RZ889R/sI3csQY UQi9S59MQFZNcqu9NwaWNh7aVfNLpkqpwpe7uCxGT5MIS50g+OT8LFGMi9bDahqF oRXRY2QPYX95Li3ECBnB3HemiQn0VO3g0s1426gG1uf8FMkbg1+CUuThG3NJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUONmSZtDVpIzzNuYbGWDiVVAIpVMwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5TANBgkqhkiG 9w0BAQsFAAOCAQEAf5MFNesFzTy4m70rc6SXw3vI0jIIs4a3k6PCc7fjNxR6TnaJ zJd9iStAE/8Vsox57ze/ka/PoVyeyNutyU1w4qIUKiJnZMWo+UASk/y+BAIV0Eok TGdNhttepHcRoslWe/RR7jhmu8tZcuhfxbq1PeXWrIFZT2ewEg3NLe2EnG9YYuAQ a4U/22WHSlufqnB7EyUtMM+XBDNyrdoIrfpC792VC9+K7UseQNZ8XJU75AArm0/B IrhQ87pnvcZlYI5j3e7oOMdVgkXDqiHSmfxCViKouF7/HWOTA1kDoLJ5fEePN3Ls ZSdu8EznvS8I4MS1ThHyo7ouiywP2ZGRE9SK1Q== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org