$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3233302e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: 7mFhO3iruKKmA84jVo+3YMxOP6J2XBbOUeQNLLjutb0= Subject key identifier: D4:15:88:45:87:EF:51:E9:34:37:D9:6E:0D:D5:89:14:CF:4E:05:2D Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 5CF67672D7643EB360988BE631F0D236D3A1AF17 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203538353532.roa Signing time: Thu 11 Jan 2024 03:35:16 +0000 ROA not before: Thu 11 Jan 2024 03:30:16 +0000 ROA not after: Thu 09 Jan 2025 03:35:16 +0000 asID: 58552 IP address blocks: 43.240.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f6:76:72:d7:64:3e:b3:60:98:8b:e6:31:f0:d2:36:d3:a1:af:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jan 11 03:30:16 2024 GMT Not After : Jan 9 03:35:16 2025 GMT Subject: CN=D415884587EF51E93437D96E0DD58914CF4E052D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:67:f2:3c:d9:12:22:33:af:76:73:30:fe:a0: 89:65:a9:0e:c0:8c:75:0c:97:01:55:54:91:2e:b5: 92:10:2a:a7:d7:36:68:61:75:59:65:f2:0d:47:6c: a9:65:fb:11:3c:7e:ad:ea:7b:c4:47:d5:64:28:0e: fc:cd:9b:5f:bf:20:7e:62:11:8d:16:e9:1a:39:c8: e6:08:f1:aa:c3:2c:18:ff:0b:f7:16:7a:7d:b5:87: c2:cb:7a:a3:f0:98:c0:68:61:39:8b:38:d4:66:47: 98:73:17:de:36:2d:52:41:cf:b0:98:22:4a:10:bb: 30:c2:a8:c6:40:79:9f:a9:f4:4c:ac:7d:ba:6a:d2: 81:24:b9:8d:8c:d4:4b:bb:e1:fc:5b:10:f2:af:d4: 93:8f:a0:72:a2:84:f5:3a:f2:2a:ee:c0:be:7e:b3: 79:7c:f0:36:d1:4d:da:8a:22:eb:36:fd:15:fb:07: ae:38:b0:10:cb:05:26:b7:94:0e:ff:f4:01:c9:15: 42:db:6f:a4:8c:e7:f2:40:bb:e1:79:bf:c4:92:f6: 84:1a:31:91:27:e6:32:f7:42:cd:c2:c5:d4:47:e5: 97:7b:c1:05:83:d8:bb:d0:3b:13:ba:0e:41:03:c0: c3:58:6d:ce:c1:6b:55:a1:bb:c6:d5:ac:a9:d1:c9: fc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:15:88:45:87:EF:51:E9:34:37:D9:6E:0D:D5:89:14:CF:4E:05:2D X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.230.0/24 Signature Algorithm: sha256WithRSAEncryption 70:8d:a9:d0:56:5f:42:20:92:57:54:24:40:64:83:b3:92:13: f2:b6:d3:50:6f:86:c8:88:0c:1b:57:f4:4f:e5:8e:9e:af:52: 1b:c2:f6:20:b1:fb:c5:55:d0:9c:18:19:5f:0d:bb:a2:29:4f: 3a:3b:73:57:61:3e:84:3a:78:b0:aa:d8:df:13:f8:b5:27:8e: 76:e4:9a:13:3e:bd:c9:97:5a:3e:ba:ca:a7:18:b9:5b:94:53: 58:bd:50:79:43:07:4b:8c:09:89:d2:97:19:e3:6e:49:1d:07: cd:98:2e:08:19:ea:11:cc:1f:00:0a:18:0e:e8:cc:42:aa:e1: f0:1a:d8:a7:d3:7a:71:68:8e:96:52:76:8d:d0:1c:a9:8d:5e: 3a:7c:16:16:16:4f:f9:2b:6e:a7:5b:4a:6a:55:a9:61:bc:dd: e6:90:32:cd:b1:80:26:6f:38:80:18:aa:12:dd:93:a4:46:0b: aa:3a:1c:9e:b2:b8:6f:b4:97:87:58:bf:8c:7f:b2:73:d2:bb: bf:22:f9:54:47:d9:5d:3e:76:f3:49:52:e8:ac:01:04:c7:8d: 77:fb:7b:59:6d:8c:d9:83:db:1b:b7:22:df:43:2d:28:92:b2: 75:e1:0a:31:5d:f1:95:6b:a1:9b:fe:f9:2b:4e:fe:02:72:8f: 97:1b:be:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXPZ2ctdkPrNgmIvmMfDSNtOhrxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDAxMTEwMzMwMTZaFw0yNTAxMDkwMzM1MTZaMDMxMTAvBgNV BAMTKEQ0MTU4ODQ1ODdFRjUxRTkzNDM3RDk2RTBERDU4OTE0Q0Y0RTA1MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Z/I82RIiM692czD+oIllqQ7A jHUMlwFVVJEutZIQKqfXNmhhdVll8g1HbKll+xE8fq3qe8RH1WQoDvzNm1+/IH5i EY0W6Ro5yOYI8arDLBj/C/cWen21h8LLeqPwmMBoYTmLONRmR5hzF942LVJBz7CY IkoQuzDCqMZAeZ+p9Eysfbpq0oEkuY2M1Eu74fxbEPKv1JOPoHKihPU68iruwL5+ s3l88DbRTdqKIus2/RX7B644sBDLBSa3lA7/9AHJFULbb6SM5/JAu+F5v8SS9oQa MZEn5jL3Qs3CxdRH5Zd7wQWD2LvQOxO6DkEDwMNYbc7Ba1Whu8bVrKnRyfzRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1BWIRYfvUek0N9luDdWJFM9OBS0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5jANBgkqhkiG 9w0BAQsFAAOCAQEAcI2p0FZfQiCSV1QkQGSDs5IT8rbTUG+GyIgMG1f0T+WOnq9S G8L2ILH7xVXQnBgZXw27oilPOjtzV2E+hDp4sKrY3xP4tSeOduSaEz69yZdaPrrK pxi5W5RTWL1QeUMHS4wJidKXGeNuSR0HzZguCBnqEcwfAAoYDujMQqrh8BrYp9N6 cWiOllJ2jdAcqY1eOnwWFhZP+Stup1tKalWpYbzd5pAyzbGAJm84gBiqEt2TpEYL qjocnrK4b7SXh1i/jH+yc9K7vyL5VEfZXT5280lS6KwBBMeNd/t7WW2M2YPbG7ci 30MtKJKydeEKMV3xlWuhm/75K07+AnKPlxu+Ew== -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org