$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3233312e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: cK+okyVO6Fkw99M4jQr9ZOUC5WEDGNAzAGHjW4k5n+8= Subject key identifier: 62:74:E2:06:BA:D3:61:4A:05:51:FB:A4:31:A9:E1:9E:20:86:D4:D4 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 6A45FF18DCF1F6E78AE2A41EC92FF0E8574802B7 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa Signing time: Mon 01 Jul 2024 01:03:06 +0000 ROA not before: Mon 01 Jul 2024 00:58:06 +0000 ROA not after: Mon 30 Jun 2025 01:03:06 +0000 asID: 58552 IP address blocks: 43.240.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:45:ff:18:dc:f1:f6:e7:8a:e2:a4:1e:c9:2f:f0:e8:57:48:02:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:06 2024 GMT Not After : Jun 30 01:03:06 2025 GMT Subject: CN=6274E206BAD3614A0551FBA431A9E19E2086D4D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4b:dc:b2:24:75:5d:25:06:4e:11:05:e6:bd: 07:64:28:75:d4:ac:6e:2b:35:6c:35:b1:d8:4a:0c: 58:af:3e:1b:be:4c:ea:d0:e0:d7:be:8b:d6:a6:da: 73:b2:e0:f5:ed:48:59:82:1a:b7:12:5c:9f:91:a9: 1e:0c:45:a3:90:a0:36:a9:30:8f:d6:70:b5:47:09: 25:dd:0c:af:3e:c7:84:e1:4d:25:2e:d9:c4:ed:2e: 8a:cd:1d:e2:16:82:f7:c7:82:dd:e3:30:f0:b7:0c: bb:7f:13:56:ad:1b:85:09:fe:e3:6c:a1:ca:2b:da: f3:c6:dc:8f:b4:aa:3c:e9:f4:6e:e9:17:91:e6:d1: 1b:3b:5b:7c:c5:80:1a:a6:3a:27:12:df:5f:94:a1: d6:61:a3:1b:59:16:79:e8:a4:70:c2:68:76:a8:6f: 4d:2b:21:1c:a6:2b:a1:75:8a:da:1f:27:9e:87:41: de:61:16:e3:8b:54:37:43:5b:0a:09:45:ab:4a:43: 60:4a:44:39:83:1f:e5:77:24:77:f7:54:47:53:13: a1:0e:87:3c:0f:b7:48:7c:81:2c:ab:c5:da:c3:2a: 8c:2c:fb:4f:35:86:65:74:43:55:40:42:29:4a:e4: db:78:32:ed:f5:5f:bb:f7:9f:58:39:86:4f:f0:01: 6f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:74:E2:06:BA:D3:61:4A:05:51:FB:A4:31:A9:E1:9E:20:86:D4:D4 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.231.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:18:a3:2b:a0:61:db:c0:fd:6c:23:35:5d:89:da:95:23:02: ca:14:25:9a:9d:ed:70:f8:ce:58:e4:d8:91:02:0c:b9:6c:e6: 12:14:15:f3:18:ee:18:da:0e:0d:84:aa:2f:18:9f:9e:be:7b: 64:21:f0:ff:7e:ce:42:4c:11:f5:f2:0f:26:f3:e7:7c:fe:d2: aa:47:59:eb:11:23:3f:f7:6d:ad:90:be:2f:14:fa:3a:86:85: cd:39:3a:14:d3:a0:23:2a:9c:89:f2:e0:62:40:36:ad:4f:95: cb:90:b1:a8:c1:4d:2b:0c:77:6d:fa:3c:ab:7a:7d:7f:a6:b4: 33:1b:33:6b:40:3d:a8:73:a1:27:ba:b9:1b:dd:fe:df:3b:ab: 4d:1c:c4:ee:7a:e3:bb:f9:b4:60:ea:b2:95:73:66:04:bb:12: a5:ac:21:a1:8e:85:2d:ef:ad:aa:bc:a8:e1:78:b1:93:f1:7e: 5c:4d:b1:04:cf:1d:8f:30:be:de:eb:76:77:39:87:a4:e6:9b: c3:f7:37:30:10:67:ee:d8:f0:ac:0a:75:8b:22:40:65:ad:89: 5e:79:d1:21:c9:47:0c:14:96:d9:ec:40:60:95:af:2b:11:1b: 62:4c:d1:5e:39:af:b8:45:1c:7c:c4:6d:6c:b1:9c:2e:78:ab: e6:62:d3:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUakX/GNzx9ueK4qQeyS/w6FdIArcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDZaFw0yNTA2MzAwMTAzMDZaMDMxMTAvBgNV BAMTKDYyNzRFMjA2QkFEMzYxNEEwNTUxRkJBNDMxQTlFMTlFMjA4NkQ0RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwS9yyJHVdJQZOEQXmvQdkKHXU rG4rNWw1sdhKDFivPhu+TOrQ4Ne+i9am2nOy4PXtSFmCGrcSXJ+RqR4MRaOQoDap MI/WcLVHCSXdDK8+x4ThTSUu2cTtLorNHeIWgvfHgt3jMPC3DLt/E1atG4UJ/uNs ocor2vPG3I+0qjzp9G7pF5Hm0Rs7W3zFgBqmOicS31+UodZhoxtZFnnopHDCaHao b00rIRymK6F1itofJ56HQd5hFuOLVDdDWwoJRatKQ2BKRDmDH+V3JHf3VEdTE6EO hzwPt0h8gSyrxdrDKows+081hmV0Q1VAQilK5Nt4Mu31X7v3n1g5hk/wAW+XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYnTiBrrTYUoFUfukManhniCG1NQwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5zANBgkqhkiG 9w0BAQsFAAOCAQEAThijK6Bh28D9bCM1XYnalSMCyhQlmp3tcPjOWOTYkQIMuWzm EhQV8xjuGNoODYSqLxifnr57ZCHw/37OQkwR9fIPJvPnfP7SqkdZ6xEjP/dtrZC+ LxT6OoaFzTk6FNOgIyqcifLgYkA2rU+Vy5CxqMFNKwx3bfo8q3p9f6a0Mxsza0A9 qHOhJ7q5G93+3zurTRzE7nrju/m0YOqylXNmBLsSpawhoY6FLe+tqryo4Xixk/F+ XE2xBM8djzC+3ut2dzmHpOabw/c3MBBn7tjwrAp1iyJAZa2JXnnRIclHDBSW2exA YJWvKxEbYkzRXjmvuEUcfMRtbLGcLnir5mLTww== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org