$ rpki-client -vvf repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa File: 34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa (raw, json) Hash identifier: I83DhHp41Qw8IhnLTyt+40a+HGnwWdmgKPpteyOVPkk= Subject key identifier: ED:AF:03:30:DB:95:01:23:0B:5E:B4:B4:A6:7A:FC:CE:62:FE:76:44 Certificate issuer: /CN=EE0318C1CF5D037492EFBC172300E2E062AFEFCB Certificate serial: 601049693D54E281CB317EDB04F9AE31C813CA71 Authority key identifier: EE:03:18:C1:CF:5D:03:74:92:EF:BC:17:23:00:E2:E0:62:AF:EF:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa Signing time: Tue 21 Nov 2023 05:34:28 +0000 ROA not before: Tue 21 Nov 2023 05:29:28 +0000 ROA not after: Tue 19 Nov 2024 05:34:28 +0000 asID: 152025 IP address blocks: 43.228.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.crl rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 20:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:10:49:69:3d:54:e2:81:cb:31:7e:db:04:f9:ae:31:c8:13:ca:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE0318C1CF5D037492EFBC172300E2E062AFEFCB Validity Not Before: Nov 21 05:29:28 2023 GMT Not After : Nov 19 05:34:28 2024 GMT Subject: CN=EDAF0330DB9501230B5EB4B4A67AFCCE62FE7644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cc:4d:ce:59:1f:c1:44:61:d8:d0:98:01:95: e0:dd:5e:c6:f0:37:42:45:0e:c0:9a:60:e2:e1:3c: 62:e5:40:30:04:4c:17:cc:07:e3:13:94:f4:53:a0: 87:c6:2f:a0:ea:f5:44:ce:29:33:03:36:c1:04:07: 0d:c7:1c:4f:96:1f:59:57:9f:78:e2:f9:4d:ca:90: 29:80:d5:5c:d6:39:90:12:72:ac:65:01:51:b9:99: 05:78:e9:f0:60:77:9c:65:45:0b:ed:dd:34:29:71: 4f:d7:3f:16:22:b7:bd:39:36:1d:a1:8f:b2:b9:ff: 83:69:2f:75:f3:11:06:aa:c7:5c:ea:65:1f:20:90: ff:ce:d3:bd:a9:da:a0:d8:3c:2c:b8:8b:39:08:c4: 7a:21:df:30:76:e0:75:e7:36:f9:70:14:b5:01:95: 52:06:aa:90:f3:ec:ad:69:73:38:88:38:7f:3b:36: cc:66:ce:f9:19:bd:3f:ba:35:32:e1:97:29:cc:68: e7:15:00:e7:54:12:32:72:b4:af:26:c6:f5:23:b3: 91:50:c2:b5:c2:d3:2b:05:18:dd:42:da:32:a4:12: 55:e4:51:92:64:b4:34:7b:2c:a9:10:87:14:cf:48: f2:99:d1:46:db:85:2b:d4:34:e5:74:cd:3c:17:4d: c0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AF:03:30:DB:95:01:23:0B:5E:B4:B4:A6:7A:FC:CE:62:FE:76:44 X509v3 Authority Key Identifier: keyid:EE:03:18:C1:CF:5D:03:74:92:EF:BC:17:23:00:E2:E0:62:AF:EF:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.175.0/24 Signature Algorithm: sha256WithRSAEncryption 48:88:71:1a:56:83:c0:51:d4:06:9b:21:a1:b2:12:3d:71:61: 26:66:b4:f9:5c:e0:b5:d3:92:19:cb:60:86:a8:67:cc:65:4e: ca:65:47:c2:8d:cc:3d:02:71:a5:10:8c:a5:9d:6c:1c:bb:7e: 0c:4d:80:d8:e9:2c:25:66:fe:95:d9:11:40:6d:75:d1:57:2a: da:f9:52:a2:73:e5:58:af:7e:5a:6d:10:74:b0:1f:6f:e9:1f: d8:9e:79:d1:6b:59:25:d6:40:d2:ea:e1:b6:17:d3:c6:23:e7: b7:cf:71:ee:87:20:7d:52:4d:26:d8:36:5b:12:37:72:e8:10: 5d:7d:f9:39:7d:7d:3e:76:76:1c:45:a6:25:45:25:d3:6f:8a: f6:ae:30:69:98:0a:5e:d3:ca:1c:76:c7:a6:62:80:d1:31:bf: 0a:48:a8:77:7d:c8:bd:46:66:24:74:d8:13:cc:3f:9d:77:ec: aa:6b:0f:f5:d5:78:6c:a9:a0:9c:02:6d:3c:d2:70:5a:1d:81: 78:a3:3c:1d:3f:23:ee:8b:e1:58:1c:c8:f7:d1:59:97:0e:ed: 78:06:03:93:32:c9:68:cb:d4:84:ce:38:f2:a3:90:22:06:d3: b7:bf:f3:4a:e5:d1:34:a8:b7:c2:85:dd:4a:c1:02:c6:9a:fd: 39:fc:7c:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYBBJaT1U4oHLMX7bBPmuMcgTynEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUwMzE4QzFDRjVEMDM3NDkyRUZCQzE3MjMwMEUyRTA2 MkFGRUZDQjAeFw0yMzExMjEwNTI5MjhaFw0yNDExMTkwNTM0MjhaMDMxMTAvBgNV BAMTKEVEQUYwMzMwREI5NTAxMjMwQjVFQjRCNEE2N0FGQ0NFNjJGRTc2NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWzE3OWR/BRGHY0JgBleDdXsbw N0JFDsCaYOLhPGLlQDAETBfMB+MTlPRToIfGL6Dq9UTOKTMDNsEEBw3HHE+WH1lX n3ji+U3KkCmA1VzWOZAScqxlAVG5mQV46fBgd5xlRQvt3TQpcU/XPxYit705Nh2h j7K5/4NpL3XzEQaqx1zqZR8gkP/O072p2qDYPCy4izkIxHoh3zB24HXnNvlwFLUB lVIGqpDz7K1pcziIOH87NsxmzvkZvT+6NTLhlynMaOcVAOdUEjJytK8mxvUjs5FQ wrXC0ysFGN1C2jKkElXkUZJktDR7LKkQhxTPSPKZ0UbbhSvUNOV0zTwXTcDdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7a8DMNuVASMLXrS0pnr8zmL+dkQwHwYDVR0j BBgwFoAU7gMYwc9dA3SS77wXIwDi4GKv78swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTFhMzk4MC1hMzJlLTRkZjktOGU1Mi0wYmUwZDM0M2NjMGIvMC9FRTAzMThDMUNG NUQwMzc0OTJFRkJDMTcyMzAwRTJFMDYyQUZFRkNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUwMzE4QzFDRjVEMDM3NDkyRUZCQzE3MjMwMEUyRTA2MkFG RUZDQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMWEzOTgwLWEzMmUtNGRmOS04 ZTUyLTBiZTBkMzQzY2MwYi8wLzM0MzMyZTMyMzIzODJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+SvMA0GCSqG SIb3DQEBCwUAA4IBAQBIiHEaVoPAUdQGmyGhshI9cWEmZrT5XOC105IZy2CGqGfM ZU7KZUfCjcw9AnGlEIylnWwcu34MTYDY6SwlZv6V2RFAbXXRVyra+VKic+VYr35a bRB0sB9v6R/YnnnRa1kl1kDS6uG2F9PGI+e3z3HuhyB9Uk0m2DZbEjdy6BBdffk5 fX0+dnYcRaYlRSXTb4r2rjBpmApe08ocdsemYoDRMb8KSKh3fci9RmYkdNgTzD+d d+yqaw/11XhsqaCcAm080nBaHYF4ozwdPyPui+FYHMj30VmXDu14BgOTMsloy9SE zjjyo5AiBtO3v/NK5dE0qLfChd1KwQLGmv05/HwJ -----END CERTIFICATE-----Generated at Fri May 31 19:47:00 2024 by rpki-client on console-fra.rpki-client.org