$ rpki-client -vvf repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa File: 34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa (raw, json) Hash identifier: +IXwOqF4yCbBj9uwGmBxcenGGFnRPZxkHawvMosNR04= Subject key identifier: C1:60:E6:66:F1:24:1D:BE:12:F2:16:09:1E:45:69:CF:0C:F8:0E:F1 Certificate issuer: /CN=EE0318C1CF5D037492EFBC172300E2E062AFEFCB Certificate serial: 2172056ED84AD14709CE8542EB8EA57251D758DF Authority key identifier: EE:03:18:C1:CF:5D:03:74:92:EF:BC:17:23:00:E2:E0:62:AF:EF:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa Signing time: Tue 22 Oct 2024 06:00:01 +0000 ROA not before: Tue 22 Oct 2024 05:55:01 +0000 ROA not after: Tue 21 Oct 2025 06:00:01 +0000 asID: 152025 IP address blocks: 43.228.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.crl rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:72:05:6e:d8:4a:d1:47:09:ce:85:42:eb:8e:a5:72:51:d7:58:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE0318C1CF5D037492EFBC172300E2E062AFEFCB Validity Not Before: Oct 22 05:55:01 2024 GMT Not After : Oct 21 06:00:01 2025 GMT Subject: CN=C160E666F1241DBE12F216091E4569CF0CF80EF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:0b:36:f3:48:89:9d:79:ff:fb:7f:59:98: 75:90:de:a5:85:4b:00:6f:41:e0:65:e4:81:29:11: 90:84:1a:7c:fe:64:74:b5:06:28:8e:09:11:c2:6a: 19:86:5d:c7:77:19:df:33:b4:44:7e:16:a0:79:71: c3:cc:f2:65:b9:92:86:d0:d9:bd:a0:66:3c:12:ba: 88:c0:c0:65:3c:aa:f0:ac:3d:0e:22:fd:b1:d0:c7: 36:4b:3c:d3:c2:1f:55:86:59:ba:c9:e5:3c:d4:69: 0f:ce:10:b5:b1:55:96:f5:54:d8:3c:f6:a3:cb:13: 2e:ef:0d:ee:47:a8:f6:83:4e:0c:5f:5f:6c:dd:39: 63:71:7c:ed:b4:a5:de:de:50:4f:07:4b:e6:b0:4d: c8:e7:02:9d:21:22:2a:93:b4:e2:e6:d8:d0:2e:c2: bc:29:00:d1:0d:de:d9:d8:c6:cd:b3:0d:bf:74:96: d6:5f:b4:a8:8f:ae:9e:68:0f:f5:7f:94:3d:08:cd: 0d:60:bf:b8:8b:c3:31:0e:c2:8a:bd:81:c9:85:d1: 50:72:58:17:19:e9:b8:ae:a9:b5:ed:1d:6a:b1:c7: fa:30:87:cb:c3:ce:10:aa:62:ca:66:8a:56:6e:64: 43:d3:cf:4b:0b:49:5d:b1:7f:0f:15:ed:78:4e:ae: d1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:60:E6:66:F1:24:1D:BE:12:F2:16:09:1E:45:69:CF:0C:F8:0E:F1 X509v3 Authority Key Identifier: keyid:EE:03:18:C1:CF:5D:03:74:92:EF:BC:17:23:00:E2:E0:62:AF:EF:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.175.0/24 Signature Algorithm: sha256WithRSAEncryption 45:3a:2d:fc:c8:f0:97:04:1e:cc:53:81:59:b5:71:c9:d5:12: 58:f5:11:5e:9c:2a:00:ce:63:68:de:96:2d:21:31:30:1a:80: 4e:c2:ce:72:82:fc:b5:53:12:09:f1:ab:81:5b:8e:da:88:a5: ac:91:61:8f:1b:b8:57:30:1c:95:92:ea:d9:f8:0c:a2:e5:f8: ef:db:a6:13:3b:7c:ec:a1:c6:af:5d:df:e6:f7:89:f3:2f:4c: b5:65:ad:06:3f:60:f5:73:de:43:97:bf:10:f4:20:e2:8b:c4: b0:62:22:5a:58:e3:dd:93:e9:5a:bb:b8:05:7a:5a:e6:e7:b6: 74:fa:6a:59:d0:ca:ff:9e:d6:14:15:20:aa:ca:13:66:b4:53: cb:95:b2:8f:a5:ad:19:ed:9f:08:da:d6:71:20:15:3b:12:40: 90:2e:b5:c6:06:32:74:18:9e:70:ce:ad:c0:f4:93:69:1f:97: e3:00:8f:a7:28:4c:ce:ca:b6:8c:db:0f:21:7d:02:fe:24:25: a6:41:e0:95:2b:91:49:b4:3e:0f:b5:16:a2:3b:00:52:f8:94: a8:c0:59:7d:0d:7f:ec:5d:98:98:fe:86:c4:8b:97:5b:03:c0: 1f:6e:fa:33:90:82:54:44:c2:92:ec:34:78:97:7f:c1:a2:78: 98:4f:dc:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIXIFbthK0UcJzoVC646lclHXWN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUwMzE4QzFDRjVEMDM3NDkyRUZCQzE3MjMwMEUyRTA2 MkFGRUZDQjAeFw0yNDEwMjIwNTU1MDFaFw0yNTEwMjEwNjAwMDFaMDMxMTAvBgNV BAMTKEMxNjBFNjY2RjEyNDFEQkUxMkYyMTYwOTFFNDU2OUNGMENGODBFRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC00Qs280iJnXn/+39ZmHWQ3qWF SwBvQeBl5IEpEZCEGnz+ZHS1BiiOCRHCahmGXcd3Gd8ztER+FqB5ccPM8mW5kobQ 2b2gZjwSuojAwGU8qvCsPQ4i/bHQxzZLPNPCH1WGWbrJ5TzUaQ/OELWxVZb1VNg8 9qPLEy7vDe5HqPaDTgxfX2zdOWNxfO20pd7eUE8HS+awTcjnAp0hIiqTtOLm2NAu wrwpANEN3tnYxs2zDb90ltZftKiPrp5oD/V/lD0IzQ1gv7iLwzEOwoq9gcmF0VBy WBcZ6biuqbXtHWqxx/owh8vDzhCqYspmilZuZEPTz0sLSV2xfw8V7XhOrtFpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwWDmZvEkHb4S8hYJHkVpzwz4DvEwHwYDVR0j BBgwFoAU7gMYwc9dA3SS77wXIwDi4GKv78swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTFhMzk4MC1hMzJlLTRkZjktOGU1Mi0wYmUwZDM0M2NjMGIvMC9FRTAzMThDMUNG NUQwMzc0OTJFRkJDMTcyMzAwRTJFMDYyQUZFRkNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUwMzE4QzFDRjVEMDM3NDkyRUZCQzE3MjMwMEUyRTA2MkFG RUZDQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMWEzOTgwLWEzMmUtNGRmOS04 ZTUyLTBiZTBkMzQzY2MwYi8wLzM0MzMyZTMyMzIzODJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+SvMA0GCSqG SIb3DQEBCwUAA4IBAQBFOi38yPCXBB7MU4FZtXHJ1RJY9RFenCoAzmNo3pYtITEw GoBOws5ygvy1UxIJ8auBW47aiKWskWGPG7hXMByVkurZ+Ayi5fjv26YTO3zsocav Xd/m94nzL0y1Za0GP2D1c95Dl78Q9CDii8SwYiJaWOPdk+lau7gFelrm57Z0+mpZ 0Mr/ntYUFSCqyhNmtFPLlbKPpa0Z7Z8I2tZxIBU7EkCQLrXGBjJ0GJ5wzq3A9JNp H5fjAI+nKEzOyraM2w8hfQL+JCWmQeCVK5FJtD4PtRaiOwBS+JSowFl9DX/sXZiY /obEi5dbA8AfbvozkIJURMKS7DR4l3/BoniYT9wF -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org