$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3234203d3e203435373235.roa File: 34332e3233302e3135322e302f32322d3234203d3e203435373235.roa (raw, json) Hash identifier: UF1a9PE5Dt/zkVzCyOUURCowIbrLBVYZzXgzt2SLXOs= Subject key identifier: C0:94:87:C1:D1:95:FD:3E:A9:80:BE:B3:DC:A6:1E:B9:8B:12:C0:76 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 097D199C71AEA74D41D9453AD8DD9D29DF143519 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3234203d3e203435373235.roa Signing time: Tue 25 Jun 2024 10:00:00 +0000 ROA not before: Tue 25 Jun 2024 09:55:00 +0000 ROA not after: Tue 24 Jun 2025 10:00:00 +0000 asID: 45725 IP address blocks: 43.230.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7d:19:9c:71:ae:a7:4d:41:d9:45:3a:d8:dd:9d:29:df:14:35:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Jun 25 09:55:00 2024 GMT Not After : Jun 24 10:00:00 2025 GMT Subject: CN=C09487C1D195FD3EA980BEB3DCA61EB98B12C076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:30:c9:3d:d3:cc:35:62:ce:45:a7:d8:d6: 09:01:a1:76:2a:97:74:2d:ac:6b:f6:40:e5:71:40: 2f:aa:fa:b2:35:ab:bd:f0:5c:9b:1e:4b:59:71:ef: 28:6f:dc:59:4c:2f:ca:94:a4:75:48:33:6f:1e:d4: 13:44:31:34:d4:8a:75:99:81:09:20:78:76:e5:88: b5:4d:ed:64:52:b9:f4:f4:36:d0:03:86:24:8a:98: e0:00:21:d5:00:05:6f:af:fb:6c:fa:5e:ad:c0:90: 50:78:c3:c3:7e:8a:c8:28:17:fa:5d:4f:fc:33:b4: 75:c7:1b:4d:49:6d:f9:53:08:09:33:a0:74:25:eb: d4:8f:b8:02:90:32:6d:cb:a8:85:f5:ed:14:ab:41: c1:c9:82:c9:6e:fe:1f:22:31:63:6f:52:63:53:5b: 35:6c:bb:e1:ed:3c:dd:2d:2e:d2:cb:49:b8:f3:fd: 17:3d:c2:c5:fd:b1:78:a4:4c:c4:c4:f6:ef:a5:36: b9:6a:03:54:62:3b:47:cd:4e:65:12:96:09:41:c6: ad:02:b7:b2:4c:9b:f8:03:e8:05:7a:8a:ba:79:7c: 40:bc:3b:7c:5e:c4:0a:a6:56:9b:0c:cc:7a:a5:51: 50:6e:58:17:58:cd:32:ca:61:e9:4d:5f:20:aa:fb: c6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:94:87:C1:D1:95:FD:3E:A9:80:BE:B3:DC:A6:1E:B9:8B:12:C0:76 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:10:c4:30:db:3d:bb:78:89:f9:7c:36:41:1b:b1:39:c1:21: 6f:19:50:84:49:28:cd:2a:cc:2f:0a:4a:c2:9f:fd:8a:1d:53: 9e:76:9a:68:ae:fb:52:03:89:a7:0f:90:a9:ca:ea:10:1a:d1: be:77:97:51:6a:cb:0b:ef:a9:04:04:85:6b:13:fb:9a:0e:a5: 0d:51:40:11:0c:30:2f:d3:4b:0a:1b:a4:5f:ff:85:a9:b9:f3: 90:fe:8b:75:43:57:33:bd:1c:0d:f3:86:78:50:02:f3:0a:4c: 12:9d:7a:05:27:1e:03:0c:62:16:2e:50:43:b2:5c:84:74:2d: 7b:37:92:e7:44:0d:05:eb:b5:e0:8d:5f:2f:e6:9d:4a:8d:e2: 95:44:a3:20:75:cf:3f:2e:28:e5:30:5b:06:68:58:1e:57:93: bd:44:73:5f:52:c4:30:af:95:c6:11:de:d7:27:bf:45:03:0e: 86:2d:fd:f6:88:0f:8e:6a:7d:3d:7f:00:12:73:62:da:a3:0f: 07:a0:41:c6:f4:09:f8:61:fa:56:99:ec:9d:92:3d:8d:7f:53: d4:8f:3a:32:8c:13:d9:2a:c7:3b:02:37:6a:f3:ac:9c:95:22: f7:08:b4:42:88:ca:af:0d:03:59:d4:c2:7a:15:59:58:4b:0f: a5:8a:e3:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCX0ZnHGup01B2UU62N2dKd8UNRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNDA2MjUwOTU1MDBaFw0yNTA2MjQxMDAwMDBaMDMxMTAvBgNV BAMTKEMwOTQ4N0MxRDE5NUZEM0VBOTgwQkVCM0RDQTYxRUI5OEIxMkMwNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+pDDJPdPMNWLORafY1gkBoXYq l3QtrGv2QOVxQC+q+rI1q73wXJseS1lx7yhv3FlML8qUpHVIM28e1BNEMTTUinWZ gQkgeHbliLVN7WRSufT0NtADhiSKmOAAIdUABW+v+2z6Xq3AkFB4w8N+isgoF/pd T/wztHXHG01JbflTCAkzoHQl69SPuAKQMm3LqIX17RSrQcHJgslu/h8iMWNvUmNT WzVsu+HtPN0tLtLLSbjz/Rc9wsX9sXikTMTE9u+lNrlqA1RiO0fNTmUSlglBxq0C t7JMm/gD6AV6irp5fEC8O3xexAqmVpsMzHqlUVBuWBdYzTLKYelNXyCq+8Y/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwJSHwdGV/T6pgL6z3KYeuYsSwHYwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivmmDANBgkqhkiG 9w0BAQsFAAOCAQEAnhDEMNs9u3iJ+Xw2QRuxOcEhbxlQhEkozSrMLwpKwp/9ih1T nnaaaK77UgOJpw+QqcrqEBrRvneXUWrLC++pBASFaxP7mg6lDVFAEQwwL9NLChuk X/+FqbnzkP6LdUNXM70cDfOGeFAC8wpMEp16BSceAwxiFi5QQ7JchHQtezeS50QN Beu14I1fL+adSo3ilUSjIHXPPy4o5TBbBmhYHleTvURzX1LEMK+VxhHe1ye/RQMO hi399ogPjmp9PX8AEnNi2qMPB6BBxvQJ+GH6VpnsnZI9jX9T1I86MowT2SrHOwI3 avOsnJUi9wi0QojKrw0DWdTCehVZWEsPpYrj+g== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org