$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3230392e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: Ib8LAGgJY+fyTRNSeI8v/duQBbD95QgYueXH4wkqD/Q= Subject key identifier: 1F:65:58:55:D5:27:15:7E:FC:11:2C:8D:C0:DA:AD:93:63:EE:81:59 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 62E05FBCF8BB34DA4B3E57BB22AC2B089D6300F2 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa Signing time: Wed 27 Mar 2024 00:28:15 +0000 ROA not before: Wed 27 Mar 2024 00:23:15 +0000 ROA not after: Wed 26 Mar 2025 00:28:15 +0000 asID: 45298 IP address blocks: 43.249.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e0:5f:bc:f8:bb:34:da:4b:3e:57:bb:22:ac:2b:08:9d:63:00:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Mar 27 00:23:15 2024 GMT Not After : Mar 26 00:28:15 2025 GMT Subject: CN=1F655855D527157EFC112C8DC0DAAD9363EE8159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3a:67:3b:6f:78:a3:26:b4:20:49:05:0b:a3: e8:10:45:b8:89:8e:d4:f3:8d:97:5a:d3:de:33:39: b5:bc:24:b3:9e:ba:b3:b6:e1:ea:64:08:fb:a2:1b: 54:a9:60:43:71:00:c1:09:9e:a4:14:a5:f4:5c:f2: 4c:38:5f:2e:f0:54:b6:e7:64:3b:4c:a0:aa:b1:2f: 08:83:5e:31:83:d4:b3:7b:5b:cc:d8:e5:ff:6f:98: ca:d2:ad:ef:8c:47:5a:82:1e:92:db:91:74:c0:a5: b4:2d:db:96:76:32:ea:5f:0d:6e:3c:74:02:6a:52: a4:17:89:2a:67:01:bb:04:b7:6b:ef:19:d0:b0:9a: fe:ae:d3:89:40:ff:8c:10:19:41:16:64:42:f8:6e: 68:7b:a7:3b:09:74:48:cd:d1:05:d9:4b:18:4a:0c: 72:3f:cb:2a:f6:a3:21:ef:a6:03:f5:fc:2f:b2:65: 8f:36:32:13:f0:9c:ee:f5:ba:65:16:a1:34:8d:df: f2:16:2d:dd:d0:e5:73:54:89:ae:d3:66:0d:7c:f6: 41:50:14:63:04:e6:c7:3c:02:b9:4d:df:4f:5e:39: a3:ad:0c:a6:fa:3f:26:4c:0a:22:e3:31:65:38:34: 82:59:e3:56:b5:6d:a4:d5:0e:b1:16:3a:89:eb:78: ed:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:65:58:55:D5:27:15:7E:FC:11:2C:8D:C0:DA:AD:93:63:EE:81:59 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.209.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:00:2a:ba:10:06:53:76:36:f2:c5:8f:42:81:b3:72:7c:c3: ad:44:42:2d:ce:6b:7d:f6:c2:08:db:cc:2c:78:ce:f0:7b:d7: 70:23:0b:54:99:df:6e:8b:5e:47:ea:7f:b0:cb:8b:2d:6f:c9: 84:f9:e2:51:e4:13:4f:ef:d7:b3:54:d5:71:ba:94:4a:76:83: 65:51:84:64:70:87:8b:e6:5f:44:2b:0c:b7:4c:54:a0:49:54: c7:79:6f:9c:eb:00:30:dd:4a:78:9f:b5:cd:09:2c:f1:03:79: d9:3e:db:66:a7:f8:8e:db:d3:6c:f4:07:ce:eb:6c:69:ce:c0: 14:b7:fa:d1:f8:ba:76:fc:53:2d:af:54:7e:c6:88:ba:49:55: f9:43:11:36:44:bb:02:eb:cd:d3:f1:f5:b0:27:5b:3d:15:9e: 8c:a9:70:58:28:f7:77:ad:69:99:df:49:25:a2:96:f7:07:11: 03:28:57:51:31:d6:95:7e:ff:b3:0e:c3:da:e8:9c:b8:57:6a: 8b:99:52:f7:06:a6:3f:5a:9f:b9:ab:af:fb:c9:03:c9:aa:be: 92:a7:6e:07:b2:f9:9d:78:d1:ab:da:37:ed:55:e2:ef:6f:b0: 14:49:ff:50:e6:20:b2:29:39:0f:05:96:e4:19:2d:d3:98:a0: fd:5a:bf:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYuBfvPi7NNpLPle7IqwrCJ1jAPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNDAzMjcwMDIzMTVaFw0yNTAzMjYwMDI4MTVaMDMxMTAvBgNV BAMTKDFGNjU1ODU1RDUyNzE1N0VGQzExMkM4REMwREFBRDkzNjNFRTgxNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDROmc7b3ijJrQgSQULo+gQRbiJ jtTzjZda094zObW8JLOeurO24epkCPuiG1SpYENxAMEJnqQUpfRc8kw4Xy7wVLbn ZDtMoKqxLwiDXjGD1LN7W8zY5f9vmMrSre+MR1qCHpLbkXTApbQt25Z2MupfDW48 dAJqUqQXiSpnAbsEt2vvGdCwmv6u04lA/4wQGUEWZEL4bmh7pzsJdEjN0QXZSxhK DHI/yyr2oyHvpgP1/C+yZY82MhPwnO71umUWoTSN3/IWLd3Q5XNUia7TZg189kFQ FGME5sc8ArlN309eOaOtDKb6PyZMCiLjMWU4NIJZ41a1baTVDrEWOonreO1tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH2VYVdUnFX78ESyNwNqtk2PugVkwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50TANBgkqhkiG 9w0BAQsFAAOCAQEASgAquhAGU3Y28sWPQoGzcnzDrURCLc5rffbCCNvMLHjO8HvX cCMLVJnfboteR+p/sMuLLW/JhPniUeQTT+/Xs1TVcbqUSnaDZVGEZHCHi+ZfRCsM t0xUoElUx3lvnOsAMN1KeJ+1zQks8QN52T7bZqf4jtvTbPQHzutsac7AFLf60fi6 dvxTLa9UfsaIuklV+UMRNkS7AuvN0/H1sCdbPRWejKlwWCj3d61pmd9JJaKW9wcR AyhXUTHWlX7/sw7D2uicuFdqi5lS9wamP1qfuauv+8kDyaq+kqduB7L5nXjRq9o3 7VXi72+wFEn/UOYgsik5DwWW5Bkt05ig/Vq/WA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org