$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3231302e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: t2CvUYYp9tqdewSFC8JuHPT/TLbsdi5zKGkrHkTK2GQ= Subject key identifier: 63:57:33:CF:69:4E:8B:DE:95:99:56:6D:68:10:D3:93:5C:DF:08:34 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 74A9AEDEC50F5E101FBA1445AA01F0C8859F8C7F Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa Signing time: Wed 27 Mar 2024 00:28:40 +0000 ROA not before: Wed 27 Mar 2024 00:23:40 +0000 ROA not after: Wed 26 Mar 2025 00:28:40 +0000 asID: 45298 IP address blocks: 43.249.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a9:ae:de:c5:0f:5e:10:1f:ba:14:45:aa:01:f0:c8:85:9f:8c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Mar 27 00:23:40 2024 GMT Not After : Mar 26 00:28:40 2025 GMT Subject: CN=635733CF694E8BDE9599566D6810D3935CDF0834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fe:d3:93:3d:94:58:65:66:78:cb:df:3d:67: 72:98:00:3a:59:ae:f9:ea:bd:80:fe:f9:49:05:35: 6b:d7:31:76:de:77:83:94:a2:84:27:9c:56:e1:c8: a6:0d:86:82:2c:00:58:dd:d0:74:9b:72:f2:75:24: dc:ca:b8:5f:0b:a2:9a:65:bd:cd:e7:5a:14:db:f1: ef:4e:b6:d3:5f:9b:79:32:de:1a:71:5a:57:2b:0b: 1a:4c:87:98:4f:74:fa:4a:1e:4b:28:1f:a4:3c:c3: d6:50:8b:68:3d:34:42:51:2e:e7:17:18:c6:08:af: 94:99:ef:e0:08:13:f7:ad:b9:8c:96:db:78:a4:fc: a1:6a:8d:cb:bf:f9:aa:ee:53:ed:92:db:ef:3e:2c: cd:60:59:22:90:e5:68:d3:81:fe:9e:be:f2:b9:57: 58:5b:f6:40:f3:2d:cb:cb:82:66:85:17:4f:d0:92: 4d:8f:c3:f9:6d:d3:06:4d:20:8f:aa:89:17:19:11: 08:37:65:96:66:67:1e:6a:94:d5:79:95:3a:9a:2e: 4f:cf:ae:f0:36:9a:3a:3c:dd:8a:01:14:c5:e5:31: ac:88:c8:ae:65:6f:58:d8:c0:cd:a9:e6:cf:30:c0: 6d:9c:5c:4d:0a:4c:d2:1c:d1:b9:d9:e7:ef:8e:4a: 59:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:57:33:CF:69:4E:8B:DE:95:99:56:6D:68:10:D3:93:5C:DF:08:34 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.210.0/24 Signature Algorithm: sha256WithRSAEncryption 42:4e:2c:a4:c1:13:21:2e:37:27:8a:65:c3:b9:47:59:29:e8: e8:b0:c9:c0:af:37:99:c9:39:80:82:ac:22:e2:3f:d6:34:ee: 48:64:44:47:d9:45:23:c4:56:cb:44:71:f2:2e:8e:1e:88:c3: a3:4d:c1:70:d6:52:ff:e9:68:d5:f2:6d:8a:40:0c:29:fa:64: 6b:a2:0e:9d:6f:38:0a:50:b3:95:ca:c5:98:70:96:cc:78:59: 0f:1c:79:fb:73:1f:e4:ca:eb:ab:4b:05:4b:c6:e0:1e:fb:4b: c6:d8:6e:9a:22:32:37:89:91:66:80:18:e9:69:10:06:09:46: a9:25:16:b7:99:cd:e1:c8:b3:2e:ae:ca:8f:f3:2e:52:cf:53: 34:33:90:77:4f:36:52:9f:f9:4d:3e:a4:c9:b5:cb:2c:27:4e: 7e:34:8e:c0:75:1f:ea:b1:87:72:73:6c:ec:80:97:ae:84:f5: b3:11:52:04:f8:7b:78:fa:a4:b4:7c:7b:3e:8b:b1:3b:d2:4b: 13:2d:45:54:7c:cf:9a:90:9b:5e:11:bb:a5:37:c5:24:df:4f: 00:be:83:37:a8:b7:9e:00:f3:65:13:9a:f8:d8:61:fe:13:5d: 4c:f2:b3:a6:98:b6:f9:6a:3c:16:0b:67:50:2c:b0:7c:17:34: e5:bf:1c:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdKmu3sUPXhAfuhRFqgHwyIWfjH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNDAzMjcwMDIzNDBaFw0yNTAzMjYwMDI4NDBaMDMxMTAvBgNV BAMTKDYzNTczM0NGNjk0RThCREU5NTk5NTY2RDY4MTBEMzkzNUNERjA4MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/tOTPZRYZWZ4y989Z3KYADpZ rvnqvYD++UkFNWvXMXbed4OUooQnnFbhyKYNhoIsAFjd0HSbcvJ1JNzKuF8Loppl vc3nWhTb8e9OttNfm3ky3hpxWlcrCxpMh5hPdPpKHksoH6Q8w9ZQi2g9NEJRLucX GMYIr5SZ7+AIE/etuYyW23ik/KFqjcu/+aruU+2S2+8+LM1gWSKQ5WjTgf6evvK5 V1hb9kDzLcvLgmaFF0/Qkk2Pw/lt0wZNII+qiRcZEQg3ZZZmZx5qlNV5lTqaLk/P rvA2mjo83YoBFMXlMayIyK5lb1jYwM2p5s8wwG2cXE0KTNIc0bnZ5++OSlnZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY1czz2lOi96VmVZtaBDTk1zfCDQwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50jANBgkqhkiG 9w0BAQsFAAOCAQEAQk4spMETIS43J4plw7lHWSno6LDJwK83mck5gIKsIuI/1jTu SGRER9lFI8RWy0Rx8i6OHojDo03BcNZS/+lo1fJtikAMKfpka6IOnW84ClCzlcrF mHCWzHhZDxx5+3Mf5Mrrq0sFS8bgHvtLxthumiIyN4mRZoAY6WkQBglGqSUWt5nN 4cizLq7Kj/MuUs9TNDOQd082Up/5TT6kybXLLCdOfjSOwHUf6rGHcnNs7ICXroT1 sxFSBPh7ePqktHx7PouxO9JLEy1FVHzPmpCbXhG7pTfFJN9PAL6DN6i3ngDzZROa +Nhh/hNdTPKzppi2+Wo8FgtnUCywfBc05b8c4Q== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org