$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133362e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: 3T8MbbOtG2+ZgU9C1xgwAYx2HlDNUDW4JXH7L0pvZ80= Subject key identifier: C9:E1:B3:84:31:1B:5A:0F:EC:B3:36:E5:BD:07:C7:1E:5D:60:B5:81 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 04049E1F184E34F60DEB23BCF08372A2B1D19D06 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa Signing time: Fri 20 Sep 2024 11:01:03 +0000 ROA not before: Fri 20 Sep 2024 10:56:03 +0000 ROA not after: Fri 19 Sep 2025 11:01:03 +0000 asID: 58404 IP address blocks: 43.252.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:04:9e:1f:18:4e:34:f6:0d:eb:23:bc:f0:83:72:a2:b1:d1:9d:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Sep 20 10:56:03 2024 GMT Not After : Sep 19 11:01:03 2025 GMT Subject: CN=C9E1B384311B5A0FECB336E5BD07C71E5D60B581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fe:87:e9:12:07:8f:f0:d5:b1:4a:18:8b:a1: bd:ac:80:eb:aa:61:e5:f3:43:30:e9:c8:f2:79:88: bb:df:41:e3:b7:4c:d8:7a:45:4c:06:e2:84:74:f0: 25:46:89:4d:82:91:6e:88:d2:c3:2e:2b:32:42:67: 01:fc:6f:f4:93:58:1a:de:93:c3:dd:03:2c:a0:b6: 4d:fd:4a:a5:15:cd:3d:4c:da:5b:0e:b2:3a:66:61: 14:cc:3e:89:bf:a4:c2:e6:15:ac:20:29:fd:dd:37: 0d:71:19:6b:1f:59:02:7c:9d:45:b4:b0:44:3c:6e: fd:d4:74:90:96:b4:42:24:5d:f5:6f:ad:50:3a:f8: ae:57:1f:ef:ce:2a:6f:fb:98:2d:4c:66:07:e1:87: e5:b8:67:82:13:ae:61:1a:8e:6e:4c:b5:af:5f:cc: 9b:15:27:56:12:f6:89:b9:8c:93:c8:cb:95:be:8f: 61:03:1f:a1:4d:7d:94:cd:80:7f:ba:4f:a8:64:17: c2:9f:9b:fa:7f:2d:8a:58:66:9c:16:58:01:28:ad: 06:78:43:90:1b:2a:61:9e:f2:99:01:00:9d:c4:46: a3:e7:38:4b:34:5f:75:c7:89:a9:40:59:41:e0:ce: f1:7e:e9:3f:18:5a:ff:35:e5:34:f0:a7:df:8f:ba: 7c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E1:B3:84:31:1B:5A:0F:EC:B3:36:E5:BD:07:C7:1E:5D:60:B5:81 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.136.0/24 Signature Algorithm: sha256WithRSAEncryption 02:ee:05:bd:c9:9e:cd:75:db:f6:39:ca:06:06:62:94:18:da: fb:1e:76:72:d9:43:94:dd:34:f0:9d:79:5c:80:eb:d6:3f:fb: 83:f8:ba:2e:c6:59:2b:65:31:cd:b9:38:f5:f5:8e:18:86:a3: 8c:0c:97:8a:64:09:1e:dc:72:bf:61:02:4c:cb:a0:a1:46:d5: 07:dc:fa:1e:e3:2d:1e:92:d6:9a:02:a5:83:94:e7:3b:50:3f: c4:5f:99:dc:fb:90:3f:bc:c3:a3:47:c3:49:71:4a:ab:1c:f9: c1:95:f9:7a:f0:05:2d:2b:33:67:6f:6d:27:5f:76:8c:02:6c: 08:8f:e6:ef:39:5f:8c:99:e2:65:c9:af:71:e2:eb:d4:b0:7c: 28:70:fa:6e:e4:01:12:6f:9c:ac:02:67:d0:1d:1b:f0:9b:08: 9b:2a:7f:c3:5c:a7:bc:02:4c:c9:c8:b1:b9:08:6b:a5:15:47: 42:e7:2a:d4:b3:cd:d5:0c:75:d5:2e:2b:a6:9e:bc:c8:48:a8: 53:94:2c:94:32:00:32:90:1b:42:1f:ff:f1:a4:7b:5a:cf:56: 61:d6:8d:07:f3:88:98:5d:fb:86:a8:cf:ac:36:16:72:64:48: 58:6a:35:9e:8c:1d:d2:e8:ec:f5:dd:8a:57:a4:11:85:2c:ae: 81:63:47:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBASeHxhONPYN6yO88INyorHRnQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNDA5MjAxMDU2MDNaFw0yNTA5MTkxMTAxMDNaMDMxMTAvBgNV BAMTKEM5RTFCMzg0MzExQjVBMEZFQ0IzMzZFNUJEMDdDNzFFNUQ2MEI1ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3/ofpEgeP8NWxShiLob2sgOuq YeXzQzDpyPJ5iLvfQeO3TNh6RUwG4oR08CVGiU2CkW6I0sMuKzJCZwH8b/STWBre k8PdAyygtk39SqUVzT1M2lsOsjpmYRTMPom/pMLmFawgKf3dNw1xGWsfWQJ8nUW0 sEQ8bv3UdJCWtEIkXfVvrVA6+K5XH+/OKm/7mC1MZgfhh+W4Z4ITrmEajm5Mta9f zJsVJ1YS9om5jJPIy5W+j2EDH6FNfZTNgH+6T6hkF8Kfm/p/LYpYZpwWWAEorQZ4 Q5AbKmGe8pkBAJ3ERqPnOEs0X3XHialAWUHgzvF+6T8YWv815TTwp9+PunyVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyeGzhDEbWg/sszblvQfHHl1gtYEwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8iDANBgkqhkiG 9w0BAQsFAAOCAQEAAu4FvcmezXXb9jnKBgZilBja+x52ctlDlN008J15XIDr1j/7 g/i6LsZZK2Uxzbk49fWOGIajjAyXimQJHtxyv2ECTMugoUbVB9z6HuMtHpLWmgKl g5TnO1A/xF+Z3PuQP7zDo0fDSXFKqxz5wZX5evAFLSszZ29tJ192jAJsCI/m7zlf jJniZcmvceLr1LB8KHD6buQBEm+crAJn0B0b8JsImyp/w1ynvAJMycixuQhrpRVH Qucq1LPN1Qx11S4rpp68yEioU5QslDIAMpAbQh//8aR7Ws9WYdaNB/OImF37hqjP rDYWcmRIWGo1nowd0ujs9d2KV6QRhSyugWNHfA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org