$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133372e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: LLWVbF1wODphiXMeuEBRIN5JZzs0/nwZFnvCxIPF50I= Subject key identifier: A2:2F:16:20:C1:95:1F:E8:3F:71:E7:88:53:50:A0:AA:4B:89:33:65 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 1FC30121007D1B8ED068F8B0C860B3A03745E03C Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa Signing time: Wed 20 Dec 2023 11:00:01 +0000 ROA not before: Wed 20 Dec 2023 10:55:01 +0000 ROA not after: Wed 18 Dec 2024 11:00:01 +0000 asID: 58404 IP address blocks: 43.252.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c3:01:21:00:7d:1b:8e:d0:68:f8:b0:c8:60:b3:a0:37:45:e0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Dec 20 10:55:01 2023 GMT Not After : Dec 18 11:00:01 2024 GMT Subject: CN=A22F1620C1951FE83F71E7885350A0AA4B893365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3e:f6:69:1c:f1:dc:34:cd:66:8f:c6:11:4c: 99:9f:9d:45:fa:73:c6:6f:13:14:1f:81:3b:55:c4: 8d:66:60:ae:f3:d6:cb:a1:bd:06:f8:37:82:19:eb: 71:31:ed:30:db:02:a2:23:f9:2b:e3:d6:87:65:96: 40:b0:de:47:59:0a:fd:b6:4c:74:40:eb:0c:fe:3b: ea:bf:8b:32:f2:8a:d4:d1:60:de:ba:00:5e:82:b8: 80:cb:15:f8:1f:d7:2e:12:62:98:1b:dc:c7:53:e8: 38:ec:55:6c:5f:11:dd:b3:bf:15:2a:74:bf:77:ef: a3:d6:e3:48:50:4b:df:a7:0c:52:18:a7:5e:91:5e: a3:0f:de:86:7d:50:4a:d6:05:2e:5d:2a:30:d0:0a: 57:f2:54:76:68:16:c6:2e:52:ae:10:e6:58:b2:32: 35:35:b3:05:35:2d:6b:47:2a:f8:74:98:71:53:14: e6:e8:6a:3c:ac:57:38:e3:c3:62:3c:49:4c:c0:d8: 5e:1e:7f:31:8c:31:d1:74:e5:e6:c8:43:4f:60:b0: 5a:16:8d:c1:80:94:03:35:54:f7:da:89:ac:44:25: 5b:04:fd:67:23:d2:50:85:22:cd:8e:c7:6b:4a:cd: 35:a7:bc:15:57:d8:fe:60:22:55:4a:a0:a5:b7:7f: ca:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2F:16:20:C1:95:1F:E8:3F:71:E7:88:53:50:A0:AA:4B:89:33:65 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.137.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:fb:8e:dc:81:ca:3c:48:03:48:bd:50:ce:74:3f:7b:4d:fb: 91:91:37:28:32:cb:66:29:67:30:94:50:51:0e:ad:80:7e:44: 1a:fb:a2:83:3b:5b:44:38:63:26:00:61:bc:64:f4:ea:3a:5c: 02:39:ad:76:a0:12:fa:c8:69:12:0f:e3:80:5d:90:1c:a9:ec: 05:96:44:b3:d3:b4:9c:67:f4:70:e3:df:e6:db:6e:42:88:0f: 64:e1:50:bf:70:2f:51:54:14:7f:42:54:d7:0a:cb:24:71:72: 5c:4b:65:13:36:a6:34:58:28:f2:6a:fa:d3:86:a9:28:23:74: 1c:a4:1b:a9:d4:a7:0c:a5:df:96:25:8a:f0:8f:40:80:da:1c: 2c:cc:48:34:ec:4c:c3:18:1d:ec:16:27:f8:a2:1c:eb:a5:b7: 9f:ac:e6:ef:c6:1d:2a:9c:b2:cc:c9:11:dd:f0:c5:d9:6d:1f: bc:bd:c2:e0:79:e7:06:b3:d2:de:03:14:f1:b9:e6:75:6b:d9: 5e:b3:b4:2f:5f:cc:10:f8:24:40:db:94:f6:ab:07:9a:25:fa: c3:85:f3:ac:09:84:41:3a:56:5c:29:70:44:9a:59:9e:9e:6d: 66:cf:c3:90:ae:27:92:20:ad:98:1b:2d:6a:30:57:90:dd:ef: 6c:7f:70:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH8MBIQB9G47QaPiwyGCzoDdF4DwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yMzEyMjAxMDU1MDFaFw0yNDEyMTgxMTAwMDFaMDMxMTAvBgNV BAMTKEEyMkYxNjIwQzE5NTFGRTgzRjcxRTc4ODUzNTBBMEFBNEI4OTMzNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQPvZpHPHcNM1mj8YRTJmfnUX6 c8ZvExQfgTtVxI1mYK7z1suhvQb4N4IZ63Ex7TDbAqIj+Svj1odllkCw3kdZCv22 THRA6wz+O+q/izLyitTRYN66AF6CuIDLFfgf1y4SYpgb3MdT6DjsVWxfEd2zvxUq dL9376PW40hQS9+nDFIYp16RXqMP3oZ9UErWBS5dKjDQClfyVHZoFsYuUq4Q5liy MjU1swU1LWtHKvh0mHFTFOboajysVzjjw2I8SUzA2F4efzGMMdF05ebIQ09gsFoW jcGAlAM1VPfaiaxEJVsE/Wcj0lCFIs2Ox2tKzTWnvBVX2P5gIlVKoKW3f8r9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoi8WIMGVH+g/ceeIU1CgqkuJM2UwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8iTANBgkqhkiG 9w0BAQsFAAOCAQEAf/uO3IHKPEgDSL1QznQ/e037kZE3KDLLZilnMJRQUQ6tgH5E GvuigztbRDhjJgBhvGT06jpcAjmtdqAS+shpEg/jgF2QHKnsBZZEs9O0nGf0cOPf 5ttuQogPZOFQv3AvUVQUf0JU1wrLJHFyXEtlEzamNFgo8mr604apKCN0HKQbqdSn DKXfliWK8I9AgNocLMxINOxMwxgd7BYn+KIc66W3n6zm78YdKpyyzMkR3fDF2W0f vL3C4HnnBrPS3gMU8bnmdWvZXrO0L1/MEPgkQNuU9qsHmiX6w4XzrAmEQTpWXClw RJpZnp5tZs/DkK4nkiCtmBstajBXkN3vbH9w9w== -----END CERTIFICATE-----Generated at Tue Apr 30 21:57:34 2024 by rpki-client on console-ams.rpki-client.org