$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133372e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: N7dD/FSi3TZ7eLd1FkTH81UWI+fs0udUhwSc1vTMSUU= Subject key identifier: 82:3B:B8:AE:9C:30:B5:87:88:5E:17:66:D2:E3:E7:B6:CF:2D:19:78 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 5ABD0AE0506866BA870D978E3EF366A1F29938FF Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa Signing time: Wed 20 Nov 2024 12:00:01 +0000 ROA not before: Wed 20 Nov 2024 11:55:01 +0000 ROA not after: Wed 19 Nov 2025 12:00:01 +0000 asID: 58404 IP address blocks: 43.252.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:bd:0a:e0:50:68:66:ba:87:0d:97:8e:3e:f3:66:a1:f2:99:38:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Nov 20 11:55:01 2024 GMT Not After : Nov 19 12:00:01 2025 GMT Subject: CN=823BB8AE9C30B587885E1766D2E3E7B6CF2D1978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8e:b0:be:b0:8b:d1:f3:5d:75:3a:69:53:9e: b8:3b:e0:44:a3:9c:ad:69:37:70:d3:3e:d4:8b:4c: c9:14:58:87:40:4d:ca:2f:56:85:f8:8b:b4:90:e2: ff:3d:1d:dc:51:44:4d:b7:2d:23:3d:1a:41:3d:90: e8:44:0e:dc:92:b4:bb:b2:a9:2f:71:90:cf:6f:21: d8:6d:86:25:f0:12:02:1a:df:aa:b2:b2:db:4d:2a: cc:70:68:9a:fa:08:7d:f1:bb:f2:ae:70:d0:60:95: c8:e5:99:c9:7a:8b:e5:e9:c6:14:61:b6:8c:c1:65: df:12:99:f9:bc:89:df:3e:67:d1:40:fc:de:30:b7: 41:bb:75:50:f1:3c:5b:14:1b:a3:4d:a9:96:59:d8: bc:a3:54:6c:ca:7c:e9:1d:7b:c3:98:37:8e:60:0c: db:ca:05:65:6b:3b:a6:d2:51:d6:ed:40:34:e2:5a: a4:07:8e:e9:fc:54:01:b1:18:12:f8:58:54:1b:00: 03:cf:e9:a0:61:cf:23:8e:75:ac:0a:c2:e3:20:3b: 68:ca:68:6d:09:b4:a4:70:a9:a6:8d:b0:2c:84:66: 26:4a:5a:48:ad:81:92:79:ab:90:d4:2f:ca:49:4b: 67:c7:7c:8c:bd:84:d7:24:69:4c:75:a6:fb:bd:0b: 60:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3B:B8:AE:9C:30:B5:87:88:5E:17:66:D2:E3:E7:B6:CF:2D:19:78 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.137.0/24 Signature Algorithm: sha256WithRSAEncryption 76:82:2a:6e:64:c5:22:bc:95:ee:be:89:f4:e9:bb:e7:f3:4b: fb:9e:2d:2a:87:a7:63:e9:06:43:55:fc:d0:b3:a3:a9:37:0f: ad:f1:9a:10:d0:b5:d6:ad:22:00:7c:9f:8d:ae:41:a7:b0:49: 17:aa:5e:a8:41:ee:9d:4c:4a:7d:36:a9:c3:36:e5:e4:2a:f4: 48:1a:29:04:3a:6c:e7:06:be:4a:2a:40:02:67:57:e8:57:50: 20:b3:ab:cf:a8:0d:bc:72:a6:5e:3d:06:68:ca:ba:85:3a:ed: a3:ba:3c:3c:b6:05:49:83:36:b7:da:d0:6e:f4:ea:52:f3:83: 08:b0:40:7f:ee:25:92:c1:4c:a8:f4:5a:84:10:f7:f9:38:71: 4c:ca:87:1e:05:8a:08:58:e7:9a:21:c4:f3:87:df:51:97:f7: 5d:46:1b:d5:6b:76:a2:8d:a5:07:c7:a3:89:4c:39:e2:53:78: 91:44:c8:ca:ca:0c:48:0e:ca:ff:90:d3:42:46:e2:df:cd:95: af:70:47:8c:8f:e6:b5:6c:a9:32:80:70:3a:8c:01:c3:b7:82: e3:8a:a7:77:63:9d:18:70:72:82:33:f8:91:df:81:f7:ec:db: cd:bb:0a:2e:59:85:ef:60:3d:43:02:00:48:cf:67:08:5c:f7: 4c:6c:ff:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWr0K4FBoZrqHDZeOPvNmofKZOP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNDExMjAxMTU1MDFaFw0yNTExMTkxMjAwMDFaMDMxMTAvBgNV BAMTKDgyM0JCOEFFOUMzMEI1ODc4ODVFMTc2NkQyRTNFN0I2Q0YyRDE5NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1jrC+sIvR8111OmlTnrg74ESj nK1pN3DTPtSLTMkUWIdATcovVoX4i7SQ4v89HdxRRE23LSM9GkE9kOhEDtyStLuy qS9xkM9vIdhthiXwEgIa36qysttNKsxwaJr6CH3xu/KucNBglcjlmcl6i+XpxhRh tozBZd8Smfm8id8+Z9FA/N4wt0G7dVDxPFsUG6NNqZZZ2LyjVGzKfOkde8OYN45g DNvKBWVrO6bSUdbtQDTiWqQHjun8VAGxGBL4WFQbAAPP6aBhzyOOdawKwuMgO2jK aG0JtKRwqaaNsCyEZiZKWkitgZJ5q5DUL8pJS2fHfIy9hNckaUx1pvu9C2CfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgju4rpwwtYeIXhdm0uPnts8tGXgwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8iTANBgkqhkiG 9w0BAQsFAAOCAQEAdoIqbmTFIryV7r6J9Om75/NL+54tKoenY+kGQ1X80LOjqTcP rfGaENC11q0iAHyfja5Bp7BJF6peqEHunUxKfTapwzbl5Cr0SBopBDps5wa+SipA AmdX6FdQILOrz6gNvHKmXj0GaMq6hTrto7o8PLYFSYM2t9rQbvTqUvODCLBAf+4l ksFMqPRahBD3+ThxTMqHHgWKCFjnmiHE84ffUZf3XUYb1Wt2oo2lB8ejiUw54lN4 kUTIysoMSA7K/5DTQkbi382Vr3BHjI/mtWypMoBwOowBw7eC44qnd2OdGHBygjP4 kd+B9+zbzbsKLlmF72A9QwIASM9nCFz3TGz/yA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:19 2024 by rpki-client on console-fra.rpki-client.org