$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133392e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: c6fpSUbyQdt1ZsHYs9eWhZI0zdnm3cArV6v/GBThWWc= Subject key identifier: 70:71:42:19:C6:2C:C0:CA:2B:7A:06:57:F2:B4:61:E8:B4:A9:77:CC Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 7DCD3A4343C359E1ED26F62E24DDAE96966C39ED Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa Signing time: Sun 27 Oct 2024 14:00:01 +0000 ROA not before: Sun 27 Oct 2024 13:55:01 +0000 ROA not after: Sun 26 Oct 2025 14:00:01 +0000 asID: 58404 IP address blocks: 43.252.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:cd:3a:43:43:c3:59:e1:ed:26:f6:2e:24:dd:ae:96:96:6c:39:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Oct 27 13:55:01 2024 GMT Not After : Oct 26 14:00:01 2025 GMT Subject: CN=70714219C62CC0CA2B7A0657F2B461E8B4A977CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f4:ff:0f:f9:d1:bb:f5:09:b1:50:8a:9d:fc: 00:90:c8:22:00:03:38:a1:9a:2d:ba:0a:c1:f0:58: 8b:64:4a:c9:8f:35:12:60:ba:1b:2f:2a:9e:e0:8c: 78:d3:5a:b6:c5:72:ec:b8:3e:3c:ca:18:4a:26:7c: 21:ae:c1:31:c7:f0:80:4e:7d:e6:2a:84:12:1b:63: de:ad:44:f6:b6:6d:b1:94:ca:b5:03:f5:e0:41:11: 3d:c6:10:fe:9b:b1:38:ac:27:19:6c:ad:83:f4:55: 7c:b7:3a:a0:79:ed:4d:20:db:5d:4f:21:36:e1:e3: 64:7c:a2:64:3f:08:08:06:f6:00:9e:bc:7c:ee:2f: ce:cf:37:87:39:98:e6:ae:68:d3:ed:3e:a5:2c:47: ac:30:8f:06:20:f4:21:2a:c5:5d:f9:54:5f:2e:14: c0:0c:f6:0f:ed:85:51:df:a8:9f:4f:67:f0:da:7c: e8:b0:49:2b:73:e7:3f:89:ab:23:54:ec:12:f7:da: 78:48:5f:92:0d:7e:e5:9e:ed:fa:22:57:7e:76:3c: 67:aa:9f:c5:37:d2:17:29:31:b7:b2:ca:aa:1c:60: c0:ff:41:c1:0c:ae:09:b0:36:21:f6:f8:43:43:3c: 7f:1b:ad:59:1f:4f:b8:fd:84:cb:cd:cf:9b:67:0f: 92:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:71:42:19:C6:2C:C0:CA:2B:7A:06:57:F2:B4:61:E8:B4:A9:77:CC X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.139.0/24 Signature Algorithm: sha256WithRSAEncryption 89:77:15:32:58:c2:da:64:ee:a0:89:f9:fa:fe:60:e4:91:d0: 22:91:af:0b:bd:f4:69:6a:c3:80:7d:cb:0d:58:b5:97:64:ae: f5:d3:fc:86:b5:0f:3d:47:6a:4b:fc:09:05:3c:33:9c:70:52: 71:76:03:5a:2c:ac:97:14:be:aa:7b:a4:21:70:4e:97:bc:a6: de:7b:9e:8e:a3:b3:51:2e:88:03:da:8d:f3:8f:d1:f5:b7:8c: f9:1b:9f:76:69:3c:82:c4:d2:5c:1d:ab:5c:93:1e:ce:1c:2d: 70:7b:78:22:c8:aa:15:17:b3:80:43:1a:93:3a:9e:58:d9:0c: f8:26:56:ab:7b:ed:13:82:46:33:0a:13:04:ca:99:d3:23:a3: 27:4e:ab:6e:e6:80:d6:56:c0:c9:da:98:a9:bc:a5:55:a3:49: 06:73:56:60:f3:51:71:45:ed:2c:85:8d:c6:b5:ba:8f:9a:e6: ac:2e:f9:4c:23:99:fe:d6:51:e9:bb:34:71:b4:c9:96:5a:12: bd:99:28:ff:e7:4e:96:c0:d0:2f:39:64:5c:e5:19:cb:a1:09: b8:15:e7:f8:a1:b2:2c:65:fc:90:64:6a:c4:82:77:2d:a4:0b: 7e:67:e1:b6:08:f0:56:4b:99:2d:cc:a9:77:35:a2:72:6f:f1: 7a:8c:3c:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfc06Q0PDWeHtJvYuJN2ulpZsOe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNDEwMjcxMzU1MDFaFw0yNTEwMjYxNDAwMDFaMDMxMTAvBgNV BAMTKDcwNzE0MjE5QzYyQ0MwQ0EyQjdBMDY1N0YyQjQ2MUU4QjRBOTc3Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV9P8P+dG79QmxUIqd/ACQyCIA Azihmi26CsHwWItkSsmPNRJguhsvKp7gjHjTWrbFcuy4PjzKGEomfCGuwTHH8IBO feYqhBIbY96tRPa2bbGUyrUD9eBBET3GEP6bsTisJxlsrYP0VXy3OqB57U0g211P ITbh42R8omQ/CAgG9gCevHzuL87PN4c5mOauaNPtPqUsR6wwjwYg9CEqxV35VF8u FMAM9g/thVHfqJ9PZ/DafOiwSStz5z+JqyNU7BL32nhIX5INfuWe7foiV352PGeq n8U30hcpMbeyyqocYMD/QcEMrgmwNiH2+ENDPH8brVkfT7j9hMvNz5tnD5L7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcHFCGcYswMoregZX8rRh6LSpd8wwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8izANBgkqhkiG 9w0BAQsFAAOCAQEAiXcVMljC2mTuoIn5+v5g5JHQIpGvC730aWrDgH3LDVi1l2Su 9dP8hrUPPUdqS/wJBTwznHBScXYDWiyslxS+qnukIXBOl7ym3nuejqOzUS6IA9qN 84/R9beM+Rufdmk8gsTSXB2rXJMezhwtcHt4IsiqFRezgEMakzqeWNkM+CZWq3vt E4JGMwoTBMqZ0yOjJ06rbuaA1lbAydqYqbylVaNJBnNWYPNRcUXtLIWNxrW6j5rm rC75TCOZ/tZR6bs0cbTJlloSvZko/+dOlsDQLzlkXOUZy6EJuBXn+KGyLGX8kGRq xIJ3LaQLfmfhtgjwVkuZLcypdzWicm/xeow89A== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org