$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa File: 34332e3235322e3138342e302f32322d3232203d3e203538383136.roa (raw, json) Hash identifier: kMxC7iGTQs+V+PO1o0OJ15xAywnZ+OPHezlrbRDuMFA= Subject key identifier: 93:31:7F:8A:52:B3:82:31:D6:48:EA:9F:80:85:A8:B7:B2:26:FF:85 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 3FB2E76452383D5F1FE31857B5F9F2C486E4B697 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa Signing time: Wed 31 Jan 2024 10:13:20 +0000 ROA not before: Wed 31 Jan 2024 10:08:20 +0000 ROA not after: Wed 29 Jan 2025 10:13:20 +0000 asID: 58816 IP address blocks: 43.252.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b2:e7:64:52:38:3d:5f:1f:e3:18:57:b5:f9:f2:c4:86:e4:b6:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Jan 31 10:08:20 2024 GMT Not After : Jan 29 10:13:20 2025 GMT Subject: CN=93317F8A52B38231D648EA9F8085A8B7B226FF85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7f:02:d2:8a:b0:7d:04:77:c8:fe:dd:6d:72: a9:df:95:9b:13:bf:35:8d:c2:93:ae:9f:39:22:c2: ba:3c:0b:16:30:78:08:bb:50:2e:78:ca:f4:31:40: 7f:3d:64:bd:97:3c:7d:d1:87:70:f0:b9:ed:31:aa: 9d:0a:2e:c9:27:1d:0b:aa:8f:14:d7:fe:19:2c:04: 14:63:60:5d:fe:cb:e4:29:a9:0e:75:37:ef:1e:e3: e0:30:83:ec:25:69:9b:55:0e:63:f0:ce:a6:31:3c: 99:64:5b:ec:ae:c6:1d:71:de:ee:0f:a8:6a:86:dd: 6b:bf:fa:72:70:29:af:ba:d4:ec:17:d8:03:a0:9b: 17:16:c7:c3:4c:ff:54:d2:45:32:fa:ca:cc:7e:73: f4:6c:b2:9d:45:b5:fd:3f:7b:b7:26:fd:69:44:f6: e4:46:dd:b6:fd:9c:c3:5c:8f:ed:01:50:3f:a9:22: 52:93:aa:f9:ba:45:3c:5e:5c:1f:1e:4b:8c:fa:59: 24:fc:d1:93:c9:4c:57:20:ca:e1:02:85:1d:f1:85: ef:f6:aa:2e:70:1b:cf:f9:d5:b7:bb:1f:a8:f3:09: 1c:1c:d7:f3:31:be:09:f9:2d:2f:a1:15:cd:c8:02: 6f:4c:b1:06:c0:9b:81:43:b3:64:eb:60:60:bd:21: 99:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:31:7F:8A:52:B3:82:31:D6:48:EA:9F:80:85:A8:B7:B2:26:FF:85 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.184.0/22 Signature Algorithm: sha256WithRSAEncryption 17:72:ba:7d:c3:01:f9:82:cf:e5:4a:32:29:1e:63:e3:2d:b8: aa:5f:4f:1b:db:88:77:b1:1a:07:90:b2:82:15:b7:03:45:e4: af:f0:cb:35:d2:78:d2:dc:12:7d:d3:d0:be:c5:70:34:66:33: 1a:e2:d2:77:e0:84:f7:df:61:48:85:b5:de:77:24:0c:e9:b0: 2b:0d:cf:27:8e:4e:01:7e:c9:89:2e:36:e9:08:be:ec:fc:67: 04:2b:8d:a7:bb:35:5a:ea:d4:c6:21:ed:11:69:7d:91:e8:95: ec:a5:e4:34:5b:a3:d9:f7:90:4d:2b:b6:d3:c5:26:93:25:71: 32:6b:b5:60:54:d8:09:59:ba:b4:ec:cd:a8:17:52:43:ec:7a: d4:4e:f6:2b:25:1f:75:66:ac:fa:c3:c4:6d:3d:7d:4a:1b:e2: 19:90:b5:fc:08:f9:a0:d8:1b:2f:a7:35:6b:2e:d9:49:83:00: cf:31:7c:96:08:4b:59:40:45:7e:c2:3c:9f:57:3d:a0:af:36: dd:e4:2a:c5:91:97:d0:84:ef:2f:03:c7:43:e7:cf:da:e5:53: aa:0b:86:3b:b9:87:fa:bf:1d:db:52:06:c4:fa:8a:0f:76:9f: 04:d8:fa:c0:22:e2:de:41:cd:d5:90:ce:b5:e6:61:39:81:9b: d2:76:1b:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP7LnZFI4PV8f4xhXtfnyxIbktpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDAxMzExMDA4MjBaFw0yNTAxMjkxMDEzMjBaMDMxMTAvBgNV BAMTKDkzMzE3RjhBNTJCMzgyMzFENjQ4RUE5RjgwODVBOEI3QjIyNkZGODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRfwLSirB9BHfI/t1tcqnflZsT vzWNwpOunzkiwro8CxYweAi7UC54yvQxQH89ZL2XPH3Rh3Dwue0xqp0KLsknHQuq jxTX/hksBBRjYF3+y+QpqQ51N+8e4+Awg+wlaZtVDmPwzqYxPJlkW+yuxh1x3u4P qGqG3Wu/+nJwKa+61OwX2AOgmxcWx8NM/1TSRTL6ysx+c/Rssp1Ftf0/e7cm/WlE 9uRG3bb9nMNcj+0BUD+pIlKTqvm6RTxeXB8eS4z6WST80ZPJTFcgyuEChR3xhe/2 qi5wG8/51be7H6jzCRwc1/Mxvgn5LS+hFc3IAm9MsQbAm4FDs2TrYGC9IZnlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkzF/ilKzgjHWSOqfgIWot7Im/4UwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv8uDANBgkqhkiG 9w0BAQsFAAOCAQEAF3K6fcMB+YLP5UoyKR5j4y24ql9PG9uId7EaB5CyghW3A0Xk r/DLNdJ40twSfdPQvsVwNGYzGuLSd+CE999hSIW13nckDOmwKw3PJ45OAX7JiS42 6Qi+7PxnBCuNp7s1WurUxiHtEWl9keiV7KXkNFuj2feQTSu208UmkyVxMmu1YFTY CVm6tOzNqBdSQ+x61E72KyUfdWas+sPEbT19ShviGZC1/Aj5oNgbL6c1ay7ZSYMA zzF8lghLWUBFfsI8n1c9oK823eQqxZGX0ITvLwPHQ+fP2uVTqguGO7mH+r8d21IG xPqKD3afBNj6wCLi3kHN1ZDOteZhOYGb0nYb9Q== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org