$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32342d3234203d3e203538383136.roa File: 34332e3235322e3138342e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: R+WCPqZnVyvuE/WlmuoQdgrrmFi79PJTAJGHStmWWN8= Subject key identifier: 5A:89:0F:80:3A:E7:02:F9:E9:17:DE:F7:46:B8:08:AD:1D:88:8D:49 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 303E853E507BB5C4147A048D1FF713E8203EEDB0 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:01 +0000 ROA not before: Thu 11 Apr 2024 10:55:01 +0000 ROA not after: Thu 10 Apr 2025 11:00:01 +0000 asID: 58816 IP address blocks: 43.252.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:3e:85:3e:50:7b:b5:c4:14:7a:04:8d:1f:f7:13:e8:20:3e:ed:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:01 2024 GMT Not After : Apr 10 11:00:01 2025 GMT Subject: CN=5A890F803AE702F9E917DEF746B808AD1D888D49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fd:2f:75:62:cc:0f:b6:bc:16:0f:e8:47:36: a8:49:68:44:d9:4d:17:c6:16:af:e7:ee:11:ad:90: d5:5c:06:d6:a5:6d:41:d4:80:fd:48:3f:8c:c6:1d: 2d:c0:27:11:f7:b1:59:22:eb:44:fb:f5:42:ef:a9: 35:e7:e2:6b:ef:bd:75:b0:93:ef:0b:40:de:60:ab: be:b6:c1:dd:f7:cd:b3:cf:36:24:df:03:ca:37:21: 8c:d7:e5:3e:b3:3c:a1:67:03:71:22:f2:7e:40:e2: 53:08:ca:5a:72:7e:f2:40:76:b2:55:d9:1b:92:1d: 8a:bd:3f:65:ad:84:a6:83:14:7b:24:a6:5b:32:68: f1:ee:b7:31:82:4b:b4:0a:a5:09:b5:20:1c:88:c9: dd:ee:e8:92:61:09:9f:3e:f5:34:6d:7e:e3:01:6c: f4:d3:d8:59:52:65:e0:f8:25:73:67:75:eb:ed:73: 6e:b9:96:c3:6c:16:61:e6:f2:70:ab:2f:2e:24:be: 0a:9f:f2:d9:38:9e:e0:07:31:3c:c9:a2:86:b9:44: 85:14:74:d3:f9:3f:e2:aa:fb:21:f4:3e:40:89:1c: 2c:fc:c3:cd:24:8b:67:a6:8d:de:e1:de:51:d6:dc: df:4d:ac:af:dd:78:5e:ce:02:5a:cc:20:ba:36:9c: 82:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:89:0F:80:3A:E7:02:F9:E9:17:DE:F7:46:B8:08:AD:1D:88:8D:49 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.184.0/24 Signature Algorithm: sha256WithRSAEncryption b3:ed:54:27:2a:68:c6:d3:ce:30:fe:23:a6:23:96:90:ef:ec: 82:ee:ad:5a:11:92:b6:0e:63:08:fb:07:e1:df:3a:fb:c7:8a: 68:08:f0:55:3c:e4:a2:64:52:4f:79:93:0a:8f:9d:7f:0e:c9: a4:c0:92:f9:46:22:f4:c6:28:c4:b9:fe:13:fd:8a:89:05:ac: 83:eb:8d:f7:7c:3d:27:ef:6e:ac:78:4d:51:c1:ae:02:ce:31: 77:8f:ad:a2:a8:46:63:32:7d:bc:1a:29:09:c7:db:5e:68:f6: 5c:65:07:46:f1:2d:bc:54:47:3a:1f:ae:c8:5d:12:0b:b0:18: 2b:5c:b6:09:22:4b:28:f8:87:33:06:ff:c8:5b:6d:d7:53:44: 19:d0:af:05:a0:56:5e:26:e1:22:2c:0e:88:5f:60:b7:e0:b7: 4a:a7:d9:48:46:25:df:ea:59:c2:5c:b4:f9:64:37:da:1d:e0: 8b:48:ce:a0:98:e6:fd:d8:e8:30:33:82:30:1b:a8:01:05:de: 7b:30:f1:96:da:1d:58:76:e3:52:04:88:e5:0f:a1:3c:b8:77: ad:ca:5d:22:a0:c6:b9:5b:de:0d:76:b0:00:70:f7:a5:f2:67: b1:57:b0:aa:77:7e:09:fe:65:c4:16:7c:0b:cd:cc:ab:60:c5: e9:f7:05:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMD6FPlB7tcQUegSNH/cT6CA+7bAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDFaFw0yNTA0MTAxMTAwMDFaMDMxMTAvBgNV BAMTKDVBODkwRjgwM0FFNzAyRjlFOTE3REVGNzQ2QjgwOEFEMUQ4ODhENDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ/S91YswPtrwWD+hHNqhJaETZ TRfGFq/n7hGtkNVcBtalbUHUgP1IP4zGHS3AJxH3sVki60T79ULvqTXn4mvvvXWw k+8LQN5gq762wd33zbPPNiTfA8o3IYzX5T6zPKFnA3Ei8n5A4lMIylpyfvJAdrJV 2RuSHYq9P2WthKaDFHskplsyaPHutzGCS7QKpQm1IByIyd3u6JJhCZ8+9TRtfuMB bPTT2FlSZeD4JXNndevtc265lsNsFmHm8nCrLy4kvgqf8tk4nuAHMTzJooa5RIUU dNP5P+Kq+yH0PkCJHCz8w80ki2emjd7h3lHW3N9NrK/deF7OAlrMILo2nII7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWokPgDrnAvnpF973RrgIrR2IjUkwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8uDANBgkqhkiG 9w0BAQsFAAOCAQEAs+1UJypoxtPOMP4jpiOWkO/sgu6tWhGStg5jCPsH4d86+8eK aAjwVTzkomRST3mTCo+dfw7JpMCS+UYi9MYoxLn+E/2KiQWsg+uN93w9J+9urHhN UcGuAs4xd4+toqhGYzJ9vBopCcfbXmj2XGUHRvEtvFRHOh+uyF0SC7AYK1y2CSJL KPiHMwb/yFtt11NEGdCvBaBWXibhIiwOiF9gt+C3SqfZSEYl3+pZwly0+WQ32h3g i0jOoJjm/djoMDOCMBuoAQXeezDxltodWHbjUgSI5Q+hPLh3rcpdIqDGuVveDXaw AHD3pfJnsVewqnd+Cf5lxBZ8C83Mq2DF6fcFOQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org