$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138352e302f32342d3234203d3e203538383136.roa File: 34332e3235322e3138352e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: bb5PvZ2xlUonKi/nGyemRopzCcxXWTug8aqDrAW+3yI= Subject key identifier: 4E:AF:17:43:82:6E:62:0C:35:3A:C0:A8:A5:42:94:44:81:58:F2:7F Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 1FB9D20100B40FD1AEE95DD16A92ECBB6ED70F37 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138352e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:01 +0000 ROA not before: Thu 11 Apr 2024 10:55:01 +0000 ROA not after: Thu 10 Apr 2025 11:00:01 +0000 asID: 58816 IP address blocks: 43.252.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b9:d2:01:00:b4:0f:d1:ae:e9:5d:d1:6a:92:ec:bb:6e:d7:0f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:01 2024 GMT Not After : Apr 10 11:00:01 2025 GMT Subject: CN=4EAF1743826E620C353AC0A8A54294448158F27F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:19:84:0d:44:ab:cd:61:46:5d:0f:65:02:81: d2:4b:30:ad:3a:60:15:32:ab:b5:91:db:58:f5:92: 25:b2:5c:03:b8:8c:02:67:a1:5f:66:df:80:d6:e9: 60:60:94:2b:73:81:9f:5e:73:fa:cf:31:33:09:3b: 16:0d:c9:0e:c0:8c:3f:6b:24:1e:6b:30:35:c1:c3: 2d:64:f7:d2:15:37:53:e9:fc:40:b3:0d:0d:ef:15: bb:7a:85:98:fd:7a:c9:2f:78:52:ad:f1:a2:27:11: 98:2e:a3:ce:31:5b:2f:65:eb:78:d2:24:fa:6a:ec: bf:b6:07:31:7d:18:b5:af:53:b0:80:87:64:4e:26: 27:56:ea:fb:bf:1a:78:f4:81:54:5c:11:10:69:70: 3f:d8:29:6b:fa:87:f1:07:68:6d:b4:f8:1c:93:2e: 8e:f2:32:c3:04:5b:3e:f4:21:91:60:56:ef:c2:68: 5d:54:36:77:02:e9:82:9d:26:c3:52:2e:21:f3:98: 7b:de:e0:b5:b6:bf:6a:85:bf:ef:cb:45:d9:ca:ec: 67:a6:16:df:7e:3e:6f:d2:40:62:5d:06:a7:8e:2c: eb:26:36:09:23:5f:0a:4b:11:d3:54:a1:70:9a:3b: 0c:8d:00:2e:f4:d9:92:6b:7c:ec:b0:29:64:ef:ea: b4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:AF:17:43:82:6E:62:0C:35:3A:C0:A8:A5:42:94:44:81:58:F2:7F X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138352e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.185.0/24 Signature Algorithm: sha256WithRSAEncryption 37:49:90:3b:a1:62:25:5f:4a:9b:0b:a6:48:b9:2b:4b:c4:3b: f6:25:fd:b6:80:86:0d:9c:41:52:a4:df:26:b3:91:3a:33:ff: 18:31:f0:8a:02:85:21:d7:ce:0c:3c:58:4d:33:d8:8d:29:d2: eb:ce:ca:10:67:f9:24:a8:8f:52:b6:61:a5:6b:5e:25:cc:2b: 60:0c:34:64:51:b7:d8:35:79:ab:38:2b:41:25:d8:a9:2e:aa: f9:93:f6:81:a6:04:31:bf:34:3b:8e:2f:f6:21:e4:38:72:57: ad:79:5c:84:9c:ac:d5:90:a0:fc:92:9a:52:4a:0e:96:8d:32: 2a:16:f7:02:b1:53:70:c4:e1:2c:6f:61:0b:f1:c2:42:0d:f0: 21:4e:a3:a5:11:d9:51:fa:3f:1b:7a:76:a4:6d:4c:39:9f:5b: 89:90:3d:77:91:8d:7d:78:a6:8c:8d:f1:c8:fe:10:28:4e:21: 9a:b7:07:cc:49:c1:80:62:98:77:6f:c4:9e:84:7a:c0:16:f8: 39:3e:3e:29:f6:84:f3:25:7c:64:3b:1b:17:4c:99:e6:77:08: 25:07:d0:11:5b:57:d6:7c:cb:23:0a:43:7c:cd:c8:07:64:49: c3:47:23:f7:04:41:ce:07:2b:81:ae:da:7a:37:c8:fd:19:ea: 0c:1f:a7:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH7nSAQC0D9Gu6V3RapLsu27XDzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDFaFw0yNTA0MTAxMTAwMDFaMDMxMTAvBgNV BAMTKDRFQUYxNzQzODI2RTYyMEMzNTNBQzBBOEE1NDI5NDQ0ODE1OEYyN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8GYQNRKvNYUZdD2UCgdJLMK06 YBUyq7WR21j1kiWyXAO4jAJnoV9m34DW6WBglCtzgZ9ec/rPMTMJOxYNyQ7AjD9r JB5rMDXBwy1k99IVN1Pp/ECzDQ3vFbt6hZj9eskveFKt8aInEZguo84xWy9l63jS JPpq7L+2BzF9GLWvU7CAh2ROJidW6vu/Gnj0gVRcERBpcD/YKWv6h/EHaG20+ByT Lo7yMsMEWz70IZFgVu/CaF1UNncC6YKdJsNSLiHzmHve4LW2v2qFv+/LRdnK7Gem Ft9+Pm/SQGJdBqeOLOsmNgkjXwpLEdNUoXCaOwyNAC702ZJrfOywKWTv6rQjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTq8XQ4JuYgw1OsCopUKURIFY8n8wHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8uTANBgkqhkiG 9w0BAQsFAAOCAQEAN0mQO6FiJV9KmwumSLkrS8Q79iX9toCGDZxBUqTfJrOROjP/ GDHwigKFIdfODDxYTTPYjSnS687KEGf5JKiPUrZhpWteJcwrYAw0ZFG32DV5qzgr QSXYqS6q+ZP2gaYEMb80O44v9iHkOHJXrXlchJys1ZCg/JKaUkoOlo0yKhb3ArFT cMThLG9hC/HCQg3wIU6jpRHZUfo/G3p2pG1MOZ9biZA9d5GNfXimjI3xyP4QKE4h mrcHzEnBgGKYd2/EnoR6wBb4OT4+KfaE8yV8ZDsbF0yZ5ncIJQfQEVtX1nzLIwpD fM3IB2RJw0cj9wRBzgcrga7aejfI/RnqDB+nDA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org