$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138362e302f32342d3234203d3e203538383136.roa File: 34332e3235322e3138362e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: /5/ESbT7O37ryfK/p8c9OXJC0THippl1a3sqbO+lcZ4= Subject key identifier: CD:13:35:78:CE:23:26:B4:00:B2:58:A0:36:E2:CA:11:D5:F4:E7:8A Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 2206D94C7FE65A852618A80E15443E08635BFC29 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138362e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:01 +0000 ROA not before: Thu 11 Apr 2024 10:55:01 +0000 ROA not after: Thu 10 Apr 2025 11:00:01 +0000 asID: 58816 IP address blocks: 43.252.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:06:d9:4c:7f:e6:5a:85:26:18:a8:0e:15:44:3e:08:63:5b:fc:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:01 2024 GMT Not After : Apr 10 11:00:01 2025 GMT Subject: CN=CD133578CE2326B400B258A036E2CA11D5F4E78A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:32:43:ea:58:f6:bd:3b:2b:3c:db:69:61:82: a6:80:73:fc:67:03:75:75:18:7b:3d:a4:91:cf:0c: 3a:ff:55:67:7f:14:9a:3a:4c:5d:bf:7d:4b:67:d1: 22:62:85:2f:77:bf:86:b4:c4:52:a4:a8:56:92:8e: cf:28:fc:9f:fc:6a:4f:8b:7e:0e:64:7f:a6:90:a7: 68:7b:70:81:ad:e9:81:a1:7d:8a:de:a2:44:c2:45: fd:19:04:6f:e4:55:d6:87:d4:77:62:ec:51:32:c1: eb:0d:be:60:6c:4e:db:44:eb:f1:20:5c:aa:9f:3a: 8c:3b:0c:c9:1e:54:53:e7:90:69:da:ca:53:08:3a: 76:b4:9a:7f:6c:25:c8:63:13:22:a9:70:50:43:ae: 80:fc:00:47:5d:52:0d:7d:a2:be:96:b1:4d:c9:ed: 72:c1:50:10:3d:80:d5:90:9e:32:e6:78:b6:84:09: 26:ca:97:8f:a0:2e:8f:b4:9c:6c:1a:df:81:e3:45: 67:7f:05:86:1e:ad:92:4f:90:b2:bb:be:d8:6c:98: 17:9e:97:2d:b6:b6:17:44:b0:f5:29:e2:c5:6c:e7: 4a:22:53:9c:84:3d:a9:31:43:5e:1a:1c:03:24:a0: bd:f5:8a:9d:ef:f5:03:51:cb:69:27:4f:bd:64:32: 3d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:13:35:78:CE:23:26:B4:00:B2:58:A0:36:E2:CA:11:D5:F4:E7:8A X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138362e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.186.0/24 Signature Algorithm: sha256WithRSAEncryption 66:94:2c:f2:0e:02:b2:ce:cd:4d:0c:e5:4f:b8:0c:7c:27:6d: 92:28:e4:08:1d:d3:b7:a6:64:cd:e4:b3:aa:4f:15:93:09:b9: 9f:10:b4:59:5a:1d:43:22:df:29:1c:54:0a:dc:37:6b:ff:93: 93:bc:98:65:03:a8:2b:7d:0f:9c:93:f5:59:27:69:1a:a1:46: 4b:13:65:f0:f2:a2:2c:08:e9:85:d0:07:26:c9:76:a0:60:3c: 3f:3a:ae:23:22:0f:13:be:9d:b7:f2:e4:87:06:4d:fb:6d:bf: 14:9b:9a:28:80:2c:c6:e0:f8:59:b6:64:d2:35:22:08:a0:90: 6d:ab:8d:4e:10:8a:03:eb:99:37:13:de:b5:b8:4d:7b:dc:ca: b4:6d:63:df:91:23:70:07:87:92:5d:de:b6:28:87:11:7f:19: aa:7b:0b:58:28:15:5d:ab:8b:72:f7:2d:de:c8:7e:ff:74:23: ff:74:a5:8b:45:e9:3b:a0:ed:35:b8:32:00:4f:94:68:9d:68: 9f:22:1d:9d:e8:d0:55:f3:a5:28:03:4b:30:47:af:b8:51:eb: 24:40:ab:42:7d:47:4e:6f:6f:da:4e:14:d3:b7:66:ac:0b:0a: de:51:65:9a:c1:9f:42:5a:4d:64:37:d1:2f:52:f0:21:0b:d6: 23:b8:b5:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIgbZTH/mWoUmGKgOFUQ+CGNb/CkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDFaFw0yNTA0MTAxMTAwMDFaMDMxMTAvBgNV BAMTKENEMTMzNTc4Q0UyMzI2QjQwMEIyNThBMDM2RTJDQTExRDVGNEU3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfMkPqWPa9Oys822lhgqaAc/xn A3V1GHs9pJHPDDr/VWd/FJo6TF2/fUtn0SJihS93v4a0xFKkqFaSjs8o/J/8ak+L fg5kf6aQp2h7cIGt6YGhfYreokTCRf0ZBG/kVdaH1Hdi7FEywesNvmBsTttE6/Eg XKqfOow7DMkeVFPnkGnaylMIOna0mn9sJchjEyKpcFBDroD8AEddUg19or6WsU3J 7XLBUBA9gNWQnjLmeLaECSbKl4+gLo+0nGwa34HjRWd/BYYerZJPkLK7vthsmBee ly22thdEsPUp4sVs50oiU5yEPakxQ14aHAMkoL31ip3v9QNRy2knT71kMj27AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzRM1eM4jJrQAsligNuLKEdX054owHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8ujANBgkqhkiG 9w0BAQsFAAOCAQEAZpQs8g4Css7NTQzlT7gMfCdtkijkCB3Tt6ZkzeSzqk8Vkwm5 nxC0WVodQyLfKRxUCtw3a/+Tk7yYZQOoK30PnJP1WSdpGqFGSxNl8PKiLAjphdAH Jsl2oGA8PzquIyIPE76dt/LkhwZN+22/FJuaKIAsxuD4WbZk0jUiCKCQbauNThCK A+uZNxPetbhNe9zKtG1j35EjcAeHkl3etiiHEX8ZqnsLWCgVXauLcvct3sh+/3Qj /3Sli0XpO6DtNbgyAE+UaJ1onyIdnejQVfOlKANLMEevuFHrJECrQn1HTm9v2k4U 07dmrAsK3lFlmsGfQlpNZDfRL1LwIQvWI7i1Ow== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org