$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa File: 34332e3235322e3138372e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: XZxE7qCxMNUmrqxCgDOpR0SWDCzykGde0dsCzEm8ITY= Subject key identifier: C6:68:30:2E:4E:90:3E:62:A5:A2:E6:DE:DC:09:42:92:A0:E3:DD:D8 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 0D5148FF126E75D68FAA66896EAC345F7C6EF386 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:01 +0000 ROA not before: Thu 11 Apr 2024 10:55:01 +0000 ROA not after: Thu 10 Apr 2025 11:00:01 +0000 asID: 58816 IP address blocks: 43.252.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:51:48:ff:12:6e:75:d6:8f:aa:66:89:6e:ac:34:5f:7c:6e:f3:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:01 2024 GMT Not After : Apr 10 11:00:01 2025 GMT Subject: CN=C668302E4E903E62A5A2E6DEDC094292A0E3DDD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:82:16:3b:e2:0a:70:4a:3a:b7:f5:80:e4:c8: 61:14:02:2f:38:af:44:c5:57:3d:8e:d6:79:95:88: d7:1a:69:2c:79:e7:67:e3:80:3a:bf:2a:46:16:48: 20:ec:12:98:27:f1:d1:71:3b:28:1d:fb:cc:b6:56: 6b:b2:7a:2c:f2:2e:a2:b8:79:34:84:a3:7f:f0:0f: 63:fd:c0:49:3a:d8:ef:13:c2:e3:15:18:6f:f9:e2: 44:a8:6e:be:6b:e7:00:74:c7:e6:90:0b:12:f2:47: 68:04:25:98:fb:3f:b0:0d:c9:53:ab:e7:a4:d4:f2: 10:93:43:d5:78:39:f4:7f:4c:da:05:09:7c:c2:b3: b4:a4:13:e6:f4:cb:48:91:b5:24:a2:03:10:9d:9a: fb:18:8f:ea:b7:99:68:49:69:42:e2:24:f1:28:01: ff:d7:ee:8c:31:6b:f4:e0:78:f3:9e:16:47:7e:5f: b6:39:96:75:30:72:1d:50:b2:c9:19:89:ad:d0:01: 43:88:fc:f4:f3:54:70:a8:df:48:d4:f1:b6:70:ed: 59:b2:28:ad:0d:fb:f4:1d:64:2a:a8:5e:2e:d8:f9: 12:b6:4a:88:ec:4d:b4:72:60:4c:ce:92:13:a1:7c: 46:3a:64:3e:8e:d2:df:04:ed:b4:76:27:58:ce:ba: 33:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:68:30:2E:4E:90:3E:62:A5:A2:E6:DE:DC:09:42:92:A0:E3:DD:D8 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.187.0/24 Signature Algorithm: sha256WithRSAEncryption 91:cb:0b:a6:e9:66:36:80:5f:e9:e6:0e:fc:95:31:28:53:48: 8a:e7:f3:08:52:85:45:e4:3e:9b:d6:c0:7c:41:9f:44:7f:a6: 2c:e6:de:a3:81:87:b5:d5:fc:d1:77:d7:8c:37:82:df:9c:d1: b0:ba:51:76:3e:f2:bb:2f:26:ed:a2:1a:d3:04:ec:08:37:b6: c6:08:a4:92:cb:92:0a:e9:f4:ec:31:85:6e:4a:93:10:da:55: 19:d7:a8:24:9a:59:bc:d4:a5:c8:60:bc:4b:4f:4b:61:69:cb: df:0b:b8:78:c7:ac:5d:8e:42:b8:a3:66:56:46:14:8a:58:87: f9:a1:ad:1c:c5:10:1a:fa:8e:73:62:d3:eb:d4:e4:95:19:81: a4:ec:32:aa:3c:df:e3:71:55:4c:97:83:32:77:cc:cb:ca:02: 6a:d7:e5:ca:ea:f3:4f:37:42:21:19:63:ea:c2:f9:4d:23:9c: 88:d7:29:62:20:d8:43:0a:b3:75:32:6b:b7:25:8f:b3:96:69: c8:7f:ab:96:0d:ff:d9:89:5c:12:28:33:8f:13:8a:13:a4:5f: fb:9f:9d:54:90:60:49:b9:0b:35:80:c1:9d:0b:9b:02:1a:e4: f7:c6:1f:27:72:f2:0f:39:29:4b:43:8a:d9:c7:04:ed:c6:5c: a7:94:a8:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDVFI/xJuddaPqmaJbqw0X3xu84YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDFaFw0yNTA0MTAxMTAwMDFaMDMxMTAvBgNV BAMTKEM2NjgzMDJFNEU5MDNFNjJBNUEyRTZERURDMDk0MjkyQTBFM0RERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBghY74gpwSjq39YDkyGEUAi84 r0TFVz2O1nmViNcaaSx552fjgDq/KkYWSCDsEpgn8dFxOygd+8y2VmuyeizyLqK4 eTSEo3/wD2P9wEk62O8TwuMVGG/54kSobr5r5wB0x+aQCxLyR2gEJZj7P7ANyVOr 56TU8hCTQ9V4OfR/TNoFCXzCs7SkE+b0y0iRtSSiAxCdmvsYj+q3mWhJaULiJPEo Af/X7owxa/TgePOeFkd+X7Y5lnUwch1QsskZia3QAUOI/PTzVHCo30jU8bZw7Vmy KK0N+/QdZCqoXi7Y+RK2SojsTbRyYEzOkhOhfEY6ZD6O0t8E7bR2J1jOujNfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxmgwLk6QPmKloube3AlCkqDj3dgwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8uzANBgkqhkiG 9w0BAQsFAAOCAQEAkcsLpulmNoBf6eYO/JUxKFNIiufzCFKFReQ+m9bAfEGfRH+m LObeo4GHtdX80XfXjDeC35zRsLpRdj7yuy8m7aIa0wTsCDe2xgikksuSCun07DGF bkqTENpVGdeoJJpZvNSlyGC8S09LYWnL3wu4eMesXY5CuKNmVkYUiliH+aGtHMUQ GvqOc2LT69TklRmBpOwyqjzf43FVTJeDMnfMy8oCatflyurzTzdCIRlj6sL5TSOc iNcpYiDYQwqzdTJrtyWPs5ZpyH+rlg3/2YlcEigzjxOKE6Rf+5+dVJBgSbkLNYDB nQubAhrk98YfJ3LyDzkpS0OK2ccE7cZcp5Soig== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org