$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232342e302f32342d3234203d3e2039333431.roa File: 34332e3234302e3232342e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: +ffleojwmTINWMQWVa/70+BWCeAZ902lbXqyuG3gUIY= Subject key identifier: E4:E5:CE:0A:25:CE:AD:5B:81:8C:06:7F:8E:C5:8C:8E:68:76:22:E5 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 0303F55DF2E5CE2BA1C77C5C1D17DF63A875D039 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232342e302f32342d3234203d3e2039333431.roa Signing time: Fri 26 Jul 2024 14:00:02 +0000 ROA not before: Fri 26 Jul 2024 13:55:02 +0000 ROA not after: Fri 25 Jul 2025 14:00:02 +0000 asID: 9341 IP address blocks: 43.240.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:03:f5:5d:f2:e5:ce:2b:a1:c7:7c:5c:1d:17:df:63:a8:75:d0:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Jul 26 13:55:02 2024 GMT Not After : Jul 25 14:00:02 2025 GMT Subject: CN=E4E5CE0A25CEAD5B818C067F8EC58C8E687622E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2b:d3:40:a5:21:c5:3b:30:18:fb:e0:25:14: 05:bb:f0:f1:91:12:df:9f:c8:f0:35:5b:34:63:24: c3:4e:f8:a4:40:b0:7b:c1:1a:4d:43:bd:d3:85:dc: 98:be:60:b4:00:ea:db:4f:54:2a:b4:30:87:9c:7f: b3:44:ef:b1:29:af:1a:6e:f3:94:1b:98:67:9e:c5: 19:9f:0e:04:d6:ef:5b:7c:f0:03:f1:4e:76:4d:f7: 0f:8c:70:14:ea:c0:e9:b1:c9:62:b2:34:5c:77:05: d6:ba:7c:91:2b:d3:2e:fb:fa:83:4c:bd:ef:7a:48: 21:e9:6b:6b:1e:d8:b4:32:59:e2:ab:39:46:ea:dc: eb:f5:2d:fa:2b:1f:49:7b:d8:c5:94:11:bd:98:f1: e0:b3:e7:f4:06:a5:ed:de:f6:b2:2f:75:35:6b:81: ed:92:4d:2f:80:68:a4:4e:8b:12:61:37:9d:89:14: 06:ee:0b:80:e8:e5:3a:44:46:d2:9d:11:f4:c3:a7: 32:6b:93:c7:92:d7:18:82:03:ea:9b:ed:da:e8:5f: 2e:23:f5:50:ad:bf:24:02:2d:b6:15:ac:50:d6:1a: 09:62:f9:52:7d:a8:26:33:02:7d:98:c9:3a:63:1d: b6:95:01:f3:9e:5e:d5:d1:27:09:a4:a0:13:d0:51: 03:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E5:CE:0A:25:CE:AD:5B:81:8C:06:7F:8E:C5:8C:8E:68:76:22:E5 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232342e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.224.0/24 Signature Algorithm: sha256WithRSAEncryption 59:eb:6f:6c:c9:36:f9:f8:2d:9a:43:5d:a8:d3:e9:c9:f6:75: 69:02:a9:e8:00:d3:fe:3d:c9:4e:42:d1:5f:13:a4:6a:e1:a4: 89:2f:26:10:1c:cb:07:3c:b4:0c:a8:d4:78:30:c2:17:80:3a: 9d:bd:77:8a:ca:59:c8:7c:18:64:70:ad:59:e9:76:24:63:1e: 0a:fc:79:58:2a:90:09:1f:a1:9c:05:24:07:99:82:48:0b:49: e2:b5:4d:b4:59:53:a8:49:9a:f0:aa:ed:02:7b:31:52:31:7e: 65:74:7c:61:70:0a:0e:f4:7c:be:1a:5a:a0:7a:14:cf:2a:35: a9:22:ff:55:e2:58:e1:e6:c2:cb:24:71:dd:98:f0:6e:ce:0d: 7c:49:1e:ee:92:6d:a9:4d:16:13:61:22:52:f0:d1:96:8d:71: b9:ff:74:06:32:71:f2:29:55:41:b5:3a:53:71:dc:9a:30:94: 38:b2:14:4b:4d:9e:a1:08:85:1a:87:33:cc:ad:8b:c2:db:98: 18:54:fb:26:b6:4e:49:ec:8f:94:1b:49:0c:0c:8c:4d:4b:95: fd:9c:a9:75:d1:ab:b0:bb:aa:8f:1e:9e:f8:49:49:08:f8:a9: 84:7a:20:89:ee:f8:2f:3d:8a:62:3b:32:c3:e6:fc:df:a9:49: be:17:de:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAwP1XfLlziuhx3xcHRffY6h10DkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA3MjYxMzU1MDJaFw0yNTA3MjUxNDAwMDJaMDMxMTAvBgNV BAMTKEU0RTVDRTBBMjVDRUFENUI4MThDMDY3RjhFQzU4QzhFNjg3NjIyRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfK9NApSHFOzAY++AlFAW78PGR Et+fyPA1WzRjJMNO+KRAsHvBGk1DvdOF3Ji+YLQA6ttPVCq0MIecf7NE77Eprxpu 85QbmGeexRmfDgTW71t88APxTnZN9w+McBTqwOmxyWKyNFx3Bda6fJEr0y77+oNM ve96SCHpa2se2LQyWeKrOUbq3Ov1LforH0l72MWUEb2Y8eCz5/QGpe3e9rIvdTVr ge2STS+AaKROixJhN52JFAbuC4Do5TpERtKdEfTDpzJrk8eS1xiCA+qb7droXy4j 9VCtvyQCLbYVrFDWGgli+VJ9qCYzAn2YyTpjHbaVAfOeXtXRJwmkoBPQUQNDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5OXOCiXOrVuBjAZ/jsWMjmh2IuUwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr8OAwDQYJKoZIhvcN AQELBQADggEBAFnrb2zJNvn4LZpDXajT6cn2dWkCqegA0/49yU5C0V8TpGrhpIkv JhAcywc8tAyo1HgwwheAOp29d4rKWch8GGRwrVnpdiRjHgr8eVgqkAkfoZwFJAeZ gkgLSeK1TbRZU6hJmvCq7QJ7MVIxfmV0fGFwCg70fL4aWqB6FM8qNaki/1XiWOHm wsskcd2Y8G7ODXxJHu6SbalNFhNhIlLw0ZaNcbn/dAYycfIpVUG1OlNx3JowlDiy FEtNnqEIhRqHM8yti8LbmBhU+ya2Tknsj5QbSQwMjE1Llf2cqXXRq7C7qo8envhJ SQj4qYR6IInu+C89imI7MsPm/N+pSb4X3lw= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org