$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232352e302f32342d3234203d3e2039333431.roa File: 34332e3234302e3232352e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: CJztpJ94H2DP+7qJjVONFDh774oYcdEzacCAAREXNl4= Subject key identifier: 8A:B5:36:60:D1:74:9B:E3:E6:ED:5F:3D:6D:DA:1C:C7:55:27:32:90 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 030F3CBE455E5DDA07985D7ECDD9EC819897C214 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232352e302f32342d3234203d3e2039333431.roa Signing time: Tue 09 Jul 2024 05:02:41 +0000 ROA not before: Tue 09 Jul 2024 04:57:41 +0000 ROA not after: Tue 08 Jul 2025 05:02:41 +0000 asID: 9341 IP address blocks: 43.240.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:0f:3c:be:45:5e:5d:da:07:98:5d:7e:cd:d9:ec:81:98:97:c2:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Jul 9 04:57:41 2024 GMT Not After : Jul 8 05:02:41 2025 GMT Subject: CN=8AB53660D1749BE3E6ED5F3D6DDA1CC755273290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:e0:92:fe:ef:af:1b:78:c1:56:e2:c9:71:a7: 87:40:a4:c6:85:3a:15:87:89:f9:16:a6:6a:f5:72: 45:50:8b:2d:4b:91:f6:b5:ce:e0:d7:55:85:e8:6a: 8b:2b:f9:5e:65:3a:96:ce:33:e7:ee:e7:1d:6a:4c: a2:d4:ec:32:a6:20:ab:a9:aa:c5:4d:30:0b:de:fb: 2d:e8:5c:5b:bd:6a:f1:14:51:52:03:a3:c8:72:af: 26:14:42:50:5e:ac:7a:78:33:10:b6:5c:8e:0d:4a: 3a:d0:13:a9:30:d1:37:c5:d6:00:78:90:c1:80:18: ab:80:f5:84:2d:86:c8:0b:d2:3d:d8:6a:4f:89:09: 8e:8b:8e:71:02:a8:f8:b2:46:45:bd:d3:62:de:4b: b0:72:3f:65:34:7f:01:63:a7:da:e5:ef:30:61:0a: 55:3b:96:5e:de:e5:e9:b1:3e:95:63:8b:cc:8e:99: 3b:2b:1a:f7:1f:55:d3:63:b8:60:d4:77:a9:73:66: 1a:15:0c:dd:30:02:46:bb:2d:18:4d:13:8c:6c:77: 89:02:47:6d:e4:6c:40:27:e6:80:e5:18:dd:c3:70: 23:4a:75:2b:45:19:95:47:40:a1:ad:da:fd:e2:e0: 86:25:7a:df:5a:62:04:1e:4c:fe:e5:41:b6:51:b7: 05:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B5:36:60:D1:74:9B:E3:E6:ED:5F:3D:6D:DA:1C:C7:55:27:32:90 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232352e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.225.0/24 Signature Algorithm: sha256WithRSAEncryption 75:66:1a:87:53:71:1f:47:4e:20:3e:d6:b2:51:0b:1d:cc:be: fd:b6:c0:06:b8:42:3f:b0:36:e8:be:da:93:d6:80:01:e9:c9: 70:a5:c0:ef:0d:0d:b8:20:2e:5c:df:15:48:88:c6:5f:2d:d8: 43:9e:fe:53:df:6a:e0:0d:c6:6b:31:29:3c:4e:b3:9d:9a:e9: dc:db:ad:59:18:e6:7f:4f:5c:50:47:70:03:4f:bc:8a:7d:65: d6:6d:86:ce:8a:9d:40:44:7d:cb:a8:00:59:54:61:cc:8b:67: e2:1f:c5:91:cc:46:d2:79:cd:d3:71:00:49:da:6e:33:f7:e5: 43:3d:f8:00:f3:c4:07:6a:e0:5a:df:28:8a:a5:fb:e8:5e:0b: 18:b9:9d:a3:af:e7:38:b6:c9:40:29:b3:25:3c:dc:99:e8:b0: ef:6d:9d:e9:e7:21:4d:f8:70:1c:da:45:0f:af:d4:9e:fc:41: f2:75:33:ac:4f:82:3e:00:2e:7a:b9:bb:90:99:14:bd:6e:5e: f7:5b:57:47:22:8c:de:e6:99:83:af:6a:f4:e1:6d:5e:08:67: 51:85:40:8a:d0:5a:ca:15:1c:b3:60:f8:32:43:b0:c1:c0:55: b1:38:f5:47:c0:a2:bb:6a:ba:b5:fb:4e:62:f7:df:24:24:f6: 94:fe:1d:1b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAw88vkVeXdoHmF1+zdnsgZiXwhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA3MDkwNDU3NDFaFw0yNTA3MDgwNTAyNDFaMDMxMTAvBgNV BAMTKDhBQjUzNjYwRDE3NDlCRTNFNkVENUYzRDZEREExQ0M3NTUyNzMyOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD34JL+768beMFW4slxp4dApMaF OhWHifkWpmr1ckVQiy1Lkfa1zuDXVYXoaosr+V5lOpbOM+fu5x1qTKLU7DKmIKup qsVNMAve+y3oXFu9avEUUVIDo8hyryYUQlBerHp4MxC2XI4NSjrQE6kw0TfF1gB4 kMGAGKuA9YQthsgL0j3Yak+JCY6LjnECqPiyRkW902LeS7ByP2U0fwFjp9rl7zBh ClU7ll7e5emxPpVji8yOmTsrGvcfVdNjuGDUd6lzZhoVDN0wAka7LRhNE4xsd4kC R23kbEAn5oDlGN3DcCNKdStFGZVHQKGt2v3i4IYlet9aYgQeTP7lQbZRtwUPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUirU2YNF0m+Pm7V89bdocx1UnMpAwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr8OEwDQYJKoZIhvcN AQELBQADggEBAHVmGodTcR9HTiA+1rJRCx3Mvv22wAa4Qj+wNui+2pPWgAHpyXCl wO8NDbggLlzfFUiIxl8t2EOe/lPfauANxmsxKTxOs52a6dzbrVkY5n9PXFBHcANP vIp9ZdZths6KnUBEfcuoAFlUYcyLZ+IfxZHMRtJ5zdNxAEnabjP35UM9+ADzxAdq 4FrfKIql++heCxi5naOv5zi2yUApsyU83JnosO9tnennIU34cBzaRQ+v1J78QfJ1 M6xPgj4ALnq5u5CZFL1uXvdbV0cijN7mmYOvavThbV4IZ1GFQIrQWsoVHLNg+DJD sMHAVbE49UfAortqurX7TmL33yQk9pT+HRs= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org