$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232352e302f32342d3234203d3e2039333431.roa File: 34332e3234302e3232352e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 6KSm5s09xjMB32eLTcdX1R5MDEzkY41FApl1CbmzcA4= Subject key identifier: 87:F1:E3:01:1B:98:BE:3A:2A:5D:4B:88:AE:62:17:8C:2C:4C:53:AF Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 56B46923186A14FCB3471972EA86E6A75D6EA22D Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232352e302f32342d3234203d3e2039333431.roa Signing time: Tue 08 Aug 2023 04:42:30 +0000 ROA not before: Tue 08 Aug 2023 04:37:30 +0000 ROA not after: Tue 06 Aug 2024 04:42:30 +0000 asID: 9341 IP address blocks: 43.240.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b4:69:23:18:6a:14:fc:b3:47:19:72:ea:86:e6:a7:5d:6e:a2:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Aug 8 04:37:30 2023 GMT Not After : Aug 6 04:42:30 2024 GMT Subject: CN=87F1E3011B98BE3A2A5D4B88AE62178C2C4C53AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:b5:6c:88:5b:bd:9f:68:16:85:e2:7b:5c: 82:0c:52:7e:0c:50:c7:20:c6:7f:82:ff:bc:8c:14: 31:02:b3:36:e2:63:dc:ff:f5:c6:dc:e4:73:63:46: 4b:31:13:01:29:40:21:c3:d8:df:41:2c:16:ac:d1: bf:af:72:65:aa:cd:8e:15:c5:97:1d:0d:08:9d:83: e8:fb:3f:34:0b:0f:3a:04:4c:06:ca:3e:02:09:61: c6:79:96:e1:68:e9:d7:51:c1:4b:0b:52:44:f6:6c: 0a:d4:ab:a1:6f:23:ce:bc:99:02:ee:0d:29:21:65: ed:36:bb:26:b6:65:f3:1e:1b:10:48:56:f9:66:a4: db:3d:6c:be:76:03:af:3a:3f:9e:2a:81:61:73:35: cb:c0:86:79:43:99:a3:51:1b:65:6f:23:b6:78:ca: 68:a8:bb:86:09:ed:f7:54:51:cd:eb:56:34:34:a9: d4:27:2e:68:4f:02:37:0b:98:2d:d6:68:4d:70:50: 55:f2:47:b1:7b:3a:7b:c4:c7:c6:dc:b3:52:30:92: cb:b8:39:e7:c5:c7:60:a1:bf:dc:b8:7e:bd:ff:8e: 31:63:0a:b5:b8:ca:80:30:c9:6a:1b:ff:f0:16:fa: 4e:ac:24:2a:b0:9b:cf:c0:8e:e9:0d:a5:4e:4c:85: 73:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F1:E3:01:1B:98:BE:3A:2A:5D:4B:88:AE:62:17:8C:2C:4C:53:AF X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/34332e3234302e3232352e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.225.0/24 Signature Algorithm: sha256WithRSAEncryption a3:67:ef:28:03:3b:56:ef:9d:66:b7:a1:46:e1:18:61:38:b1: 00:9b:08:76:58:0d:47:ff:fa:77:63:63:a0:d7:8a:10:f2:9a: 15:90:58:e8:01:5e:f6:98:e6:11:af:bb:6e:01:1c:c0:78:39: a8:7f:4a:b7:5e:fa:ea:93:ac:e0:f0:ba:85:03:23:82:51:f8: e4:bc:02:2e:16:12:fc:c7:1d:b6:3d:7b:78:35:58:fd:5b:c7: 2f:48:64:2e:a2:1c:c8:27:2a:92:11:f5:5c:43:46:d7:4f:ad: ff:53:77:07:72:0d:5c:e6:d8:41:4c:df:99:a2:fb:77:30:b1: b8:0c:e4:3d:97:61:c2:88:e1:3a:cb:fb:d4:02:32:d1:81:ec: 4e:78:43:24:96:4a:c2:23:19:43:02:40:ef:43:af:aa:3b:a6: 5e:5f:32:0b:4a:1c:48:1a:d9:03:62:a2:d1:93:24:5c:68:ff: 91:de:44:f2:60:e6:c7:4f:f7:81:87:c0:bf:68:65:7d:6c:14: 46:fc:34:7f:02:d2:35:88:d9:ce:cc:ad:48:17:fb:8d:18:88: 68:22:ab:1a:33:a6:6a:4a:9c:6e:15:f9:b5:53:da:6e:9f:f9: 4d:33:5a:3d:1a:5b:ae:e5:44:ce:58:9d:dd:a1:59:0e:4a:86: f5:19:45:06 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVrRpIxhqFPyzRxly6obmp11uoi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yMzA4MDgwNDM3MzBaFw0yNDA4MDYwNDQyMzBaMDMxMTAvBgNV BAMTKDg3RjFFMzAxMUI5OEJFM0EyQTVENEI4OEFFNjIxNzhDMkM0QzUzQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS6bVsiFu9n2gWheJ7XIIMUn4M UMcgxn+C/7yMFDECszbiY9z/9cbc5HNjRksxEwEpQCHD2N9BLBas0b+vcmWqzY4V xZcdDQidg+j7PzQLDzoETAbKPgIJYcZ5luFo6ddRwUsLUkT2bArUq6FvI868mQLu DSkhZe02uya2ZfMeGxBIVvlmpNs9bL52A686P54qgWFzNcvAhnlDmaNRG2VvI7Z4 ymiou4YJ7fdUUc3rVjQ0qdQnLmhPAjcLmC3WaE1wUFXyR7F7OnvEx8bcs1Iwksu4 OefFx2Chv9y4fr3/jjFjCrW4yoAwyWob//AW+k6sJCqwm8/AjukNpU5MhXNRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUh/HjARuYvjoqXUuIrmIXjCxMU68wHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr8OEwDQYJKoZIhvcN AQELBQADggEBAKNn7ygDO1bvnWa3oUbhGGE4sQCbCHZYDUf/+ndjY6DXihDymhWQ WOgBXvaY5hGvu24BHMB4Oah/Srde+uqTrODwuoUDI4JR+OS8Ai4WEvzHHbY9e3g1 WP1bxy9IZC6iHMgnKpIR9VxDRtdPrf9TdwdyDVzm2EFM35mi+3cwsbgM5D2XYcKI 4TrL+9QCMtGB7E54QySWSsIjGUMCQO9Dr6o7pl5fMgtKHEga2QNiotGTJFxo/5He RPJg5sdP94GHwL9oZX1sFEb8NH8C0jWI2c7MrUgX+40YiGgiqxozpmpKnG4V+bVT 2m6f+U0zWj0aW67lRM5Ynd2hWQ5KhvUZRQY= -----END CERTIFICATE-----Generated at Fri May 31 20:32:24 2024 by rpki-client on console-ams.rpki-client.org