$ rpki-client -vvf repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/34332e3232392e3234382e302f32322d3234203d3e203435373331.roa File: 34332e3232392e3234382e302f32322d3234203d3e203435373331.roa (raw, json) Hash identifier: 4sUK4Vl6suRh3pplACfrgCxAuEWw6J318B93AS9bO9A= Subject key identifier: A9:35:00:7E:35:61:3A:50:59:8A:29:AC:06:5B:E0:63:28:80:DF:51 Certificate issuer: /CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD Certificate serial: 2EF5B1EF7825E84CEC76C0EC64772CD8EBAF5BA8 Authority key identifier: 81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/34332e3232392e3234382e302f32322d3234203d3e203435373331.roa Signing time: Mon 12 Aug 2024 10:00:02 +0000 ROA not before: Mon 12 Aug 2024 09:55:02 +0000 ROA not after: Mon 11 Aug 2025 10:00:02 +0000 asID: 45731 IP address blocks: 43.229.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f5:b1:ef:78:25:e8:4c:ec:76:c0:ec:64:77:2c:d8:eb:af:5b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD Validity Not Before: Aug 12 09:55:02 2024 GMT Not After : Aug 11 10:00:02 2025 GMT Subject: CN=A935007E35613A50598A29AC065BE0632880DF51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:3c:61:74:ac:a7:cf:e3:19:18:8e:0f:c4: 7e:c8:08:db:3c:ab:74:7c:2f:8b:9c:2e:7a:de:85: 59:d2:14:d0:a1:98:26:ec:1c:ab:ce:64:49:93:01: 3e:e4:54:63:9b:d5:4a:b5:b9:de:d2:63:bb:af:ca: 66:0c:5d:73:54:21:3b:a0:85:16:5b:67:48:cb:48: bc:89:5e:29:1c:47:9d:30:8c:2d:0a:21:3d:b2:0c: 2a:e7:9d:98:2c:d0:f1:28:ef:e5:f0:0a:d5:24:e8: 85:0c:7c:1e:ba:76:66:c5:bb:f1:c7:91:f9:ae:c8: 4d:15:9d:6c:f7:5a:55:17:59:97:ec:d8:6c:f8:25: 0d:2b:34:c7:30:00:ed:52:46:08:33:4b:49:02:e8: b1:fe:4b:75:6b:9c:2c:87:91:30:92:95:94:bf:8c: b6:cd:01:f0:1e:a6:fb:7e:36:0c:6c:d9:b4:cd:c3: 46:1a:5c:40:23:0c:2d:4b:91:43:1a:2a:7e:31:60: 49:6b:cf:fb:3c:c5:6d:24:36:04:e2:7a:e4:3d:bc: db:21:01:f2:ab:20:48:e2:a2:3f:d5:a1:6c:bd:fc: 30:49:43:3a:60:14:2e:64:da:27:60:b5:5f:14:90: 05:f4:c0:c5:15:81:fd:18:0b:fe:81:da:d8:f6:c4: df:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:35:00:7E:35:61:3A:50:59:8A:29:AC:06:5B:E0:63:28:80:DF:51 X509v3 Authority Key Identifier: keyid:81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/34332e3232392e3234382e302f32322d3234203d3e203435373331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.248.0/22 Signature Algorithm: sha256WithRSAEncryption 40:e8:e0:9d:ca:b1:37:1b:14:73:cd:db:d1:82:8d:1c:8d:5f: c9:f6:c2:a9:c2:5d:e0:11:e2:07:85:c8:9c:aa:06:5e:31:46: 9c:04:71:f2:1b:65:1f:9e:51:c4:c7:d4:a8:89:bc:5a:f1:50: 87:a2:3a:27:1e:6b:10:30:23:d1:f2:5f:52:21:ff:5f:2b:82: 85:d9:40:6d:29:8f:5a:f4:09:73:41:4a:2a:3d:09:a9:2a:eb: f9:c5:8d:24:50:eb:80:4a:ad:99:29:ca:e8:71:fb:3f:94:c3: df:99:9e:cf:e9:78:d1:38:d7:6c:7f:b9:ae:3e:79:61:88:a5: 88:a8:1d:39:b3:ee:1f:c6:e5:83:a7:c8:be:43:36:57:26:51: bf:5e:91:fe:d6:15:a5:26:10:71:d2:c4:e6:7e:06:35:06:f0: 8b:ab:79:72:ca:72:a1:7c:00:92:1c:56:90:95:a9:2e:78:28: 2f:62:1b:94:08:ef:9c:7e:0f:dc:41:03:85:d2:2b:95:39:af: 84:61:7c:a9:d9:c4:fd:1d:7c:49:ee:d9:95:99:6e:25:16:09: 2c:02:0d:50:a6:47:c9:20:49:d2:4a:64:2e:1e:dd:f5:48:60: b0:cf:d8:70:cd:4f:4c:ad:e3:85:20:e3:88:21:be:11:6e:61: 8a:3f:2d:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULvWx73gl6EzsdsDsZHcs2OuvW6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODExNUQzMDA5MUY4OTQ4Qjc2QUUwQUFDOEI0RjY4NTUw REEzMjFDRDAeFw0yNDA4MTIwOTU1MDJaFw0yNTA4MTExMDAwMDJaMDMxMTAvBgNV BAMTKEE5MzUwMDdFMzU2MTNBNTA1OThBMjlBQzA2NUJFMDYzMjg4MERGNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLvDxhdKynz+MZGI4PxH7ICNs8 q3R8L4ucLnrehVnSFNChmCbsHKvOZEmTAT7kVGOb1Uq1ud7SY7uvymYMXXNUITug hRZbZ0jLSLyJXikcR50wjC0KIT2yDCrnnZgs0PEo7+XwCtUk6IUMfB66dmbFu/HH kfmuyE0VnWz3WlUXWZfs2Gz4JQ0rNMcwAO1SRggzS0kC6LH+S3VrnCyHkTCSlZS/ jLbNAfAepvt+Ngxs2bTNw0YaXEAjDC1LkUMaKn4xYElrz/s8xW0kNgTieuQ9vNsh AfKrIEjioj/VoWy9/DBJQzpgFC5k2idgtV8UkAX0wMUVgf0YC/6B2tj2xN/5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqTUAfjVhOlBZiimsBlvgYyiA31EwHwYDVR0j BBgwFoAUgRXTAJH4lIt2rgqsi09oVQ2jIc0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YmRiYmMwOC00ZThlLTQ0YmEtYTRjZi0wNWUyMzNkZGEzYTUvMC84MTE1RDMwMDkx Rjg5NDhCNzZBRTBBQUM4QjRGNjg1NTBEQTMyMUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODExNUQzMDA5MUY4OTQ4Qjc2QUUwQUFDOEI0RjY4NTUwREEz MjFDRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZGJiYzA4LTRlOGUtNDRiYS1h NGNmLTA1ZTIzM2RkYTNhNS8wLzM0MzMyZTMyMzIzOTJlMzIzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTM3MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivl+DANBgkqhkiG 9w0BAQsFAAOCAQEAQOjgncqxNxsUc83b0YKNHI1fyfbCqcJd4BHiB4XInKoGXjFG nARx8htlH55RxMfUqIm8WvFQh6I6Jx5rEDAj0fJfUiH/XyuChdlAbSmPWvQJc0FK Kj0JqSrr+cWNJFDrgEqtmSnK6HH7P5TD35mez+l40TjXbH+5rj55YYiliKgdObPu H8blg6fIvkM2VyZRv16R/tYVpSYQcdLE5n4GNQbwi6t5cspyoXwAkhxWkJWpLngo L2IblAjvnH4P3EEDhdIrlTmvhGF8qdnE/R18Se7ZlZluJRYJLAINUKZHySBJ0kpk Lh7d9UhgsM/YcM1PTK3jhSDjiCG+EW5hij8taQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org