$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa File: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (raw, json) Hash identifier: XNyUIRQtKNQg0scHLvGfTd1iQ5fTzdzUb2EnWutkjlI= Subject key identifier: 3C:9C:C8:10:E2:5D:03:62:1D:7B:5F:FD:24:C9:CD:05:29:15:A6:21 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 0A83DA3D873DEE48D0A00BE76B203133643A2FBC Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa Signing time: Mon 01 Jul 2024 01:04:29 +0000 ROA not before: Mon 01 Jul 2024 00:59:29 +0000 ROA not after: Mon 30 Jun 2025 01:04:29 +0000 asID: 58376 IP address blocks: 43.245.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 18:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:83:da:3d:87:3d:ee:48:d0:a0:0b:e7:6b:20:31:33:64:3a:2f:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Jul 1 00:59:29 2024 GMT Not After : Jun 30 01:04:29 2025 GMT Subject: CN=3C9CC810E25D03621D7B5FFD24C9CD052915A621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d5:d8:e8:45:b7:8e:6d:12:bd:c0:a6:67:2b: ab:aa:ee:f2:83:d8:6c:e2:55:51:23:f4:ea:c3:15: b8:30:59:c1:b4:5c:09:fc:88:74:d3:43:74:5f:de: 26:7a:bc:37:44:dc:4b:ed:c9:29:c4:01:02:82:df: 57:79:94:3c:5d:00:4e:55:00:c8:00:af:99:d8:b4: 29:cd:e1:f8:23:44:a7:87:95:97:4d:6f:c9:d9:0f: f1:44:ab:2d:48:bc:68:f1:42:72:c8:1e:3a:35:c9: 65:ba:2d:3b:0f:ac:69:fa:62:e5:a8:33:36:fb:e8: 36:7c:bd:5d:18:6f:86:73:e2:21:d9:69:b9:79:05: fc:2d:c2:15:19:b5:0b:05:bb:bb:49:ff:64:fb:92: 7f:c9:8b:16:df:b9:a7:97:50:4d:a1:0c:83:77:02: 98:c4:5c:75:20:68:06:62:67:67:0b:12:de:31:94: e7:6d:7d:63:06:3d:b0:48:e6:79:06:f0:4f:e2:a7: 6d:20:b0:b4:45:a6:ff:a2:ab:f7:9e:f3:75:ac:4a: b7:9e:a1:ed:96:e8:11:3e:62:76:34:34:7c:5f:fe: d1:59:b8:8c:b4:98:21:40:69:c3:39:09:ba:b6:0b: 3b:d3:db:e6:52:11:a2:c4:c2:00:04:a2:1c:4b:e4: 2e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9C:C8:10:E2:5D:03:62:1D:7B:5F:FD:24:C9:CD:05:29:15:A6:21 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.188.0/22 Signature Algorithm: sha256WithRSAEncryption 70:b2:13:47:61:35:60:da:e3:9f:91:84:f9:ee:a0:58:c1:0c: 72:ea:4e:4d:6e:41:53:be:ff:53:38:fc:13:e5:03:40:be:e5: 69:2d:96:5f:cf:4c:34:e1:a9:b1:15:86:1b:e0:bc:5d:c3:b5: a1:61:9f:6f:00:3c:73:92:ca:9b:aa:76:85:4c:ca:45:b6:8a: 2b:c6:e4:67:1a:19:b0:67:1b:d6:6c:33:3a:82:08:31:aa:96: fd:d7:b5:6e:0f:fe:dd:b5:79:98:a6:f1:6a:75:bb:83:cf:d3: 90:2e:47:50:d3:1e:a7:97:6d:7e:52:ee:66:2f:ee:9f:e3:c1: c2:a7:3a:a4:6f:65:80:83:17:6f:f4:e4:d6:81:15:21:18:08: 62:61:02:66:22:41:72:05:1a:dd:bd:7a:11:67:4c:c0:43:4c: 72:89:3f:ac:1d:9e:f3:a0:2c:b1:17:01:e4:b9:bd:71:70:14: 98:e0:f0:83:08:df:ed:38:a1:58:79:b0:8f:95:f3:c5:b4:1d: 08:bc:33:55:9f:4e:88:66:15:b2:20:81:cc:d1:c5:59:6f:30: c4:09:46:34:1f:a6:a9:be:8b:e7:9c:a4:05:bc:e5:a7:aa:f1: 2b:2e:42:1d:78:12:58:ee:0c:6b:b4:77:7b:54:ec:ad:1b:dc: 80:4c:2c:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCoPaPYc97kjQoAvnayAxM2Q6L7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNDA3MDEwMDU5MjlaFw0yNTA2MzAwMTA0MjlaMDMxMTAvBgNV BAMTKDNDOUNDODEwRTI1RDAzNjIxRDdCNUZGRDI0QzlDRDA1MjkxNUE2MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw1djoRbeObRK9wKZnK6uq7vKD 2GziVVEj9OrDFbgwWcG0XAn8iHTTQ3Rf3iZ6vDdE3EvtySnEAQKC31d5lDxdAE5V AMgAr5nYtCnN4fgjRKeHlZdNb8nZD/FEqy1IvGjxQnLIHjo1yWW6LTsPrGn6YuWo Mzb76DZ8vV0Yb4Zz4iHZabl5BfwtwhUZtQsFu7tJ/2T7kn/JixbfuaeXUE2hDIN3 ApjEXHUgaAZiZ2cLEt4xlOdtfWMGPbBI5nkG8E/ip20gsLRFpv+iq/ee83WsSree oe2W6BE+YnY0NHxf/tFZuIy0mCFAacM5Cbq2CzvT2+ZSEaLEwgAEohxL5C7DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPJzIEOJdA2Ide1/9JMnNBSkVpiEwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8wLzM0MzMyZTMyMzQzNTJlMzEzODM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv1vDANBgkqhkiG 9w0BAQsFAAOCAQEAcLITR2E1YNrjn5GE+e6gWMEMcupOTW5BU77/Uzj8E+UDQL7l aS2WX89MNOGpsRWGG+C8XcO1oWGfbwA8c5LKm6p2hUzKRbaKK8bkZxoZsGcb1mwz OoIIMaqW/de1bg/+3bV5mKbxanW7g8/TkC5HUNMep5dtflLuZi/un+PBwqc6pG9l gIMXb/Tk1oEVIRgIYmECZiJBcgUa3b16EWdMwENMcok/rB2e86AssRcB5Lm9cXAU mODwgwjf7TihWHmwj5XzxbQdCLwzVZ9OiGYVsiCBzNHFWW8wxAlGNB+mqb6L55yk Bbzlp6rxKy5CHXgSWO4Ma7R3e1TsrRvcgEwsng== -----END CERTIFICATE-----Generated at Mon Feb 17 07:54:56 2025 by rpki-client