$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa File: 34332e3234372e32302e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: Enxf/xa4QiGnjWUhd96Msh7Dkzmv4QjqPDYSxD4tjhE= Subject key identifier: 0C:4B:F4:B9:22:63:95:A6:61:13:3A:27:5B:AA:F5:03:91:E5:F6:F3 Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 075DC904A1334F6A198EC7EB9C8D171D353B3087 Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa Signing time: Sat 01 Jun 2024 09:00:01 +0000 ROA not before: Sat 01 Jun 2024 08:55:01 +0000 ROA not after: Sat 31 May 2025 09:00:01 +0000 asID: 24523 IP address blocks: 43.247.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:5d:c9:04:a1:33:4f:6a:19:8e:c7:eb:9c:8d:17:1d:35:3b:30:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Jun 1 08:55:01 2024 GMT Not After : May 31 09:00:01 2025 GMT Subject: CN=0C4BF4B9226395A661133A275BAAF50391E5F6F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:18:d7:d1:2c:2b:d5:04:f7:dc:e3:25:5e:1a: 77:05:bf:16:6a:08:e7:26:41:f4:fe:29:88:3a:f6: 7e:b8:76:c0:b0:c7:24:a1:95:89:98:ab:60:f5:c7: 35:ba:60:2e:5c:10:d0:03:ea:61:f6:b5:3f:63:83: ea:34:2a:b6:67:63:61:76:ec:6b:ab:ae:fa:79:8a: a5:83:d3:1c:0f:ff:86:41:3e:5c:ed:aa:0e:cc:1e: c6:97:3d:2f:d4:ba:6a:ba:2b:16:df:ab:e0:dd:83: 07:ff:27:7c:45:3d:87:7c:a4:cf:6f:17:be:da:bf: 80:2f:b3:13:b8:5d:cd:b5:2d:c6:71:c5:81:0c:38: 05:03:4a:90:4f:ae:ac:5c:4f:b0:ba:4d:b1:ba:e3: 75:b1:2b:13:f6:9e:4f:cf:a6:c1:95:a6:ca:46:15: c9:3e:dd:cb:85:7a:60:17:84:43:74:55:57:57:9d: 83:f6:1d:36:09:af:4a:77:db:fa:2b:e7:8e:6d:c5: 09:fa:3a:08:ab:d0:99:2a:ca:81:f5:d3:6c:b1:79: bd:f4:0e:3d:51:76:7a:50:b4:59:e2:fe:22:5f:25: 6e:2e:9b:5b:58:97:f8:af:60:c3:bc:ae:51:c4:ca: e3:f0:7e:bf:5f:5f:d3:05:9e:23:4e:bf:86:7d:c8: a2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4B:F4:B9:22:63:95:A6:61:13:3A:27:5B:AA:F5:03:91:E5:F6:F3 X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.20.0/22 Signature Algorithm: sha256WithRSAEncryption 45:25:09:ca:b3:88:44:32:12:0a:82:ae:9c:66:5f:f6:19:be: ab:df:2b:12:a4:80:0a:0c:9a:d1:d1:19:7c:56:56:a0:8a:f9: d9:83:66:5e:5f:35:f1:63:0a:47:b0:da:b4:cf:2a:07:95:f4: dd:17:81:0e:53:46:0e:61:ce:2b:18:8c:0e:f8:06:01:67:ab: fc:ad:c1:b8:6c:3d:63:fd:64:bd:4c:71:b8:cc:6a:91:b8:54: 15:c2:58:37:ba:f7:11:73:70:8b:cb:5c:87:8d:36:0d:db:68: 99:cd:44:19:0b:c4:34:49:97:71:89:c7:33:0a:01:fd:cb:c2: 80:fa:93:a1:c1:7b:0d:3e:58:c5:5e:16:01:b5:1a:de:8a:cf: 4c:d8:96:ee:2e:a0:de:52:5f:6f:8e:5e:8c:a1:94:01:e7:3b: 18:ba:8c:8e:cf:b3:4e:d7:31:10:12:3e:6f:1a:05:ba:e2:1d: 48:c5:fb:08:68:9e:ad:ae:b8:b4:18:f5:9d:9b:35:39:36:02: 1e:de:5a:1f:0e:f2:17:b8:53:30:5d:fa:a9:03:e0:2b:84:94: 3d:f8:c1:59:ec:55:33:59:65:c9:01:de:a2:d5:9c:19:c3:2d: 0c:42:ff:44:ca:88:7a:92:e5:9f:85:aa:20:ce:06:76:42:b6: 14:04:50:89 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUB13JBKEzT2oZjsfrnI0XHTU7MIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yNDA2MDEwODU1MDFaFw0yNTA1MzEwOTAwMDFaMDMxMTAvBgNV BAMTKDBDNEJGNEI5MjI2Mzk1QTY2MTEzM0EyNzVCQUFGNTAzOTFFNUY2RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHGNfRLCvVBPfc4yVeGncFvxZq COcmQfT+KYg69n64dsCwxyShlYmYq2D1xzW6YC5cENAD6mH2tT9jg+o0KrZnY2F2 7Gurrvp5iqWD0xwP/4ZBPlztqg7MHsaXPS/Uumq6Kxbfq+Ddgwf/J3xFPYd8pM9v F77av4AvsxO4Xc21LcZxxYEMOAUDSpBPrqxcT7C6TbG643WxKxP2nk/PpsGVpspG Fck+3cuFemAXhEN0VVdXnYP2HTYJr0p32/or545txQn6Ogir0JkqyoH102yxeb30 Dj1RdnpQtFni/iJfJW4um1tYl/ivYMO8rlHEyuPwfr9fX9MFniNOv4Z9yKIDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUDEv0uSJjlaZhEzonW6r1A5Hl9vMwHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9xQwDQYJKoZIhvcN AQELBQADggEBAEUlCcqziEQyEgqCrpxmX/YZvqvfKxKkgAoMmtHRGXxWVqCK+dmD Zl5fNfFjCkew2rTPKgeV9N0XgQ5TRg5hzisYjA74BgFnq/ytwbhsPWP9ZL1McbjM apG4VBXCWDe69xFzcIvLXIeNNg3baJnNRBkLxDRJl3GJxzMKAf3LwoD6k6HBew0+ WMVeFgG1Gt6Kz0zYlu4uoN5SX2+OXoyhlAHnOxi6jI7Ps07XMRASPm8aBbriHUjF +whonq2uuLQY9Z2bNTk2Ah7eWh8O8he4UzBd+qkD4CuElD34wVnsVTNZZckB3qLV nBnDLQxC/0TKiHqS5Z+FqiDOBnZCthQEUIk= -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org