$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/34332e3233302e3132392e302f32342d3234203d3e203233363739.roa File: 34332e3233302e3132392e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: Ngl09cbOyMNb8tFvJDCgUeR7K5YHkswf7YmktRoPxI8= Subject key identifier: 2B:21:4B:D5:C3:12:C6:19:3E:DD:78:EF:E4:E3:13:B3:C3:82:5E:49 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 432F20A7CD120011764EDA87281291527CD8AF5A Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/34332e3233302e3132392e302f32342d3234203d3e203233363739.roa Signing time: Tue 13 Aug 2024 05:16:41 +0000 ROA not before: Tue 13 Aug 2024 05:11:41 +0000 ROA not after: Tue 12 Aug 2025 05:16:41 +0000 asID: 23679 IP address blocks: 43.230.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:2f:20:a7:cd:12:00:11:76:4e:da:87:28:12:91:52:7c:d8:af:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Aug 13 05:11:41 2024 GMT Not After : Aug 12 05:16:41 2025 GMT Subject: CN=2B214BD5C312C6193EDD78EFE4E313B3C3825E49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:83:26:3b:ff:16:9d:97:3e:9e:e6:22:ce:b7: 7a:b3:f1:23:7d:92:1a:85:26:ef:9e:2b:eb:2f:fb: 14:83:12:23:7a:7d:11:65:9a:63:e6:34:a8:28:40: 54:cd:28:42:8b:ba:4c:10:db:9f:2a:6a:0f:2d:aa: 6a:3e:97:5b:80:d9:c1:2f:0a:69:5f:eb:3f:3a:21: 2f:b9:18:00:b9:49:ed:22:26:3c:22:99:d6:6e:c9: d7:3b:2a:49:04:fb:76:ae:11:81:14:81:50:c3:d0: 36:5d:79:99:1b:d3:28:bb:ad:bc:f0:f7:83:4e:5c: 4b:b3:58:d4:e1:d2:f4:af:28:db:7e:d1:d3:16:1c: b2:b0:8f:b5:ec:11:96:03:6f:37:a5:c8:59:17:af: ab:5d:96:0b:ef:83:ad:de:88:d1:08:be:c4:a6:3b: 70:8e:47:d9:e8:6d:8b:50:50:67:75:4e:a1:29:53: 41:f3:2a:32:c1:79:55:ff:d7:bf:bc:79:54:3e:c5: 1c:48:cc:a5:a1:a7:2f:03:9a:51:38:77:a8:33:16: 4b:b8:01:33:f2:ce:d0:74:55:1e:87:70:bd:cd:8c: 3a:8f:e0:ca:69:5d:6a:79:c4:39:2b:79:23:f1:91: 3b:f0:24:98:6e:79:20:c6:bc:be:03:43:59:a1:64: 03:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:21:4B:D5:C3:12:C6:19:3E:DD:78:EF:E4:E3:13:B3:C3:82:5E:49 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/34332e3233302e3132392e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.129.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:9d:a0:df:73:53:ef:b7:c3:6f:46:dc:34:f4:39:c8:69:e1: 5a:2a:f2:ee:dd:38:1b:5a:ba:51:3a:35:1e:bd:9a:85:aa:d2: 11:43:e7:3e:62:08:8b:f9:5e:15:63:b7:0f:bb:ff:23:5d:a5: b8:ff:11:f1:a7:5a:0b:36:39:8c:e3:af:cf:71:b3:c0:85:02: 0e:08:98:d8:c9:6f:a9:4f:95:e4:cb:35:6f:08:77:0b:68:af: b5:d1:88:22:3f:00:8d:ae:68:0b:56:db:0a:65:d4:8c:58:c7: e1:a0:81:fb:de:b7:25:9c:57:96:fe:89:6c:4b:45:f0:e6:05: b9:1f:14:4f:55:02:07:df:55:e2:02:1f:ff:32:0e:dc:4c:0a: 3d:a4:65:0c:5b:51:25:94:b7:bc:5d:cc:b0:2b:a5:25:95:6f: 4e:45:1e:8d:8a:63:c6:cf:30:47:22:f7:25:63:13:17:1d:6a: 0d:58:dc:ae:03:29:40:71:85:32:f5:3e:f2:90:4d:e6:2f:7d: a1:ba:b5:95:9b:34:28:3c:92:2f:04:87:a4:66:e9:61:30:69: f7:7a:ce:f0:38:61:79:e4:55:fd:1a:43:6c:a8:0c:76:bc:bd: 19:1e:57:2f:38:76:5f:5f:89:34:09:18:18:bd:95:90:f4:ce: c9:fd:8e:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQy8gp80SABF2TtqHKBKRUnzYr1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNDA4MTMwNTExNDFaFw0yNTA4MTIwNTE2NDFaMDMxMTAvBgNV BAMTKDJCMjE0QkQ1QzMxMkM2MTkzRURENzhFRkU0RTMxM0IzQzM4MjVFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCygyY7/xadlz6e5iLOt3qz8SN9 khqFJu+eK+sv+xSDEiN6fRFlmmPmNKgoQFTNKEKLukwQ258qag8tqmo+l1uA2cEv Cmlf6z86IS+5GAC5Se0iJjwimdZuydc7KkkE+3auEYEUgVDD0DZdeZkb0yi7rbzw 94NOXEuzWNTh0vSvKNt+0dMWHLKwj7XsEZYDbzelyFkXr6tdlgvvg63eiNEIvsSm O3COR9nobYtQUGd1TqEpU0HzKjLBeVX/17+8eVQ+xRxIzKWhpy8DmlE4d6gzFku4 ATPyztB0VR6HcL3NjDqP4MppXWp5xDkreSPxkTvwJJhueSDGvL4DQ1mhZAMvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKyFL1cMSxhk+3Xjv5OMTs8OCXkkwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzM0MzMyZTMyMzMzMDJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvmgTANBgkqhkiG 9w0BAQsFAAOCAQEAPJ2g33NT77fDb0bcNPQ5yGnhWiry7t04G1q6UTo1Hr2aharS EUPnPmIIi/leFWO3D7v/I12luP8R8adaCzY5jOOvz3GzwIUCDgiY2MlvqU+V5Ms1 bwh3C2ivtdGIIj8Aja5oC1bbCmXUjFjH4aCB+963JZxXlv6JbEtF8OYFuR8UT1UC B99V4gIf/zIO3EwKPaRlDFtRJZS3vF3MsCulJZVvTkUejYpjxs8wRyL3JWMTFx1q DVjcrgMpQHGFMvU+8pBN5i99obq1lZs0KDySLwSHpGbpYTBp93rO8DhheeRV/RpD bKgMdry9GR5XLzh2X1+JNAkYGL2VkPTOyf2ODA== -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:31 2024 by rpki-client on console-ams.rpki-client.org