$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa File: 34332e3234332e3138342e302f32332d3233203d3e203633383237.roa (raw, json) Hash identifier: Yi662bRsVhQynKfcqy7qXGygDZ5R6XwwA4ioPRSjZss= Subject key identifier: F3:DD:0E:88:96:3F:47:54:92:1D:A4:50:46:4D:A8:1B:6C:F2:6B:EB Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 5DC001BB1E53FA8B2D30F841B21B06577AF775B9 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa Signing time: Sat 28 Sep 2024 04:00:02 +0000 ROA not before: Sat 28 Sep 2024 03:55:02 +0000 ROA not after: Sat 27 Sep 2025 04:00:02 +0000 asID: 63827 IP address blocks: 43.243.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c0:01:bb:1e:53:fa:8b:2d:30:f8:41:b2:1b:06:57:7a:f7:75:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Sep 28 03:55:02 2024 GMT Not After : Sep 27 04:00:02 2025 GMT Subject: CN=F3DD0E88963F4754921DA450464DA81B6CF26BEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:48:c6:fa:fa:91:7a:21:5b:55:e4:ba:65:db: 23:7c:55:06:59:f8:9a:d7:0c:97:36:24:a4:86:0d: da:15:61:50:ab:40:c3:4b:bc:c2:2d:3f:e3:b2:5a: 1d:9b:12:cb:57:0b:ab:1d:8b:81:5f:20:f8:2d:22: 5f:3a:3b:8e:75:fe:1a:fd:58:de:aa:37:f8:e0:09: 5a:39:4a:9c:97:78:dc:53:10:e9:92:81:6e:3a:03: ec:97:3d:25:2c:a5:79:12:51:57:07:fb:b3:b3:15: df:df:57:5c:3f:cc:a5:72:4d:71:48:d2:a7:82:21: 0b:e5:03:dc:f6:44:c2:32:1e:9f:61:1e:d2:35:86: 6c:d3:84:b9:f9:25:e1:02:03:73:cc:ea:2e:5d:14: 45:42:9f:c3:e6:f6:dd:5a:6a:6e:ac:a0:be:63:76: 88:27:08:26:aa:ac:7e:6b:92:47:df:43:a0:82:a5: a4:4c:14:29:08:27:ec:2d:db:27:68:0c:09:81:ed: 20:eb:b8:cc:93:29:59:38:f5:1e:9b:df:81:5f:85: fa:95:ad:18:03:cd:9d:15:38:5d:c3:bc:96:89:0e: 7d:91:99:30:ed:1a:83:63:70:a7:ae:f5:e0:e0:c2: a6:d9:5a:48:09:08:ba:1d:74:82:1f:4b:05:a4:41: 24:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:DD:0E:88:96:3F:47:54:92:1D:A4:50:46:4D:A8:1B:6C:F2:6B:EB X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.184.0/23 Signature Algorithm: sha256WithRSAEncryption 65:32:4e:5f:a7:c2:d2:6e:ea:1d:1b:9a:9e:18:36:05:c4:6f: 90:93:0e:32:f5:c8:17:40:c0:27:01:bf:36:3b:71:d6:01:aa: 99:36:81:71:88:c0:af:d3:0a:6a:e0:c6:90:ec:d1:7e:ce:c6: 85:50:ba:d9:38:39:5d:e7:55:1e:59:e9:9b:98:2f:01:0e:41: 32:ce:39:26:87:49:9b:00:12:46:c8:bd:0d:99:e0:d1:1f:50: 42:4a:8e:02:ae:5c:1d:12:c2:b1:5e:53:3e:2b:7d:06:dd:c2: 23:a6:51:26:9f:01:a8:13:19:dc:d5:f4:60:3e:db:28:1d:a8: de:b2:91:75:b7:1e:bb:a6:14:66:fa:f0:fe:7e:9e:7b:56:2f: 88:e4:64:81:03:9f:06:60:62:7d:80:25:80:80:88:23:f9:d7: dc:dd:e3:c9:91:eb:43:8a:88:4b:0a:cb:82:8d:26:f4:2d:98: f4:68:5c:63:71:ee:54:cc:7d:10:b8:4a:12:29:91:20:1a:96: 50:42:70:e3:3a:1f:b9:90:f3:8b:00:b3:3b:c2:d3:62:3c:e6: 40:5b:ee:f4:2f:c6:54:bc:43:de:2c:04:67:41:37:31:d4:c4: 75:3d:80:d5:f2:38:52:71:3b:6b:4b:9a:34:e8:6e:8b:da:3d: f1:e2:a3:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXcABux5T+ostMPhBshsGV3r3dbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNDA5MjgwMzU1MDJaFw0yNTA5MjcwNDAwMDJaMDMxMTAvBgNV BAMTKEYzREQwRTg4OTYzRjQ3NTQ5MjFEQTQ1MDQ2NERBODFCNkNGMjZCRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFSMb6+pF6IVtV5Lpl2yN8VQZZ +JrXDJc2JKSGDdoVYVCrQMNLvMItP+OyWh2bEstXC6sdi4FfIPgtIl86O451/hr9 WN6qN/jgCVo5SpyXeNxTEOmSgW46A+yXPSUspXkSUVcH+7OzFd/fV1w/zKVyTXFI 0qeCIQvlA9z2RMIyHp9hHtI1hmzThLn5JeECA3PM6i5dFEVCn8Pm9t1aam6soL5j dognCCaqrH5rkkffQ6CCpaRMFCkIJ+wt2ydoDAmB7SDruMyTKVk49R6b34FfhfqV rRgDzZ0VOF3DvJaJDn2RmTDtGoNjcKeu9eDgwqbZWkgJCLoddIIfSwWkQSRVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU890OiJY/R1SSHaRQRk2oG2zya+swHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvzuDANBgkqhkiG 9w0BAQsFAAOCAQEAZTJOX6fC0m7qHRuanhg2BcRvkJMOMvXIF0DAJwG/Njtx1gGq mTaBcYjAr9MKauDGkOzRfs7GhVC62Tg5XedVHlnpm5gvAQ5BMs45JodJmwASRsi9 DZng0R9QQkqOAq5cHRLCsV5TPit9Bt3CI6ZRJp8BqBMZ3NX0YD7bKB2o3rKRdbce u6YUZvrw/n6ee1YviORkgQOfBmBifYAlgICII/nX3N3jyZHrQ4qISwrLgo0m9C2Y 9GhcY3HuVMx9ELhKEimRIBqWUEJw4zofuZDziwCzO8LTYjzmQFvu9C/GVLxD3iwE Z0E3MdTEdT2A1fI4UnE7a0uaNOhui9o98eKjYA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org