$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138342e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: z29/6B1kOK/eMjCWZtmvPZLgk+HLmYp/VefCqYrAsKY= Subject key identifier: DA:3D:D1:34:D5:35:77:9F:B0:2C:3E:40:EA:A4:9A:C4:CC:80:10:55 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 6AA89F0BD8EAC2BAABBB145C1D5154B85A01859D Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32342d3234203d3e203633383237.roa Signing time: Wed 20 Nov 2024 07:03:08 +0000 ROA not before: Wed 20 Nov 2024 06:58:08 +0000 ROA not after: Wed 19 Nov 2025 07:03:08 +0000 asID: 63827 IP address blocks: 43.243.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:a8:9f:0b:d8:ea:c2:ba:ab:bb:14:5c:1d:51:54:b8:5a:01:85:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Nov 20 06:58:08 2024 GMT Not After : Nov 19 07:03:08 2025 GMT Subject: CN=DA3DD134D535779FB02C3E40EAA49AC4CC801055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:9d:52:79:96:85:53:59:35:6d:7c:50:2b: 95:2f:69:06:10:ab:36:9a:e7:db:97:bf:5e:84:b3: 6c:f2:8b:3c:4e:f0:70:23:42:d3:91:52:2f:4d:e7: 21:bd:de:4a:73:27:69:e8:8d:af:2c:c6:5c:2d:e0: e5:24:8c:aa:70:95:1a:67:43:3c:e1:50:e9:58:ec: fb:eb:75:0d:b7:45:4a:38:33:52:a5:e7:cf:6f:b2: da:f2:46:7d:c7:48:d6:f0:ad:d1:1e:fe:7a:6c:6e: 7c:1f:9b:a5:51:60:0e:06:4f:df:aa:97:85:7a:7e: 56:03:53:20:d3:17:8f:97:6c:85:8c:83:c0:38:f8: d5:f6:5f:54:97:4f:55:16:a5:24:5a:e1:af:4d:7f: ba:fa:35:7f:bd:4a:d1:79:5d:c5:c4:43:76:cd:60: ed:cc:df:5c:63:3d:a3:de:27:cc:2c:91:f4:b6:ec: 04:2a:57:13:52:1e:97:b9:5b:9b:95:b3:45:27:ea: f6:67:c3:8a:ba:5a:21:10:32:c8:84:84:f9:05:d0: 6e:87:f0:40:5e:ce:8a:92:a4:52:ed:68:e3:38:e6: 7c:f9:17:33:68:82:7d:46:a1:6f:72:63:bc:f8:df: a9:c1:19:13:73:59:4a:1e:6a:d6:51:98:e9:1f:0e: ba:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3D:D1:34:D5:35:77:9F:B0:2C:3E:40:EA:A4:9A:C4:CC:80:10:55 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.184.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:6f:2a:77:b4:dd:c0:e5:81:b6:1c:df:4f:d8:bf:4b:80:8a: f0:28:96:33:95:e8:2d:c2:fe:48:94:c5:6d:59:86:a4:a2:39: 7d:c3:da:e5:76:aa:98:cd:6e:b3:34:fe:47:80:14:a9:7f:cc: ba:bd:2e:f9:7d:3d:6d:2b:3f:1b:7b:d7:49:f8:c6:f2:f2:59: 83:00:b0:55:ad:36:11:7d:4c:d0:fc:1e:b5:00:1c:84:20:dc: 47:59:a8:31:96:e5:c0:0a:08:b0:9d:a6:4b:b1:51:52:2f:fa: ae:31:c6:a9:28:48:c1:b1:d2:83:ce:95:b7:06:d2:c8:17:4d: cc:9d:2e:5e:a1:5c:06:c8:b4:d3:0d:b2:2f:c1:95:5c:86:67: cc:13:96:6c:ce:55:23:20:b1:52:18:21:a3:8e:5b:d9:87:67: 64:8a:00:e7:4a:78:3d:d1:93:c8:9c:84:95:60:d8:fc:db:6f: 99:81:2b:16:33:06:45:38:cc:fa:d7:64:bd:d3:93:2d:53:34: 11:8e:b6:44:16:73:10:09:58:da:1c:94:9b:97:90:20:2f:92: dd:b7:12:84:43:ac:67:45:ef:2d:d7:f0:3c:31:c0:fb:c5:be: 89:ff:41:82:73:1a:81:29:ae:ef:70:a6:46:a4:b7:5c:fc:a9: 21:a5:14:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaqifC9jqwrqruxRcHVFUuFoBhZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNDExMjAwNjU4MDhaFw0yNTExMTkwNzAzMDhaMDMxMTAvBgNV BAMTKERBM0REMTM0RDUzNTc3OUZCMDJDM0U0MEVBQTQ5QUM0Q0M4MDEwNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1J1SeZaFU1k1bXxQK5UvaQYQ qzaa59uXv16Es2zyizxO8HAjQtORUi9N5yG93kpzJ2noja8sxlwt4OUkjKpwlRpn QzzhUOlY7PvrdQ23RUo4M1Kl589vstryRn3HSNbwrdEe/npsbnwfm6VRYA4GT9+q l4V6flYDUyDTF4+XbIWMg8A4+NX2X1SXT1UWpSRa4a9Nf7r6NX+9StF5XcXEQ3bN YO3M31xjPaPeJ8wskfS27AQqVxNSHpe5W5uVs0Un6vZnw4q6WiEQMsiEhPkF0G6H 8EBezoqSpFLtaOM45nz5FzNogn1GoW9yY7z436nBGRNzWUoeatZRmOkfDrpjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2j3RNNU1d5+wLD5A6qSaxMyAEFUwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzuDANBgkqhkiG 9w0BAQsFAAOCAQEAnW8qd7TdwOWBthzfT9i/S4CK8CiWM5XoLcL+SJTFbVmGpKI5 fcPa5XaqmM1uszT+R4AUqX/Mur0u+X09bSs/G3vXSfjG8vJZgwCwVa02EX1M0Pwe tQAchCDcR1moMZblwAoIsJ2mS7FRUi/6rjHGqShIwbHSg86VtwbSyBdNzJ0uXqFc Bsi00w2yL8GVXIZnzBOWbM5VIyCxUhgho45b2YdnZIoA50p4PdGTyJyElWDY/Ntv mYErFjMGRTjM+tdkvdOTLVM0EY62RBZzEAlY2hyUm5eQIC+S3bcShEOsZ0XvLdfw PDHA+8W+if9BgnMagSmu73CmRqS3XPypIaUUhg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org