$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138362e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: ZffeIBEtnLg/Ujj93wFNolRHO6kiysPo5MQ8XNigO0w= Subject key identifier: 96:79:10:7E:2D:E3:59:28:93:8A:47:87:DB:C2:88:F1:9B:4D:22:E6 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 26B28EEEFF68A1E8977D84D51FF716E88FCB397B Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa Signing time: Wed 20 Nov 2024 07:03:08 +0000 ROA not before: Wed 20 Nov 2024 06:58:08 +0000 ROA not after: Wed 19 Nov 2025 07:03:08 +0000 asID: 63827 IP address blocks: 43.243.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:b2:8e:ee:ff:68:a1:e8:97:7d:84:d5:1f:f7:16:e8:8f:cb:39:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Nov 20 06:58:08 2024 GMT Not After : Nov 19 07:03:08 2025 GMT Subject: CN=9679107E2DE35928938A4787DBC288F19B4D22E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:93:6f:c6:23:6f:41:40:64:cb:37:2d:8b:a6: 1c:c1:c7:ff:bd:42:18:e8:bb:35:22:dd:25:c7:8f: ef:70:86:de:fe:24:7c:fc:0a:4b:d0:97:d0:e7:0d: 97:a5:aa:fa:bd:52:2a:a6:04:ed:1d:37:93:7c:fe: 4e:7a:cb:10:39:ec:ed:8d:05:9c:22:2f:4c:0d:b0: cb:05:37:73:f8:a7:64:a7:4a:b3:77:1a:db:e7:02: 5e:88:3e:64:8b:94:2e:54:78:d4:c9:df:10:89:67: 01:a7:8e:53:fa:bd:08:67:82:88:f9:7d:c3:0f:42: 34:8e:60:2a:a3:98:b7:b1:0f:3c:f4:24:b3:78:4c: 7b:5f:0b:cf:11:a1:08:f6:d2:e3:83:ff:60:e8:0c: fc:4f:06:2b:63:1d:fd:b3:8a:42:54:18:2a:1c:39: 93:54:15:03:c8:f8:62:9d:7c:94:87:78:fa:91:f4: 75:0f:d7:1e:a6:e3:03:15:f5:19:17:69:7f:e5:50: e7:59:fe:43:ef:8d:cf:81:e1:95:a7:c3:2a:c0:f5: d7:e7:5a:4a:6e:bc:11:4d:fe:51:b3:3b:db:92:a6: a3:f8:42:47:65:af:f1:8b:39:45:50:bb:a2:32:45: 84:60:b6:e1:68:4c:ab:93:68:45:1e:c1:7a:cf:e3: 15:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:79:10:7E:2D:E3:59:28:93:8A:47:87:DB:C2:88:F1:9B:4D:22:E6 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.186.0/24 Signature Algorithm: sha256WithRSAEncryption 45:4a:29:11:a1:45:f9:d1:57:5d:98:79:9b:d7:21:fe:e6:5c: 72:cc:83:3a:00:03:52:a8:e0:ca:a5:3e:59:fc:ac:68:4c:f4: 11:f2:62:cc:ac:06:ea:85:62:83:54:88:61:92:24:11:1e:e4: 36:2f:03:77:ba:33:d0:12:1b:a9:74:80:0a:ad:55:fc:b2:da: 04:86:e0:b1:b4:21:56:42:30:03:67:69:e4:cc:02:b6:00:25: 8b:50:29:37:33:12:bc:21:4a:c1:ed:85:ef:6f:17:fe:46:64: 10:3c:5c:c5:72:ce:1e:b2:4a:de:2c:d8:7e:b5:37:38:4e:fa: 78:64:4d:bf:3c:35:79:68:93:68:bd:e6:b6:4a:ce:0e:be:d3: 5f:8d:7d:80:63:dd:ef:58:ec:b3:38:ec:12:1a:48:42:89:58: f4:16:d8:32:58:13:db:22:62:b1:72:54:78:b3:13:34:1a:fd: 33:51:75:c7:98:48:74:e9:22:ce:31:1b:5f:23:6f:9e:ac:06: b6:42:e8:d5:f3:c6:6d:0c:32:79:90:15:51:d1:57:97:c2:57: 64:27:e7:cc:be:d9:85:25:92:03:01:3c:56:5c:f6:bf:4b:49: c2:8c:7d:6f:eb:4a:81:29:7b:dd:7a:fb:44:16:2e:52:22:d9: 0c:f2:e5:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJrKO7v9ooeiXfYTVH/cW6I/LOXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNDExMjAwNjU4MDhaFw0yNTExMTkwNzAzMDhaMDMxMTAvBgNV BAMTKDk2NzkxMDdFMkRFMzU5Mjg5MzhBNDc4N0RCQzI4OEYxOUI0RDIyRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/k2/GI29BQGTLNy2LphzBx/+9 QhjouzUi3SXHj+9wht7+JHz8CkvQl9DnDZelqvq9UiqmBO0dN5N8/k56yxA57O2N BZwiL0wNsMsFN3P4p2SnSrN3GtvnAl6IPmSLlC5UeNTJ3xCJZwGnjlP6vQhngoj5 fcMPQjSOYCqjmLexDzz0JLN4THtfC88RoQj20uOD/2DoDPxPBitjHf2zikJUGCoc OZNUFQPI+GKdfJSHePqR9HUP1x6m4wMV9RkXaX/lUOdZ/kPvjc+B4ZWnwyrA9dfn WkpuvBFN/lGzO9uSpqP4Qkdlr/GLOUVQu6IyRYRgtuFoTKuTaEUewXrP4xXxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlnkQfi3jWSiTikeH28KI8ZtNIuYwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzujANBgkqhkiG 9w0BAQsFAAOCAQEARUopEaFF+dFXXZh5m9ch/uZccsyDOgADUqjgyqU+WfysaEz0 EfJizKwG6oVig1SIYZIkER7kNi8Dd7oz0BIbqXSACq1V/LLaBIbgsbQhVkIwA2dp 5MwCtgAli1ApNzMSvCFKwe2F728X/kZkEDxcxXLOHrJK3izYfrU3OE76eGRNvzw1 eWiTaL3mtkrODr7TX419gGPd71jsszjsEhpIQolY9BbYMlgT2yJisXJUeLMTNBr9 M1F1x5hIdOkizjEbXyNvnqwGtkLo1fPGbQwyeZAVUdFXl8JXZCfnzL7ZhSWSAwE8 Vlz2v0tJwox9b+tKgSl73Xr7RBYuUiLZDPLlcA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org