$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138362e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: rznsbOU5dR9pNg9rAYJRGjcKpTLC1lBHxAR9gJIhAJI= Subject key identifier: 39:6B:FE:36:44:D6:3A:F2:08:19:C8:0A:89:4F:ED:54:27:5A:32:39 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 3B64DBFAE7C9B83278AC67B3376E989FBA1C5C22 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa Signing time: Wed 20 Dec 2023 07:00:49 +0000 ROA not before: Wed 20 Dec 2023 06:55:49 +0000 ROA not after: Wed 18 Dec 2024 07:00:49 +0000 asID: 63827 IP address blocks: 43.243.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 20:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:64:db:fa:e7:c9:b8:32:78:ac:67:b3:37:6e:98:9f:ba:1c:5c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Dec 20 06:55:49 2023 GMT Not After : Dec 18 07:00:49 2024 GMT Subject: CN=396BFE3644D63AF20819C80A894FED54275A3239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4b:06:83:d0:0b:1d:31:06:87:f7:d6:76:38: 69:e2:e3:06:5e:22:3b:f8:7f:7d:f7:0a:a7:4c:12: b4:3b:fe:17:9a:53:d0:67:f8:be:d8:53:f3:1f:66: eb:69:2f:ce:59:ac:b1:3c:79:dc:62:a5:79:31:c2: d6:07:f2:c0:a9:56:50:fe:e1:f7:12:f8:11:fd:a1: 4c:a5:4e:1d:b2:47:46:03:da:20:6c:a8:5f:ab:a2: 8b:10:36:7a:ca:dc:0b:a0:70:0c:fd:47:69:36:50: 55:34:a5:7e:e4:aa:fa:7c:d3:17:ae:e4:e9:25:64: 15:13:d9:5d:c3:fc:a8:c8:de:32:40:2b:b9:9d:80: c9:16:ef:d4:8b:4c:35:e7:da:c3:14:d0:67:23:7f: 87:fe:1f:08:13:47:38:c1:4f:0c:7c:e3:e1:07:0d: e6:ba:a5:b5:98:95:51:04:58:1d:a8:71:70:bd:10: 8f:e2:66:d8:0e:b9:27:88:9c:38:f3:a3:ee:7c:71: 3c:03:b6:73:ce:e9:3c:53:10:c6:2b:35:28:12:50: 30:5c:85:2f:ac:08:10:f1:73:0f:d6:5c:32:c6:05: 0a:76:4e:a6:aa:5b:f2:46:6d:cd:1f:b2:71:d9:ac: 9b:07:3d:eb:98:ff:75:6d:91:ca:7a:9f:e5:d0:db: 67:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6B:FE:36:44:D6:3A:F2:08:19:C8:0A:89:4F:ED:54:27:5A:32:39 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.186.0/24 Signature Algorithm: sha256WithRSAEncryption 36:05:85:8f:46:5e:f7:55:4d:dc:ba:65:62:c0:4f:1c:65:c0: f9:40:b7:40:99:6f:7f:af:eb:47:67:09:26:c1:17:a6:6f:d4: e3:28:4b:33:41:38:b7:b2:f7:43:5b:df:7a:6e:97:89:83:be: 4f:34:b1:7f:a1:fc:94:6f:84:a8:3c:ef:28:02:96:80:15:da: 69:fa:a3:c8:57:f6:6c:2c:79:5e:e8:40:f2:d3:5d:24:65:0d: 19:af:20:b4:5b:0b:7f:89:51:1f:ff:d9:a0:24:23:4e:b4:c5: 50:a5:e9:5e:3c:1f:c7:fc:c4:88:91:01:75:d2:b0:dd:42:56: 8b:12:75:60:93:f0:5f:3f:1b:99:5f:c3:f3:8b:78:e4:2b:a9: c3:de:54:d3:c5:f1:9f:47:32:00:fa:1b:94:2c:e9:ff:55:18: 70:a1:01:b7:1c:da:55:f9:52:3c:bb:6c:f6:05:ef:9a:4a:40: 0b:30:5f:41:a7:42:aa:e1:e5:bf:03:bf:45:48:1e:86:7a:a2: 69:34:2e:d8:08:ab:ac:69:fd:ca:cc:99:6c:13:12:8a:44:34: 77:d4:3f:51:bb:e5:89:51:e6:10:01:f2:c8:91:88:97:16:49: 1d:b4:3a:a1:a3:cb:c3:09:31:96:f2:c8:19:76:58:71:ef:30: 1b:3d:e9:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO2Tb+ufJuDJ4rGezN26Yn7ocXCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yMzEyMjAwNjU1NDlaFw0yNDEyMTgwNzAwNDlaMDMxMTAvBgNV BAMTKDM5NkJGRTM2NDRENjNBRjIwODE5QzgwQTg5NEZFRDU0Mjc1QTMyMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXSwaD0AsdMQaH99Z2OGni4wZe Ijv4f333CqdMErQ7/heaU9Bn+L7YU/MfZutpL85ZrLE8edxipXkxwtYH8sCpVlD+ 4fcS+BH9oUylTh2yR0YD2iBsqF+roosQNnrK3AugcAz9R2k2UFU0pX7kqvp80xeu 5OklZBUT2V3D/KjI3jJAK7mdgMkW79SLTDXn2sMU0Gcjf4f+HwgTRzjBTwx84+EH Dea6pbWYlVEEWB2ocXC9EI/iZtgOuSeInDjzo+58cTwDtnPO6TxTEMYrNSgSUDBc hS+sCBDxcw/WXDLGBQp2TqaqW/JGbc0fsnHZrJsHPeuY/3Vtkcp6n+XQ22cFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOWv+NkTWOvIIGcgKiU/tVCdaMjkwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzujANBgkqhkiG 9w0BAQsFAAOCAQEANgWFj0Ze91VN3LplYsBPHGXA+UC3QJlvf6/rR2cJJsEXpm/U 4yhLM0E4t7L3Q1vfem6XiYO+TzSxf6H8lG+EqDzvKAKWgBXaafqjyFf2bCx5XuhA 8tNdJGUNGa8gtFsLf4lRH//ZoCQjTrTFUKXpXjwfx/zEiJEBddKw3UJWixJ1YJPw Xz8bmV/D84t45Cupw95U08Xxn0cyAPoblCzp/1UYcKEBtxzaVflSPLts9gXvmkpA CzBfQadCquHlvwO/RUgehnqiaTQu2AirrGn9ysyZbBMSikQ0d9Q/UbvliVHmEAHy yJGIlxZJHbQ6oaPLwwkxlvLIGXZYce8wGz3pgw== -----END CERTIFICATE-----Generated at Thu Jun 20 17:00:53 2024 by rpki-client on console-ams.rpki-client.org