$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138372e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: nC9Vz/V7n91DCoxvdGVxW+GzAM9lX59dn3xendBCsjg= Subject key identifier: AA:AB:82:C5:81:D0:30:35:01:35:C5:0C:86:D6:E8:6E:3D:D1:54:E3 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 5E771852DEF575FA13F1FE63A399CB75DB3D8644 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa Signing time: Wed 20 Nov 2024 07:03:08 +0000 ROA not before: Wed 20 Nov 2024 06:58:08 +0000 ROA not after: Wed 19 Nov 2025 07:03:08 +0000 asID: 63827 IP address blocks: 43.243.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:77:18:52:de:f5:75:fa:13:f1:fe:63:a3:99:cb:75:db:3d:86:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Nov 20 06:58:08 2024 GMT Not After : Nov 19 07:03:08 2025 GMT Subject: CN=AAAB82C581D030350135C50C86D6E86E3DD154E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:12:b6:03:e5:00:d4:3c:8c:0b:af:dc:13:5c: 1a:a8:ab:ea:99:f2:50:5a:51:34:62:d8:1c:f6:90: 8e:c9:72:db:95:73:0d:43:67:c3:8c:09:b8:50:d3: 4c:d6:ae:40:01:4c:16:7b:fe:46:9e:b5:52:c5:cc: ff:3f:7b:af:69:e8:ee:d2:8e:ce:8d:09:40:4b:05: bb:a8:3d:a6:88:7b:17:ff:f5:80:01:47:a9:97:cc: c3:8e:9c:f6:c4:33:11:f4:8b:58:f7:05:5a:00:8d: 0a:dd:bd:61:1b:c0:75:bd:ca:18:eb:d8:a7:38:05: 26:82:49:11:45:4c:08:b5:a2:6e:ff:93:45:80:06: a1:fc:41:6d:84:03:85:71:4c:9f:6b:d9:ac:68:01: 8c:36:d2:0f:ac:bc:2f:46:c7:64:f4:16:90:6f:e1: 25:6e:25:40:63:e0:8f:db:e6:fa:18:a9:af:de:91: 13:53:9a:f9:13:a0:aa:72:52:eb:f1:87:f4:66:dd: 08:80:ef:f0:c5:45:59:91:66:93:3c:6d:5c:26:35: 9e:32:43:3b:32:f6:a6:40:b9:be:7d:f0:92:ce:20: 27:db:90:4d:2b:52:d5:62:39:36:00:8c:9e:b7:be: 5a:36:f1:58:79:da:9f:b2:fe:59:5f:de:3f:12:5a: 1f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AB:82:C5:81:D0:30:35:01:35:C5:0C:86:D6:E8:6E:3D:D1:54:E3 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.187.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:ee:27:10:23:78:68:2a:d4:d4:3e:26:43:e9:98:d2:f1:8f: 30:ab:d9:7a:a0:d5:a8:8b:81:1e:53:ea:5d:64:ab:ec:6d:15: 64:71:55:fa:98:bd:d6:50:3e:f0:18:6c:59:20:4a:d5:2f:8d: bb:a9:63:b4:8f:a1:a5:6d:1c:c8:94:da:e7:34:8c:a1:e5:38: 7b:0c:8f:35:88:e3:2d:44:b5:99:a1:9e:cb:84:0a:de:31:71: d1:01:fc:cb:3c:c0:f3:85:34:2f:ee:01:eb:02:b8:12:4c:45: f2:7c:74:f3:8a:5f:3f:86:52:91:3d:8e:e2:a0:67:77:d1:03: fd:fc:37:16:b5:b3:2e:44:38:3a:4c:5d:b5:01:5d:df:64:9e: 98:a2:cc:b7:77:15:8b:a4:9f:da:e7:7e:7a:03:45:ca:52:86: 30:7b:e6:83:25:f6:52:80:02:1b:ee:c9:7d:62:b5:19:e1:47: 41:45:a8:34:38:f1:66:b3:0a:9d:e5:ad:16:9a:56:95:50:f3: 70:0c:c8:a1:e0:8a:28:fe:b4:7a:ea:ea:09:a4:b1:24:7e:39: b2:a7:41:4c:97:1e:2a:1c:ca:c6:ea:b8:9d:f2:93:d5:0b:dd: 0d:8d:18:c2:1c:71:5c:34:cf:0d:8e:55:9b:01:ba:6c:4f:94: c3:73:7f:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXncYUt71dfoT8f5jo5nLdds9hkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNDExMjAwNjU4MDhaFw0yNTExMTkwNzAzMDhaMDMxMTAvBgNV BAMTKEFBQUI4MkM1ODFEMDMwMzUwMTM1QzUwQzg2RDZFODZFM0REMTU0RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLErYD5QDUPIwLr9wTXBqoq+qZ 8lBaUTRi2Bz2kI7JctuVcw1DZ8OMCbhQ00zWrkABTBZ7/kaetVLFzP8/e69p6O7S js6NCUBLBbuoPaaIexf/9YABR6mXzMOOnPbEMxH0i1j3BVoAjQrdvWEbwHW9yhjr 2Kc4BSaCSRFFTAi1om7/k0WABqH8QW2EA4VxTJ9r2axoAYw20g+svC9Gx2T0FpBv 4SVuJUBj4I/b5voYqa/ekRNTmvkToKpyUuvxh/Rm3QiA7/DFRVmRZpM8bVwmNZ4y Qzsy9qZAub598JLOICfbkE0rUtViOTYAjJ63vlo28Vh52p+y/llf3j8SWh/VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqquCxYHQMDUBNcUMhtbobj3RVOMwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzuzANBgkqhkiG 9w0BAQsFAAOCAQEAi+4nECN4aCrU1D4mQ+mY0vGPMKvZeqDVqIuBHlPqXWSr7G0V ZHFV+pi91lA+8BhsWSBK1S+Nu6ljtI+hpW0cyJTa5zSMoeU4ewyPNYjjLUS1maGe y4QK3jFx0QH8yzzA84U0L+4B6wK4EkxF8nx084pfP4ZSkT2O4qBnd9ED/fw3FrWz LkQ4OkxdtQFd32SemKLMt3cVi6Sf2ud+egNFylKGMHvmgyX2UoACG+7JfWK1GeFH QUWoNDjxZrMKneWtFppWlVDzcAzIoeCKKP60eurqCaSxJH45sqdBTJceKhzKxuq4 nfKT1QvdDY0YwhxxXDTPDY5VmwG6bE+Uw3N/ig== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org