$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138372e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: 0qmQyEw2yDSM5hDJgcxrMdZdzt3wiNwJYQNjqFSUJMg= Subject key identifier: B3:1A:B9:99:B0:2A:06:B3:27:18:88:54:F6:BB:24:A7:B4:45:D0:2E Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 7BD50F723F4C72D3BE9BB7939B5006935B6F53B4 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa Signing time: Wed 20 Dec 2023 07:00:49 +0000 ROA not before: Wed 20 Dec 2023 06:55:49 +0000 ROA not after: Wed 18 Dec 2024 07:00:49 +0000 asID: 63827 IP address blocks: 43.243.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 20:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d5:0f:72:3f:4c:72:d3:be:9b:b7:93:9b:50:06:93:5b:6f:53:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Dec 20 06:55:49 2023 GMT Not After : Dec 18 07:00:49 2024 GMT Subject: CN=B31AB999B02A06B327188854F6BB24A7B445D02E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:4b:80:aa:5d:d0:5e:02:07:f0:ae:52:1b: e8:62:76:fc:30:08:96:51:d1:d3:91:46:de:58:21: 4f:b5:92:ce:b9:20:2a:fb:4b:b0:67:12:ae:18:54: 3f:da:84:73:2d:60:c6:d7:48:b5:cd:aa:bc:a9:78: ce:35:36:79:00:f3:e7:7c:db:b0:c3:02:24:bd:f0: 7b:df:f6:fe:cb:21:04:84:eb:e8:0f:d1:a5:02:d0: 0e:ee:64:eb:6b:7b:60:bf:3d:ac:08:08:6c:13:d4: c6:62:ce:d0:a1:37:b1:71:a0:2f:c2:a7:6d:fc:ea: a8:d5:36:95:20:55:25:b3:3f:01:30:77:9e:aa:e8: 26:4f:37:a0:25:ad:3c:c6:3d:f2:e4:94:f3:41:ed: a1:11:70:b0:14:fd:dd:2c:b2:e2:f1:47:79:69:34: a6:64:e7:f0:98:ba:69:31:df:b1:d2:0e:d8:b1:0e: a6:32:0e:80:a8:07:ec:78:6f:be:1c:72:87:48:37: 8b:43:93:51:12:61:37:d7:88:2b:0e:ff:76:8e:77: bd:fc:b5:cb:97:58:5b:16:90:68:0a:bd:eb:3c:85: c7:c8:69:c1:a0:d3:07:79:ad:ab:f0:5e:de:2f:7d: 76:2f:27:bf:51:65:e3:e9:10:3b:cf:2c:ae:a3:83: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1A:B9:99:B0:2A:06:B3:27:18:88:54:F6:BB:24:A7:B4:45:D0:2E X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.187.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:6f:3a:a6:37:3a:6d:54:73:b3:e5:74:a9:8c:04:bd:6b:46: 10:6a:32:24:96:bf:89:22:3b:a2:f5:87:bf:49:b5:88:d8:62: e1:d6:4e:99:8c:b3:3a:76:50:4c:ee:8e:e3:f7:06:f5:f0:36: a5:b5:9a:e5:65:ef:d3:b9:4c:5f:ee:11:6d:b8:fd:b8:ad:06: 28:d6:a4:bf:11:33:6e:f3:68:a3:6b:7f:ea:11:1a:c0:4d:f9: bf:91:b7:81:70:9b:ea:3f:0d:ad:35:bd:30:87:f5:e2:1a:af: ca:ff:d2:40:05:3b:58:d1:04:45:7c:09:32:17:56:6f:37:f4: 09:d1:3e:50:f6:f0:53:8a:1d:6c:00:e6:39:60:c5:99:8c:8d: dd:8a:5c:9d:fd:41:59:00:53:1f:8e:d8:03:50:30:ea:07:40: b1:20:e4:7a:7a:45:f0:e1:69:64:23:5d:d0:fb:cb:46:d5:8e: 59:45:68:1d:fd:68:44:2a:05:21:96:06:ca:ca:90:fc:8f:6e: 72:9d:0e:14:c9:60:41:3d:4f:00:89:10:09:46:0d:18:98:77: c3:89:73:72:a9:22:c1:1f:4b:b9:23:c1:58:25:97:10:bd:c9: 4e:12:ea:5c:16:fc:d4:ed:eb:18:26:65:41:34:7f:70:ea:39: 0a:f7:e5:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe9UPcj9MctO+m7eTm1AGk1tvU7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yMzEyMjAwNjU1NDlaFw0yNDEyMTgwNzAwNDlaMDMxMTAvBgNV BAMTKEIzMUFCOTk5QjAyQTA2QjMyNzE4ODg1NEY2QkIyNEE3QjQ0NUQwMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRD0uAql3QXgIH8K5SG+hidvww CJZR0dORRt5YIU+1ks65ICr7S7BnEq4YVD/ahHMtYMbXSLXNqrypeM41NnkA8+d8 27DDAiS98Hvf9v7LIQSE6+gP0aUC0A7uZOtre2C/PawICGwT1MZiztChN7FxoC/C p2386qjVNpUgVSWzPwEwd56q6CZPN6AlrTzGPfLklPNB7aERcLAU/d0ssuLxR3lp NKZk5/CYumkx37HSDtixDqYyDoCoB+x4b74ccodIN4tDk1ESYTfXiCsO/3aOd738 tcuXWFsWkGgKves8hcfIacGg0wd5ravwXt4vfXYvJ79RZePpEDvPLK6jg4VTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsxq5mbAqBrMnGIhU9rskp7RF0C4wHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzuzANBgkqhkiG 9w0BAQsFAAOCAQEAGm86pjc6bVRzs+V0qYwEvWtGEGoyJJa/iSI7ovWHv0m1iNhi 4dZOmYyzOnZQTO6O4/cG9fA2pbWa5WXv07lMX+4Rbbj9uK0GKNakvxEzbvNoo2t/ 6hEawE35v5G3gXCb6j8NrTW9MIf14hqvyv/SQAU7WNEERXwJMhdWbzf0CdE+UPbw U4odbADmOWDFmYyN3Ypcnf1BWQBTH47YA1Aw6gdAsSDkenpF8OFpZCNd0PvLRtWO WUVoHf1oRCoFIZYGysqQ/I9ucp0OFMlgQT1PAIkQCUYNGJh3w4lzcqkiwR9LuSPB WCWXEL3JThLqXBb81O3rGCZlQTR/cOo5Cvflrw== -----END CERTIFICATE-----Generated at Thu Jun 20 17:47:54 2024 by rpki-client on console-fra.rpki-client.org