$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/34332e3232392e3230342e302f32322d3234203d3e203234353332.roa File: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (raw, json) Hash identifier: EE/0v4WfFcBEGSUNLrjNAiGzdpFIqVIrqfTwOoiNBAE= Subject key identifier: CB:76:74:D8:BF:75:42:06:EB:FB:1B:0E:A7:1B:F4:B2:C9:2B:4E:A7 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 12807D38F3D751ECFA0F20F0BA765AAE1A82E077 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/34332e3232392e3230342e302f32322d3234203d3e203234353332.roa Signing time: Mon 31 Jul 2023 00:12:20 +0000 ROA not before: Mon 31 Jul 2023 00:07:20 +0000 ROA not after: Mon 29 Jul 2024 00:12:20 +0000 asID: 24532 IP address blocks: 43.229.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:80:7d:38:f3:d7:51:ec:fa:0f:20:f0:ba:76:5a:ae:1a:82:e0:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 31 00:07:20 2023 GMT Not After : Jul 29 00:12:20 2024 GMT Subject: CN=CB7674D8BF754206EBFB1B0EA71BF4B2C92B4EA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d7:40:22:6e:5f:2c:7e:ab:4b:d5:95:a5:6a: 45:56:f9:17:b4:71:d4:2f:c0:6f:7a:e1:4c:fd:8f: 0f:a3:03:6d:5b:aa:29:5d:77:d4:0f:84:9d:ec:f9: 49:91:0f:a3:a1:05:85:0f:98:3a:1d:ce:e9:ee:31: 33:da:60:52:e4:25:6a:4a:84:d1:6d:d7:57:d5:6f: 1c:4c:fe:63:cc:d0:19:14:ef:d9:33:61:e9:93:cf: 79:8c:5f:9b:4a:a6:f9:d2:9a:0e:7f:ce:62:5b:af: 01:a5:b8:c4:0a:aa:55:d9:e0:d1:0b:55:c2:e1:8c: ca:79:81:6a:ab:cf:f5:6b:90:82:4e:bc:ac:6e:bf: 10:20:72:fe:37:e6:2d:d4:58:d8:a9:c4:7f:0e:58: 77:9a:eb:01:3e:db:22:43:7a:1c:ea:5e:41:88:3b: e0:b7:be:1b:84:2a:bc:06:1a:e1:2e:06:30:8c:ce: df:68:26:45:77:19:91:1b:ef:eb:5c:26:d4:75:6b: 34:10:6b:a4:f3:e2:a6:25:33:e6:9e:43:23:ca:10: bf:bf:2f:ea:f1:49:3d:8e:71:8b:ca:25:00:a2:fa: 62:20:71:5d:f0:b3:92:ae:e4:32:39:f1:c8:d2:4f: 50:90:e6:62:27:85:70:ec:a9:c1:34:82:19:ab:d9: 9e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:76:74:D8:BF:75:42:06:EB:FB:1B:0E:A7:1B:F4:B2:C9:2B:4E:A7 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/34332e3232392e3230342e302f32322d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.204.0/22 Signature Algorithm: sha256WithRSAEncryption 45:a3:b5:8a:86:b3:48:bc:c4:b4:cb:22:2b:41:67:f0:95:96: 84:cc:5b:4f:97:45:22:7a:9a:07:30:61:7f:13:97:05:c9:88: 3a:74:ea:85:63:2b:f3:f0:92:db:f9:ad:af:da:1a:f9:9a:54: 2a:a3:9b:77:20:cb:c8:9c:3f:c8:df:ef:85:30:7d:6c:25:cd: 3a:cd:b7:ff:1b:00:0e:ad:4b:72:49:5f:7d:87:a9:38:c7:5b: c6:49:28:10:ad:4d:88:b2:3e:5a:5d:59:80:a5:80:38:7d:68: d4:a2:ad:36:18:a7:f3:d6:ec:a7:3b:c1:f0:96:5b:dd:16:dd: b5:a6:91:6d:b3:4f:fc:9e:3e:f0:81:53:bc:df:a9:62:30:d1: 00:52:c8:5b:c4:e4:ec:6c:7b:a5:fe:57:16:24:4e:27:d6:bc: f7:1d:b2:b8:78:d3:a1:e6:f2:2c:c2:44:54:e7:f2:5f:f4:ee: 75:1d:14:bb:62:00:cc:3c:20:8b:4e:35:83:36:a7:f7:0f:a8: 6d:58:8a:20:7c:40:a7:b8:8a:8b:71:eb:ad:a4:88:96:6e:10: 37:11:94:a3:dc:56:bd:17:ee:27:ab:c7:ff:7a:d1:67:38:88: 4b:19:6f:b8:ee:1d:ec:f0:a1:2b:46:78:69:63:f3:e3:08:39: f2:1b:a4:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEoB9OPPXUez6DyDwunZarhqC4HcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yMzA3MzEwMDA3MjBaFw0yNDA3MjkwMDEyMjBaMDMxMTAvBgNV BAMTKENCNzY3NEQ4QkY3NTQyMDZFQkZCMUIwRUE3MUJGNEIyQzkyQjRFQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN10Aibl8sfqtL1ZWlakVW+Re0 cdQvwG964Uz9jw+jA21bqildd9QPhJ3s+UmRD6OhBYUPmDodzunuMTPaYFLkJWpK hNFt11fVbxxM/mPM0BkU79kzYemTz3mMX5tKpvnSmg5/zmJbrwGluMQKqlXZ4NEL VcLhjMp5gWqrz/VrkIJOvKxuvxAgcv435i3UWNipxH8OWHea6wE+2yJDehzqXkGI O+C3vhuEKrwGGuEuBjCMzt9oJkV3GZEb7+tcJtR1azQQa6Tz4qYlM+aeQyPKEL+/ L+rxST2OcYvKJQCi+mIgcV3ws5Ku5DI58cjST1CQ5mInhXDsqcE0ghmr2Z6zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy3Z02L91Qgbr+xsOpxv0sskrTqcwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzM0MzMyZTMyMzIzOTJlMzIzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivlzDANBgkqhkiG 9w0BAQsFAAOCAQEARaO1ioazSLzEtMsiK0Fn8JWWhMxbT5dFInqaBzBhfxOXBcmI OnTqhWMr8/CS2/mtr9oa+ZpUKqObdyDLyJw/yN/vhTB9bCXNOs23/xsADq1Lcklf fYepOMdbxkkoEK1NiLI+Wl1ZgKWAOH1o1KKtNhin89bspzvB8JZb3RbdtaaRbbNP /J4+8IFTvN+pYjDRAFLIW8Tk7Gx7pf5XFiROJ9a89x2yuHjToebyLMJEVOfyX/Tu dR0Uu2IAzDwgi041gzan9w+obViKIHxAp7iKi3HrraSIlm4QNxGUo9xWvRfuJ6vH /3rRZziISxlvuO4d7PChK0Z4aWPz4wg58hukuA== -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:57 2024 by rpki-client on console-ams.rpki-client.org