$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/34332e3234372e31322e302f32322d3234203d3e203338333230.roa File: 34332e3234372e31322e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: gN2Jjbi+Ej908OVQGOZ0dUAEHVcokN3FQ2wzz/c2bTI= Subject key identifier: E4:D3:2C:22:55:DD:73:9B:E5:C5:79:F4:E5:95:58:B0:A0:74:F8:5F Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 0C013E9B02D8D83E20B3A425B388D7A391F9F1B8 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/34332e3234372e31322e302f32322d3234203d3e203338333230.roa Signing time: Mon 01 Jul 2024 01:02:25 +0000 ROA not before: Mon 01 Jul 2024 00:57:25 +0000 ROA not after: Mon 30 Jun 2025 01:02:25 +0000 asID: 38320 IP address blocks: 43.247.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:01:3e:9b:02:d8:d8:3e:20:b3:a4:25:b3:88:d7:a3:91:f9:f1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Jul 1 00:57:25 2024 GMT Not After : Jun 30 01:02:25 2025 GMT Subject: CN=E4D32C2255DD739BE5C579F4E59558B0A074F85F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:37:4a:8a:5a:7d:64:84:32:57:9b:c4:48:7c: 04:ce:52:31:13:56:5e:a3:99:20:fb:52:44:21:d6: 3b:d9:57:b4:2f:38:9f:72:41:69:60:9e:a4:db:53: ff:98:bc:fe:46:08:95:d7:8a:ca:e4:2a:71:f1:a3: 2f:3a:6f:96:98:d3:7a:55:ea:cb:31:3b:d2:c0:83: ef:d4:fb:88:62:d3:c1:95:7b:08:a5:10:09:36:04: 68:04:af:15:94:58:a0:7e:a9:34:4b:cd:e9:1a:64: 4a:ee:5f:e6:7d:39:10:aa:51:4e:69:db:ca:9a:a9: 1d:41:7c:05:3a:24:f8:27:4a:2e:3d:62:a9:6f:d6: de:ca:d5:da:37:a8:de:7e:7e:a2:0d:8f:5b:78:92: ba:ec:ac:ac:12:5c:ca:96:e1:e7:ff:50:11:a0:4c: 36:4e:27:c5:94:79:45:18:da:fd:c1:44:43:20:c9: 9f:6c:90:8a:d5:42:c5:d0:d7:d8:34:36:ac:2f:17: ac:8f:d9:8b:32:25:84:91:4f:ae:a6:83:52:d2:d5: b6:79:bb:95:af:9e:62:05:f8:d3:55:c4:0b:57:c6: 34:d6:c2:15:14:c6:f7:c2:ca:3f:89:57:4f:fe:67: 5b:6f:35:2a:c5:e6:52:e7:5b:6c:4e:73:6f:9f:ab: 58:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D3:2C:22:55:DD:73:9B:E5:C5:79:F4:E5:95:58:B0:A0:74:F8:5F X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/34332e3234372e31322e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.12.0/22 Signature Algorithm: sha256WithRSAEncryption 48:f3:10:ef:16:7b:40:a6:fd:92:bc:52:4d:c0:86:f5:2b:1a: 35:fc:b2:f6:c6:f3:cb:11:75:74:fe:85:77:97:ce:23:06:60: 3c:94:b8:be:c6:13:80:ef:c5:26:30:7e:a5:78:aa:86:b7:70: cf:00:ab:5a:7a:a9:77:35:a6:06:1d:7a:89:f3:f6:72:b1:af: f4:77:f7:dd:19:63:da:41:d6:fb:7e:ca:f9:64:d8:8e:d3:89: a6:1a:27:26:94:2d:10:4d:dd:09:36:47:9f:70:a7:ca:6f:a9: 3d:93:cd:da:3b:ed:2f:1e:18:68:25:c6:6f:c7:44:0a:09:e6: 8e:81:48:d6:cd:2f:12:20:de:48:83:05:85:4c:c6:27:bc:ee: 76:61:c9:57:7d:8e:cb:02:91:83:01:17:46:e5:64:df:86:d1: 61:65:1e:18:7d:ad:24:ea:22:ed:3a:27:74:af:36:25:da:9a: 3d:3b:64:16:ae:03:21:56:2a:67:5c:bd:c3:1d:57:62:4c:34: 57:68:a2:84:dc:54:6d:6b:33:9b:9f:3f:c2:95:3d:10:97:8a: a3:4b:93:12:ab:66:eb:4d:ad:26:26:0e:f5:55:67:11:4d:81: 60:ce:de:96:6e:0c:27:15:46:79:be:47:28:f9:fc:dc:05:a4: 4a:03:56:8f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDAE+mwLY2D4gs6Qls4jXo5H58bgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDA3MDEwMDU3MjVaFw0yNTA2MzAwMTAyMjVaMDMxMTAvBgNV BAMTKEU0RDMyQzIyNTVERDczOUJFNUM1NzlGNEU1OTU1OEIwQTA3NEY4NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDN0qKWn1khDJXm8RIfATOUjET Vl6jmSD7UkQh1jvZV7QvOJ9yQWlgnqTbU/+YvP5GCJXXisrkKnHxoy86b5aY03pV 6ssxO9LAg+/U+4hi08GVewilEAk2BGgErxWUWKB+qTRLzekaZEruX+Z9ORCqUU5p 28qaqR1BfAU6JPgnSi49Yqlv1t7K1do3qN5+fqINj1t4krrsrKwSXMqW4ef/UBGg TDZOJ8WUeUUY2v3BREMgyZ9skIrVQsXQ19g0NqwvF6yP2YsyJYSRT66mg1LS1bZ5 u5WvnmIF+NNVxAtXxjTWwhUUxvfCyj+JV0/+Z1tvNSrF5lLnW2xOc2+fq1jZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5NMsIlXdc5vlxXn05ZVYsKB0+F8wHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzM0MzMyZTMyMzQzNzJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9wwwDQYJKoZIhvcN AQELBQADggEBAEjzEO8We0Cm/ZK8Uk3AhvUrGjX8svbG88sRdXT+hXeXziMGYDyU uL7GE4DvxSYwfqV4qoa3cM8Aq1p6qXc1pgYdeonz9nKxr/R3990ZY9pB1vt+yvlk 2I7TiaYaJyaULRBN3Qk2R59wp8pvqT2Tzdo77S8eGGglxm/HRAoJ5o6BSNbNLxIg 3kiDBYVMxie87nZhyVd9jssCkYMBF0blZN+G0WFlHhh9rSTqIu06J3SvNiXamj07 ZBauAyFWKmdcvcMdV2JMNFdoooTcVG1rM5ufP8KVPRCXiqNLkxKrZutNrSYmDvVV ZxFNgWDO3pZuDCcVRnm+Ryj5/NwFpEoDVo8= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org