$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa File: 34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa (raw, json) Hash identifier: rXJITdSTf7rG1pymvXO1ysNsyoeZtDtUx+nuZFnM6As= Subject key identifier: AF:0E:2B:DE:DE:EA:97:EE:38:C3:A5:C2:7B:3D:79:C5:B0:56:4A:89 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 4282871C98C20E919637F0032952176EC156920E Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa Signing time: Sat 20 Jan 2024 17:03:32 +0000 ROA not before: Sat 20 Jan 2024 16:58:32 +0000 ROA not after: Sat 18 Jan 2025 17:03:32 +0000 asID: 149746 IP address blocks: 43.252.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:82:87:1c:98:c2:0e:91:96:37:f0:03:29:52:17:6e:c1:56:92:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jan 20 16:58:32 2024 GMT Not After : Jan 18 17:03:32 2025 GMT Subject: CN=AF0E2BDEDEEA97EE38C3A5C27B3D79C5B0564A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:34:dc:ea:ab:f4:fb:ba:ef:33:ea:d2:37:ee: bc:84:56:78:e8:8b:42:4a:d4:08:53:1a:f3:a6:cb: 74:6c:0a:af:24:0d:38:93:aa:02:b5:f1:3b:89:24: eb:55:44:52:5c:10:ae:07:16:ad:06:95:8e:9c:5c: 03:b8:bc:6c:41:d7:64:dd:1e:81:62:d3:6b:6a:9b: 99:12:b1:ab:d9:ba:97:92:ab:2c:97:c3:ac:6b:63: 59:5d:f4:7e:fa:7c:75:b5:b4:04:17:41:1b:a9:25: 4a:87:76:b8:a1:b6:9b:fd:2c:aa:44:8d:f9:10:32: 41:7c:57:92:54:b7:39:e3:d6:f6:b1:0e:b5:9d:c0: d4:90:70:57:e6:44:4e:b9:2f:47:ac:0e:35:81:50: 02:77:79:57:5c:30:de:ea:5b:d9:32:91:b5:5d:6e: d5:a9:33:a1:11:d7:02:b8:f0:9b:8e:5e:9e:f6:96: 6f:a0:22:39:bc:2c:66:0d:2d:2c:96:20:ae:8b:22: da:2e:dc:0c:22:8e:18:e6:b1:b5:cd:4d:02:47:ec: 42:99:f5:bf:75:b5:0c:c9:85:f3:fb:ba:0b:c9:48: 85:bc:67:01:ec:72:62:27:c3:be:cb:d7:60:8b:7e: 76:ab:66:ef:70:a2:61:b3:65:11:a9:54:17:89:40: fa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0E:2B:DE:DE:EA:97:EE:38:C3:A5:C2:7B:3D:79:C5:B0:56:4A:89 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.156.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:4c:a5:06:3e:81:74:f7:8a:9e:9b:40:8e:3f:e8:0e:f0:ed: 4d:78:4d:c0:51:6f:1a:65:1d:e7:23:74:03:1b:3d:7c:77:dc: e2:8c:19:a4:a8:b7:0e:a9:9b:5e:54:3b:d8:66:cf:14:9f:56: bf:64:1c:1e:5b:2f:29:e7:e6:de:4d:b3:7d:c4:49:a2:04:5c: 7c:55:37:32:5a:96:31:1a:39:b8:72:82:b5:c0:74:d9:da:59: f5:1c:ac:a9:e8:df:09:c0:57:1d:00:51:57:dc:82:a5:6a:97: f5:2a:37:79:82:cd:29:94:44:1a:4a:47:4f:00:61:1e:d6:35: 27:c2:a6:8d:a9:fd:17:a4:06:9b:a9:47:db:af:9c:f6:7f:c6: fa:9f:c5:2f:d0:b6:e0:b5:c2:60:b8:26:30:70:6e:c9:f6:76: f8:34:34:be:6f:f4:bf:1d:f3:b3:b9:b5:bf:45:cc:5e:03:75: 30:40:99:d3:ed:10:7a:e1:f5:a0:80:89:9d:3c:85:a4:42:52: 0a:78:58:df:82:51:ec:8c:4c:15:18:d2:64:e7:f3:d2:d6:a4: 46:70:56:6f:e4:d8:70:76:71:3d:8d:4a:ed:00:eb:47:30:99: 7b:6e:bd:fa:b6:82:43:e9:bd:5b:8e:4f:83:8a:89:07:7c:7d: 14:1f:46:c5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQoKHHJjCDpGWN/ADKVIXbsFWkg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDAxMjAxNjU4MzJaFw0yNTAxMTgxNzAzMzJaMDMxMTAvBgNV BAMTKEFGMEUyQkRFREVFQTk3RUUzOEMzQTVDMjdCM0Q3OUM1QjA1NjRBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRNNzqq/T7uu8z6tI37ryEVnjo i0JK1AhTGvOmy3RsCq8kDTiTqgK18TuJJOtVRFJcEK4HFq0GlY6cXAO4vGxB12Td HoFi02tqm5kSsavZupeSqyyXw6xrY1ld9H76fHW1tAQXQRupJUqHdrihtpv9LKpE jfkQMkF8V5JUtznj1vaxDrWdwNSQcFfmRE65L0esDjWBUAJ3eVdcMN7qW9kykbVd btWpM6ER1wK48JuOXp72lm+gIjm8LGYNLSyWIK6LItou3AwijhjmsbXNTQJH7EKZ 9b91tQzJhfP7ugvJSIW8ZwHscmInw77L12CLfnarZu9womGzZRGpVBeJQPqRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrw4r3t7ql+44w6XCez15xbBWSokwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzMyZTMyMzUzMjJlMzEzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCK/ycMA0GCSqG SIb3DQEBCwUAA4IBAQBKTKUGPoF094qem0COP+gO8O1NeE3AUW8aZR3nI3QDGz18 d9zijBmkqLcOqZteVDvYZs8Un1a/ZBweWy8p5+beTbN9xEmiBFx8VTcyWpYxGjm4 coK1wHTZ2ln1HKyp6N8JwFcdAFFX3IKlapf1Kjd5gs0plEQaSkdPAGEe1jUnwqaN qf0XpAabqUfbr5z2f8b6n8Uv0LbgtcJguCYwcG7J9nb4NDS+b/S/HfOzubW/Rcxe A3UwQJnT7RB64fWggImdPIWkQlIKeFjfglHsjEwVGNJk5/PS1qRGcFZv5NhwdnE9 jUrtAOtHMJl7br36toJD6b1bjk+DiokHfH0UH0bF -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org