$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e203535363636.roa File: 34332e3235322e3135362e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: RejeS3+iaS53ceAS6fuGs26b5emqFusVNb6sZtoMkNY= Subject key identifier: 49:9C:50:8F:EA:24:B9:78:CE:8E:B0:6C:8B:00:F4:85:F7:9E:8D:0F Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 1022D9D1D1B49CE55BC05A717CF74A3AB1C47C6D Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e203535363636.roa Signing time: Mon 01 Jul 2024 01:06:12 +0000 ROA not before: Mon 01 Jul 2024 01:01:12 +0000 ROA not after: Mon 30 Jun 2025 01:06:12 +0000 asID: 55666 IP address blocks: 43.252.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:22:d9:d1:d1:b4:9c:e5:5b:c0:5a:71:7c:f7:4a:3a:b1:c4:7c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 1 01:01:12 2024 GMT Not After : Jun 30 01:06:12 2025 GMT Subject: CN=499C508FEA24B978CE8EB06C8B00F485F79E8D0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ed:60:92:c2:07:d4:1b:19:28:a1:a2:02:f1: 9f:db:7d:38:93:d2:92:f2:f6:bc:c9:a0:2c:25:fd: 2b:44:78:a9:cf:d4:14:51:05:b3:69:11:e5:a4:9f: 5b:d9:84:51:da:44:e9:e1:cf:11:4e:85:64:47:20: c9:37:82:9e:bd:29:54:d4:cc:ac:c6:ea:89:72:0e: 73:1d:50:e7:7d:4e:a1:53:03:d4:a9:fc:21:35:f3: fb:7d:42:48:e8:1c:47:1a:e4:f4:40:90:77:19:24: f9:96:11:09:ae:c1:e2:ec:47:e1:25:fa:42:24:a2: bf:e4:99:be:bb:f7:4c:4d:81:a5:d0:12:e8:15:84: eb:26:07:67:a6:4a:4a:21:d9:2e:b2:82:8e:64:14: 32:84:86:58:bd:55:66:62:0a:5b:a1:07:90:81:12: 42:2b:6a:46:90:c1:ac:23:b1:ca:37:67:03:2e:0a: 8a:ff:f9:04:ed:00:e7:8a:26:52:26:0e:93:2e:df: 6c:d5:d6:45:78:bd:4d:84:45:b3:9f:45:17:c2:59: a6:c8:57:6d:ca:d6:bf:8f:fc:e3:38:92:76:1f:fe: 65:7d:8b:e4:8d:f4:d8:65:9d:01:d3:29:11:cd:75: 95:1e:27:99:ac:92:c6:44:81:16:71:47:15:bd:32: b8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9C:50:8F:EA:24:B9:78:CE:8E:B0:6C:8B:00:F4:85:F7:9E:8D:0F X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.156.0/22 Signature Algorithm: sha256WithRSAEncryption 71:76:a5:4c:60:89:02:d8:b5:83:a1:52:d9:e9:12:94:4b:09: 3d:54:58:1f:08:ab:c5:b8:3a:87:2c:ce:f3:fa:26:72:db:f5: e1:08:76:2e:d1:12:8e:cd:45:c1:97:bd:fa:c1:f8:40:90:9a: 39:0c:25:65:a7:e4:fa:e8:e6:59:80:d9:b7:61:8f:d7:85:6e: b3:3d:e5:8a:a7:7b:dc:a4:26:ff:a7:77:95:60:2e:ce:96:4f: 9a:91:d9:4b:54:a9:4b:a8:86:97:97:aa:b6:48:27:bb:88:22: f4:fc:8b:aa:f7:57:cd:e1:78:18:37:f2:c0:9d:1e:df:6f:4c: 7e:89:9c:35:9c:32:fb:0b:cf:59:c2:76:1c:f8:07:13:8c:46: d7:d2:c4:7a:3d:c7:99:2a:f6:6f:62:3c:0a:fa:cc:d4:2b:1a: 2b:f9:3a:ee:1a:d4:ab:08:e1:aa:ee:3d:cc:84:43:23:5e:00: ee:8d:0c:7d:31:39:a0:72:be:ee:19:cb:2f:d9:0e:8a:9d:20: 7a:7e:ad:c6:5b:fa:a5:12:d5:04:e3:a8:01:f9:5b:ed:21:bb: f8:33:0e:1b:d8:35:bc:0e:82:ed:6a:54:e3:ba:d8:2f:ff:95: 28:95:88:34:4e:f8:fa:bf:b5:6c:59:0c:3c:30:ba:45:ee:ad: 5a:4c:12:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUECLZ0dG0nOVbwFpxfPdKOrHEfG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDA3MDEwMTAxMTJaFw0yNTA2MzAwMTA2MTJaMDMxMTAvBgNV BAMTKDQ5OUM1MDhGRUEyNEI5NzhDRThFQjA2QzhCMDBGNDg1Rjc5RThEMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi7WCSwgfUGxkooaIC8Z/bfTiT 0pLy9rzJoCwl/StEeKnP1BRRBbNpEeWkn1vZhFHaROnhzxFOhWRHIMk3gp69KVTU zKzG6olyDnMdUOd9TqFTA9Sp/CE18/t9QkjoHEca5PRAkHcZJPmWEQmuweLsR+El +kIkor/kmb6790xNgaXQEugVhOsmB2emSkoh2S6ygo5kFDKEhli9VWZiCluhB5CB EkIrakaQwawjsco3ZwMuCor/+QTtAOeKJlImDpMu32zV1kV4vU2ERbOfRRfCWabI V23K1r+P/OM4knYf/mV9i+SN9NhlnQHTKRHNdZUeJ5msksZEgRZxRxW9Mrh1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSZxQj+okuXjOjrBsiwD0hfeejQ8wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzMyZTMyMzUzMjJlMzEzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv8nDANBgkqhkiG 9w0BAQsFAAOCAQEAcXalTGCJAti1g6FS2ekSlEsJPVRYHwirxbg6hyzO8/omctv1 4Qh2LtESjs1FwZe9+sH4QJCaOQwlZafk+ujmWYDZt2GP14Vusz3liqd73KQm/6d3 lWAuzpZPmpHZS1SpS6iGl5eqtkgnu4gi9PyLqvdXzeF4GDfywJ0e329MfomcNZwy +wvPWcJ2HPgHE4xG19LEej3HmSr2b2I8CvrM1CsaK/k67hrUqwjhqu49zIRDI14A 7o0MfTE5oHK+7hnLL9kOip0gen6txlv6pRLVBOOoAflb7SG7+DMOG9g1vA6C7WpU 47rYL/+VKJWINE74+r+1bFkMPDC6Re6tWkwSbg== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org