$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e203535363636.roa File: 34332e3235322e3135362e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: VvBAWdY8uzQQwuzx/ijVQcpC/o/JAR+HyHlrBTSiX9I= Subject key identifier: 53:DA:81:AF:57:66:DF:7E:74:2B:AD:61:8E:A6:13:D4:26:AD:F0:79 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 76F0540FB2364D3A3002A673311629CAFCD91A8B Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e203535363636.roa Signing time: Mon 31 Jul 2023 00:14:35 +0000 ROA not before: Mon 31 Jul 2023 00:09:35 +0000 ROA not after: Mon 29 Jul 2024 00:14:35 +0000 asID: 55666 IP address blocks: 43.252.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:f0:54:0f:b2:36:4d:3a:30:02:a6:73:31:16:29:ca:fc:d9:1a:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 31 00:09:35 2023 GMT Not After : Jul 29 00:14:35 2024 GMT Subject: CN=53DA81AF5766DF7E742BAD618EA613D426ADF079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:59:be:70:ca:ce:a3:2e:57:ba:ed:d7:94:ea: 33:fa:ef:92:84:4d:23:6f:65:92:72:fd:3a:e8:af: fd:2e:8f:36:d7:63:95:75:77:1a:a0:9b:ef:2a:75: 81:50:17:93:89:24:19:20:81:26:f7:86:37:85:23: 3d:98:4e:b6:7c:76:8a:ec:bc:91:c9:14:58:d9:c0: bf:88:f4:5d:09:f5:37:0f:b7:ff:00:0d:16:b6:1d: b3:46:94:c4:f4:9c:3b:1f:82:7e:e5:b5:b0:25:12: 36:81:66:c7:15:7c:e8:67:68:b7:cf:14:d9:46:1a: dd:d6:fb:2d:07:55:11:15:c4:72:87:eb:3c:c5:a2: 6e:85:02:f7:61:cf:27:56:f7:96:36:c1:69:ed:85: d8:20:2c:d5:dc:89:11:35:03:f6:aa:f6:e6:1a:de: 2a:20:d9:e4:1b:c6:43:cd:33:5f:82:0c:e7:ea:95: 8d:55:20:00:0c:e5:47:40:81:0d:cd:8a:ea:42:7a: 98:35:c9:25:f2:74:a4:c1:c2:73:51:c5:28:b7:47: b7:84:07:a3:a7:97:73:bd:35:9e:a9:dd:b6:0d:62: 4e:e2:bb:83:9d:68:30:6c:8b:35:19:cd:ee:28:10: ac:ed:84:d5:c5:4c:e7:97:52:e0:86:0d:53:ec:09: 70:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DA:81:AF:57:66:DF:7E:74:2B:AD:61:8E:A6:13:D4:26:AD:F0:79 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.156.0/22 Signature Algorithm: sha256WithRSAEncryption cb:4f:1e:f0:f5:30:dc:c7:0d:af:44:9e:14:5a:e6:89:95:ea: 97:ec:9b:75:d9:10:8c:2e:da:7b:79:d9:6e:12:96:4d:70:98: ad:37:d8:96:ae:ed:18:e9:85:da:9d:87:2a:d6:74:cc:45:3c: 5d:7a:18:f8:77:e6:a6:7b:34:ac:ef:74:c5:68:f8:74:3d:ff: a4:f8:58:61:2a:09:75:f8:49:96:1e:f6:cc:ba:76:4b:e5:0f: 40:c6:dd:d3:53:7f:2a:e7:b5:c8:93:39:9e:56:2a:0f:a3:3d: d7:91:ec:e0:ff:a3:c9:a8:c4:99:05:29:b0:d7:3c:14:a0:c0: 3c:01:7c:73:60:11:10:24:e1:d2:6c:39:17:e0:02:97:00:8e: 01:70:7c:1a:de:4c:6c:63:d9:f5:aa:d2:00:61:13:f3:6d:19: 67:98:0f:4c:cb:97:56:f6:61:ae:e8:ee:db:2b:94:33:05:20: f4:54:3d:ee:f1:cc:d3:f7:03:46:1c:b9:a1:95:3e:7c:9e:ca: 74:6b:1c:a5:a0:0f:f0:7d:a1:0a:cd:ae:50:f2:d2:a0:c4:b6: 3a:67:10:36:4e:68:de:ce:07:e2:a3:f3:28:75:c7:90:39:2f: a0:6a:6e:08:d9:10:63:0a:19:24:3a:2c:29:4c:dc:82:5d:55: ce:7f:6c:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdvBUD7I2TTowAqZzMRYpyvzZGoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yMzA3MzEwMDA5MzVaFw0yNDA3MjkwMDE0MzVaMDMxMTAvBgNV BAMTKDUzREE4MUFGNTc2NkRGN0U3NDJCQUQ2MThFQTYxM0Q0MjZBREYwNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOWb5wys6jLle67deU6jP675KE TSNvZZJy/Tror/0ujzbXY5V1dxqgm+8qdYFQF5OJJBkggSb3hjeFIz2YTrZ8dors vJHJFFjZwL+I9F0J9TcPt/8ADRa2HbNGlMT0nDsfgn7ltbAlEjaBZscVfOhnaLfP FNlGGt3W+y0HVREVxHKH6zzFom6FAvdhzydW95Y2wWnthdggLNXciRE1A/aq9uYa 3iog2eQbxkPNM1+CDOfqlY1VIAAM5UdAgQ3NiupCepg1ySXydKTBwnNRxSi3R7eE B6Onl3O9NZ6p3bYNYk7iu4OdaDBsizUZze4oEKzthNXFTOeXUuCGDVPsCXBNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU9qBr1dm3350K61hjqYT1Cat8HkwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzMyZTMyMzUzMjJlMzEzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv8nDANBgkqhkiG 9w0BAQsFAAOCAQEAy08e8PUw3McNr0SeFFrmiZXql+ybddkQjC7ae3nZbhKWTXCY rTfYlq7tGOmF2p2HKtZ0zEU8XXoY+Hfmpns0rO90xWj4dD3/pPhYYSoJdfhJlh72 zLp2S+UPQMbd01N/Kue1yJM5nlYqD6M915Hs4P+jyajEmQUpsNc8FKDAPAF8c2AR ECTh0mw5F+AClwCOAXB8Gt5MbGPZ9arSAGET820ZZ5gPTMuXVvZhruju2yuUMwUg 9FQ97vHM0/cDRhy5oZU+fJ7KdGscpaAP8H2hCs2uUPLSoMS2OmcQNk5o3s4H4qPz KHXHkDkvoGpuCNkQYwoZJDosKUzcgl1Vzn9s5g== -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org