$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa File: 34332e3234382e32342e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: LS/NthByMXV2RuFiv6hCg/k6ny28TqfBJUy7yVlPKjM= Subject key identifier: 5A:68:5C:9A:04:EC:44:D2:22:2A:71:D0:7C:83:CA:5B:86:7C:6B:7B Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 39C9C353C16FD0394DEFE25BCDFA2616611D162A Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa Signing time: Wed 20 Sep 2023 11:00:00 +0000 ROA not before: Wed 20 Sep 2023 10:55:00 +0000 ROA not after: Wed 18 Sep 2024 11:00:00 +0000 asID: 18103 IP address blocks: 43.248.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 09:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:c9:c3:53:c1:6f:d0:39:4d:ef:e2:5b:cd:fa:26:16:61:1d:16:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Sep 20 10:55:00 2023 GMT Not After : Sep 18 11:00:00 2024 GMT Subject: CN=5A685C9A04EC44D2222A71D07C83CA5B867C6B7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ae:84:d6:5a:70:12:0f:6b:1d:2a:0e:07:ba: 68:a2:69:f4:1e:a1:d9:a1:25:7d:9d:fb:ff:75:ab: ee:85:a3:29:49:4c:ff:f1:45:7b:f0:55:0c:c0:cc: 70:18:0b:bc:8f:1f:67:e7:09:7a:97:ae:eb:ec:28: 87:87:f6:e1:66:d6:53:ef:a2:7c:24:ec:d5:32:c4: 70:0a:ae:fc:9b:01:d3:9b:bc:d6:54:10:87:fd:d3: 77:ff:52:f6:27:a0:e7:3f:1b:dc:a5:7b:36:a5:74: 62:4e:ee:ca:66:c3:e1:0c:32:42:62:2d:21:da:f7: 47:54:45:4f:27:56:4a:c0:73:33:37:7e:c2:d7:c4: 94:77:bc:ff:6a:77:ee:f6:15:8b:0b:d7:f5:3e:15: 3c:65:ec:5d:fd:5b:4f:78:0c:e0:05:43:3b:06:79: cf:fd:d1:c2:86:e0:9d:59:78:38:44:da:6b:4d:92: 8a:09:db:b9:08:91:27:69:09:2b:49:7f:fc:85:0c: 21:f9:af:4c:62:7b:c2:4a:41:8a:31:d5:0e:6b:c2: f4:d8:77:d1:9c:cc:72:8d:be:74:d9:2e:a6:3b:40: c6:02:03:44:10:2b:02:76:ae:3d:68:d8:55:f7:cf: 6a:21:5b:4b:3c:65:f0:56:dc:5c:6c:1b:d4:87:b5: 36:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:68:5C:9A:04:EC:44:D2:22:2A:71:D0:7C:83:CA:5B:86:7C:6B:7B X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.24.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:6e:5e:06:55:db:91:db:98:fc:64:e0:82:e1:af:4c:3c:d4: 74:a0:b4:fa:d3:3b:61:c3:94:8c:1d:34:a6:5f:20:cf:c2:98: d2:64:30:91:9c:8a:8e:c1:dc:16:53:b3:16:cd:a9:71:84:b2: 2d:95:f5:b9:0a:fb:86:b8:84:79:e3:10:c6:40:37:0f:25:6e: 2d:cb:85:94:49:4f:47:a0:63:af:29:b2:04:49:9b:72:70:28: a7:1c:6a:df:1d:51:d9:05:77:a7:d5:24:ad:0b:91:bd:2d:7e: d5:7a:32:18:8e:6c:0e:99:b9:d7:3b:19:90:9c:5c:14:9f:12: 77:f8:07:1e:93:8b:71:9d:76:0b:21:fa:eb:45:09:ba:37:62: 4b:a3:b6:66:8e:5b:ff:92:8e:90:06:ee:73:90:1a:1e:82:ce: e5:00:44:bc:90:82:59:34:74:46:28:4d:66:c4:9c:54:75:fd: e3:63:61:c6:ae:20:aa:3d:b1:f7:cd:83:b9:4a:9c:8a:c3:e3: 37:60:1c:8d:8b:36:a0:c0:fd:62:93:28:92:2a:ae:4e:0b:7e: f3:60:e5:a7:60:6c:50:86:cb:e3:13:43:77:e4:70:56:1f:02: 2e:62:07:2a:73:13:a2:54:a2:f9:ff:d2:c3:81:b7:e6:d3:47: 9d:d2:a3:13 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOcnDU8Fv0DlN7+JbzfomFmEdFiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yMzA5MjAxMDU1MDBaFw0yNDA5MTgxMTAwMDBaMDMxMTAvBgNV BAMTKDVBNjg1QzlBMDRFQzQ0RDIyMjJBNzFEMDdDODNDQTVCODY3QzZCN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLroTWWnASD2sdKg4HumiiafQe odmhJX2d+/91q+6FoylJTP/xRXvwVQzAzHAYC7yPH2fnCXqXruvsKIeH9uFm1lPv onwk7NUyxHAKrvybAdObvNZUEIf903f/UvYnoOc/G9ylezaldGJO7spmw+EMMkJi LSHa90dURU8nVkrAczM3fsLXxJR3vP9qd+72FYsL1/U+FTxl7F39W094DOAFQzsG ec/90cKG4J1ZeDhE2mtNkooJ27kIkSdpCStJf/yFDCH5r0xie8JKQYox1Q5rwvTY d9GczHKNvnTZLqY7QMYCA0QQKwJ2rj1o2FX3z2ohW0s8ZfBW3FxsG9SHtTbjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWmhcmgTsRNIiKnHQfIPKW4Z8a3swHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzM0MzMyZTMyMzQzODJlMzIzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzgzMTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr+BgwDQYJKoZIhvcN AQELBQADggEBAGpuXgZV25HbmPxk4ILhr0w81HSgtPrTO2HDlIwdNKZfIM/CmNJk MJGcio7B3BZTsxbNqXGEsi2V9bkK+4a4hHnjEMZANw8lbi3LhZRJT0egY68psgRJ m3JwKKccat8dUdkFd6fVJK0Lkb0tftV6MhiObA6Zudc7GZCcXBSfEnf4Bx6Ti3Gd dgsh+utFCbo3YkujtmaOW/+SjpAG7nOQGh6CzuUARLyQglk0dEYoTWbEnFR1/eNj YcauIKo9sffNg7lKnIrD4zdgHI2LNqDA/WKTKJIqrk4LfvNg5adgbFCGy+MTQ3fk cFYfAi5iBypzE6JUovn/0sOBt+bTR53SoxM= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:31 2024 by rpki-client on console-fra.rpki-client.org