$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa File: 34332e3234382e32342e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: jjxXOD8YTfHReiK4AK2nOIQXP4l8k6sM7XR6RmO9gn0= Subject key identifier: 81:1D:92:DD:97:27:47:0F:B0:8A:DA:29:33:9F:94:E7:B6:94:B0:E9 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 7976B1D4D8ACFED1F95B07F873BDC7601E2CD1A3 Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa Signing time: Wed 21 Aug 2024 11:00:00 +0000 ROA not before: Wed 21 Aug 2024 10:55:00 +0000 ROA not after: Wed 20 Aug 2025 11:00:00 +0000 asID: 18103 IP address blocks: 43.248.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:76:b1:d4:d8:ac:fe:d1:f9:5b:07:f8:73:bd:c7:60:1e:2c:d1:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Aug 21 10:55:00 2024 GMT Not After : Aug 20 11:00:00 2025 GMT Subject: CN=811D92DD9727470FB08ADA29339F94E7B694B0E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0b:f2:d4:c7:96:49:e3:98:71:c1:5b:51:bd: f1:9f:a5:de:c6:81:5a:5b:85:4c:71:ea:0f:87:c9: 28:3f:3d:07:8e:4a:81:df:1b:6b:66:fe:35:3a:14: ea:30:a4:b5:66:20:be:e2:a3:af:e8:f6:b1:93:07: 66:f1:19:07:f7:19:40:ab:66:4c:b9:dc:d0:d0:46: 01:ee:66:de:64:a2:48:58:ea:0f:02:33:41:d5:c5: 94:46:16:71:52:09:b6:ff:67:73:03:0c:88:26:8a: e7:2d:95:7d:1e:8b:6d:fe:a9:1f:40:ad:d5:88:e0: 1e:49:fa:0d:74:ca:a0:51:31:c1:1b:91:17:f9:d0: 01:c3:e7:26:be:ad:27:9a:21:24:ba:e6:f8:ab:61: 4f:4a:cc:6c:0c:75:9a:ac:77:8d:77:cd:c3:39:dc: 4c:19:b8:3b:2f:4d:fa:f0:4d:63:b9:56:9b:b6:cf: d8:e0:22:e3:67:32:93:0e:9e:a5:a2:5e:f9:36:a9: d9:9f:23:2d:18:50:fe:a1:f2:b9:c9:03:28:1f:e8: 82:9a:fa:b3:f3:cc:fb:cd:8c:e5:57:e7:c6:90:e6: 12:26:43:5b:af:4f:1c:b5:86:37:3b:73:63:08:21: 8d:be:b3:34:eb:42:60:f5:b7:a0:38:d1:67:cc:0e: 76:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1D:92:DD:97:27:47:0F:B0:8A:DA:29:33:9F:94:E7:B6:94:B0:E9 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.24.0/22 Signature Algorithm: sha256WithRSAEncryption 30:80:94:70:5e:c4:4c:a7:83:8c:2c:07:83:5e:d8:f3:ac:c8: fd:31:be:ac:fe:c9:79:30:30:49:5e:db:33:fb:61:3f:27:ad: d1:bb:ff:94:af:38:df:ab:5e:5b:07:b5:da:29:ae:90:ee:2b: b9:24:c8:c4:da:30:8d:6c:b8:be:bb:56:6e:49:fb:ee:26:3f: d7:54:38:10:7f:4c:eb:71:13:cd:cb:94:77:6d:cf:3e:84:7e: 81:19:d0:71:3a:f2:aa:49:1a:53:df:af:93:23:c8:1c:12:bc: 11:98:75:d6:2b:cf:3b:89:96:ad:43:62:9b:a0:c2:97:1c:c1: 72:28:58:3c:06:c8:f6:45:1d:75:24:52:b1:33:13:24:22:a6: 26:7e:6b:e5:78:66:91:ef:6c:1e:dd:e6:23:6c:ff:4a:3f:bf: fb:9c:c4:8f:2b:0e:e3:0c:bd:fc:dc:df:22:df:09:9d:20:b6: 50:a8:e2:71:98:b1:ad:11:06:6c:7f:bb:60:eb:01:c3:18:c6: 62:62:c9:33:0f:3b:08:d8:d5:e0:ee:78:4e:6c:62:f7:2a:e5: 07:6e:ed:2d:71:86:82:50:f0:3e:98:04:be:21:65:95:86:2f: f6:be:81:81:b3:13:40:cf:bb:6a:a3:d3:36:6e:98:41:f8:c8: ac:f1:b3:95 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeXax1Nis/tH5Wwf4c73HYB4s0aMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNDA4MjExMDU1MDBaFw0yNTA4MjAxMTAwMDBaMDMxMTAvBgNV BAMTKDgxMUQ5MkREOTcyNzQ3MEZCMDhBREEyOTMzOUY5NEU3QjY5NEIwRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4C/LUx5ZJ45hxwVtRvfGfpd7G gVpbhUxx6g+HySg/PQeOSoHfG2tm/jU6FOowpLVmIL7io6/o9rGTB2bxGQf3GUCr Zky53NDQRgHuZt5kokhY6g8CM0HVxZRGFnFSCbb/Z3MDDIgmiuctlX0ei23+qR9A rdWI4B5J+g10yqBRMcEbkRf50AHD5ya+rSeaISS65virYU9KzGwMdZqsd413zcM5 3EwZuDsvTfrwTWO5Vpu2z9jgIuNnMpMOnqWiXvk2qdmfIy0YUP6h8rnJAygf6IKa +rPzzPvNjOVX58aQ5hImQ1uvTxy1hjc7c2MIIY2+szTrQmD1t6A40WfMDnabAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUgR2S3ZcnRw+witopM5+U57aUsOkwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzM0MzMyZTMyMzQzODJlMzIzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzgzMTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr+BgwDQYJKoZIhvcN AQELBQADggEBADCAlHBexEyng4wsB4Ne2POsyP0xvqz+yXkwMEle2zP7YT8nrdG7 /5SvON+rXlsHtdoprpDuK7kkyMTaMI1suL67Vm5J++4mP9dUOBB/TOtxE83LlHdt zz6EfoEZ0HE68qpJGlPfr5MjyBwSvBGYddYrzzuJlq1DYpugwpccwXIoWDwGyPZF HXUkUrEzEyQipiZ+a+V4ZpHvbB7d5iNs/0o/v/ucxI8rDuMMvfzc3yLfCZ0gtlCo 4nGYsa0RBmx/u2DrAcMYxmJiyTMPOwjY1eDueE5sYvcq5Qdu7S1xhoJQ8D6YBL4h ZZWGL/a+gYGzE0DPu2qj0zZumEH4yKzxs5U= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org