$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33342e302f32342d3234203d3e203435333132.roa File: 34332e3234372e33342e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: 8PmYxKPs3/oP9TlJ8HxkBR25CtA/9kpFfyfNgUk5gZw= Subject key identifier: BF:0B:C6:C9:9D:1B:76:A1:57:2F:E5:B5:54:CA:BF:6F:B9:DA:5F:34 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 6E2BA7CD9156578F6DDCD15EB01529976537C7AF Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33342e302f32342d3234203d3e203435333132.roa Signing time: Fri 06 Dec 2024 05:00:01 +0000 ROA not before: Fri 06 Dec 2024 04:55:01 +0000 ROA not after: Fri 05 Dec 2025 05:00:01 +0000 asID: 45312 IP address blocks: 43.247.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:2b:a7:cd:91:56:57:8f:6d:dc:d1:5e:b0:15:29:97:65:37:c7:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Dec 6 04:55:01 2024 GMT Not After : Dec 5 05:00:01 2025 GMT Subject: CN=BF0BC6C99D1B76A1572FE5B554CABF6FB9DA5F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:40:98:c4:d7:a9:f1:e3:5d:41:23:75:3d:bc: 4c:66:9a:cf:d4:75:c4:c6:8b:78:15:49:1d:2b:83: 27:7e:a6:85:c1:88:8c:a2:64:d4:dc:ac:54:76:ce: e0:a0:61:ce:80:a3:d9:87:7a:db:a6:97:e0:89:87: 25:2b:b7:f5:9d:26:bb:05:bd:b6:3d:45:fa:c5:c3: 79:ae:fa:58:6f:d6:67:e4:12:0c:fc:94:d4:2c:a3: 99:b2:9e:82:e9:70:03:35:38:ff:0d:df:b8:02:73: 69:ac:34:9c:a6:1d:68:41:e1:2c:46:9d:72:d6:a4: 37:dc:0d:f3:f2:7a:06:b6:f3:7f:9f:bf:1e:4a:5d: 50:26:e8:bb:bb:f6:f1:55:28:af:7c:ab:32:f3:2b: 59:c2:9b:3a:e3:b0:af:29:08:74:65:73:a5:9f:62: ae:98:e2:62:0e:13:6c:fd:28:b8:76:15:02:25:dc: af:4c:7c:2c:6c:a2:08:69:d6:a1:21:a7:81:07:cd: 3f:9e:80:e4:9c:06:6a:44:e1:9e:72:a0:23:34:f2: ad:2c:7d:5c:d0:e7:28:fe:65:5e:81:31:ce:aa:70: 63:b2:d7:0c:cb:42:b7:85:e1:6b:93:59:fe:9e:8a: 92:cc:86:f3:67:44:df:2c:43:00:62:0d:dd:c9:8c: 44:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0B:C6:C9:9D:1B:76:A1:57:2F:E5:B5:54:CA:BF:6F:B9:DA:5F:34 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33342e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.34.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:8f:30:83:43:5d:0a:cc:20:dd:56:a4:44:37:23:f5:a5:78: af:24:14:a2:6d:51:0c:cb:c4:47:73:c4:93:7b:5d:b9:30:c6: 60:d2:c0:e5:ba:19:f2:9c:a7:b2:5c:17:6a:1a:19:6e:e2:1b: ce:79:b1:5e:b8:2a:30:44:d6:9d:48:2a:37:69:13:66:6e:3c: 95:5c:76:e1:f7:79:0f:2c:17:ba:f7:d6:cf:db:b4:ae:4e:e3: 68:3c:b0:01:3b:34:94:c6:d6:a9:dd:ed:b4:21:20:4c:33:42: 14:f8:6d:e3:a6:c8:73:8f:0b:6e:02:0e:4a:96:f3:f2:0c:6d: 17:93:20:d7:39:2f:8d:80:a3:cb:fc:22:2a:8a:5a:06:66:f6: b5:89:cc:99:cb:52:d5:e1:a7:d6:12:14:8c:19:aa:8b:49:03: b1:d1:e8:fd:92:28:c7:18:24:c1:4d:41:05:b1:fb:f2:76:1a: 1d:f3:08:5d:42:fc:11:c3:b4:31:d7:14:d6:5f:79:a2:4a:e6: 65:f5:82:53:24:3b:53:c4:3e:3f:cf:df:85:55:f9:d0:c7:6a: 37:fc:7b:67:a8:5f:56:f7:23:74:e6:c3:0d:c9:0a:f8:de:83: 8a:2e:87:47:d1:99:71:aa:6d:76:45:ce:41:93:21:de:9d:53: 03:73:c5:ba -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbiunzZFWV49t3NFesBUpl2U3x68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNDEyMDYwNDU1MDFaFw0yNTEyMDUwNTAwMDFaMDMxMTAvBgNV BAMTKEJGMEJDNkM5OUQxQjc2QTE1NzJGRTVCNTU0Q0FCRjZGQjlEQTVGMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxQJjE16nx411BI3U9vExmms/U dcTGi3gVSR0rgyd+poXBiIyiZNTcrFR2zuCgYc6Ao9mHetuml+CJhyUrt/WdJrsF vbY9RfrFw3mu+lhv1mfkEgz8lNQso5mynoLpcAM1OP8N37gCc2msNJymHWhB4SxG nXLWpDfcDfPyega283+fvx5KXVAm6Lu79vFVKK98qzLzK1nCmzrjsK8pCHRlc6Wf Yq6Y4mIOE2z9KLh2FQIl3K9MfCxsoghp1qEhp4EHzT+egOScBmpE4Z5yoCM08q0s fVzQ5yj+ZV6BMc6qcGOy1wzLQreF4WuTWf6eipLMhvNnRN8sQwBiDd3JjEQTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvwvGyZ0bdqFXL+W1VMq/b7naXzQwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr9yIwDQYJKoZIhvcN AQELBQADggEBAE+PMINDXQrMIN1WpEQ3I/WleK8kFKJtUQzLxEdzxJN7XbkwxmDS wOW6GfKcp7JcF2oaGW7iG855sV64KjBE1p1IKjdpE2ZuPJVcduH3eQ8sF7r31s/b tK5O42g8sAE7NJTG1qnd7bQhIEwzQhT4beOmyHOPC24CDkqW8/IMbReTINc5L42A o8v8IiqKWgZm9rWJzJnLUtXhp9YSFIwZqotJA7HR6P2SKMcYJMFNQQWx+/J2Gh3z CF1C/BHDtDHXFNZfeaJK5mX1glMkO1PEPj/P34VV+dDHajf8e2eoX1b3I3Tmww3J Cvjeg4ouh0fRmXGqbXZFzkGTId6dUwNzxbo= -----END CERTIFICATE-----Generated at Mon Apr 7 01:03:21 2025 by rpki-client