$ rpki-client -vvf repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232352e302f32342d3234203d3e203633343933.roa File: 34332e3234302e3232352e302f32342d3234203d3e203633343933.roa (raw, json) Hash identifier: OiZZEQMDYAjWvUr2V8yTuhgbwOSZs8jYfIrtVvafVY0= Subject key identifier: EB:F9:24:83:5C:54:7E:6C:99:A9:4D:07:17:2B:BC:78:B6:FD:1E:74 Certificate issuer: /CN=194F6EF659F1115C068AB59065D57F150E23F5B6 Certificate serial: 0600D73C81E2C71CB978E9E7467BFD637A40674F Authority key identifier: 19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232352e302f32342d3234203d3e203633343933.roa Signing time: Mon 21 Oct 2024 04:00:02 +0000 ROA not before: Mon 21 Oct 2024 03:55:02 +0000 ROA not after: Mon 20 Oct 2025 04:00:02 +0000 asID: 63493 IP address blocks: 43.240.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 12:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:00:d7:3c:81:e2:c7:1c:b9:78:e9:e7:46:7b:fd:63:7a:40:67:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=194F6EF659F1115C068AB59065D57F150E23F5B6 Validity Not Before: Oct 21 03:55:02 2024 GMT Not After : Oct 20 04:00:02 2025 GMT Subject: CN=EBF924835C547E6C99A94D07172BBC78B6FD1E74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:cd:bc:74:95:77:7b:ef:09:3f:9b:a8:f1: 98:41:42:fa:7a:e6:0e:7d:af:63:f6:f6:e9:88:ba: 36:1c:96:64:11:5e:20:a1:81:ff:df:7b:e2:09:36: ac:1c:5c:eb:af:f5:90:f3:18:46:56:56:58:69:e3: cd:b1:41:41:f2:32:0b:be:a1:a4:5f:5b:8d:b8:90: 77:22:bb:cc:4a:b0:92:74:dd:d3:b1:63:cb:7d:df: 80:28:55:c1:48:ce:ed:a8:e6:4c:cb:4c:0e:d5:a2: 34:ed:08:6a:ce:68:3d:48:89:74:f1:d3:9e:7c:8e: e7:68:b4:66:ac:02:e1:7c:26:b2:d8:85:42:79:fd: b3:34:39:cd:55:99:b9:36:c2:4c:8d:aa:ba:cc:aa: c6:d8:5b:4a:b1:8f:7c:e5:f5:4b:63:48:ef:79:0c: 37:e0:3a:68:74:3b:f2:db:47:31:8d:24:9c:6c:5e: 30:60:7a:7a:82:3f:de:af:19:00:5a:98:99:0a:f0: 68:a9:2a:5a:bf:45:53:eb:ee:dc:e1:e9:1f:c5:e6: 14:e9:d7:9d:0e:fe:e7:97:94:e7:23:82:9d:1f:e8: 95:a7:a1:8e:96:af:09:f3:b3:be:2c:ff:54:d0:79: 31:e1:f3:68:79:7c:b1:b0:38:82:2d:47:7d:86:fa: bd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F9:24:83:5C:54:7E:6C:99:A9:4D:07:17:2B:BC:78:B6:FD:1E:74 X509v3 Authority Key Identifier: keyid:19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232352e302f32342d3234203d3e203633343933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.225.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:fc:ee:11:ef:d0:61:4a:3f:85:86:6f:11:73:f3:85:5f:84: 1d:8d:72:c3:33:66:1d:b6:c8:00:0a:48:3b:f1:7b:00:47:15: eb:b0:55:00:52:d3:8e:28:8c:24:32:6f:1d:bc:67:02:98:1f: 38:d0:6b:65:ac:9a:37:08:9c:9e:be:4b:31:21:1d:70:6f:5b: 75:a1:73:2a:32:16:68:f2:24:01:53:76:b7:e9:3c:fd:13:50: 0e:5d:84:6c:1e:48:42:e6:47:b8:3a:f9:db:17:5c:aa:7d:b5: 47:5b:3c:93:ea:5f:e5:e8:dc:7f:20:56:03:83:73:c3:62:13: 4b:f7:fc:d2:53:9e:37:ca:96:7a:49:b1:ce:0f:16:dc:2a:3c: 21:79:c7:d4:9b:40:09:2e:a0:6a:c2:56:22:27:a6:c6:8b:7d: f6:f9:ae:74:af:db:ad:a3:b1:d6:0d:6c:a0:72:42:d4:ae:ad: 54:c9:e5:49:e9:db:32:b5:10:ab:55:12:42:2a:5f:99:64:b4: 07:28:4b:b5:0a:33:14:5d:fd:fb:bc:c4:6f:c0:b6:45:a0:8b: ed:c2:ce:a7:1d:8f:59:a2:4d:e7:e7:50:70:38:76:e0:bb:74: ed:42:ff:72:c9:b8:48:54:4c:ca:29:a2:0d:e7:b4:80:00:3a: 9d:9d:f2:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBgDXPIHixxy5eOnnRnv9Y3pAZ08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUw RTIzRjVCNjAeFw0yNDEwMjEwMzU1MDJaFw0yNTEwMjAwNDAwMDJaMDMxMTAvBgNV BAMTKEVCRjkyNDgzNUM1NDdFNkM5OUE5NEQwNzE3MkJCQzc4QjZGRDFFNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG3828dJV3e+8JP5uo8ZhBQvp6 5g59r2P29umIujYclmQRXiChgf/fe+IJNqwcXOuv9ZDzGEZWVlhp482xQUHyMgu+ oaRfW424kHciu8xKsJJ03dOxY8t934AoVcFIzu2o5kzLTA7VojTtCGrOaD1IiXTx 0558judotGasAuF8JrLYhUJ5/bM0Oc1Vmbk2wkyNqrrMqsbYW0qxj3zl9UtjSO95 DDfgOmh0O/LbRzGNJJxsXjBgenqCP96vGQBamJkK8GipKlq/RVPr7tzh6R/F5hTp 150O/ueXlOcjgp0f6JWnoY6Wrwnzs74s/1TQeTHh82h5fLGwOIItR32G+r3nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6/kkg1xUfmyZqU0HFyu8eLb9HnQwHwYDVR0j BBgwFoAUGU9u9lnxEVwGirWQZdV/FQ4j9bYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZmFiZWM3MS03ZWNiLTRkYmQtYTQyMS05OWI5Y2QyMDkwM2EvMC8xOTRGNkVGNjU5 RjExMTVDMDY4QUI1OTA2NUQ1N0YxNTBFMjNGNUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUwRTIz RjVCNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmYWJlYzcxLTdlY2ItNGRiZC1h NDIxLTk5YjljZDIwOTAzYS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw4TANBgkqhkiG 9w0BAQsFAAOCAQEAbPzuEe/QYUo/hYZvEXPzhV+EHY1ywzNmHbbIAApIO/F7AEcV 67BVAFLTjiiMJDJvHbxnApgfONBrZayaNwicnr5LMSEdcG9bdaFzKjIWaPIkAVN2 t+k8/RNQDl2EbB5IQuZHuDr52xdcqn21R1s8k+pf5ejcfyBWA4Nzw2ITS/f80lOe N8qWekmxzg8W3Co8IXnH1JtACS6gasJWIiemxot99vmudK/braOx1g1soHJC1K6t VMnlSenbMrUQq1USQipfmWS0ByhLtQozFF39+7zEb8C2RaCL7cLOpx2PWaJN5+dQ cDh24Lt07UL/csm4SFRMyimiDee0gAA6nZ3yjQ== -----END CERTIFICATE-----Generated at Wed Nov 27 05:55:40 2024 by rpki-client on console-fra.rpki-client.org