$ rpki-client -vvf repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa File: 34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa (raw, json) Hash identifier: MlsnAMxh+pn9Abz1obpmZHII6o5zTINUhIrxGp92gEM= Subject key identifier: 1F:3E:90:58:54:00:3F:D5:B3:2E:B3:75:90:55:38:E1:60:CE:1D:95 Certificate issuer: /CN=194F6EF659F1115C068AB59065D57F150E23F5B6 Certificate serial: 5CA1E320C285823DF1BF590B5D5BA60825F4793B Authority key identifier: 19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa Signing time: Fri 09 Feb 2024 15:00:02 +0000 ROA not before: Fri 09 Feb 2024 14:55:02 +0000 ROA not after: Fri 07 Feb 2025 15:00:02 +0000 asID: 150210 IP address blocks: 43.240.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a1:e3:20:c2:85:82:3d:f1:bf:59:0b:5d:5b:a6:08:25:f4:79:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=194F6EF659F1115C068AB59065D57F150E23F5B6 Validity Not Before: Feb 9 14:55:02 2024 GMT Not After : Feb 7 15:00:02 2025 GMT Subject: CN=1F3E905854003FD5B32EB375905538E160CE1D95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:30:10:45:31:60:d7:1a:69:49:fd:df:ff:a1: d6:0e:64:be:d1:97:b7:f8:c5:e4:71:a5:cd:23:d8: 84:36:25:33:81:df:2c:ea:99:3f:39:a9:12:00:51: 26:55:de:31:e9:05:c8:a3:ac:d9:5c:6c:0c:43:04: b3:35:46:2f:b7:e2:41:2f:0b:09:cc:8d:fa:dd:0d: c1:b0:2d:89:da:aa:69:0e:3f:fe:15:dd:a7:26:1c: 0b:e2:04:7a:f5:b6:4e:30:d0:87:2e:cc:25:8e:0e: b9:c9:13:bf:4e:d6:e5:f9:4d:9e:f6:9e:77:3d:a3: 1a:49:aa:af:8e:a6:fa:7c:8a:b2:c0:28:71:8c:08: 26:cd:ab:78:ba:3f:7d:28:2d:0c:c0:18:f5:38:f0: 1c:9d:cb:e5:a1:0f:1a:a9:fb:be:73:6d:72:44:6d: 1a:92:92:6c:6e:0c:fa:a8:b5:88:b1:3f:e3:02:14: ae:06:a2:9d:8d:8e:d3:b8:8c:a8:82:89:b4:d9:e9: 83:1e:06:8b:ee:ce:04:b0:33:ea:27:8e:ff:39:8c: cf:59:7c:59:ab:a3:68:76:89:80:67:a3:8f:a9:a9: 47:6e:43:a0:43:17:38:b5:6b:83:51:40:6e:fb:b8: e2:47:4a:32:75:d2:de:35:f7:c9:91:fb:03:02:15: 99:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:3E:90:58:54:00:3F:D5:B3:2E:B3:75:90:55:38:E1:60:CE:1D:95 X509v3 Authority Key Identifier: keyid:19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.226.0/24 Signature Algorithm: sha256WithRSAEncryption 02:e1:0c:ab:d6:fe:ef:3c:ca:36:87:37:0e:17:f8:45:c6:43: 12:3b:12:09:cd:6a:45:fc:6c:84:2f:a9:56:9f:7c:8e:e6:19: 1f:27:a9:b1:7c:6d:3a:bf:7d:e9:fd:2f:40:e1:e9:ce:b4:cb: ad:1d:14:2a:e8:1b:21:e5:51:50:3a:a3:66:c6:87:24:8c:d6: df:20:00:a2:0d:19:4d:63:d3:b5:f7:9a:a5:25:96:c7:a3:63: 1e:3e:05:38:bf:b1:c3:e6:51:fc:af:00:87:0b:b4:d2:e9:22: ed:0f:38:e3:85:60:34:16:e6:9e:32:96:54:2d:87:16:00:25: d0:9d:c8:fe:ff:49:41:23:f0:b8:5f:c7:4c:29:d0:e7:e9:e9: 2c:c0:57:07:95:17:e8:92:e2:02:bf:2e:8a:aa:b8:27:02:4e: b9:04:d5:80:5e:0f:42:80:51:57:c1:8a:5f:45:61:a8:b4:6a: c6:6b:f6:a9:94:a4:1d:b7:e4:cd:4e:65:49:01:0e:13:6a:7f: 2d:1f:e9:70:e8:70:12:a5:75:61:e2:cf:aa:18:dd:0b:a6:a9: d0:1c:31:fc:c5:41:25:e3:74:76:6b:c8:6a:52:1e:c6:58:5f: 4f:e3:10:eb:bc:96:43:10:b0:06:f0:be:f8:c3:1c:e1:2a:f1: da:e4:2a:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXKHjIMKFgj3xv1kLXVumCCX0eTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUw RTIzRjVCNjAeFw0yNDAyMDkxNDU1MDJaFw0yNTAyMDcxNTAwMDJaMDMxMTAvBgNV BAMTKDFGM0U5MDU4NTQwMDNGRDVCMzJFQjM3NTkwNTUzOEUxNjBDRTFEOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTMBBFMWDXGmlJ/d//odYOZL7R l7f4xeRxpc0j2IQ2JTOB3yzqmT85qRIAUSZV3jHpBcijrNlcbAxDBLM1Ri+34kEv CwnMjfrdDcGwLYnaqmkOP/4V3acmHAviBHr1tk4w0IcuzCWODrnJE79O1uX5TZ72 nnc9oxpJqq+Opvp8irLAKHGMCCbNq3i6P30oLQzAGPU48Bydy+WhDxqp+75zbXJE bRqSkmxuDPqotYixP+MCFK4Gop2NjtO4jKiCibTZ6YMeBovuzgSwM+onjv85jM9Z fFmro2h2iYBno4+pqUduQ6BDFzi1a4NRQG77uOJHSjJ10t4198mR+wMCFZkzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHz6QWFQAP9WzLrN1kFU44WDOHZUwHwYDVR0j BBgwFoAUGU9u9lnxEVwGirWQZdV/FQ4j9bYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZmFiZWM3MS03ZWNiLTRkYmQtYTQyMS05OWI5Y2QyMDkwM2EvMC8xOTRGNkVGNjU5 RjExMTVDMDY4QUI1OTA2NUQ1N0YxNTBFMjNGNUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUwRTIz RjVCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmYWJlYzcxLTdlY2ItNGRiZC1h NDIxLTk5YjljZDIwOTAzYS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/DiMA0GCSqG SIb3DQEBCwUAA4IBAQAC4Qyr1v7vPMo2hzcOF/hFxkMSOxIJzWpF/GyEL6lWn3yO 5hkfJ6mxfG06v33p/S9A4enOtMutHRQq6Bsh5VFQOqNmxockjNbfIACiDRlNY9O1 95qlJZbHo2MePgU4v7HD5lH8rwCHC7TS6SLtDzjjhWA0FuaeMpZULYcWACXQncj+ /0lBI/C4X8dMKdDn6ekswFcHlRfokuICvy6KqrgnAk65BNWAXg9CgFFXwYpfRWGo tGrGa/aplKQdt+TNTmVJAQ4Tan8tH+lw6HASpXVh4s+qGN0LpqnQHDH8xUEl43R2 a8hqUh7GWF9P4xDrvJZDELAG8L74wxzhKvHa5Col -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org