$ rpki-client -vvf repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa File: 34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa (raw, json) Hash identifier: 1Tei5fGxwqBxz6xN5gHTRqivy8w2htgn+IA2ReOzZk8= Subject key identifier: CC:B0:4A:E4:78:FB:47:F8:4E:BC:70:0C:43:22:95:D4:E5:D7:DA:18 Certificate issuer: /CN=194F6EF659F1115C068AB59065D57F150E23F5B6 Certificate serial: 2E651B027182727ADD5DD378A4796B45E1D70A2D Authority key identifier: 19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa Signing time: Fri 10 Jan 2025 15:00:02 +0000 ROA not before: Fri 10 Jan 2025 14:55:02 +0000 ROA not after: Fri 09 Jan 2026 15:00:02 +0000 asID: 150210 IP address blocks: 43.240.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:08:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:65:1b:02:71:82:72:7a:dd:5d:d3:78:a4:79:6b:45:e1:d7:0a:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=194F6EF659F1115C068AB59065D57F150E23F5B6 Validity Not Before: Jan 10 14:55:02 2025 GMT Not After : Jan 9 15:00:02 2026 GMT Subject: CN=CCB04AE478FB47F84EBC700C432295D4E5D7DA18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f3:17:b6:1e:5a:2e:2f:69:eb:39:1b:4a:53: ca:55:be:bc:6d:1d:53:31:89:b0:c0:6c:85:af:37: 48:b4:bb:24:33:35:3b:5c:24:73:33:38:2d:fd:c2: 6b:e6:3a:18:05:04:b6:68:7f:f4:e3:d4:0e:2d:d5: 12:7e:3b:9b:24:a6:86:e6:3d:c0:9a:0f:6e:78:e6: a7:51:a2:d0:21:63:7a:47:4b:02:a4:35:97:ae:bc: 2a:91:20:6c:72:5a:ce:9d:e0:bf:a9:0f:39:e9:1c: 02:b3:30:51:ba:14:8b:82:5e:59:6c:dd:a6:7c:b8: 79:69:9b:21:0f:8f:53:a9:1f:4f:c7:d1:3b:94:64: 9d:28:78:2e:59:3f:ab:3c:bc:ff:53:e3:18:ec:44: a1:a1:97:f2:ec:6e:10:55:ba:bb:f7:70:f6:6e:4d: 76:45:36:d6:96:5e:8f:cd:02:7f:0f:16:fa:e6:df: 61:27:db:ba:f8:a1:d4:18:39:da:e6:a0:82:65:fb: 99:89:4b:ba:29:50:c8:eb:e4:26:ba:4b:b8:dc:37: 94:31:2f:6b:bf:4b:96:50:f9:98:c2:b7:ef:3d:13: 1d:81:c9:63:a0:e0:08:6d:6a:38:f0:a2:03:68:35: e6:c7:fb:d7:c1:19:38:23:40:cc:79:8e:10:c1:fb: 1a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B0:4A:E4:78:FB:47:F8:4E:BC:70:0C:43:22:95:D4:E5:D7:DA:18 X509v3 Authority Key Identifier: keyid:19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e20313530323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.226.0/24 Signature Algorithm: sha256WithRSAEncryption be:50:5b:94:4b:6a:e0:2b:e4:5f:04:10:f5:29:9f:5e:2b:d8: 9f:56:9a:07:65:23:0c:00:07:3c:a2:25:5c:c4:8d:b7:1c:9c: 98:95:5d:8a:eb:dd:49:07:f8:ba:03:fc:bc:06:a5:ee:84:53: 0b:54:2f:a2:52:2b:47:f9:23:b8:e3:9d:1c:1c:73:d2:fa:69: bb:31:5f:4f:19:64:a9:29:3d:bb:35:74:e1:04:19:88:da:c0: 5d:db:02:43:6b:8b:38:5a:a3:d7:c2:b7:d9:7b:81:68:2a:c4: 29:ba:59:b9:08:57:2d:bc:f4:ec:62:ce:0f:55:c1:23:1a:b6: 33:4a:57:31:7b:fc:0b:a6:41:94:e1:c8:b6:2b:67:9b:b5:38: b7:66:14:01:d7:4e:6d:c3:e0:67:12:c3:8b:b5:6c:2d:78:f4: dd:fa:73:14:ce:f3:5a:14:7f:48:21:95:c5:a1:1e:e7:8a:ca: 3e:c7:22:5a:28:40:bb:18:d4:a8:5b:69:c8:70:a5:1b:e6:83: d6:56:77:b2:0e:d2:a9:c0:e3:99:19:8f:f2:ff:21:24:9a:5a: f2:fe:81:d3:1c:4c:9f:32:07:77:62:4e:ce:1d:d1:75:29:52: 17:ba:16:ae:c6:c2:9d:ff:c1:5c:b1:67:40:92:6c:4e:d8:dc: 54:11:87:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULmUbAnGCcnrdXdN4pHlrReHXCi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUw RTIzRjVCNjAeFw0yNTAxMTAxNDU1MDJaFw0yNjAxMDkxNTAwMDJaMDMxMTAvBgNV BAMTKENDQjA0QUU0NzhGQjQ3Rjg0RUJDNzAwQzQzMjI5NUQ0RTVEN0RBMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm8xe2HlouL2nrORtKU8pVvrxt HVMxibDAbIWvN0i0uyQzNTtcJHMzOC39wmvmOhgFBLZof/Tj1A4t1RJ+O5skpobm PcCaD2545qdRotAhY3pHSwKkNZeuvCqRIGxyWs6d4L+pDznpHAKzMFG6FIuCXlls 3aZ8uHlpmyEPj1OpH0/H0TuUZJ0oeC5ZP6s8vP9T4xjsRKGhl/LsbhBVurv3cPZu TXZFNtaWXo/NAn8PFvrm32En27r4odQYOdrmoIJl+5mJS7opUMjr5Ca6S7jcN5Qx L2u/S5ZQ+ZjCt+89Ex2ByWOg4AhtajjwogNoNebH+9fBGTgjQMx5jhDB+xq/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzLBK5Hj7R/hOvHAMQyKV1OXX2hgwHwYDVR0j BBgwFoAUGU9u9lnxEVwGirWQZdV/FQ4j9bYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZmFiZWM3MS03ZWNiLTRkYmQtYTQyMS05OWI5Y2QyMDkwM2EvMC8xOTRGNkVGNjU5 RjExMTVDMDY4QUI1OTA2NUQ1N0YxNTBFMjNGNUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUwRTIz RjVCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmYWJlYzcxLTdlY2ItNGRiZC1h NDIxLTk5YjljZDIwOTAzYS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/DiMA0GCSqG SIb3DQEBCwUAA4IBAQC+UFuUS2rgK+RfBBD1KZ9eK9ifVpoHZSMMAAc8oiVcxI23 HJyYlV2K691JB/i6A/y8BqXuhFMLVC+iUitH+SO4450cHHPS+mm7MV9PGWSpKT27 NXThBBmI2sBd2wJDa4s4WqPXwrfZe4FoKsQpulm5CFctvPTsYs4PVcEjGrYzSlcx e/wLpkGU4ci2K2ebtTi3ZhQB105tw+BnEsOLtWwtePTd+nMUzvNaFH9IIZXFoR7n iso+xyJaKEC7GNSoW2nIcKUb5oPWVneyDtKpwOOZGY/y/yEkmlry/oHTHEyfMgd3 Yk7OHdF1KVIXuhauxsKd/8FcsWdAkmxO2NxUEYcW -----END CERTIFICATE-----Generated at Sun Apr 6 19:15:17 2025 by rpki-client