$ rpki-client -vvf repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/34332e3232352e36342e302f32322d3234203d3e203538343935.roa File: 34332e3232352e36342e302f32322d3234203d3e203538343935.roa (raw, json) Hash identifier: h61AfegyTXFg9UeCZEx0k8kiSZ4zYGxAJd8KgYHBdUw= Subject key identifier: 1F:23:49:AA:C4:2B:05:CC:8C:16:7B:E5:32:1E:C2:A6:12:D0:02:D8 Certificate issuer: /CN=6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6 Certificate serial: 7AE67DCA70EEA92EA3AB698B2C232E328EDF5D9E Authority key identifier: 6E:55:34:AB:A6:EF:3C:98:C8:D0:CF:43:77:95:D2:5A:3A:9C:25:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/34332e3232352e36342e302f32322d3234203d3e203538343935.roa Signing time: Mon 01 Jul 2024 01:03:59 +0000 ROA not before: Mon 01 Jul 2024 00:58:59 +0000 ROA not after: Mon 30 Jun 2025 01:03:59 +0000 asID: 58495 IP address blocks: 43.225.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.crl rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e6:7d:ca:70:ee:a9:2e:a3:ab:69:8b:2c:23:2e:32:8e:df:5d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6 Validity Not Before: Jul 1 00:58:59 2024 GMT Not After : Jun 30 01:03:59 2025 GMT Subject: CN=1F2349AAC42B05CC8C167BE5321EC2A612D002D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bc:cc:b0:28:ff:63:f2:fe:cc:ae:2a:ad:3b: 4c:04:27:63:a8:69:e1:64:49:d1:f0:f1:1b:d7:07: 22:53:2b:b6:d9:e7:51:3d:0b:d3:d4:5a:45:47:6a: 11:f1:c1:fd:7f:73:60:31:bc:bb:3e:82:9e:65:23: 00:66:16:3b:91:3e:8a:35:06:12:20:62:34:b5:84: 5b:89:d1:16:18:0b:25:43:1a:3d:ce:d8:a7:ed:4a: 06:15:80:a6:14:c5:a5:00:a2:68:38:e9:1d:99:1f: a1:76:a8:e8:3d:38:3a:85:1b:70:1d:87:ef:7a:8e: e8:fa:ee:51:c8:3f:bd:be:d9:3a:b0:a9:8d:39:52: 6b:db:44:55:f7:ee:67:6a:35:c8:0d:ec:ee:be:42: d4:a9:7f:44:72:e9:2b:9b:5b:41:59:9e:37:34:27: e1:4c:67:68:e1:90:30:2c:ac:88:35:dd:fb:da:af: 51:8a:40:eb:05:cc:57:b1:42:f6:62:7b:ec:0f:ad: 67:66:ea:ba:bb:ff:ff:37:16:27:a3:a4:6d:3a:72: b5:4b:5d:7d:0d:80:84:59:a4:19:b9:58:ee:6d:97: 5c:28:64:5d:db:d3:66:92:0b:dd:36:8e:00:e5:4a: df:9c:2b:c7:39:14:ac:d0:df:e1:ff:7b:da:67:d1: b4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:23:49:AA:C4:2B:05:CC:8C:16:7B:E5:32:1E:C2:A6:12:D0:02:D8 X509v3 Authority Key Identifier: keyid:6E:55:34:AB:A6:EF:3C:98:C8:D0:CF:43:77:95:D2:5A:3A:9C:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/34332e3232352e36342e302f32322d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.64.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:e8:22:0e:e2:cc:27:09:2c:e1:13:fe:0c:fa:8e:ea:9d:05: 3e:91:72:3c:b7:81:59:6d:1a:3a:ab:5a:32:e7:1b:c6:28:a1: bb:cf:4c:75:da:94:a3:67:d3:7c:98:a5:bf:7e:52:65:1f:73: 47:0f:f0:11:10:b2:5a:da:b3:91:41:9c:fd:c1:a7:31:f1:00: 5a:f6:b1:5d:4e:a9:4a:e0:82:3b:5c:df:18:6c:1d:c0:5f:e2: 2f:33:7f:ad:05:91:6e:17:5c:c1:61:83:f3:47:4a:b0:b1:87: 93:bd:2d:29:c3:41:87:c2:34:76:fc:b7:2b:d8:55:69:f7:27: 4e:0b:4c:80:05:0f:1d:f4:6b:74:0a:70:44:b7:68:f8:9c:96: a9:25:3e:51:f7:6f:5f:88:98:ae:32:a1:0f:bd:bd:5c:b9:42: 69:eb:b5:47:d3:04:4c:09:77:bd:5b:0b:ae:3f:97:44:7b:21: f1:f2:48:6f:a8:40:44:05:e3:28:9a:94:0d:e7:88:73:37:ab: db:d3:0e:96:d6:08:1a:7f:cc:19:f9:03:98:9e:a6:df:39:ca: fa:6b:76:0c:72:97:73:a3:c2:d2:43:d0:e7:d9:3e:f5:94:61: e0:96:1f:d0:4b:9f:bd:59:37:15:a6:5a:3c:19:b6:1d:8e:1a: f9:0a:5e:78 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeuZ9ynDuqS6jq2mLLCMuMo7fXZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU1NTM0QUJBNkVGM0M5OEM4RDBDRjQzNzc5NUQyNUEz QTlDMjVDNjAeFw0yNDA3MDEwMDU4NTlaFw0yNTA2MzAwMTAzNTlaMDMxMTAvBgNV BAMTKDFGMjM0OUFBQzQyQjA1Q0M4QzE2N0JFNTMyMUVDMkE2MTJEMDAyRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCvMywKP9j8v7MriqtO0wEJ2Oo aeFkSdHw8RvXByJTK7bZ51E9C9PUWkVHahHxwf1/c2AxvLs+gp5lIwBmFjuRPoo1 BhIgYjS1hFuJ0RYYCyVDGj3O2KftSgYVgKYUxaUAomg46R2ZH6F2qOg9ODqFG3Ad h+96juj67lHIP72+2TqwqY05UmvbRFX37mdqNcgN7O6+QtSpf0Ry6SubW0FZnjc0 J+FMZ2jhkDAsrIg13fvar1GKQOsFzFexQvZie+wPrWdm6rq7//83FiejpG06crVL XX0NgIRZpBm5WO5tl1woZF3b02aSC902jgDlSt+cK8c5FKzQ3+H/e9pn0bQxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHyNJqsQrBcyMFnvlMh7CphLQAtgwHwYDVR0j BBgwFoAUblU0q6bvPJjI0M9Dd5XSWjqcJcYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjkxNzc3ZS1jZGI0LTQ4OTctYjI4Ny1lNThlNDI0YzE5OWQvMC82RTU1MzRBQkE2 RUYzQzk4QzhEMENGNDM3Nzk1RDI1QTNBOUMyNUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkU1NTM0QUJBNkVGM0M5OEM4RDBDRjQzNzc5NUQyNUEzQTlD MjVDNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2OTE3NzdlLWNkYjQtNDg5Ny1i Mjg3LWU1OGU0MjRjMTk5ZC8wLzM0MzMyZTMyMzIzNTJlMzYzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzgzNDM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr4UAwDQYJKoZIhvcN AQELBQADggEBABvoIg7izCcJLOET/gz6juqdBT6Rcjy3gVltGjqrWjLnG8YoobvP THXalKNn03yYpb9+UmUfc0cP8BEQslras5FBnP3BpzHxAFr2sV1OqUrggjtc3xhs HcBf4i8zf60FkW4XXMFhg/NHSrCxh5O9LSnDQYfCNHb8tyvYVWn3J04LTIAFDx30 a3QKcES3aPiclqklPlH3b1+ImK4yoQ+9vVy5QmnrtUfTBEwJd71bC64/l0R7IfHy SG+oQEQF4yialA3niHM3q9vTDpbWCBp/zBn5A5iept85yvprdgxyl3OjwtJD0OfZ PvWUYeCWH9BLn71ZNxWmWjwZth2OGvkKXng= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org