$ rpki-client -vvf repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/34332e3234352e3138302e302f32322d3234203d3e203538333937.roa File: 34332e3234352e3138302e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: 5JSgIrfyKlfPF99bCHPuTDtPr15+3N5LYVysP3keUmI= Subject key identifier: B6:E9:71:7E:4F:69:2C:12:02:8D:38:E2:48:C1:30:C0:B6:2E:AC:34 Certificate issuer: /CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Certificate serial: 47345D515E76BCB6EF9114E7E37124087B8B26CB Authority key identifier: 8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/34332e3234352e3138302e302f32322d3234203d3e203538333937.roa Signing time: Sat 09 Dec 2023 11:00:01 +0000 ROA not before: Sat 09 Dec 2023 10:55:01 +0000 ROA not after: Sat 07 Dec 2024 11:00:01 +0000 asID: 58397 IP address blocks: 43.245.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:34:5d:51:5e:76:bc:b6:ef:91:14:e7:e3:71:24:08:7b:8b:26:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Validity Not Before: Dec 9 10:55:01 2023 GMT Not After : Dec 7 11:00:01 2024 GMT Subject: CN=B6E9717E4F692C12028D38E248C130C0B62EAC34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b2:60:2b:4c:8e:98:74:5b:1e:2d:31:f3:f1: 65:fd:88:49:10:b7:5c:b4:b2:41:aa:f2:7b:75:6e: ac:8f:6e:6d:36:a3:fb:c7:bb:91:21:da:da:f2:3b: ae:86:cc:a9:9b:9d:2c:5f:16:f1:9d:50:7a:c7:38: 66:17:64:da:aa:60:db:d2:e3:2a:39:8f:51:17:c0: 24:12:be:55:a1:5e:13:52:98:4a:9f:29:0c:cc:9f: 6d:65:7e:bc:ba:78:92:6d:a9:bb:f9:47:28:28:59: 74:5a:b3:3b:10:c0:c4:50:ff:5e:8f:03:47:bf:d6: 4c:f8:84:3b:4a:89:e4:96:e1:b9:08:b7:4b:9d:97: 16:17:0d:45:8e:0f:dd:2c:e8:d3:98:eb:b6:bd:10: 6f:39:28:40:5c:7d:fe:16:80:04:21:34:49:66:41: 52:73:36:45:cd:9e:61:8d:8c:e3:ff:be:b4:4a:c2: 59:af:f8:e1:80:33:a1:d0:8e:7b:1b:72:df:ed:8b: 85:78:52:f4:5e:a0:f0:0d:19:ce:3c:04:73:77:da: 5e:e5:fa:9a:f1:76:b6:a9:d9:fa:d9:f2:49:a8:9f: d5:84:66:43:b1:8f:2e:75:7c:b0:96:dc:07:65:0f: a4:02:8e:3d:7d:2d:b5:11:ba:26:2c:3b:d5:49:23: 1e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E9:71:7E:4F:69:2C:12:02:8D:38:E2:48:C1:30:C0:B6:2E:AC:34 X509v3 Authority Key Identifier: keyid:8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/34332e3234352e3138302e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.180.0/22 Signature Algorithm: sha256WithRSAEncryption 83:0b:22:30:4f:2e:3a:2d:21:55:f9:a2:09:3c:3d:e0:55:63: 70:1a:bb:e3:a5:be:99:9d:d8:9b:a0:fa:05:18:8a:4b:3d:38: 67:8b:a3:f4:d2:10:81:53:e0:4e:d7:ff:0b:e9:b0:a5:dd:b2: 58:ce:83:b5:92:9e:fa:af:f8:32:45:5d:d3:52:f4:45:84:94: 3b:9a:b8:d4:58:e2:4c:6c:d2:58:3c:f6:5a:e6:4a:5e:e3:ca: 0a:47:45:fc:76:a3:82:d4:e7:57:76:fb:a6:6f:88:f5:09:6d: 97:9d:a3:db:0d:ad:c2:0f:2e:55:c5:00:d2:2d:e4:58:47:ba: cc:23:9b:ac:da:06:4e:7d:62:19:95:c0:9f:44:6a:00:a1:da: 5f:29:b6:ba:ce:8d:ce:49:79:9e:da:cf:cb:1f:5d:0d:7c:05: 9e:15:ac:ec:cf:ac:61:df:87:ec:1d:fc:35:c0:5d:8b:e8:a6: d7:57:d5:59:b9:ae:30:22:22:95:74:51:30:c3:bc:5a:3c:34: 9e:81:3e:96:72:ce:ba:62:08:59:60:82:20:59:df:41:ce:24: 77:20:26:02:2f:67:9b:8c:fd:05:41:f6:a2:9d:5a:d8:5f:0a: 24:33:7e:68:2d:91:fd:a2:eb:54:55:bf:a7:ab:87:63:0e:2c: 44:14:7b:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURzRdUV52vLbvkRTn43EkCHuLJsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5 NEZCNjQ4MTAeFw0yMzEyMDkxMDU1MDFaFw0yNDEyMDcxMTAwMDFaMDMxMTAvBgNV BAMTKEI2RTk3MTdFNEY2OTJDMTIwMjhEMzhFMjQ4QzEzMEMwQjYyRUFDMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtsmArTI6YdFseLTHz8WX9iEkQ t1y0skGq8nt1bqyPbm02o/vHu5Eh2tryO66GzKmbnSxfFvGdUHrHOGYXZNqqYNvS 4yo5j1EXwCQSvlWhXhNSmEqfKQzMn21lfry6eJJtqbv5RygoWXRaszsQwMRQ/16P A0e/1kz4hDtKieSW4bkIt0udlxYXDUWOD90s6NOY67a9EG85KEBcff4WgAQhNElm QVJzNkXNnmGNjOP/vrRKwlmv+OGAM6HQjnsbct/ti4V4UvReoPANGc48BHN32l7l +prxdrap2frZ8kmon9WEZkOxjy51fLCW3AdlD6QCjj19LbURuiYsO9VJIx4lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtulxfk9pLBICjTjiSMEwwLYurDQwHwYDVR0j BBgwFoAUipX69yPsEp4zbnWs4c1PMJT7ZIEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGI5ODcyMi0xY2I0LTQwZDQtYWM4Yi1jM2JjYTJiY2EyMTcvMC84QTk1RkFGNzIz RUMxMjlFMzM2RTc1QUNFMUNENEYzMDk0RkI2NDgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5NEZC NjQ4MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Yjk4NzIyLTFjYjQtNDBkNC1h YzhiLWMzYmNhMmJjYTIxNy8wLzM0MzMyZTMyMzQzNTJlMzEzODMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv1tDANBgkqhkiG 9w0BAQsFAAOCAQEAgwsiME8uOi0hVfmiCTw94FVjcBq746W+mZ3Ym6D6BRiKSz04 Z4uj9NIQgVPgTtf/C+mwpd2yWM6DtZKe+q/4MkVd01L0RYSUO5q41FjiTGzSWDz2 WuZKXuPKCkdF/HajgtTnV3b7pm+I9Qltl52j2w2twg8uVcUA0i3kWEe6zCObrNoG Tn1iGZXAn0RqAKHaXym2us6Nzkl5ntrPyx9dDXwFnhWs7M+sYd+H7B38NcBdi+im 11fVWbmuMCIilXRRMMO8Wjw0noE+lnLOumIIWWCCIFnfQc4kdyAmAi9nm4z9BUH2 op1a2F8KJDN+aC2R/aLrVFW/p6uHYw4sRBR7Jw== -----END CERTIFICATE-----Generated at Sat May 4 04:32:37 2024 by rpki-client on console-ams.rpki-client.org