$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa File: 34332e3234322e3133322e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: htS/mOXNz8fNjrYCraLvtDOWNvj77Vu5R0ubwkx6Y70= Subject key identifier: 99:84:20:4E:72:89:B3:57:51:16:39:BB:DF:FC:80:8B:B5:D7:F7:48 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 3D624784B526B86478A360925D55D399EF418DE5 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa Signing time: Mon 01 Jul 2024 01:05:21 +0000 ROA not before: Mon 01 Jul 2024 01:00:21 +0000 ROA not after: Mon 30 Jun 2025 01:05:21 +0000 asID: 58476 IP address blocks: 43.242.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:62:47:84:b5:26:b8:64:78:a3:60:92:5d:55:d3:99:ef:41:8d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 1 01:00:21 2024 GMT Not After : Jun 30 01:05:21 2025 GMT Subject: CN=9984204E7289B357511639BBDFFC808BB5D7F748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3f:2d:86:87:9c:10:3e:62:6f:46:2f:b9:62: 3b:29:e4:46:09:b3:59:cb:a3:03:38:81:83:61:10: 17:7e:1a:a8:56:94:ca:53:d2:ab:38:16:88:1a:00: 01:d2:3c:2f:d0:7f:8f:49:7c:17:2c:c9:f7:30:28: c4:cf:5e:35:de:8e:dd:33:2a:59:52:fe:96:fc:6d: 73:36:17:19:72:b2:97:7b:8a:6f:f6:f6:92:cf:ab: ae:31:ec:10:9f:cb:e9:56:0f:e2:b9:a3:cb:da:f4: 48:90:37:17:87:1f:62:9b:cd:a5:3b:7d:40:c3:c7: 3f:26:66:04:d1:3d:de:25:73:2b:ab:a4:71:57:c3: a8:6a:d2:b0:cd:85:b5:db:2c:ae:61:78:0a:aa:ae: d3:5f:a7:ad:53:1f:fd:5f:7d:51:84:a1:2d:27:24: 43:25:1a:fd:de:ed:bc:d9:84:0f:92:5a:b9:3a:34: 1a:9c:9a:b4:eb:a7:84:22:a8:e1:59:f8:68:85:8f: 43:11:ff:b4:9b:0d:98:05:c3:d1:87:0a:c3:21:df: 3c:65:80:e3:fc:ac:2a:70:81:fe:e0:06:ad:ba:2f: 25:36:88:1d:18:bf:07:aa:30:e1:a2:7a:3e:26:7a: 82:db:c2:b6:a3:8d:d9:06:db:0c:95:e2:35:5c:f1: e2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:84:20:4E:72:89:B3:57:51:16:39:BB:DF:FC:80:8B:B5:D7:F7:48 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.132.0/24 Signature Algorithm: sha256WithRSAEncryption 77:50:e8:dc:ea:8e:61:71:39:d1:05:93:57:5d:74:3b:37:b6: b0:b0:b3:6f:9a:0b:28:af:8c:73:33:95:10:66:ff:15:7e:7a: a0:c4:45:62:bf:e6:b6:d6:28:40:99:85:e6:89:04:1f:0a:b1: 60:07:05:fd:b5:fe:55:01:a5:d6:89:b1:28:df:0c:a6:25:d8: 5e:38:90:9d:68:06:44:8d:bd:0e:7b:10:5e:2e:85:54:39:81: e3:07:dc:29:9d:1b:c3:08:f5:0f:09:1f:46:f9:83:f2:05:8a: af:cd:95:bb:35:71:10:37:19:c2:f6:2c:84:2e:38:0e:95:a6: c4:ec:06:5b:c8:69:88:5d:3c:26:10:40:0b:9b:a4:68:cb:c0: e6:0d:b9:d3:dc:e3:ad:83:fc:c6:80:fd:8a:18:14:d6:38:2c: 88:50:19:f9:93:af:e7:8c:e5:e9:93:13:14:91:34:03:10:0b: f6:51:00:8b:b1:10:5a:c4:43:31:ab:9b:8b:e3:41:df:aa:0c: d9:9d:42:9d:ff:9e:de:a2:65:d5:76:5d:37:1e:1e:48:a9:19: 0b:d1:be:a2:20:31:48:2c:72:3b:0a:77:92:e5:0b:ea:7d:ce: 85:90:fe:e7:7b:1b:6b:08:74:67:cf:94:2b:e3:63:da:a5:14: f1:ab:44:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPWJHhLUmuGR4o2CSXVXTme9BjeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNDA3MDEwMTAwMjFaFw0yNTA2MzAwMTA1MjFaMDMxMTAvBgNV BAMTKDk5ODQyMDRFNzI4OUIzNTc1MTE2MzlCQkRGRkM4MDhCQjVEN0Y3NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbPy2Gh5wQPmJvRi+5Yjsp5EYJ s1nLowM4gYNhEBd+GqhWlMpT0qs4FogaAAHSPC/Qf49JfBcsyfcwKMTPXjXejt0z KllS/pb8bXM2Fxlyspd7im/29pLPq64x7BCfy+lWD+K5o8va9EiQNxeHH2KbzaU7 fUDDxz8mZgTRPd4lcyurpHFXw6hq0rDNhbXbLK5heAqqrtNfp61TH/1ffVGEoS0n JEMlGv3e7bzZhA+SWrk6NBqcmrTrp4QiqOFZ+GiFj0MR/7SbDZgFw9GHCsMh3zxl gOP8rCpwgf7gBq26LyU2iB0YvweqMOGiej4meoLbwrajjdkG2wyV4jVc8eJPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmYQgTnKJs1dRFjm73/yAi7XX90gwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzM0MzMyZTMyMzQzMjJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvyhDANBgkqhkiG 9w0BAQsFAAOCAQEAd1Do3OqOYXE50QWTV110Oze2sLCzb5oLKK+MczOVEGb/FX56 oMRFYr/mttYoQJmF5okEHwqxYAcF/bX+VQGl1omxKN8MpiXYXjiQnWgGRI29DnsQ Xi6FVDmB4wfcKZ0bwwj1DwkfRvmD8gWKr82VuzVxEDcZwvYshC44DpWmxOwGW8hp iF08JhBAC5ukaMvA5g2509zjrYP8xoD9ihgU1jgsiFAZ+ZOv54zl6ZMTFJE0AxAL 9lEAi7EQWsRDMaubi+NB36oM2Z1Cnf+e3qJl1XZdNx4eSKkZC9G+oiAxSCxyOwp3 kuUL6n3OhZD+53sbawh0Z8+UK+Nj2qUU8atEeA== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org