$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa File: 34332e3234322e3133322e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: 5jkC14KZMU4fF4QlGT56pMiBx5VDWUUgaF+zaekL5kw= Subject key identifier: 41:C9:B0:DE:FB:0F:FF:D9:2D:0E:4D:39:8D:E5:C4:A1:0A:F7:3B:FB Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 14175EB507660C8A974F27740B424CD97CF21C3E Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa Signing time: Mon 31 Jul 2023 00:09:24 +0000 ROA not before: Mon 31 Jul 2023 00:04:24 +0000 ROA not after: Mon 29 Jul 2024 00:09:24 +0000 asID: 58476 IP address blocks: 43.242.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:17:5e:b5:07:66:0c:8a:97:4f:27:74:0b:42:4c:d9:7c:f2:1c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 31 00:04:24 2023 GMT Not After : Jul 29 00:09:24 2024 GMT Subject: CN=41C9B0DEFB0FFFD92D0E4D398DE5C4A10AF73BFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6a:fe:dd:d0:84:21:a1:8f:d7:ae:7a:21:4f: 6d:85:ba:3a:7f:53:e2:e5:00:1d:cb:42:65:3f:4b: 1e:ca:fe:f0:42:33:e8:d6:22:c4:e2:7a:49:11:0b: 94:29:c4:57:b6:f8:3d:b2:b9:2c:bf:76:27:ea:6b: 37:7c:9a:d9:bf:50:d9:8f:76:be:89:1f:94:ba:78: ed:02:6c:60:a1:5f:b9:c2:f1:30:27:08:f5:e0:63: d6:28:be:a4:e5:36:a9:f5:68:14:87:bc:bb:75:10: b4:30:b3:9a:d4:95:db:fd:52:e8:2a:ea:98:f8:c6: b2:e6:4d:52:85:06:91:0c:b5:9c:5b:4f:99:12:6d: e7:74:c2:c8:bc:e9:e1:8a:51:da:12:5c:dc:72:5f: da:cf:5b:6a:a7:92:ab:6c:d1:31:a2:4b:86:d5:07: e2:8a:be:9e:20:7e:b9:87:e0:f8:68:1b:60:51:07: 82:4f:52:f3:e1:d9:51:bc:36:09:3c:4e:e1:bf:63: d2:9b:04:4c:e6:03:95:9d:8c:ec:6b:3e:4b:28:fe: a6:26:39:f4:55:4b:d5:84:f8:74:8b:08:78:99:42: 5b:1f:cb:28:01:58:b1:77:dd:35:4c:da:62:d5:56: 2c:ee:52:6e:92:5c:9a:8c:59:20:12:d5:ff:84:dd: 7e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C9:B0:DE:FB:0F:FF:D9:2D:0E:4D:39:8D:E5:C4:A1:0A:F7:3B:FB X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.132.0/24 Signature Algorithm: sha256WithRSAEncryption 02:a9:d4:41:53:01:77:b2:bb:d5:6e:49:16:de:ed:ee:32:22: 16:5e:a8:93:e6:c8:87:83:00:9a:3f:3d:b5:08:65:19:4e:15: f6:56:bb:f0:34:87:ec:22:9d:54:d3:f3:46:e7:65:15:62:a3: 93:c3:f6:dd:f2:9c:4c:2c:da:47:b0:a9:31:1a:4e:1e:bc:0f: b5:e0:f0:c8:fd:46:0b:bf:46:f5:f9:e0:57:6e:92:2c:5f:3a: 76:d3:82:a2:fe:a6:34:ce:52:50:b9:00:a1:ee:a7:ab:58:8a: 6b:05:39:a7:28:3a:a0:85:f6:1e:6c:af:f9:ac:28:0b:aa:ef: bc:52:96:01:a1:bd:02:84:f3:20:e3:0c:7a:4f:8c:65:69:8a: e4:fc:12:57:43:21:78:76:82:4b:a4:94:7c:b8:51:80:d9:91: 07:59:6c:af:8d:86:5a:bb:e1:5b:12:23:f0:36:cc:0b:1a:3f: dc:bc:f4:0f:1c:96:18:49:ef:ae:72:6c:4f:5c:59:51:aa:d1: 7d:c6:e4:08:cc:ce:78:f0:22:fe:31:1a:e1:e4:58:ec:3e:e6: e6:36:91:9c:27:13:36:26:e8:29:07:54:51:10:73:a0:66:44: 7a:4d:c8:65:36:e9:02:e1:fb:a0:35:bd:fb:fa:22:db:ad:f5: ff:3b:fd:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFBdetQdmDIqXTyd0C0JM2XzyHD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yMzA3MzEwMDA0MjRaFw0yNDA3MjkwMDA5MjRaMDMxMTAvBgNV BAMTKDQxQzlCMERFRkIwRkZGRDkyRDBFNEQzOThERTVDNEExMEFGNzNCRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuav7d0IQhoY/XrnohT22Fujp/ U+LlAB3LQmU/Sx7K/vBCM+jWIsTiekkRC5QpxFe2+D2yuSy/difqazd8mtm/UNmP dr6JH5S6eO0CbGChX7nC8TAnCPXgY9YovqTlNqn1aBSHvLt1ELQws5rUldv9Uugq 6pj4xrLmTVKFBpEMtZxbT5kSbed0wsi86eGKUdoSXNxyX9rPW2qnkqts0TGiS4bV B+KKvp4gfrmH4PhoG2BRB4JPUvPh2VG8Ngk8TuG/Y9KbBEzmA5WdjOxrPkso/qYm OfRVS9WE+HSLCHiZQlsfyygBWLF33TVM2mLVVizuUm6SXJqMWSAS1f+E3X4LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQcmw3vsP/9ktDk05jeXEoQr3O/swHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzM0MzMyZTMyMzQzMjJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvyhDANBgkqhkiG 9w0BAQsFAAOCAQEAAqnUQVMBd7K71W5JFt7t7jIiFl6ok+bIh4MAmj89tQhlGU4V 9la78DSH7CKdVNPzRudlFWKjk8P23fKcTCzaR7CpMRpOHrwPteDwyP1GC79G9fng V26SLF86dtOCov6mNM5SULkAoe6nq1iKawU5pyg6oIX2Hmyv+awoC6rvvFKWAaG9 AoTzIOMMek+MZWmK5PwSV0MheHaCS6SUfLhRgNmRB1lsr42GWrvhWxIj8DbMCxo/ 3Lz0DxyWGEnvrnJsT1xZUarRfcbkCMzOePAi/jEa4eRY7D7m5jaRnCcTNiboKQdU URBzoGZEek3IZTbpAuH7oDW9+/oi2631/zv9Jw== -----END CERTIFICATE-----Generated at Sat Jun 1 01:40:18 2024 by rpki-client on console-fra.rpki-client.org