$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa File: 34332e3234322e3133332e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: R0NLF4Ov1wAGeHFAFhKyGtvsypexoChl/jl0cHH5TqA= Subject key identifier: 5A:44:EF:34:84:77:91:4B:3C:73:B2:D3:48:CE:99:17:70:12:CF:1D Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 534ADECC3386D0322010A888BCD133712C576D64 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa Signing time: Mon 01 Jul 2024 01:05:21 +0000 ROA not before: Mon 01 Jul 2024 01:00:21 +0000 ROA not after: Mon 30 Jun 2025 01:05:21 +0000 asID: 58476 IP address blocks: 43.242.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:4a:de:cc:33:86:d0:32:20:10:a8:88:bc:d1:33:71:2c:57:6d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 1 01:00:21 2024 GMT Not After : Jun 30 01:05:21 2025 GMT Subject: CN=5A44EF348477914B3C73B2D348CE99177012CF1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:61:27:fe:ee:72:c3:b8:a3:56:9c:06:41:45: 7b:34:41:69:b2:4a:7c:8c:22:f3:6d:55:9a:6c:74: d0:c2:d0:67:da:bc:0e:3a:17:9e:da:d3:04:9f:9e: c7:7f:6e:ee:c4:b3:54:6c:c4:eb:b3:60:1f:2c:5b: d7:a0:fc:04:43:89:77:e9:4a:69:8d:f3:f6:75:19: b9:4b:7d:50:61:de:54:ff:99:5a:a0:89:91:5d:42: d9:33:20:13:5b:07:5e:7f:a8:ce:cd:1b:3b:ac:79: 85:9e:fd:cc:c0:4b:96:4e:7d:54:75:66:95:c3:13: 7b:41:90:fb:7a:59:c2:95:b6:bf:db:21:3f:73:3d: 26:21:4a:27:2a:70:f6:ee:c3:99:c8:9c:d7:54:6f: 59:d2:34:90:15:7f:37:a2:c1:9c:88:62:3d:1b:76: 61:96:13:e4:27:82:de:ef:7a:ab:d2:50:93:3b:11: 58:4f:22:e4:6d:05:94:2a:75:71:f5:1f:2d:ca:5e: 0a:52:55:e8:bb:5f:65:73:ca:0d:a5:9a:32:a7:fc: 39:c7:90:a8:34:9c:30:b1:a4:66:2c:38:0e:0c:67: fb:4e:ba:24:9f:ba:85:f0:f7:5c:5b:37:41:c2:7f: 42:e6:f4:c4:7b:dd:7a:5b:a1:5d:f4:46:d4:e0:9a: e1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:44:EF:34:84:77:91:4B:3C:73:B2:D3:48:CE:99:17:70:12:CF:1D X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.133.0/24 Signature Algorithm: sha256WithRSAEncryption 91:92:f7:b2:dc:24:02:32:30:eb:57:85:2f:34:67:23:ae:7f: 5b:7d:0b:e9:e2:af:ec:71:73:9f:a8:29:29:62:87:4a:d9:4d: a8:87:67:40:53:dc:0d:5c:39:ef:7f:5e:73:8a:ab:05:8b:d3: df:80:77:5c:06:27:b4:58:45:05:a0:ca:30:79:1d:98:2a:aa: 79:67:51:7b:0d:75:5c:6e:61:20:94:3c:b6:48:07:19:53:a1: 67:aa:35:bd:45:41:a6:df:9f:78:3c:f2:f9:05:f3:52:6b:2f: be:6d:17:63:b6:a5:02:46:11:d3:0c:50:6e:fe:0c:e3:17:35: eb:7f:14:24:7a:61:66:18:5b:47:d4:66:be:b8:0f:d2:b5:4b: 06:4f:a9:43:5b:04:a0:a2:88:56:93:2f:a0:dd:30:ea:2b:aa: ae:fd:b6:d8:7c:65:b4:e6:da:a2:92:6c:e1:ce:66:2a:5f:e1: 03:03:5e:0c:47:98:b3:36:70:20:8f:eb:f2:c0:8c:0e:54:65: 65:3b:7b:72:6a:79:d4:42:a8:d8:d7:b9:67:9e:56:29:d7:12: b1:bb:87:7c:b7:77:77:f5:60:75:39:e7:f8:ab:28:7a:c9:55: 73:62:ad:fb:72:4a:40:fe:e7:95:05:ae:df:37:2e:f6:f3:6f: 1e:ee:8e:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU0rezDOG0DIgEKiIvNEzcSxXbWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNDA3MDEwMTAwMjFaFw0yNTA2MzAwMTA1MjFaMDMxMTAvBgNV BAMTKDVBNDRFRjM0ODQ3NzkxNEIzQzczQjJEMzQ4Q0U5OTE3NzAxMkNGMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuYSf+7nLDuKNWnAZBRXs0QWmy SnyMIvNtVZpsdNDC0GfavA46F57a0wSfnsd/bu7Es1RsxOuzYB8sW9eg/ARDiXfp SmmN8/Z1GblLfVBh3lT/mVqgiZFdQtkzIBNbB15/qM7NGzuseYWe/czAS5ZOfVR1 ZpXDE3tBkPt6WcKVtr/bIT9zPSYhSicqcPbuw5nInNdUb1nSNJAVfzeiwZyIYj0b dmGWE+Qngt7veqvSUJM7EVhPIuRtBZQqdXH1Hy3KXgpSVei7X2Vzyg2lmjKn/DnH kKg0nDCxpGYsOA4MZ/tOuiSfuoXw91xbN0HCf0Lm9MR73XpboV30RtTgmuHJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWkTvNIR3kUs8c7LTSM6ZF3ASzx0wHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzM0MzMyZTMyMzQzMjJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvyhTANBgkqhkiG 9w0BAQsFAAOCAQEAkZL3stwkAjIw61eFLzRnI65/W30L6eKv7HFzn6gpKWKHStlN qIdnQFPcDVw5739ec4qrBYvT34B3XAYntFhFBaDKMHkdmCqqeWdRew11XG5hIJQ8 tkgHGVOhZ6o1vUVBpt+feDzy+QXzUmsvvm0XY7alAkYR0wxQbv4M4xc1638UJHph ZhhbR9RmvrgP0rVLBk+pQ1sEoKKIVpMvoN0w6iuqrv222HxltObaopJs4c5mKl/h AwNeDEeYszZwII/r8sCMDlRlZTt7cmp51EKo2Ne5Z55WKdcSsbuHfLd3d/VgdTnn +KsoeslVc2Kt+3JKQP7nlQWu3zcu9vNvHu6Ojg== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org