$ rpki-client -vvf repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa File: 34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa (raw, json) Hash identifier: KZEaDqHzT8XvAKRz/ZGM0DEnysWuR8pScoWWi0m2YlA= Subject key identifier: 54:67:A9:C5:A6:98:41:1F:64:58:59:74:7E:82:8A:69:8F:4E:A4:D9 Certificate issuer: /CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Certificate serial: 69F2011159CC844930112DB34636247CCB7F4653 Authority key identifier: AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa Signing time: Sat 03 Aug 2024 03:00:01 +0000 ROA not before: Sat 03 Aug 2024 02:55:01 +0000 ROA not after: Sat 02 Aug 2025 03:00:01 +0000 asID: 131740 IP address blocks: 43.245.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 22:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f2:01:11:59:cc:84:49:30:11:2d:b3:46:36:24:7c:cb:7f:46:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Validity Not Before: Aug 3 02:55:01 2024 GMT Not After : Aug 2 03:00:01 2025 GMT Subject: CN=5467A9C5A698411F645859747E828A698F4EA4D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:4d:a2:fa:4d:f7:9c:ee:84:58:47:ee:c2:85: 61:2f:b6:0c:2c:18:f1:d9:c8:69:58:d3:9d:9d:d5: b2:3b:6a:a5:1f:90:07:87:4a:ec:07:67:1f:20:10: 3f:61:2b:af:7f:e4:27:37:1e:9a:57:96:d5:ff:5b: 7c:2f:7c:d4:db:8f:d4:2a:df:fb:80:17:28:0b:7c: 9c:b7:5f:dd:96:7b:91:5e:19:ec:19:34:88:fb:d2: 4d:0a:ec:e8:51:ca:68:20:78:36:5c:04:95:cc:ec: 21:e1:ec:38:2f:34:be:a7:ab:3e:ba:10:bf:c3:fd: 38:66:bd:63:e2:bb:7b:88:48:b4:19:22:2d:1d:0e: 0a:64:c7:42:e2:52:f9:2b:79:be:35:99:d1:d7:0e: e3:8b:4a:fc:02:fd:d2:ad:92:6c:12:f9:6d:32:81: ce:d8:b8:54:7b:49:3d:5f:9b:9d:e4:f2:18:e2:e2: 29:4a:08:8d:94:91:6a:4d:a6:d4:ed:47:2f:bc:06: 13:94:0f:2f:77:92:e2:c9:fd:fb:c7:0a:84:59:36: 61:67:d0:c1:55:6f:37:d4:a6:b4:88:c7:5d:85:d0: d5:57:27:5b:74:0e:83:4c:2d:0b:02:90:dd:37:be: bc:3f:1a:12:8e:50:b7:05:ff:5f:5c:21:a3:1a:77: 3a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:67:A9:C5:A6:98:41:1F:64:58:59:74:7E:82:8A:69:8F:4E:A4:D9 X509v3 Authority Key Identifier: keyid:AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.248.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:50:ad:c4:ae:2a:1f:a6:25:aa:0b:68:b8:51:cd:fe:e6:60: ba:65:3f:3b:53:6b:b0:68:ee:df:87:5f:39:a8:cf:17:ac:0c: a7:e6:67:de:ed:fb:43:a8:bc:dc:b7:14:41:79:1c:04:28:3b: 93:66:5c:54:5c:cf:09:21:61:f3:28:0f:36:d0:26:b9:dd:8a: f2:31:5f:3c:a7:32:49:02:5d:81:2e:9a:04:68:4e:c7:9b:d5: 66:d2:b6:54:23:02:b9:be:7a:ac:1a:95:a7:a3:7d:61:99:90: b5:e8:e1:1b:e0:6d:2b:b6:51:a1:2e:38:27:27:e9:53:81:9f: 3f:65:a1:9a:71:e3:68:bd:61:64:8a:a4:29:c2:86:80:38:17: fa:ce:34:6c:f9:23:7b:1c:a0:8d:75:c3:c0:d7:18:1f:ce:cd: c0:2d:fa:73:ee:80:90:1d:19:ed:c5:da:32:2e:14:37:af:e2: 49:e3:41:b5:61:98:33:c9:aa:32:e3:8f:ff:ca:63:6a:18:c0: c5:73:18:31:aa:92:b4:10:95:41:7a:5a:5f:b1:bd:5d:f7:98: ad:0b:c0:dd:9e:3a:bd:a5:6b:39:3a:fc:7b:01:01:e6:e6:cd: 92:82:36:46:71:d4:0b:8e:82:93:35:17:62:e7:9b:b4:08:8b: 72:e3:fe:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUafIBEVnMhEkwES2zRjYkfMt/RlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5 MjMxMDUwNDAeFw0yNDA4MDMwMjU1MDFaFw0yNTA4MDIwMzAwMDFaMDMxMTAvBgNV BAMTKDU0NjdBOUM1QTY5ODQxMUY2NDU4NTk3NDdFODI4QTY5OEY0RUE0RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxTaL6Tfec7oRYR+7ChWEvtgws GPHZyGlY052d1bI7aqUfkAeHSuwHZx8gED9hK69/5Cc3HppXltX/W3wvfNTbj9Qq 3/uAFygLfJy3X92We5FeGewZNIj70k0K7OhRymggeDZcBJXM7CHh7DgvNL6nqz66 EL/D/ThmvWPiu3uISLQZIi0dDgpkx0LiUvkreb41mdHXDuOLSvwC/dKtkmwS+W0y gc7YuFR7ST1fm53k8hji4ilKCI2UkWpNptTtRy+8BhOUDy93kuLJ/fvHCoRZNmFn 0MFVbzfUprSIx12F0NVXJ1t0DoNMLQsCkN03vrw/GhKOULcF/19cIaMadzrbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVGepxaaYQR9kWFl0foKKaY9OpNkwHwYDVR0j BBgwFoAUrrMv+gAHwKBn+4zp3XfP75IxBQQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzZmODMyYi01YTllLTRjYWEtYmRkNC0yNjM0NzI3YTllZDQvMC9BRUIzMkZGQTAw MDdDMEEwNjdGQjhDRTlERDc3Q0ZFRjkyMzEwNTA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5MjMx MDUwNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNmY4MzJiLTVhOWUtNGNhYS1i ZGQ0LTI2MzQ3MjdhOWVkNC8wLzM0MzMyZTMyMzQzNTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/X4MA0GCSqG SIb3DQEBCwUAA4IBAQBdUK3EriofpiWqC2i4Uc3+5mC6ZT87U2uwaO7fh185qM8X rAyn5mfe7ftDqLzctxRBeRwEKDuTZlxUXM8JIWHzKA820Ca53YryMV88pzJJAl2B LpoEaE7Hm9Vm0rZUIwK5vnqsGpWno31hmZC16OEb4G0rtlGhLjgnJ+lTgZ8/ZaGa ceNovWFkiqQpwoaAOBf6zjRs+SN7HKCNdcPA1xgfzs3ALfpz7oCQHRntxdoyLhQ3 r+JJ40G1YZgzyaoy44//ymNqGMDFcxgxqpK0EJVBelpfsb1d95itC8Ddnjq9pWs5 Ovx7AQHm5s2SgjZGcdQLjoKTNRdi55u0CIty4/4N -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org