$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa File: 3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa (raw, json) Hash identifier: b5y2S6K+DhK2SyoECQA9orZUCcPG4TBCAtY/QAcFLm0= Subject key identifier: 58:D1:72:2B:3B:02:31:32:DE:61:14:78:D8:CE:C0:4E:30:83:D1:5B Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 467535D0F754BF0932D8CCE949FBAAD374B14504 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa Signing time: Fri 08 Sep 2023 10:01:11 +0000 ROA not before: Fri 08 Sep 2023 09:56:11 +0000 ROA not after: Fri 06 Sep 2024 10:01:11 +0000 asID: 23679 IP address blocks: 150.107.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:75:35:d0:f7:54:bf:09:32:d8:cc:e9:49:fb:aa:d3:74:b1:45:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 8 09:56:11 2023 GMT Not After : Sep 6 10:01:11 2024 GMT Subject: CN=58D1722B3B023132DE611478D8CEC04E3083D15B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9e:b2:55:72:1b:69:90:ee:ed:fe:62:3c:d5: e0:1b:85:22:0e:83:07:e2:e1:2c:d2:52:f3:7e:83: f9:23:f9:ed:84:3e:c3:02:33:3c:43:cf:5d:b3:79: 3c:ad:2b:33:bb:f7:3d:73:f6:1e:c2:ba:e1:b9:65: 47:70:90:b2:06:fd:69:00:0d:7d:89:7b:65:4b:2d: 82:48:57:48:99:d2:de:c6:46:1b:bf:7b:8c:17:65: 38:55:49:9d:18:62:fc:0f:c4:1e:ee:5c:4a:60:bc: 73:75:a3:b1:75:4e:03:ff:d9:9c:e8:90:6c:ab:9f: 26:00:6a:6c:b0:70:dd:06:ad:33:21:a5:09:9c:eb: 4a:a8:9f:3b:5e:af:a7:d1:ff:e3:a0:f3:5c:db:85: af:23:f8:9e:a6:cd:a6:14:b9:06:e2:75:1c:4f:58: b8:ec:0e:41:58:13:dd:0c:ed:ed:d3:60:02:ee:2a: d5:d3:77:ae:00:fb:ba:a3:ce:a3:52:f5:86:de:10: 42:81:a9:bc:65:a6:94:4b:89:53:6d:57:77:ea:c5: d6:19:c4:55:ed:f4:ae:42:5c:f9:f5:24:74:3d:99: d0:97:bd:b1:5b:9a:ac:87:a5:8f:6c:00:0a:70:b8: 4f:7a:3a:2e:fb:74:5d:b9:f9:54:99:53:bd:7a:a7: a0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D1:72:2B:3B:02:31:32:DE:61:14:78:D8:CE:C0:4E:30:83:D1:5B X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.136.0/23 Signature Algorithm: sha256WithRSAEncryption cc:83:0e:e8:3d:d9:5d:07:cc:4c:5b:54:a6:1c:da:6c:8b:c4: d3:bc:a6:9b:fd:db:0e:38:cf:f5:bd:3a:e9:52:03:55:b4:2a: f1:b3:9b:3f:a4:57:df:9e:b3:9c:bc:2e:de:82:9d:d3:99:e7: 72:79:b2:9d:a4:37:c4:32:5e:8c:b8:a8:74:ea:98:e9:53:38: ee:a4:25:ff:85:62:96:f1:13:1e:44:00:ba:cc:9a:7d:b3:25: 96:16:8b:ea:1f:57:04:53:c7:51:ef:ba:32:fc:f5:a1:51:5b: 56:fb:96:44:48:10:0c:6c:87:d1:26:3f:5b:d0:a1:5f:c1:e4: fb:b1:8d:40:ad:27:7d:65:fd:81:29:96:88:43:8c:5f:72:93: 2d:59:f9:fc:ef:54:40:31:9a:cb:52:d9:d5:71:69:b9:29:a2: 4c:8f:cc:17:a7:f3:65:82:9e:c8:3a:66:be:ce:fc:29:56:d0: 14:aa:f9:1e:92:4c:a1:b3:e9:d7:f9:c9:b4:4b:b1:63:d1:1b: 81:74:bb:55:bb:60:21:28:15:62:bc:7f:e3:a2:d2:1b:61:3f: 39:6a:03:c0:ca:d5:fb:c5:5f:4d:54:34:1a:f5:33:7d:e3:e9: 11:6f:ae:5f:eb:76:b5:c5:07:f3:86:26:b8:f7:ff:1f:fe:e7: a3:5d:1c:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURnU10PdUvwky2MzpSfuq03SxRQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MDgwOTU2MTFaFw0yNDA5MDYxMDAxMTFaMDMxMTAvBgNV BAMTKDU4RDE3MjJCM0IwMjMxMzJERTYxMTQ3OEQ4Q0VDMDRFMzA4M0QxNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4nrJVchtpkO7t/mI81eAbhSIO gwfi4SzSUvN+g/kj+e2EPsMCMzxDz12zeTytKzO79z1z9h7CuuG5ZUdwkLIG/WkA DX2Je2VLLYJIV0iZ0t7GRhu/e4wXZThVSZ0YYvwPxB7uXEpgvHN1o7F1TgP/2Zzo kGyrnyYAamywcN0GrTMhpQmc60qonzter6fR/+Og81zbha8j+J6mzaYUuQbidRxP WLjsDkFYE90M7e3TYALuKtXTd64A+7qjzqNS9YbeEEKBqbxlppRLiVNtV3fqxdYZ xFXt9K5CXPn1JHQ9mdCXvbFbmqyHpY9sAApwuE96Oi77dF25+VSZU716p6DhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWNFyKzsCMTLeYRR42M7ATjCD0VswHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzUzMDJlMzEzMDM3MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBlmuIMA0GCSqG SIb3DQEBCwUAA4IBAQDMgw7oPdldB8xMW1SmHNpsi8TTvKab/dsOOM/1vTrpUgNV tCrxs5s/pFffnrOcvC7egp3TmedyebKdpDfEMl6MuKh06pjpUzjupCX/hWKW8RMe RAC6zJp9syWWFovqH1cEU8dR77oy/PWhUVtW+5ZESBAMbIfRJj9b0KFfweT7sY1A rSd9Zf2BKZaIQ4xfcpMtWfn871RAMZrLUtnVcWm5KaJMj8wXp/Nlgp7IOma+zvwp VtAUqvkekkyhs+nX+cm0S7Fj0RuBdLtVu2AhKBVivH/jotIbYT85agPAytX7xV9N VDQa9TN94+kRb65f63a1xQfzhia49/8f/uejXRzt -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org