$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 6pGYlxCSBME0uoHcXXZnfYXCHrfUJiOMq364uoNaYy4= Subject key identifier: B6:3A:27:90:23:81:9D:53:C0:E2:77:78:C4:E7:56:A6:08:94:E2:5E Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 429298CE08FB53F2CE8FA2EFA69E6196347380A3 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:05 +0000 ROA not before: Sun 10 Sep 2023 09:55:05 +0000 ROA not after: Sun 08 Sep 2024 10:00:05 +0000 asID: 63859 IP address blocks: 158.140.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 15:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:92:98:ce:08:fb:53:f2:ce:8f:a2:ef:a6:9e:61:96:34:73:80:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:05 2023 GMT Not After : Sep 8 10:00:05 2024 GMT Subject: CN=B63A279023819D53C0E27778C4E756A60894E25E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:80:07:45:69:5d:24:36:22:8b:54:48:56:b2: d7:b5:ab:e2:68:4d:3e:f7:ad:43:a4:a9:e9:8f:c6: 1a:a6:8a:c8:2a:de:60:e5:8c:c5:1b:3f:eb:ce:5f: b5:90:9d:5a:c8:57:6c:fd:04:36:a1:da:1a:e7:98: e0:b0:7f:8d:91:bd:c3:2c:c1:b8:02:20:3b:30:01: 60:6a:eb:d4:c2:f5:73:da:4b:60:af:45:af:e9:3d: 63:e9:6a:f3:73:87:28:2f:e7:cc:75:a6:bf:b1:9b: cf:48:0a:cb:cc:0a:e4:dd:a2:cc:30:cc:0d:56:d0: 3b:ed:1e:a4:56:68:6b:cc:b9:cc:c2:1b:95:3b:fe: b4:2d:45:21:99:85:fb:ee:d8:56:e8:4a:10:b5:57: b1:f1:e0:10:5e:1e:70:90:7e:42:cd:75:2c:d4:fa: c7:b4:52:c7:67:b1:43:17:53:1b:68:38:79:8f:eb: be:8d:4f:02:12:e9:c6:e9:11:b3:74:7e:78:af:bf: 19:3f:d8:36:d9:04:ff:06:d1:e3:2b:e5:0d:7a:41: d1:64:ac:15:a5:57:c7:76:6a:28:49:7a:5d:dd:be: 4b:8c:6a:35:7c:fc:46:04:dc:94:2b:58:54:30:17: cc:17:c9:f4:5a:58:ce:ba:2e:12:96:24:28:13:69: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3A:27:90:23:81:9D:53:C0:E2:77:78:C4:E7:56:A6:08:94:E2:5E X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.161.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:bc:ca:21:38:c2:d2:64:88:3a:ce:38:39:34:e7:4e:4f:3f: 09:d5:51:72:34:87:2d:5d:a7:65:e6:73:b9:98:ac:d2:90:3f: c3:98:34:d3:2f:9d:58:2e:4d:77:a9:74:89:f8:5e:c6:47:af: f8:3a:31:b9:77:67:f5:8a:91:a2:f9:31:2e:93:8f:ba:d9:a2: 3f:1d:02:6e:c4:ac:60:3b:1a:a8:f7:05:81:bc:d5:b2:f0:9d: 69:84:4c:94:68:49:3c:17:03:29:52:7f:c3:d7:cd:8a:f1:01: eb:1b:05:c0:5c:47:0b:d5:a6:4f:b5:ff:98:6e:8c:a9:bb:b6: 6b:20:5b:56:58:59:30:42:f5:17:43:9a:6b:e5:d7:50:79:6f: e4:87:08:8b:38:4a:3f:6b:8f:e8:9b:71:01:bb:1f:8a:6a:90: 15:80:85:67:30:06:05:cf:17:2c:98:a7:6c:5c:46:ff:f4:56: d8:39:de:8a:b0:1a:e5:b1:a5:dd:7e:31:27:18:7b:ad:10:4e: 32:71:27:86:8f:ef:a0:51:cd:73:29:57:40:c9:0d:bf:56:ec: 30:30:bf:8d:0c:b1:ce:e0:f1:1a:54:0f:c6:5d:31:bb:26:ec: 35:da:91:65:20:80:55:c8:b1:e9:0d:df:90:fd:14:77:19:cd: 6d:c5:c6:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQpKYzgj7U/LOj6Lvpp5hljRzgKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDVaFw0yNDA5MDgxMDAwMDVaMDMxMTAvBgNV BAMTKEI2M0EyNzkwMjM4MTlENTNDMEUyNzc3OEM0RTc1NkE2MDg5NEUyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCngAdFaV0kNiKLVEhWste1q+Jo TT73rUOkqemPxhqmisgq3mDljMUbP+vOX7WQnVrIV2z9BDah2hrnmOCwf42RvcMs wbgCIDswAWBq69TC9XPaS2CvRa/pPWPpavNzhygv58x1pr+xm89ICsvMCuTdosww zA1W0DvtHqRWaGvMuczCG5U7/rQtRSGZhfvu2FboShC1V7Hx4BBeHnCQfkLNdSzU +se0UsdnsUMXUxtoOHmP676NTwIS6cbpEbN0fnivvxk/2DbZBP8G0eMr5Q16QdFk rBWlV8d2aihJel3dvkuMajV8/EYE3JQrWFQwF8wXyfRaWM66LhKWJCgTaYmbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtjonkCOBnVPA4nd4xOdWpgiU4l4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyhMA0GCSqG SIb3DQEBCwUAA4IBAQCPvMohOMLSZIg6zjg5NOdOTz8J1VFyNIctXadl5nO5mKzS kD/DmDTTL51YLk13qXSJ+F7GR6/4OjG5d2f1ipGi+TEuk4+62aI/HQJuxKxgOxqo 9wWBvNWy8J1phEyUaEk8FwMpUn/D182K8QHrGwXAXEcL1aZPtf+Yboypu7ZrIFtW WFkwQvUXQ5pr5ddQeW/khwiLOEo/a4/om3EBux+KapAVgIVnMAYFzxcsmKdsXEb/ 9FbYOd6KsBrlsaXdfjEnGHutEE4ycSeGj++gUc1zKVdAyQ2/VuwwML+NDLHO4PEa VA/GXTG7Juw12pFlIIBVyLHpDd+Q/RR3Gc1txca7 -----END CERTIFICATE-----Generated at Tue Apr 30 12:55:38 2024 by rpki-client on console-fra.rpki-client.org