$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 6Wq89pH9zQx0bineeUDmU1NvFCN/2r2c0sv6HtBZ0A4= Subject key identifier: 38:42:1E:C7:81:A1:4F:22:6C:6E:AD:F8:3B:F8:45:DE:D8:EE:08:26 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 534ACC90600651ABF70AB3EAB44DBE8BC4DA6F2D Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 09:00:01 +0000 ROA not before: Sun 10 Sep 2023 08:55:01 +0000 ROA not after: Sun 08 Sep 2024 09:00:01 +0000 asID: 63859 IP address blocks: 158.140.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:4a:cc:90:60:06:51:ab:f7:0a:b3:ea:b4:4d:be:8b:c4:da:6f:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 08:55:01 2023 GMT Not After : Sep 8 09:00:01 2024 GMT Subject: CN=38421EC781A14F226C6EADF83BF845DED8EE0826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c2:e1:16:71:45:2b:57:56:6e:00:eb:b7:f8: d8:a3:24:36:00:e6:37:e2:fb:41:ae:bf:77:ef:fa: b0:96:47:35:3d:41:1f:05:ff:0b:02:26:f1:8b:df: 6d:af:af:e7:9b:0b:19:3c:1a:5b:41:7b:0a:e9:d5: 93:b6:12:74:ff:ec:32:f7:d7:44:2d:f6:1b:58:4d: 0e:94:c4:26:30:f6:c4:85:e5:d6:2d:38:0c:1d:c9: a4:03:c2:ca:52:96:25:97:55:c7:ae:a9:b4:d7:77: 5e:bc:2e:62:2f:2f:13:bd:43:68:74:35:8b:0d:a3: fb:57:b8:10:b7:e3:84:c8:36:5e:6a:66:91:d5:3c: 22:e5:de:b4:43:f9:54:69:8a:5d:f4:4d:35:d0:3f: ea:57:46:22:bd:b1:e5:89:8d:74:47:22:53:82:dd: e2:45:8a:02:36:89:81:db:c3:cf:8f:ec:f4:26:27: 09:c5:19:50:ba:bd:f5:ec:f5:cc:ba:ce:f4:21:fc: 8c:4b:5d:7b:83:ee:ec:f7:dd:a2:11:0b:27:7e:47: f2:4b:43:4f:26:22:8a:ff:6f:3f:1f:6e:6d:0b:08: 34:c6:43:5b:19:ba:fd:f6:f4:cb:a7:b2:0d:d1:26: 5c:77:55:e9:d6:52:d1:6d:36:d9:d1:be:b0:42:2a: 79:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:42:1E:C7:81:A1:4F:22:6C:6E:AD:F8:3B:F8:45:DE:D8:EE:08:26 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.163.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:05:59:ee:03:d8:bd:91:11:b9:69:00:df:78:7c:7a:46:7c: 08:69:53:3b:34:37:f3:14:e4:d6:ee:eb:c0:ff:64:d2:46:b2: 82:0c:99:40:d2:36:6c:04:56:9b:3e:69:19:10:71:63:9c:cc: 1a:80:f0:22:a0:e2:7f:34:4c:df:33:06:cb:c0:0f:09:71:b5: 26:30:56:70:ad:d9:cf:f5:43:f5:1a:52:a2:56:60:90:b5:c7: c1:6d:14:16:6b:c1:dd:58:16:05:07:9d:ae:a5:a8:24:5a:4b: 61:a1:2d:e5:34:5c:f0:d7:2b:a2:c9:7c:df:50:05:ea:60:30: db:ec:31:80:c9:d9:85:16:7e:b9:55:cf:8e:3d:30:79:5a:e2: 0d:34:0b:33:dc:a0:38:9f:b9:50:df:2e:c7:8b:73:da:f6:f6: 02:c9:b5:a5:10:cc:84:34:39:58:ed:42:8c:34:fb:27:ca:85: 9f:5d:3a:61:cb:6e:46:e5:cf:37:fb:4a:04:db:fe:60:ab:47: 95:dd:cb:59:58:de:27:2a:c8:8a:45:c6:f2:df:2e:9c:ce:f0: 15:ed:b7:92:7b:c1:b2:7c:70:98:36:28:ae:b8:a2:88:af:63: e0:21:5c:5d:6c:e8:f0:a3:95:5a:ce:13:fb:d0:57:19:d8:c3: 63:63:11:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU0rMkGAGUav3CrPqtE2+i8Taby0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwODU1MDFaFw0yNDA5MDgwOTAwMDFaMDMxMTAvBgNV BAMTKDM4NDIxRUM3ODFBMTRGMjI2QzZFQURGODNCRjg0NURFRDhFRTA4MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiwuEWcUUrV1ZuAOu3+NijJDYA 5jfi+0Guv3fv+rCWRzU9QR8F/wsCJvGL322vr+ebCxk8GltBewrp1ZO2EnT/7DL3 10Qt9htYTQ6UxCYw9sSF5dYtOAwdyaQDwspSliWXVceuqbTXd168LmIvLxO9Q2h0 NYsNo/tXuBC344TINl5qZpHVPCLl3rRD+VRpil30TTXQP+pXRiK9seWJjXRHIlOC 3eJFigI2iYHbw8+P7PQmJwnFGVC6vfXs9cy6zvQh/IxLXXuD7uz33aIRCyd+R/JL Q08mIor/bz8fbm0LCDTGQ1sZuv329Munsg3RJlx3VenWUtFtNtnRvrBCKnkhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOEIex4GhTyJsbq34O/hF3tjuCCYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyjMA0GCSqG SIb3DQEBCwUAA4IBAQCKBVnuA9i9kRG5aQDfeHx6RnwIaVM7NDfzFOTW7uvA/2TS RrKCDJlA0jZsBFabPmkZEHFjnMwagPAioOJ/NEzfMwbLwA8JcbUmMFZwrdnP9UP1 GlKiVmCQtcfBbRQWa8HdWBYFB52upagkWkthoS3lNFzw1yuiyXzfUAXqYDDb7DGA ydmFFn65Vc+OPTB5WuINNAsz3KA4n7lQ3y7Hi3Pa9vYCybWlEMyENDlY7UKMNPsn yoWfXTphy25G5c83+0oE2/5gq0eV3ctZWN4nKsiKRcby3y6czvAV7beSe8GyfHCY NiiuuKKIr2PgIVxdbOjwo5VazhP70FcZ2MNjYxGF -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:51 2024 by rpki-client on console-fra.rpki-client.org