$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: vKBLP+YZnySavwZ55oUhEHmj0d7DxE9X+ok1lBMJQv0= Subject key identifier: C0:14:5A:9B:79:51:1D:32:CF:78:34:95:C0:D4:12:14:4B:57:A5:DB Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 24648F8D6F98A90D7DDC708C5052D4A48763F3B7 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:05 +0000 ROA not before: Sun 10 Sep 2023 09:55:05 +0000 ROA not after: Sun 08 Sep 2024 10:00:05 +0000 asID: 63859 IP address blocks: 158.140.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 23:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:64:8f:8d:6f:98:a9:0d:7d:dc:70:8c:50:52:d4:a4:87:63:f3:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:05 2023 GMT Not After : Sep 8 10:00:05 2024 GMT Subject: CN=C0145A9B79511D32CF783495C0D412144B57A5DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f3:d6:42:df:3b:b4:90:fd:d6:c5:80:d5:f5: 01:40:78:d9:81:ec:d7:be:8a:bd:b4:6a:4c:fa:b1: cb:fe:ea:3d:18:68:3c:6c:79:1f:44:c7:b9:0e:72: b2:c4:6c:0b:38:c5:27:3c:85:5b:66:61:89:16:66: 42:aa:b3:c1:79:ab:d3:69:85:22:01:bb:2e:26:f0: f5:02:6f:55:52:75:d5:ad:34:85:3d:d1:f8:d0:d1: 1c:fb:34:55:cc:f2:47:40:a0:33:71:bc:ac:fb:df: 21:71:02:bb:c2:12:38:ec:7a:61:00:00:3f:43:f3: dc:22:f8:fe:b2:af:49:ee:7f:1f:df:1e:cf:70:fe: 8a:d2:01:b2:27:00:50:9a:e4:37:66:40:48:45:06: ef:38:a6:d8:84:10:5a:78:cc:ac:3e:e6:d6:65:9a: 6d:ea:7d:0e:da:a1:b3:fb:97:7b:c3:53:27:74:9c: 2a:1e:b6:0f:3c:d5:97:f9:f1:b2:ec:81:2c:95:26: 63:b6:d0:7b:d6:40:80:d0:49:b5:0f:e9:02:6c:4e: 7f:38:ab:b9:00:bc:4d:25:3f:a2:04:d7:2a:22:a3: 46:96:17:8e:e6:dc:12:c8:f6:10:07:2c:94:43:3d: a9:da:1d:2a:7b:79:c4:05:cc:42:9f:13:fe:89:5e: de:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:14:5A:9B:79:51:1D:32:CF:78:34:95:C0:D4:12:14:4B:57:A5:DB X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.164.0/24 Signature Algorithm: sha256WithRSAEncryption 83:5c:f8:73:8c:58:ac:e3:f3:c1:61:13:c2:cb:90:25:c5:0b: 9f:17:b7:1c:d7:91:7b:c3:61:37:1b:f5:9d:de:5e:9f:a5:87: f1:f2:8d:30:49:fe:14:34:e0:c5:56:5d:c5:66:ee:37:d5:fd: df:26:cf:c0:21:e0:dc:56:44:85:52:5e:f7:ba:cb:62:28:a6: 6b:10:a4:85:13:0b:f9:5e:e6:9f:f2:8d:40:3d:16:c1:bb:96: 37:79:e1:50:6a:44:0d:76:cb:32:87:36:e6:b8:af:5a:85:df: f1:c8:01:4c:72:20:f4:ca:8d:29:05:f1:07:8e:6f:9c:f4:cd: 7b:c7:42:e9:7e:72:25:9e:aa:9b:5b:87:d9:56:8b:68:45:c2: df:42:d7:16:96:95:c4:b5:d2:42:6f:c5:21:ee:fd:a8:14:51: 28:56:9f:5a:d5:6c:18:33:72:85:3c:b4:a7:55:8e:25:98:79: 04:47:fb:0b:d8:57:c7:e3:53:d8:71:d7:18:92:22:5e:21:61: 57:f8:b4:30:64:55:bf:d6:e3:77:11:5e:a9:fb:8a:8d:77:70: e6:37:77:6e:14:88:fe:0d:71:64:72:0b:3f:8a:21:ef:ac:64: af:61:41:00:d2:b8:f3:17:f9:2b:23:77:09:29:4a:40:7e:40: 18:0d:aa:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJGSPjW+YqQ193HCMUFLUpIdj87cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDVaFw0yNDA5MDgxMDAwMDVaMDMxMTAvBgNV BAMTKEMwMTQ1QTlCNzk1MTFEMzJDRjc4MzQ5NUMwRDQxMjE0NEI1N0E1REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj89ZC3zu0kP3WxYDV9QFAeNmB 7Ne+ir20akz6scv+6j0YaDxseR9Ex7kOcrLEbAs4xSc8hVtmYYkWZkKqs8F5q9Np hSIBuy4m8PUCb1VSddWtNIU90fjQ0Rz7NFXM8kdAoDNxvKz73yFxArvCEjjsemEA AD9D89wi+P6yr0nufx/fHs9w/orSAbInAFCa5DdmQEhFBu84ptiEEFp4zKw+5tZl mm3qfQ7aobP7l3vDUyd0nCoetg881Zf58bLsgSyVJmO20HvWQIDQSbUP6QJsTn84 q7kAvE0lP6IE1yoio0aWF47m3BLI9hAHLJRDPanaHSp7ecQFzEKfE/6JXt7TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwBRam3lRHTLPeDSVwNQSFEtXpdswHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoykMA0GCSqG SIb3DQEBCwUAA4IBAQCDXPhzjFis4/PBYRPCy5AlxQufF7cc15F7w2E3G/Wd3l6f pYfx8o0wSf4UNODFVl3FZu431f3fJs/AIeDcVkSFUl73ustiKKZrEKSFEwv5Xuaf 8o1APRbBu5Y3eeFQakQNdssyhzbmuK9ahd/xyAFMciD0yo0pBfEHjm+c9M17x0Lp fnIlnqqbW4fZVotoRcLfQtcWlpXEtdJCb8Uh7v2oFFEoVp9a1WwYM3KFPLSnVY4l mHkER/sL2FfH41PYcdcYkiJeIWFX+LQwZFW/1uN3EV6p+4qNd3DmN3duFIj+DXFk cgs/iiHvrGSvYUEA0rjzF/krI3cJKUpAfkAYDarl -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:36 2024 by rpki-client on console-fra.rpki-client.org