$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: cGMmVwcSsHcCTcDqt0EB7tpcWr46tFfavk58EbD87xQ= Subject key identifier: 3E:64:CC:97:84:8B:D3:31:B2:90:60:09:F6:00:BE:BB:C5:17:E3:B7 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5D0B0DFDBD4FCED364923F5FC7C182CCCDA1AF02 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 09:00:01 +0000 ROA not before: Sun 10 Sep 2023 08:55:01 +0000 ROA not after: Sun 08 Sep 2024 09:00:01 +0000 asID: 63859 IP address blocks: 158.140.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:0b:0d:fd:bd:4f:ce:d3:64:92:3f:5f:c7:c1:82:cc:cd:a1:af:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 08:55:01 2023 GMT Not After : Sep 8 09:00:01 2024 GMT Subject: CN=3E64CC97848BD331B2906009F600BEBBC517E3B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:03:bc:a4:74:09:bf:ab:a5:31:d1:07:97:34: 97:4f:6f:bc:33:b2:a4:88:b6:e3:22:b0:67:06:89: cb:fe:de:ad:0d:9f:5b:50:e8:e6:e0:ee:64:38:d5: 4d:99:87:64:fa:e7:00:11:c9:a3:3f:e3:48:0f:99: 9b:b8:57:e4:65:8e:bf:05:a9:90:92:f9:b8:6c:de: e3:12:b1:30:7a:71:e3:93:e9:86:fc:52:40:64:ea: 55:f9:ab:dd:14:d8:7f:6f:77:b6:87:a5:36:c1:0d: f6:74:e6:dc:58:61:20:66:de:15:8b:14:ab:8c:fc: 55:43:c1:71:c8:5a:cb:15:8d:d5:2d:3b:2f:fc:9b: 88:ab:8e:e9:92:57:d4:2b:69:ef:01:39:68:30:98: d3:c4:a0:4c:c7:72:34:37:f2:7c:9f:62:5d:25:f4: 81:2f:85:10:37:04:a3:47:64:d7:69:91:89:3e:83: 0a:5e:54:ff:3c:b1:bd:2d:1b:e6:8b:6c:78:75:72: 14:bb:e2:13:09:b1:c5:54:03:40:87:11:32:0c:06: b4:80:d4:31:f5:e0:a6:1c:9f:0a:13:9e:69:fd:62: 84:73:6b:52:14:33:d3:25:21:f7:f9:ab:82:1f:12: 8d:f5:86:53:08:16:0f:98:88:d0:40:7a:41:a9:5d: b2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:64:CC:97:84:8B:D3:31:B2:90:60:09:F6:00:BE:BB:C5:17:E3:B7 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.165.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:74:73:87:9b:7e:22:da:65:96:64:52:17:c2:9b:08:56:a1: 37:3d:a7:21:fc:07:d8:07:97:a6:05:d8:c9:d8:b0:2e:ed:cf: 2e:b6:8e:f1:8d:ee:21:af:5f:9d:ad:3b:93:21:f5:58:4e:14: a4:69:43:11:f9:5c:74:ed:24:6e:6a:17:42:55:9a:c9:0f:9e: 44:a9:79:69:b9:8a:be:f6:aa:63:52:2d:74:59:72:88:c3:3d: f2:b9:a3:b8:e3:9f:70:72:ac:85:86:e8:a3:84:66:2a:8a:22: 31:a7:c1:7b:b3:c7:08:be:0d:3a:c9:d6:31:bc:25:65:08:a9: 8f:b1:09:af:10:eb:1c:26:6c:73:50:f6:19:31:69:86:6a:ec: 06:96:4d:71:ff:26:67:16:90:ee:b8:5c:ec:f8:47:4c:e0:ff: 2c:24:43:8f:df:8f:63:45:71:c2:da:14:bd:5e:85:c9:55:23: a2:84:9a:66:05:8b:60:34:3e:d3:ff:3b:79:ea:62:f1:e6:f9: 56:53:37:68:5b:a2:b9:75:bd:39:ed:76:1a:51:af:55:d8:a7: a1:da:20:d6:49:60:cc:3f:56:f7:91:2a:d7:28:a8:a0:5e:09: 64:7c:9a:96:13:9e:1d:f6:7d:06:07:15:cc:8a:df:3b:a3:8d: db:33:4c:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXQsN/b1PztNkkj9fx8GCzM2hrwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwODU1MDFaFw0yNDA5MDgwOTAwMDFaMDMxMTAvBgNV BAMTKDNFNjRDQzk3ODQ4QkQzMzFCMjkwNjAwOUY2MDBCRUJCQzUxN0UzQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcA7ykdAm/q6Ux0QeXNJdPb7wz sqSItuMisGcGicv+3q0Nn1tQ6Obg7mQ41U2Zh2T65wARyaM/40gPmZu4V+Rljr8F qZCS+bhs3uMSsTB6ceOT6Yb8UkBk6lX5q90U2H9vd7aHpTbBDfZ05txYYSBm3hWL FKuM/FVDwXHIWssVjdUtOy/8m4irjumSV9Qrae8BOWgwmNPEoEzHcjQ38nyfYl0l 9IEvhRA3BKNHZNdpkYk+gwpeVP88sb0tG+aLbHh1chS74hMJscVUA0CHETIMBrSA 1DH14KYcnwoTnmn9YoRza1IUM9MlIff5q4IfEo31hlMIFg+YiNBAekGpXbJrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPmTMl4SL0zGykGAJ9gC+u8UX47cwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoylMA0GCSqG SIb3DQEBCwUAA4IBAQCedHOHm34i2mWWZFIXwpsIVqE3Pach/AfYB5emBdjJ2LAu 7c8uto7xje4hr1+drTuTIfVYThSkaUMR+Vx07SRuahdCVZrJD55EqXlpuYq+9qpj Ui10WXKIwz3yuaO4459wcqyFhuijhGYqiiIxp8F7s8cIvg06ydYxvCVlCKmPsQmv EOscJmxzUPYZMWmGauwGlk1x/yZnFpDuuFzs+EdM4P8sJEOP349jRXHC2hS9XoXJ VSOihJpmBYtgND7T/zt56mLx5vlWUzdoW6K5db057XYaUa9V2Keh2iDWSWDMP1b3 kSrXKKigXglkfJqWE54d9n0GBxXMit87o43bM0zy -----END CERTIFICATE-----Generated at Thu Apr 25 19:09:19 2024 by rpki-client on console-ams.rpki-client.org