$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: yOv4u8Gq7+WEUbRhndk7gwW6WWXqBR8DFDn2zFGvlRc= Subject key identifier: 13:80:44:B4:BA:DD:6A:3F:71:02:85:F3:9B:E4:DD:F1:F4:AE:D2:EE Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 6847E71506B603C48569CB6C8AAF2DE48B30F442 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:03 +0000 ROA not before: Sun 10 Sep 2023 09:55:03 +0000 ROA not after: Sun 08 Sep 2024 10:00:03 +0000 asID: 63859 IP address blocks: 158.140.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 23:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:47:e7:15:06:b6:03:c4:85:69:cb:6c:8a:af:2d:e4:8b:30:f4:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:03 2023 GMT Not After : Sep 8 10:00:03 2024 GMT Subject: CN=138044B4BADD6A3F710285F39BE4DDF1F4AED2EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:67:0d:b4:b7:cd:d4:00:20:0c:89:e2:e8:21: c9:1e:54:b0:1c:5e:c2:f8:2c:9a:0b:bc:3d:6a:cf: 87:bc:47:88:a0:9e:ad:9d:22:9b:1a:36:e8:da:a1: 59:ce:7f:a0:30:43:bd:eb:52:0a:fd:6d:79:0d:22: 4a:a8:9c:72:bb:28:eb:f8:fb:b0:5e:a8:57:73:93: 9f:25:14:1c:b8:25:2d:4b:5f:a2:40:5c:a8:51:a2: 2a:c0:7d:1c:19:c9:6b:aa:63:45:a7:be:9f:09:21: 79:ce:11:99:3b:10:47:00:9a:92:ef:cc:fb:35:e3: 3e:cb:f8:c6:66:f5:2b:c3:9e:86:1a:2c:50:dd:bc: 43:c3:8e:46:fa:94:c9:bb:7a:e7:3a:53:07:5d:44: 3e:c9:39:1e:ea:ce:42:9f:75:52:97:55:37:ec:12: 11:68:88:1e:cd:8f:1a:75:da:23:84:0c:fb:23:0b: d5:71:86:4e:05:23:14:13:da:ab:0c:59:40:e4:a0: 36:d8:83:f8:f1:cd:0d:aa:d0:89:ee:10:6e:c9:a1: 3a:e5:c1:b0:17:6d:23:92:ad:c0:94:76:8a:84:36: b4:a9:ee:16:24:81:53:8b:fa:1e:b4:07:71:b5:c6: 97:ae:83:47:dd:f5:3e:14:05:1e:e7:5d:b3:5f:4f: a8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:80:44:B4:BA:DD:6A:3F:71:02:85:F3:9B:E4:DD:F1:F4:AE:D2:EE X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.166.0/24 Signature Algorithm: sha256WithRSAEncryption 20:72:ea:84:0c:8d:0d:bf:74:bb:8c:05:cf:db:22:63:c5:37: 29:ac:ab:d4:7a:04:af:82:5e:85:c3:53:24:3a:32:46:18:6e: 7b:a2:7b:5c:b6:46:2a:ed:77:21:bc:1f:24:b0:d1:0d:ee:d6: 2b:96:31:05:4c:c4:e6:d1:45:53:ab:99:46:8a:c7:4e:42:ed: 12:6b:b3:17:58:ea:06:77:4a:4b:a4:2d:f2:62:dc:61:b1:5f: 5c:b2:0a:53:0f:02:e4:a5:2f:45:78:63:7d:c0:28:ed:6e:5b: af:f7:88:7b:59:15:3c:d2:0d:9f:1d:e9:c9:09:17:fa:f8:41: c2:9a:c7:72:a8:8f:79:97:c6:93:d5:bf:71:5c:d6:8a:c3:21: 0a:ed:24:c0:97:13:bc:cd:d7:63:87:bd:5f:bc:90:f8:68:5b: 1f:b1:71:cc:43:f2:36:e4:b1:e0:39:c8:4a:4c:a7:4d:41:df: 42:39:ec:62:9c:bd:88:2f:48:36:33:5c:e7:f6:c8:46:0e:ba: 5e:5e:db:62:c8:0c:be:9d:84:d3:fb:95:bc:13:2a:16:0a:31: ba:cd:0c:0a:19:dc:bb:f5:7c:1a:60:f2:a2:e3:a2:f0:08:48: 5a:02:08:cc:be:f7:21:77:35:d5:10:ac:7c:6d:82:c1:40:28: 88:e7:53:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaEfnFQa2A8SFactsiq8t5Isw9EIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDNaFw0yNDA5MDgxMDAwMDNaMDMxMTAvBgNV BAMTKDEzODA0NEI0QkFERDZBM0Y3MTAyODVGMzlCRTREREYxRjRBRUQyRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFZw20t83UACAMieLoIckeVLAc XsL4LJoLvD1qz4e8R4ignq2dIpsaNujaoVnOf6AwQ73rUgr9bXkNIkqonHK7KOv4 +7BeqFdzk58lFBy4JS1LX6JAXKhRoirAfRwZyWuqY0Wnvp8JIXnOEZk7EEcAmpLv zPs14z7L+MZm9SvDnoYaLFDdvEPDjkb6lMm7euc6UwddRD7JOR7qzkKfdVKXVTfs EhFoiB7Njxp12iOEDPsjC9Vxhk4FIxQT2qsMWUDkoDbYg/jxzQ2q0InuEG7JoTrl wbAXbSOSrcCUdoqENrSp7hYkgVOL+h60B3G1xpeug0fd9T4UBR7nXbNfT6jzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUE4BEtLrdaj9xAoXzm+Td8fSu0u4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoymMA0GCSqG SIb3DQEBCwUAA4IBAQAgcuqEDI0Nv3S7jAXP2yJjxTcprKvUegSvgl6Fw1MkOjJG GG57ontctkYq7XchvB8ksNEN7tYrljEFTMTm0UVTq5lGisdOQu0Sa7MXWOoGd0pL pC3yYtxhsV9csgpTDwLkpS9FeGN9wCjtbluv94h7WRU80g2fHenJCRf6+EHCmsdy qI95l8aT1b9xXNaKwyEK7STAlxO8zddjh71fvJD4aFsfsXHMQ/I25LHgOchKTKdN Qd9COexinL2IL0g2M1zn9shGDrpeXttiyAy+nYTT+5W8EyoWCjG6zQwKGdy79Xwa YPKi46LwCEhaAgjMvvchdzXVEKx8bYLBQCiI51N2 -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:58 2024 by rpki-client on console-ams.rpki-client.org