$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: rZI63Jh+KkD0kyBlpJ/B+yLaKkyKBg/SukshBwma/7o= Subject key identifier: E4:4A:D1:E6:69:71:7C:1A:26:62:00:C1:59:92:40:C8:E8:75:98:F7 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 7A74F3FDB8FBD54D5BB0F065350FFBB6E1096DA9 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:04 +0000 ROA not before: Sun 10 Sep 2023 09:55:04 +0000 ROA not after: Sun 08 Sep 2024 10:00:04 +0000 asID: 63859 IP address blocks: 158.140.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:74:f3:fd:b8:fb:d5:4d:5b:b0:f0:65:35:0f:fb:b6:e1:09:6d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:04 2023 GMT Not After : Sep 8 10:00:04 2024 GMT Subject: CN=E44AD1E669717C1A266200C1599240C8E87598F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:69:b0:c9:4d:d1:db:49:24:0a:54:f1:87:d5: fa:a3:6d:b9:87:94:da:cb:4d:ba:e8:7e:18:35:d3: 9b:9a:7a:b5:61:4b:5a:67:42:59:59:4f:1c:49:8e: 64:7c:69:88:33:91:53:d4:73:48:1c:7c:f1:6c:6f: f7:c5:1c:bb:47:8a:de:b9:bf:d4:05:1e:13:f7:fd: 00:57:44:ac:eb:d9:6c:71:b2:2a:f8:a4:27:6a:aa: 80:22:91:6b:52:a6:a7:33:45:70:a6:24:8a:3c:75: 12:3e:9a:6d:66:ea:fe:bb:45:0d:6f:16:cc:1e:e3: 15:23:b6:30:b9:18:33:53:bb:6b:f8:d2:11:07:97: 19:b2:40:6e:b7:e5:16:a8:0d:fa:1f:d5:d5:24:90: c9:9e:54:0f:2f:7d:ee:1c:2c:c9:b9:6d:c3:98:84: 39:cd:f3:3c:b7:b7:39:2e:0b:90:83:80:5a:8c:24: 65:d2:52:bc:1a:f1:6f:52:a6:ab:29:a8:94:1a:b3: fd:d1:2a:77:dd:c4:7c:fe:e4:ee:8f:dd:79:8a:fe: 3d:a7:d3:9b:69:9b:93:cb:89:15:90:09:09:8b:20: e1:21:19:62:4b:70:bd:22:5b:28:ce:8f:a6:b8:b9: 49:73:c8:df:18:27:da:3f:74:c7:c3:13:5a:3b:60: 75:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4A:D1:E6:69:71:7C:1A:26:62:00:C1:59:92:40:C8:E8:75:98:F7 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.170.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:06:36:57:12:66:a5:32:bb:cd:41:2f:0e:38:1e:8b:26:ba: 7e:db:98:cc:35:59:a3:46:d8:72:f6:a7:fd:2a:79:9c:a5:8c: ca:11:b1:5d:c4:3a:14:11:01:e2:ea:15:4f:c6:8c:a3:ac:a5: e4:6b:34:36:22:d2:a7:f0:38:bf:d7:fe:01:a0:15:fa:3d:04: 21:82:d3:db:23:18:9a:9a:77:f7:17:3e:c3:15:78:91:e8:83: 02:68:e8:95:17:dc:69:46:57:e6:89:27:03:bf:c8:c3:17:da: 99:fd:87:98:ff:87:c6:52:48:04:46:9d:fa:de:8a:7c:b7:ad: 3a:ba:cb:70:69:90:57:6b:a9:5b:69:20:4a:2d:5d:c0:65:34: d6:ce:a8:40:c2:b3:70:67:74:02:39:ae:b2:d2:7f:f9:9e:38: 87:b3:0b:af:76:c5:27:e3:0f:8e:b8:cd:f3:28:bf:72:46:ff: ef:20:37:73:f2:7d:0d:d7:c6:5f:84:f6:ab:c9:08:97:4d:25: 60:ca:80:47:dc:e8:95:06:10:eb:5a:32:ca:f3:50:2c:0c:02: 24:a8:eb:f5:26:f4:3c:dc:bc:23:05:66:a1:fc:bf:e2:16:b4: e8:3b:02:7a:fd:ea:8c:c1:89:f4:dc:60:72:ef:04:6c:b9:94: d0:88:40:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUenTz/bj71U1bsPBlNQ/7tuEJbakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDRaFw0yNDA5MDgxMDAwMDRaMDMxMTAvBgNV BAMTKEU0NEFEMUU2Njk3MTdDMUEyNjYyMDBDMTU5OTI0MEM4RTg3NTk4RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWabDJTdHbSSQKVPGH1fqjbbmH lNrLTbrofhg105uaerVhS1pnQllZTxxJjmR8aYgzkVPUc0gcfPFsb/fFHLtHit65 v9QFHhP3/QBXRKzr2Wxxsir4pCdqqoAikWtSpqczRXCmJIo8dRI+mm1m6v67RQ1v Fswe4xUjtjC5GDNTu2v40hEHlxmyQG635RaoDfof1dUkkMmeVA8vfe4cLMm5bcOY hDnN8zy3tzkuC5CDgFqMJGXSUrwa8W9SpqspqJQas/3RKnfdxHz+5O6P3XmK/j2n 05tpm5PLiRWQCQmLIOEhGWJLcL0iWyjOj6a4uUlzyN8YJ9o/dMfDE1o7YHUZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5ErR5mlxfBomYgDBWZJAyOh1mPcwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyqMA0GCSqG SIb3DQEBCwUAA4IBAQCPBjZXEmalMrvNQS8OOB6LJrp+25jMNVmjRthy9qf9Knmc pYzKEbFdxDoUEQHi6hVPxoyjrKXkazQ2ItKn8Di/1/4BoBX6PQQhgtPbIxiamnf3 Fz7DFXiR6IMCaOiVF9xpRlfmiScDv8jDF9qZ/YeY/4fGUkgERp363op8t606ustw aZBXa6lbaSBKLV3AZTTWzqhAwrNwZ3QCOa6y0n/5njiHswuvdsUn4w+OuM3zKL9y Rv/vIDdz8n0N18ZfhParyQiXTSVgyoBH3OiVBhDrWjLK81AsDAIkqOv1JvQ83Lwj BWah/L/iFrToOwJ6/eqMwYn03GBy7wRsuZTQiEBF -----END CERTIFICATE-----Generated at Thu Apr 25 19:09:19 2024 by rpki-client on console-ams.rpki-client.org