$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: WOQXNUQye+jinF7Fi3bzkzAd1EhDcHzuhnMM3NprMvU= Subject key identifier: 4F:C0:B5:20:F3:69:F2:53:11:84:C7:2B:D2:AB:4F:9B:AA:E5:44:30 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1452DCB4FE44CE6E53E773C4BDF7D6E4C914CB50 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:05 +0000 ROA not before: Sun 10 Sep 2023 09:55:05 +0000 ROA not after: Sun 08 Sep 2024 10:00:05 +0000 asID: 63859 IP address blocks: 158.140.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 14:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:52:dc:b4:fe:44:ce:6e:53:e7:73:c4:bd:f7:d6:e4:c9:14:cb:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:05 2023 GMT Not After : Sep 8 10:00:05 2024 GMT Subject: CN=4FC0B520F369F2531184C72BD2AB4F9BAAE54430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:56:62:95:2d:4b:d5:01:ee:ff:7d:84:f2:db: 8d:d6:1b:55:a5:4a:e0:cd:ef:cf:61:61:86:e4:3e: 02:d8:f9:f8:d5:6e:52:35:8c:9a:03:e0:6e:da:20: 76:14:32:32:b0:ec:ca:6c:83:31:f9:21:4e:f6:fd: f0:f5:b1:ca:87:24:03:b3:d4:b1:97:fb:fc:ea:0a: 05:35:7a:b5:08:9f:5b:13:4d:93:cc:67:5e:3a:8c: 3f:84:a7:3d:aa:0d:ed:28:b5:bc:bb:d0:9f:bf:30: f6:c3:02:af:21:4f:83:31:c2:54:60:7f:e0:78:58: f0:b9:35:cc:60:b6:56:74:d5:36:b8:e2:c9:3b:45: da:fc:18:0e:04:ad:fe:e9:89:33:7d:b3:f6:00:8d: b7:4c:1d:ec:cf:5d:03:42:4f:c4:8f:69:13:d9:ea: 42:c3:1a:75:6a:d6:8b:45:8f:fd:d8:57:6f:88:48: e6:e5:8c:b0:b5:2c:a6:35:d2:74:96:9a:cf:25:d0: f0:46:89:6f:e3:cd:1a:36:c2:01:44:2d:1a:aa:0a: ea:2b:94:61:16:96:f4:9c:54:d9:d3:90:b1:ab:d6: 6a:29:41:ad:80:a4:42:40:83:e7:c0:9f:9a:be:fe: aa:ba:88:c9:9b:7d:fc:ae:9e:af:be:c1:f2:8c:6e: 3d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C0:B5:20:F3:69:F2:53:11:84:C7:2B:D2:AB:4F:9B:AA:E5:44:30 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.172.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:60:ee:4a:74:d2:d5:fc:88:0c:d3:14:d7:7b:b1:8a:6a:43: 9e:01:5f:0d:fe:bd:80:5b:bc:38:0b:e8:e6:21:6c:fa:45:89: 7a:f7:8c:03:21:bb:5a:51:76:b6:ca:03:76:b7:08:f9:bf:dd: 49:a2:df:5f:e6:ff:94:72:7c:6e:70:26:2d:79:15:11:27:23: 7a:f7:92:7d:08:a0:5e:94:9a:30:1d:97:0e:75:cf:6f:1c:c7: 15:ff:07:6e:e1:5b:ae:b9:95:41:34:20:62:79:0c:c4:67:a7: cd:9a:21:3a:05:65:09:89:08:96:ce:cc:be:3f:0e:d9:9c:7d: 0d:e2:82:38:82:32:5b:9a:11:55:61:f6:ca:99:03:3b:41:a0: 07:51:01:0d:ab:e2:06:ca:59:a0:fb:dd:28:62:ed:15:e8:57: 10:e7:66:c8:50:97:3f:c8:f7:dc:21:6c:25:f0:93:b5:7d:23: 23:d9:be:a0:93:c8:96:5a:59:50:d8:6a:9d:f3:98:1c:f2:06: 5c:f6:1b:2b:9b:7d:1c:26:b6:03:2d:cb:ca:ca:94:e9:bc:e6: 01:e1:a3:05:87:81:ed:f1:ec:97:12:14:a2:17:1d:05:00:22: e1:cd:f6:f2:7b:99:0a:2f:a4:02:24:ef:11:86:cd:30:9c:52: fb:ee:bf:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFFLctP5Ezm5T53PEvffW5MkUy1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDVaFw0yNDA5MDgxMDAwMDVaMDMxMTAvBgNV BAMTKDRGQzBCNTIwRjM2OUYyNTMxMTg0QzcyQkQyQUI0RjlCQUFFNTQ0MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSVmKVLUvVAe7/fYTy243WG1Wl SuDN789hYYbkPgLY+fjVblI1jJoD4G7aIHYUMjKw7MpsgzH5IU72/fD1scqHJAOz 1LGX+/zqCgU1erUIn1sTTZPMZ146jD+Epz2qDe0otby70J+/MPbDAq8hT4MxwlRg f+B4WPC5NcxgtlZ01Ta44sk7Rdr8GA4Erf7piTN9s/YAjbdMHezPXQNCT8SPaRPZ 6kLDGnVq1otFj/3YV2+ISObljLC1LKY10nSWms8l0PBGiW/jzRo2wgFELRqqCuor lGEWlvScVNnTkLGr1mopQa2ApEJAg+fAn5q+/qq6iMmbffyunq++wfKMbj3XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT8C1IPNp8lMRhMcr0qtPm6rlRDAwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoysMA0GCSqG SIb3DQEBCwUAA4IBAQBsYO5KdNLV/IgM0xTXe7GKakOeAV8N/r2AW7w4C+jmIWz6 RYl694wDIbtaUXa2ygN2twj5v91Jot9f5v+UcnxucCYteRURJyN695J9CKBelJow HZcOdc9vHMcV/wdu4VuuuZVBNCBieQzEZ6fNmiE6BWUJiQiWzsy+Pw7ZnH0N4oI4 gjJbmhFVYfbKmQM7QaAHUQENq+IGylmg+90oYu0V6FcQ52bIUJc/yPfcIWwl8JO1 fSMj2b6gk8iWWllQ2Gqd85gc8gZc9hsrm30cJrYDLcvKypTpvOYB4aMFh4Ht8eyX EhSiFx0FACLhzfbye5kKL6QCJO8Rhs0wnFL77r/m -----END CERTIFICATE-----Generated at Wed Apr 17 01:00:27 2024 by rpki-client on console-fra.rpki-client.org