$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa File: 3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa (raw, json) Hash identifier: iiGO2AfPHYqQikainOUQxXH5sAUa6uishV1kpjK5BWs= Subject key identifier: 02:84:43:5C:00:D2:2E:55:33:7B:15:EB:FB:07:BF:A0:6C:A6:AC:DF Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 68C6E82CB8A773BAB23B30CC4C8A24DF3CC87F0B Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa Signing time: Fri 24 Nov 2023 05:00:01 +0000 ROA not before: Fri 24 Nov 2023 04:55:01 +0000 ROA not after: Fri 22 Nov 2024 05:00:01 +0000 asID: 63859 IP address blocks: 158.140.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c6:e8:2c:b8:a7:73:ba:b2:3b:30:cc:4c:8a:24:df:3c:c8:7f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Nov 24 04:55:01 2023 GMT Not After : Nov 22 05:00:01 2024 GMT Subject: CN=0284435C00D22E55337B15EBFB07BFA06CA6ACDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fb:c5:05:0f:a5:84:8a:59:d5:aa:b2:8a:d1: 21:1f:2e:9c:e1:eb:05:e1:1b:3b:15:60:c0:4b:c7: 13:5e:a3:5e:76:9b:ff:fd:67:2f:95:1e:b9:83:44: 2c:5a:1a:3c:05:82:bc:1e:c1:13:90:af:07:4c:b7: 09:37:7e:f7:1d:7f:e2:8d:8e:e1:33:f2:46:ab:8f: bf:1d:5f:25:52:93:0e:b9:c3:ee:57:5d:a5:67:0d: 42:62:f4:cf:bd:ea:70:2f:8a:d4:0d:c3:a7:58:90: 9b:51:a9:24:64:7f:2f:cb:cc:38:ee:8d:19:cd:70: dd:ad:4d:cd:2c:c7:63:79:a0:5c:e0:07:d0:fe:23: 72:da:77:d8:0a:de:32:3c:83:f6:06:58:4a:68:8c: a1:9e:2c:b4:99:69:91:02:71:fe:69:de:e8:36:e0: 70:f2:ca:e3:cb:ca:0f:36:f0:9c:6e:b4:e4:a3:42: 31:44:20:06:3b:64:3f:66:66:53:93:31:f0:1e:4c: 77:a0:85:d8:3a:ff:ea:c7:aa:de:c4:b2:6d:a9:5d: ed:0c:de:7b:0e:48:cd:5f:aa:bf:9d:ea:65:30:0e: 51:8e:72:ab:88:ae:6d:ce:8a:fa:f7:9a:03:df:f0: a7:b2:5e:70:f6:10:7f:aa:df:5f:f3:7f:b9:72:06: 6e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:84:43:5C:00:D2:2E:55:33:7B:15:EB:FB:07:BF:A0:6C:A6:AC:DF X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.176.0/21 Signature Algorithm: sha256WithRSAEncryption 80:fd:63:ac:ed:d3:2a:b1:84:d9:2d:67:eb:f5:73:d2:06:0d: 24:1a:9a:48:98:8b:5c:3e:3a:80:ff:ae:74:dc:24:62:5d:c5: 37:74:57:fe:53:3e:80:10:c3:a0:69:43:3f:fd:cf:3e:a7:f4: d4:8a:92:3d:45:52:42:a7:bd:6f:f1:a7:58:3e:2a:7a:8b:40: 35:14:b5:d2:8b:c3:57:ad:86:fe:76:9b:34:47:df:45:bf:7f: a6:10:92:3b:dd:d1:c4:66:2a:3e:14:c6:7d:d3:da:f7:f3:eb: b8:db:5f:c3:a6:8a:78:0f:1e:e5:eb:df:2b:71:43:92:3f:63: fd:6d:08:06:76:6e:61:93:28:a4:98:b2:4b:1a:18:2b:c1:96: e7:c7:3e:ec:2c:7a:45:07:f9:a9:42:c6:52:28:ba:21:01:25: d2:2d:00:ef:b9:87:e2:f2:e5:8c:8c:c8:54:22:ad:37:5b:21: c5:cf:8f:24:ce:07:d5:e9:c6:ed:d2:84:29:65:30:22:52:08: d1:9a:d7:41:e5:50:45:fa:5f:76:04:9d:8b:55:3a:75:ce:a4: ca:29:25:d6:1f:bf:0b:e4:03:80:9e:cb:1c:ef:21:c4:e2:79: 3f:97:12:a4:7f:c1:f4:62:a0:3d:2b:69:fb:c0:e0:91:6d:47: e3:98:05:c5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaMboLLinc7qyOzDMTIok3zzIfwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzExMjQwNDU1MDFaFw0yNDExMjIwNTAwMDFaMDMxMTAvBgNV BAMTKDAyODQ0MzVDMDBEMjJFNTUzMzdCMTVFQkZCMDdCRkEwNkNBNkFDREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM+8UFD6WEilnVqrKK0SEfLpzh 6wXhGzsVYMBLxxNeo152m//9Zy+VHrmDRCxaGjwFgrwewROQrwdMtwk3fvcdf+KN juEz8karj78dXyVSkw65w+5XXaVnDUJi9M+96nAvitQNw6dYkJtRqSRkfy/LzDju jRnNcN2tTc0sx2N5oFzgB9D+I3Lad9gK3jI8g/YGWEpojKGeLLSZaZECcf5p3ug2 4HDyyuPLyg828JxutOSjQjFEIAY7ZD9mZlOTMfAeTHeghdg6/+rHqt7Esm2pXe0M 3nsOSM1fqr+d6mUwDlGOcquIrm3Oivr3mgPf8KeyXnD2EH+q31/zf7lyBm5dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAoRDXADSLlUzexXr+we/oGymrN8wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzYyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDnoywMA0GCSqG SIb3DQEBCwUAA4IBAQCA/WOs7dMqsYTZLWfr9XPSBg0kGppImItcPjqA/6503CRi XcU3dFf+Uz6AEMOgaUM//c8+p/TUipI9RVJCp71v8adYPip6i0A1FLXSi8NXrYb+ dps0R99Fv3+mEJI73dHEZio+FMZ909r38+u421/Dpop4Dx7l698rcUOSP2P9bQgG dm5hkyikmLJLGhgrwZbnxz7sLHpFB/mpQsZSKLohASXSLQDvuYfi8uWMjMhUIq03 WyHFz48kzgfV6cbt0oQpZTAiUgjRmtdB5VBF+l92BJ2LVTp1zqTKKSXWH78L5AOA nssc7yHE4nk/lxKkf8H0YqA9K2n7wOCRbUfjmAXF -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:51 2024 by rpki-client on console-fra.rpki-client.org