$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 25czDCpj8UsRAwJ409fbuAcS2pcTcwLjVa+B74MC8zk= Subject key identifier: DE:37:AF:C9:3C:27:F4:9F:83:F4:F1:36:7D:6F:64:80:69:9A:F3:F5 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5FB1C1091D738784A3AC131CDEE41D3A37A15D66 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:02 +0000 ROA not before: Sun 10 Sep 2023 09:55:02 +0000 ROA not after: Sun 08 Sep 2024 10:00:02 +0000 asID: 63859 IP address blocks: 158.140.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 14:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b1:c1:09:1d:73:87:84:a3:ac:13:1c:de:e4:1d:3a:37:a1:5d:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:02 2023 GMT Not After : Sep 8 10:00:02 2024 GMT Subject: CN=DE37AFC93C27F49F83F4F1367D6F6480699AF3F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4c:03:4c:ba:ad:a0:f8:82:29:72:44:73:60: 47:e2:ab:c4:07:61:65:9f:5a:d9:32:aa:24:53:98: d3:60:d3:83:b5:c6:e3:4b:4d:63:56:1e:68:f0:44: fe:95:fa:80:9f:6e:95:78:2e:35:ea:e4:13:67:58: 2a:50:89:2f:12:85:fd:51:f9:c5:27:c6:27:ae:d8: 22:fe:a2:77:fb:64:9e:73:af:6d:06:f0:6b:e0:09: 37:81:df:cb:1b:67:86:6d:ba:1d:48:8a:66:2a:d5: 85:dd:0f:0b:87:fb:48:56:65:ac:f8:f8:9a:06:5e: 4b:26:8f:af:aa:a9:65:76:da:cb:ac:bf:25:6d:36: f6:27:ba:0b:c7:e5:f0:52:03:4e:7c:a8:e0:35:b8: ab:ef:b1:49:12:ce:43:ce:5a:5d:6d:73:c1:22:00: 43:74:ed:9f:fe:47:f5:d6:1c:2a:43:67:1f:5a:89: 9a:4b:b1:25:e7:26:e6:8c:5c:1b:4b:8c:56:f1:a8: 58:e7:c0:55:18:37:72:70:56:f9:22:70:5d:46:a1: 6c:3e:56:0e:f2:8a:ca:56:41:d6:5e:ba:62:2a:96: 77:45:0a:58:be:ac:15:67:38:2e:7c:02:d6:88:01: 37:90:0e:9a:c2:db:e9:45:84:59:7f:d4:3d:99:a4: 46:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:37:AF:C9:3C:27:F4:9F:83:F4:F1:36:7D:6F:64:80:69:9A:F3:F5 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.176.0/24 Signature Algorithm: sha256WithRSAEncryption 66:8d:bd:c6:ca:10:79:6f:88:ed:10:94:60:17:8a:ae:bd:2f: d6:d9:f8:c5:2e:51:92:93:f9:63:38:9c:bc:ee:15:dc:b2:44: 2f:2c:f9:65:f0:ca:92:7c:2a:b8:f9:5e:20:79:c5:bb:23:0b: fe:86:1a:2a:6f:6d:bb:03:0b:f5:82:fb:94:87:4b:f8:72:6a: bb:b5:14:11:e5:a8:e3:f9:60:2a:c4:37:fb:10:a0:78:c2:e0: c5:05:1b:c3:8b:f7:04:bc:5f:cd:7b:1b:34:72:52:2d:66:9c: 22:64:58:4c:5c:61:14:ab:d6:0c:b8:57:53:be:3e:fc:51:22: b4:aa:36:97:94:22:cf:2b:95:d8:33:63:9c:1a:d1:20:2e:09: 20:34:24:f5:7d:36:98:89:bc:72:c2:ba:d2:30:2e:a4:8f:5e: ea:47:6c:20:14:39:86:a9:f0:7f:39:19:10:30:e9:10:de:81: e2:50:16:db:3c:1b:5a:52:e7:eb:f8:6b:89:b7:ec:1c:6d:b4: 47:09:9c:c6:1d:16:ed:04:73:8e:b0:57:95:74:af:e4:e8:16: 36:bb:65:a5:ce:d8:0e:e8:c3:4a:d0:72:d9:ba:5f:58:0b:be: b4:b4:8a:21:94:07:ba:52:04:cf:ff:68:31:d0:7d:f1:d7:b3: a7:dc:23:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX7HBCR1zh4SjrBMc3uQdOjehXWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDJaFw0yNDA5MDgxMDAwMDJaMDMxMTAvBgNV BAMTKERFMzdBRkM5M0MyN0Y0OUY4M0Y0RjEzNjdENkY2NDgwNjk5QUYzRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1TANMuq2g+IIpckRzYEfiq8QH YWWfWtkyqiRTmNNg04O1xuNLTWNWHmjwRP6V+oCfbpV4LjXq5BNnWCpQiS8Shf1R +cUnxieu2CL+onf7ZJ5zr20G8GvgCTeB38sbZ4Ztuh1IimYq1YXdDwuH+0hWZaz4 +JoGXksmj6+qqWV22susvyVtNvYnugvH5fBSA058qOA1uKvvsUkSzkPOWl1tc8Ei AEN07Z/+R/XWHCpDZx9aiZpLsSXnJuaMXBtLjFbxqFjnwFUYN3JwVvkicF1GoWw+ Vg7yispWQdZeumIqlndFCli+rBVnOC58AtaIATeQDprC2+lFhFl/1D2ZpEbPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3jevyTwn9J+D9PE2fW9kgGma8/UwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoywMA0GCSqG SIb3DQEBCwUAA4IBAQBmjb3GyhB5b4jtEJRgF4quvS/W2fjFLlGSk/ljOJy87hXc skQvLPll8MqSfCq4+V4gecW7Iwv+hhoqb227Awv1gvuUh0v4cmq7tRQR5ajj+WAq xDf7EKB4wuDFBRvDi/cEvF/Nexs0clItZpwiZFhMXGEUq9YMuFdTvj78USK0qjaX lCLPK5XYM2OcGtEgLgkgNCT1fTaYibxywrrSMC6kj17qR2wgFDmGqfB/ORkQMOkQ 3oHiUBbbPBtaUufr+GuJt+wcbbRHCZzGHRbtBHOOsFeVdK/k6BY2u2WlztgO6MNK 0HLZul9YC760tIohlAe6UgTP/2gx0H3x17On3CNA -----END CERTIFICATE-----Generated at Wed Apr 17 01:25:00 2024 by rpki-client on console-ams.rpki-client.org