$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: gT9qW/D2XorlCsAzmi5nP1ILeS6d2gi1n2xGJMG/x+M= Subject key identifier: 3E:DD:8D:75:1F:A2:64:63:25:2B:99:AF:2B:E3:E3:4A:4B:65:C4:60 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1A5C43365261A7B3F6B0E13414DC079EF450BDE9 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:01 +0000 ROA not before: Sun 10 Sep 2023 09:55:01 +0000 ROA not after: Sun 08 Sep 2024 10:00:01 +0000 asID: 63859 IP address blocks: 158.140.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:5c:43:36:52:61:a7:b3:f6:b0:e1:34:14:dc:07:9e:f4:50:bd:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:01 2023 GMT Not After : Sep 8 10:00:01 2024 GMT Subject: CN=3EDD8D751FA26463252B99AF2BE3E34A4B65C460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:81:dd:c7:1c:1e:ed:87:c4:e9:22:4d:46:9a: 72:6b:3b:23:c8:b2:5c:3e:80:25:a2:56:09:1e:e3: 92:48:8b:8d:80:42:89:2b:1e:cf:8e:82:26:c9:5d: a0:36:e3:39:ea:b4:b4:86:b8:a5:8e:21:4e:da:e6: b4:5c:97:79:6b:75:04:81:ba:76:0f:db:36:57:b2: d9:bc:97:60:e7:69:89:a6:5d:6d:51:1b:97:1d:9c: 66:62:57:ed:32:49:63:15:a6:ba:8b:48:a4:3d:c1: 18:65:87:ff:ea:83:5f:b8:4d:6e:3f:fb:2c:d4:a8: 7f:77:24:3b:a8:25:e0:18:42:f6:8b:e6:a1:8c:47: 83:bb:b5:32:62:27:bc:fb:a1:05:a9:3c:16:04:3a: 8e:ee:45:b1:73:65:9e:3b:78:7d:8c:67:ec:db:f4: 35:bd:34:3a:56:cd:0f:4e:86:e0:95:d1:c4:65:7d: 23:ad:45:5c:36:b9:52:39:06:d9:6f:74:96:59:9e: 6f:6e:9e:59:9e:99:07:05:32:8b:fe:47:00:6a:26: e2:1f:35:5f:ca:bf:4b:df:13:2d:75:22:0c:87:91: e0:6a:15:e3:19:3b:c4:33:34:4a:16:aa:7a:50:e4: 4b:a1:14:49:6b:47:d6:b7:99:11:ad:14:21:0c:a4: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DD:8D:75:1F:A2:64:63:25:2B:99:AF:2B:E3:E3:4A:4B:65:C4:60 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.180.0/24 Signature Algorithm: sha256WithRSAEncryption 30:38:91:b9:9c:ad:0c:20:58:fc:ca:f1:da:3e:8b:b0:39:e2: 16:10:f4:5c:43:99:77:c6:b9:9d:c1:bb:93:2d:18:6c:d0:3d: 7f:5f:76:ac:7b:aa:42:55:cf:4e:7c:0b:6f:a7:1a:26:56:f7: e4:2f:28:3d:12:2b:1f:8f:da:5c:b4:b0:3e:36:37:d9:05:b2: a8:29:56:37:97:fe:cc:75:98:ef:c2:00:9e:0f:df:8c:8f:f1: 9e:35:b9:3f:b3:41:b4:2a:1a:39:d2:37:46:5b:4c:64:70:a0: 80:a8:59:5e:0b:fd:48:25:79:2a:23:1d:1e:89:0f:8d:cc:66: af:98:97:b6:01:04:be:b7:61:7d:0b:f0:14:99:4f:55:05:7b: a2:c2:40:7d:70:c5:d4:d2:f3:0a:c4:eb:87:20:1a:a8:3c:ed: 6a:12:33:e0:00:8d:41:73:5e:3b:9b:60:8f:f7:f9:a4:27:c0: 3c:fe:e4:0f:c6:a0:8f:8b:a9:35:84:ee:26:da:7b:77:f4:54: 20:66:fd:5f:95:92:80:46:4f:ef:b1:e7:d1:fa:8c:06:9e:5a: a7:e2:5f:48:9b:ba:c6:72:44:17:d0:f9:f7:32:4c:bf:41:b6: aa:2f:e2:a4:23:df:fd:12:1f:f0:7f:a3:10:36:ac:dc:96:8c: 45:b5:21:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGlxDNlJhp7P2sOE0FNwHnvRQvekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDFaFw0yNDA5MDgxMDAwMDFaMDMxMTAvBgNV BAMTKDNFREQ4RDc1MUZBMjY0NjMyNTJCOTlBRjJCRTNFMzRBNEI2NUM0NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCgd3HHB7th8TpIk1GmnJrOyPI slw+gCWiVgke45JIi42AQokrHs+OgibJXaA24znqtLSGuKWOIU7a5rRcl3lrdQSB unYP2zZXstm8l2DnaYmmXW1RG5cdnGZiV+0ySWMVprqLSKQ9wRhlh//qg1+4TW4/ +yzUqH93JDuoJeAYQvaL5qGMR4O7tTJiJ7z7oQWpPBYEOo7uRbFzZZ47eH2MZ+zb 9DW9NDpWzQ9OhuCV0cRlfSOtRVw2uVI5BtlvdJZZnm9unlmemQcFMov+RwBqJuIf NV/Kv0vfEy11IgyHkeBqFeMZO8QzNEoWqnpQ5EuhFElrR9a3mRGtFCEMpJorAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPt2NdR+iZGMlK5mvK+PjSktlxGAwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy0MA0GCSqG SIb3DQEBCwUAA4IBAQAwOJG5nK0MIFj8yvHaPouwOeIWEPRcQ5l3xrmdwbuTLRhs 0D1/X3ase6pCVc9OfAtvpxomVvfkLyg9Eisfj9pctLA+NjfZBbKoKVY3l/7MdZjv wgCeD9+Mj/GeNbk/s0G0Kho50jdGW0xkcKCAqFleC/1IJXkqIx0eiQ+NzGavmJe2 AQS+t2F9C/AUmU9VBXuiwkB9cMXU0vMKxOuHIBqoPO1qEjPgAI1Bc147m2CP9/mk J8A8/uQPxqCPi6k1hO4m2nt39FQgZv1flZKARk/vsefR+owGnlqn4l9Im7rGckQX 0Pn3Mky/QbaqL+KkI9/9Eh/wf6MQNqzcloxFtSHk -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:51 2024 by rpki-client on console-fra.rpki-client.org