$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: XIJnrtCZwZUlUsyXRZl7WLftg/McfX4dQBXA4/QbAhE= Subject key identifier: DA:65:F4:2D:B0:7D:BD:4D:60:71:B9:49:40:65:33:C8:E0:50:A1:AE Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 10A85797D46BCA2FF42A9F2FF0122956E29E8341 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:02 +0000 ROA not before: Sun 10 Sep 2023 09:55:02 +0000 ROA not after: Sun 08 Sep 2024 10:00:02 +0000 asID: 63859 IP address blocks: 158.140.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a8:57:97:d4:6b:ca:2f:f4:2a:9f:2f:f0:12:29:56:e2:9e:83:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:02 2023 GMT Not After : Sep 8 10:00:02 2024 GMT Subject: CN=DA65F42DB07DBD4D6071B949406533C8E050A1AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:74:09:e2:a8:27:5c:dd:9d:0b:d7:b9:de: 08:56:5e:e7:fc:8a:34:32:54:f1:d2:2b:41:eb:31: a8:33:cc:9a:c1:ba:1e:77:f2:56:2b:a1:d9:e4:ab: 0e:25:33:c5:49:55:db:2c:e4:ec:0c:77:a8:5f:a1: 8c:42:e0:3d:22:d1:e4:e5:8c:93:f4:c8:b1:0b:8c: 2d:fd:a2:c1:e0:d7:c3:d2:e8:00:bf:b5:db:83:40: ec:17:95:56:a8:7f:e5:ce:d5:27:20:27:2a:e9:98: 9b:65:f5:3a:ae:8d:77:84:8b:36:5e:bc:a4:12:bb: 27:23:48:f7:42:35:a4:35:4a:57:ed:b0:d6:2c:36: ed:35:6c:12:70:fd:89:5e:71:9e:0a:ea:50:ed:17: e4:76:c4:98:fa:b7:6d:a5:b3:77:b2:73:37:06:c0: 07:e8:21:3b:e1:70:5d:69:81:4d:d5:4f:86:2c:73: 20:c9:d3:14:14:49:f8:2a:64:02:11:01:88:e5:27: 67:58:02:db:4e:1b:19:61:60:bb:81:f4:10:6d:fe: 97:cf:1c:ea:0f:27:8f:80:b2:22:aa:53:e5:b2:42: 26:f8:37:da:ec:96:1b:03:7c:9e:e9:00:10:a4:c3: f4:9f:55:db:90:b1:c6:13:1a:04:fd:45:4a:33:c8: a4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:65:F4:2D:B0:7D:BD:4D:60:71:B9:49:40:65:33:C8:E0:50:A1:AE X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.181.0/24 Signature Algorithm: sha256WithRSAEncryption 41:6c:94:ff:29:e2:e6:61:35:26:77:c4:d2:e6:96:b6:9a:b6: 2c:dc:75:8a:a9:16:60:de:57:f5:48:be:7a:96:06:c3:87:87: c3:fc:db:54:eb:fc:0c:6c:c3:33:71:ae:29:eb:5a:81:69:2c: ae:58:55:e4:6c:a2:1a:e7:e0:30:55:de:a8:f7:ce:15:77:78: 98:41:a3:bf:85:07:53:f4:f7:ed:ea:4d:ac:d9:06:cb:23:d1: dc:68:55:62:8a:2e:5c:37:2d:8a:e5:c0:e1:99:02:59:5c:41: e9:a6:c0:14:c6:ca:ea:96:f6:45:59:c7:1b:68:bd:9f:59:bd: f6:80:10:23:1d:0f:58:0f:31:16:93:21:40:99:5a:6a:d0:42: ff:35:00:c6:7a:86:a9:20:d2:0d:e7:10:cb:c2:67:c0:eb:7d: dd:89:43:bf:fa:41:5f:e9:2e:2d:73:6f:b3:b9:aa:81:47:ab: 3d:c6:a2:54:d0:d6:f9:9b:a9:13:5a:85:94:64:e5:54:59:11: 1c:91:b6:f8:fc:24:52:1e:db:92:d0:a9:a5:4d:aa:d0:30:ff: e8:d7:4f:e0:b1:08:1b:a8:18:b2:01:85:1f:14:36:67:55:2b: 1d:a6:f1:08:9d:87:bd:8f:d0:31:69:7a:7a:4e:d3:0f:c6:b7: f3:1a:75:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEKhXl9Rryi/0Kp8v8BIpVuKeg0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDJaFw0yNDA5MDgxMDAwMDJaMDMxMTAvBgNV BAMTKERBNjVGNDJEQjA3REJENEQ2MDcxQjk0OTQwNjUzM0M4RTA1MEExQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDboXQJ4qgnXN2dC9e53ghWXuf8 ijQyVPHSK0HrMagzzJrBuh538lYrodnkqw4lM8VJVdss5OwMd6hfoYxC4D0i0eTl jJP0yLELjC39osHg18PS6AC/tduDQOwXlVaof+XO1ScgJyrpmJtl9TqujXeEizZe vKQSuycjSPdCNaQ1SlftsNYsNu01bBJw/YlecZ4K6lDtF+R2xJj6t22ls3eyczcG wAfoITvhcF1pgU3VT4YscyDJ0xQUSfgqZAIRAYjlJ2dYAttOGxlhYLuB9BBt/pfP HOoPJ4+AsiKqU+WyQib4N9rslhsDfJ7pABCkw/SfVduQscYTGgT9RUozyKSBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2mX0LbB9vU1gcblJQGUzyOBQoa4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy1MA0GCSqG SIb3DQEBCwUAA4IBAQBBbJT/KeLmYTUmd8TS5pa2mrYs3HWKqRZg3lf1SL56lgbD h4fD/NtU6/wMbMMzca4p61qBaSyuWFXkbKIa5+AwVd6o984Vd3iYQaO/hQdT9Pft 6k2s2QbLI9HcaFViii5cNy2K5cDhmQJZXEHppsAUxsrqlvZFWccbaL2fWb32gBAj HQ9YDzEWkyFAmVpq0EL/NQDGeoapININ5xDLwmfA633diUO/+kFf6S4tc2+zuaqB R6s9xqJU0Nb5m6kTWoWUZOVUWREckbb4/CRSHtuS0KmlTarQMP/o10/gsQgbqBiy AYUfFDZnVSsdpvEInYe9j9AxaXp6TtMPxrfzGnWs -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:51 2024 by rpki-client on console-fra.rpki-client.org