$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: F4fEt/0fYrs+Cch1lK/5qnQQFGApskznYIvFNodHAgM= Subject key identifier: AB:28:6A:D4:7A:FE:44:76:82:BE:14:20:10:A3:65:AD:A8:1A:1F:B9 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5EED5D6E41B5968322D22E6A01EA2DA97B555AD3 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:06 +0000 ROA not before: Sun 10 Sep 2023 09:55:06 +0000 ROA not after: Sun 08 Sep 2024 10:00:06 +0000 asID: 63859 IP address blocks: 158.140.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 14:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ed:5d:6e:41:b5:96:83:22:d2:2e:6a:01:ea:2d:a9:7b:55:5a:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:06 2023 GMT Not After : Sep 8 10:00:06 2024 GMT Subject: CN=AB286AD47AFE447682BE142010A365ADA81A1FB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:80:70:52:3c:4b:fb:0f:5e:ad:c6:1b:a0: d7:c5:46:fb:48:e5:08:bc:15:05:fb:e3:8e:48:71: 32:36:9b:82:d6:28:8c:37:fb:b9:65:7f:49:e0:51: af:80:67:03:bd:d2:d2:09:d5:44:40:02:01:3b:f5: 41:2a:0d:19:bc:f6:29:89:b6:1b:f3:aa:8b:ff:d8: b6:48:11:60:c8:34:04:72:76:5c:35:d2:94:63:2a: 88:dc:5c:7e:f4:40:b0:b0:bc:20:76:52:4a:10:0e: 06:df:bd:11:54:7f:82:32:d9:11:2f:2d:2b:65:13: 47:25:4b:bb:2d:48:7d:74:74:ce:fd:3f:31:0b:1f: 3c:24:fa:96:5d:9b:f7:95:45:f2:ad:d0:c5:d9:82: c4:85:ea:8a:1d:84:7a:41:9f:82:51:ca:7e:53:d8: f7:5e:b7:f5:5a:7d:57:a3:69:0d:9e:d7:47:c3:16: f0:89:d2:29:3e:ff:f9:de:1c:e9:41:29:52:85:3e: d1:d9:89:d2:44:09:af:82:dd:09:d8:14:f4:40:f7: 2c:fb:54:37:af:db:b1:e8:7b:43:c6:a8:2d:21:e7: 6f:d8:4b:9c:2b:de:5f:d0:bd:68:cd:f3:ec:1c:4d: dd:ca:dd:cb:8b:be:41:4c:7e:ef:32:6b:c5:71:fd: 4c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:28:6A:D4:7A:FE:44:76:82:BE:14:20:10:A3:65:AD:A8:1A:1F:B9 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.182.0/24 Signature Algorithm: sha256WithRSAEncryption 53:75:5a:db:af:b1:f0:a4:3d:47:bd:84:d2:26:cc:78:78:01: 63:96:54:a2:34:36:ec:ad:19:77:18:e2:eb:c6:58:c5:61:96: af:d0:69:e1:5b:32:1f:98:eb:22:5b:89:a8:7a:68:fb:71:70: 26:bd:ca:ca:49:59:b8:1b:28:cb:b3:58:ff:86:f6:cc:ee:65: 46:58:21:38:17:a0:6b:17:b5:ef:f1:cd:3f:66:a2:23:69:d7: e0:8e:1c:b3:e3:6f:3d:45:59:f6:1b:84:5d:bd:ff:42:72:d3: 04:18:dc:4c:c3:2d:04:d3:b0:26:d6:cf:93:10:8c:0d:bf:ee: ad:34:f2:56:e8:0c:3c:e5:45:de:7b:75:cb:e6:19:ab:8d:50: 9f:eb:c2:5b:24:4a:ad:e1:a9:d1:b0:c7:b8:62:89:96:96:70: 4e:9c:1f:af:b6:d3:5a:60:b5:68:4a:aa:da:df:84:f4:a9:8d: 60:d9:f7:1c:41:6b:59:48:e5:56:1d:93:cd:c4:0a:bd:32:db: 75:50:17:7e:d4:20:1c:b6:4b:cc:65:03:47:d4:d7:91:53:80: 8e:2a:af:8d:5a:50:f9:57:94:10:f3:0f:b0:3c:30:bd:b6:3e: 67:d0:a8:1b:c1:d0:ed:62:4c:5e:9f:22:a0:80:5a:5d:8d:9a: 63:1e:86:19 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXu1dbkG1loMi0i5qAeotqXtVWtMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDZaFw0yNDA5MDgxMDAwMDZaMDMxMTAvBgNV BAMTKEFCMjg2QUQ0N0FGRTQ0NzY4MkJFMTQyMDEwQTM2NUFEQTgxQTFGQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xIBwUjxL+w9ercYboNfFRvtI 5Qi8FQX7445IcTI2m4LWKIw3+7llf0ngUa+AZwO90tIJ1URAAgE79UEqDRm89imJ thvzqov/2LZIEWDINARydlw10pRjKojcXH70QLCwvCB2UkoQDgbfvRFUf4Iy2REv LStlE0clS7stSH10dM79PzELHzwk+pZdm/eVRfKt0MXZgsSF6oodhHpBn4JRyn5T 2Pdet/VafVejaQ2e10fDFvCJ0ik+//neHOlBKVKFPtHZidJECa+C3QnYFPRA9yz7 VDev27Hoe0PGqC0h52/YS5wr3l/QvWjN8+wcTd3K3cuLvkFMfu8ya8Vx/UwTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqyhq1Hr+RHaCvhQgEKNlragaH7kwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy2MA0GCSqG SIb3DQEBCwUAA4IBAQBTdVrbr7HwpD1HvYTSJsx4eAFjllSiNDbsrRl3GOLrxljF YZav0GnhWzIfmOsiW4moemj7cXAmvcrKSVm4GyjLs1j/hvbM7mVGWCE4F6BrF7Xv 8c0/ZqIjadfgjhyz4289RVn2G4Rdvf9CctMEGNxMwy0E07Am1s+TEIwNv+6tNPJW 6Aw85UXee3XL5hmrjVCf68JbJEqt4anRsMe4YomWlnBOnB+vttNaYLVoSqra34T0 qY1g2fccQWtZSOVWHZPNxAq9Mtt1UBd+1CActkvMZQNH1NeRU4COKq+NWlD5V5QQ 8w+wPDC9tj5n0KgbwdDtYkxenyKggFpdjZpjHoYZ -----END CERTIFICATE-----Generated at Wed Apr 17 01:00:27 2024 by rpki-client on console-fra.rpki-client.org