$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: cjaNla3Y4RIJYov8LHly6AIeWqyPymPoTyiL3e2sFcc= Subject key identifier: A2:8A:D3:66:AB:C3:CA:13:0F:A1:B8:09:18:7D:2B:A2:E8:5C:21:3F Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 153110B10A56A7A7F0F4045769EABFDBD3FFC313 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:01 +0000 ROA not before: Sun 10 Sep 2023 09:55:01 +0000 ROA not after: Sun 08 Sep 2024 10:00:01 +0000 asID: 63859 IP address blocks: 158.140.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 14:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:31:10:b1:0a:56:a7:a7:f0:f4:04:57:69:ea:bf:db:d3:ff:c3:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:01 2023 GMT Not After : Sep 8 10:00:01 2024 GMT Subject: CN=A28AD366ABC3CA130FA1B809187D2BA2E85C213F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8f:fe:92:d1:17:96:65:60:1d:64:78:9d:00: 68:1b:a5:f0:04:66:80:d1:cb:93:e2:73:6b:49:d4: b3:6b:79:4b:0e:93:fb:9f:23:7e:ed:8d:b1:23:82: fd:e7:72:74:c0:3a:f5:03:52:53:ce:0c:09:89:44: b8:7d:ee:94:30:d1:5e:f0:5f:6c:f2:05:70:5f:17: 86:16:42:ae:c3:0d:56:6f:83:eb:5f:d7:f3:1f:36: 81:e1:95:47:31:38:8c:bc:41:e4:fb:ab:45:f1:ff: 66:7f:0e:ab:fa:4d:ce:fc:1d:8f:d4:51:10:bd:65: 44:2d:67:96:99:8b:22:7e:ba:da:20:23:b0:c1:08: 3a:05:5f:23:5a:4e:fd:6e:51:37:6d:4c:9c:38:55: 7b:96:01:40:df:ae:94:2d:35:e5:40:b7:ee:89:e6: 0d:be:b0:17:d7:a5:2d:ee:57:83:51:02:c8:36:4b: 27:f5:8e:2a:d2:c0:1e:e8:e1:e7:6d:a3:ee:ab:6f: c5:63:b7:19:c8:91:fc:fe:fc:84:05:b9:47:9e:ef: 64:0d:fa:41:b5:4c:39:ed:82:6c:d4:ed:b0:34:58: 42:bb:82:fb:35:36:cc:fd:73:1a:05:4f:2b:51:51: d2:4f:c1:19:81:47:0b:46:66:e7:81:11:63:da:c4: a1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:8A:D3:66:AB:C3:CA:13:0F:A1:B8:09:18:7D:2B:A2:E8:5C:21:3F X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.183.0/24 Signature Algorithm: sha256WithRSAEncryption b5:e0:03:26:a1:c4:21:1e:2f:8d:d8:7e:14:47:0d:fb:16:f5: e4:e7:17:4e:0c:11:e8:74:40:cc:4f:26:69:30:01:94:4c:8c: 52:86:85:ee:91:f4:16:7d:ec:50:af:df:cf:45:31:49:c8:bc: f0:ac:e3:bc:71:80:4e:49:04:7c:54:75:1e:a5:54:8a:56:28: 54:f4:a2:2d:80:0d:bf:dc:0a:5e:15:2c:92:e7:08:d2:f7:d6: 74:75:2c:a6:f5:cc:a0:c1:81:7f:ed:69:ee:44:de:13:3d:71: be:cb:e3:3e:d2:fe:a2:34:07:f8:bf:9c:9e:4b:ed:5d:ff:6a: ef:1d:ad:60:8f:27:bc:94:12:37:35:a8:ef:b2:10:ae:4c:e9: 11:4c:ba:fd:d4:a9:bf:18:30:aa:5e:3f:2f:af:a9:3c:31:53: 67:fa:6e:40:27:13:44:5b:84:ea:88:41:c6:e8:46:e0:4f:9a: eb:77:77:30:fe:16:6a:ba:d6:43:9f:65:00:24:04:f8:3c:bb: f5:26:4f:b9:a9:53:3f:e5:69:3d:85:14:ef:ac:fb:e4:39:9a: 93:1b:74:6d:c8:25:e1:3c:e5:b5:11:df:70:ad:b7:39:bb:52: 8a:4d:f7:d1:a3:b3:8d:17:63:1d:78:98:34:0c:f6:ad:61:26: a1:af:59:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFTEQsQpWp6fw9ARXaeq/29P/wxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDFaFw0yNDA5MDgxMDAwMDFaMDMxMTAvBgNV BAMTKEEyOEFEMzY2QUJDM0NBMTMwRkExQjgwOTE4N0QyQkEyRTg1QzIxM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8j/6S0ReWZWAdZHidAGgbpfAE ZoDRy5Pic2tJ1LNreUsOk/ufI37tjbEjgv3ncnTAOvUDUlPODAmJRLh97pQw0V7w X2zyBXBfF4YWQq7DDVZvg+tf1/MfNoHhlUcxOIy8QeT7q0Xx/2Z/Dqv6Tc78HY/U URC9ZUQtZ5aZiyJ+utogI7DBCDoFXyNaTv1uUTdtTJw4VXuWAUDfrpQtNeVAt+6J 5g2+sBfXpS3uV4NRAsg2Syf1jirSwB7o4edto+6rb8VjtxnIkfz+/IQFuUee72QN +kG1TDntgmzU7bA0WEK7gvs1Nsz9cxoFTytRUdJPwRmBRwtGZueBEWPaxKELAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoorTZqvDyhMPobgJGH0rouhcIT8wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy3MA0GCSqG SIb3DQEBCwUAA4IBAQC14AMmocQhHi+N2H4URw37FvXk5xdODBHodEDMTyZpMAGU TIxShoXukfQWfexQr9/PRTFJyLzwrOO8cYBOSQR8VHUepVSKVihU9KItgA2/3Ape FSyS5wjS99Z0dSym9cygwYF/7WnuRN4TPXG+y+M+0v6iNAf4v5yeS+1d/2rvHa1g jye8lBI3NajvshCuTOkRTLr91Km/GDCqXj8vr6k8MVNn+m5AJxNEW4TqiEHG6Ebg T5rrd3cw/hZqutZDn2UAJAT4PLv1Jk+5qVM/5Wk9hRTvrPvkOZqTG3RtyCXhPOW1 Ed9wrbc5u1KKTffRo7ONF2MdeJg0DPatYSahr1n1 -----END CERTIFICATE-----Generated at Wed Apr 17 01:00:27 2024 by rpki-client on console-fra.rpki-client.org