$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: TzJQqxebq9iVypzVpVeKM0W+zlNCJzPABOLLlck5DvY= Subject key identifier: 73:9A:9B:B7:45:39:62:ED:D3:36:7B:04:1B:D7:7B:E7:53:A5:94:F2 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 70768CC811DD6A7A9112FB982B01A8C11E153AEF Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:01 +0000 ROA not before: Sun 10 Sep 2023 09:55:01 +0000 ROA not after: Sun 08 Sep 2024 10:00:01 +0000 asID: 63859 IP address blocks: 158.140.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:76:8c:c8:11:dd:6a:7a:91:12:fb:98:2b:01:a8:c1:1e:15:3a:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:01 2023 GMT Not After : Sep 8 10:00:01 2024 GMT Subject: CN=739A9BB7453962EDD3367B041BD77BE753A594F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:cf:68:3d:a3:8c:83:3a:68:81:fd:b9:d2: 9a:52:ad:a2:c8:e5:b4:35:95:4d:c5:98:f2:f5:d7: 4c:b1:c8:d7:f5:a3:d8:98:cf:a2:f9:7d:41:8f:bd: f1:1b:45:0b:32:a0:04:9d:f1:05:eb:15:63:80:27: 09:f2:fc:98:ac:81:cf:05:e9:81:ce:52:38:01:1a: 24:5a:35:89:ae:8c:ec:be:f1:20:aa:69:e7:74:ce: 7a:5f:b9:ce:d3:d4:1b:23:bf:8e:be:89:0a:b1:b7: 04:9e:bc:c3:80:2e:b0:cb:e3:d7:bd:94:b7:11:34: a1:7c:3b:32:75:f4:d8:fc:6d:10:af:d2:1c:8a:55: 31:84:63:52:75:b1:c1:e3:d6:27:4c:73:46:39:31: 14:25:2d:c4:e6:fd:e2:69:fe:e8:51:0f:6e:d1:79: 39:2a:67:08:84:29:16:af:bd:35:e0:ec:4c:71:5a: 8f:41:c4:80:34:0c:11:ea:d9:39:95:a3:6d:1c:32: dd:26:af:0c:74:c8:cb:5c:39:9b:57:9e:ba:63:05: e4:81:49:28:6e:9f:26:05:44:d7:f7:33:4c:30:d7: eb:59:23:3a:80:5e:26:fc:79:ea:b6:a2:3d:b5:66: fc:5d:27:be:a3:11:1d:8e:52:41:65:8f:4c:1a:98: e7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9A:9B:B7:45:39:62:ED:D3:36:7B:04:1B:D7:7B:E7:53:A5:94:F2 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.184.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:5d:36:d2:4b:91:35:18:6a:41:39:20:4a:db:d5:4e:5a:dc: d1:c2:c1:98:61:08:08:35:da:97:7d:d5:db:12:95:f5:4c:83: fd:3a:96:33:93:f1:2d:4d:0f:27:8d:15:23:a6:bf:42:e2:30: f1:80:fe:0b:79:8e:96:3b:5f:6f:28:5d:69:f4:8b:42:6a:40: 20:03:1c:04:03:52:ab:e1:0d:41:6f:71:a3:a4:7e:a7:86:42: eb:7b:5b:2d:85:94:71:1c:6d:2d:0f:ca:3a:34:77:25:80:84: f4:fb:36:26:93:ef:e2:a6:68:9a:2e:a2:dc:c6:52:3d:5b:51: d7:ea:aa:84:4e:39:af:43:1c:0b:c2:d3:64:83:ff:01:8c:a0: 60:c2:a9:f7:25:cd:58:20:11:52:e3:4a:86:2b:85:30:37:06: db:f5:19:69:b2:29:ee:00:2e:9c:ff:0c:cc:0c:02:0a:c5:15: d2:6d:6a:a4:97:b9:3f:97:8d:2e:1c:ec:89:a9:22:87:1c:64: 3a:f5:cf:25:50:0f:cf:a1:8b:09:f7:a0:3a:53:ce:99:45:ec: 57:0f:4e:ef:79:4c:a7:b1:62:12:93:31:ec:23:2a:b1:cb:7d: cc:f1:9e:a3:f7:29:40:5a:3f:4e:c1:14:81:af:05:db:a7:8e: 13:84:21:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcHaMyBHdanqREvuYKwGowR4VOu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDFaFw0yNDA5MDgxMDAwMDFaMDMxMTAvBgNV BAMTKDczOUE5QkI3NDUzOTYyRUREMzM2N0IwNDFCRDc3QkU3NTNBNTk0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnCc9oPaOMgzpogf250ppSraLI 5bQ1lU3FmPL110yxyNf1o9iYz6L5fUGPvfEbRQsyoASd8QXrFWOAJwny/Jisgc8F 6YHOUjgBGiRaNYmujOy+8SCqaed0znpfuc7T1Bsjv46+iQqxtwSevMOALrDL49e9 lLcRNKF8OzJ19Nj8bRCv0hyKVTGEY1J1scHj1idMc0Y5MRQlLcTm/eJp/uhRD27R eTkqZwiEKRavvTXg7ExxWo9BxIA0DBHq2TmVo20cMt0mrwx0yMtcOZtXnrpjBeSB SShunyYFRNf3M0ww1+tZIzqAXib8eeq2oj21ZvxdJ76jER2OUkFlj0wamOfdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc5qbt0U5Yu3TNnsEG9d751OllPIwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy4MA0GCSqG SIb3DQEBCwUAA4IBAQCNXTbSS5E1GGpBOSBK29VOWtzRwsGYYQgINdqXfdXbEpX1 TIP9OpYzk/EtTQ8njRUjpr9C4jDxgP4LeY6WO19vKF1p9ItCakAgAxwEA1Kr4Q1B b3GjpH6nhkLre1sthZRxHG0tD8o6NHclgIT0+zYmk+/ipmiaLqLcxlI9W1HX6qqE TjmvQxwLwtNkg/8BjKBgwqn3Jc1YIBFS40qGK4UwNwbb9RlpsinuAC6c/wzMDAIK xRXSbWqkl7k/l40uHOyJqSKHHGQ69c8lUA/PoYsJ96A6U86ZRexXD07veUynsWIS kzHsIyqxy33M8Z6j9ylAWj9OwRSBrwXbp44ThCG5 -----END CERTIFICATE-----Generated at Thu Apr 25 19:09:19 2024 by rpki-client on console-ams.rpki-client.org