$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3135302e3130372e3234382e302f32322d3234203d3e203435373036.roa File: 3135302e3130372e3234382e302f32322d3234203d3e203435373036.roa (raw, json) Hash identifier: iRtigC6YFaxciWzAjvZPh/z2Lu0jPmxDyIM3vmxYp8o= Subject key identifier: AF:16:3C:67:6F:B8:72:82:34:59:99:99:D4:7A:B9:24:16:FD:27:10 Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 0272135FBBE7A01C5F1AB6AFB4A1A1C0C3E5ED3B Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3135302e3130372e3234382e302f32322d3234203d3e203435373036.roa Signing time: Mon 31 Jul 2023 00:04:28 +0000 ROA not before: Sun 30 Jul 2023 23:59:28 +0000 ROA not after: Mon 29 Jul 2024 00:04:28 +0000 asID: 45706 IP address blocks: 150.107.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 23:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:72:13:5f:bb:e7:a0:1c:5f:1a:b6:af:b4:a1:a1:c0:c3:e5:ed:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Jul 30 23:59:28 2023 GMT Not After : Jul 29 00:04:28 2024 GMT Subject: CN=AF163C676FB8728234599999D47AB92416FD2710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:23:19:56:44:12:a7:47:33:da:b3:06:4e:0b: b8:d2:1a:a1:61:76:47:2a:8f:3a:c0:cd:1c:38:8a: e4:19:13:83:58:f3:3a:a8:1b:8c:9e:61:2e:66:11: dc:65:00:dc:5a:78:11:2d:a3:a7:40:1c:d1:63:03: 5b:3d:fa:57:aa:bc:1f:f2:63:c0:98:1d:04:cb:12: 93:c1:37:02:32:0d:72:82:22:ac:15:e7:d7:e6:6e: 92:d7:b6:a8:27:94:b3:1a:08:a2:6d:e8:9c:8f:4a: b4:71:e1:45:9a:50:4f:f5:7b:c7:d8:85:f5:cf:9c: 67:bb:f3:70:3c:46:9c:f8:12:cd:d2:d8:6f:05:e5: c6:fe:56:15:82:cd:b3:dd:35:8c:b5:03:d2:a8:26: 86:e2:79:d0:8d:83:af:f9:c0:3a:6f:6b:b4:c6:30: 77:82:41:d4:22:46:0c:d6:a1:ec:ff:aa:80:5f:f3: 3d:79:e3:01:b7:85:00:95:17:d1:22:64:42:01:8d: 52:da:d0:7c:f4:cf:c5:d3:33:61:a7:ce:e0:58:5c: 62:2a:7e:e6:7e:4a:bf:92:aa:a7:16:ab:55:f6:c5: a8:b4:7a:5b:7b:ca:b6:26:18:37:34:30:f5:9b:c6: 2d:e3:17:a5:6d:76:50:48:15:ad:bf:6a:12:77:36: 41:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:16:3C:67:6F:B8:72:82:34:59:99:99:D4:7A:B9:24:16:FD:27:10 X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3135302e3130372e3234382e302f32322d3234203d3e203435373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.248.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:4a:36:79:c4:ee:d5:c7:04:1d:56:af:87:b4:94:df:29:81: 56:86:a8:ec:05:79:47:a1:c6:d3:49:1a:5f:ef:e1:0d:0e:0b: e5:2b:b9:b0:31:52:0b:24:62:98:52:e2:09:32:f5:7f:ad:87: 0b:ad:45:87:04:29:27:e0:94:5c:63:fa:71:e8:b5:64:39:44: 32:e6:34:95:bb:32:8a:3d:b4:d4:14:95:9e:9f:08:84:85:e1: 50:9b:1c:1b:98:01:02:48:37:6f:52:8a:fe:31:f9:c7:eb:70: 5f:6c:d9:e4:4c:42:30:5a:7d:c5:ca:6d:72:ee:cc:1c:89:9b: 25:81:bb:9c:76:3f:36:7b:6b:69:87:ce:81:7d:96:c8:74:7d: d7:d0:6c:2c:5d:a3:92:65:76:16:21:b7:8f:2c:27:ac:4b:7e: 3f:16:3a:8d:57:26:b0:ef:dc:55:03:5a:4c:c3:a7:ee:01:8b: 11:d0:d9:23:5d:68:4a:e2:d9:ff:5c:cd:e2:80:45:bc:35:f4: c2:e7:43:c8:96:77:5c:49:09:a6:8f:96:e6:f3:45:ea:03:48: 9c:dd:01:0a:50:f2:90:63:67:4d:a2:d0:8b:c9:69:7a:0a:c0: 12:c7:ff:2b:09:42:cc:e4:7f:58:0c:bf:89:e6:e1:6f:e5:35: 59:ca:cc:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAnITX7vnoBxfGravtKGhwMPl7TswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yMzA3MzAyMzU5MjhaFw0yNDA3MjkwMDA0MjhaMDMxMTAvBgNV BAMTKEFGMTYzQzY3NkZCODcyODIzNDU5OTk5OUQ0N0FCOTI0MTZGRDI3MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7IxlWRBKnRzPaswZOC7jSGqFh dkcqjzrAzRw4iuQZE4NY8zqoG4yeYS5mEdxlANxaeBEto6dAHNFjA1s9+leqvB/y Y8CYHQTLEpPBNwIyDXKCIqwV59fmbpLXtqgnlLMaCKJt6JyPSrRx4UWaUE/1e8fY hfXPnGe783A8Rpz4Es3S2G8F5cb+VhWCzbPdNYy1A9KoJobiedCNg6/5wDpva7TG MHeCQdQiRgzWoez/qoBf8z154wG3hQCVF9EiZEIBjVLa0Hz0z8XTM2GnzuBYXGIq fuZ+Sr+SqqcWq1X2xai0elt7yrYmGDc0MPWbxi3jF6VtdlBIFa2/ahJ3NkERAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrxY8Z2+4coI0WZmZ1Hq5JBb9JxAwHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMxMzUzMDJlMzEzMDM3MmUzMjM0MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClmv4MA0GCSqG SIb3DQEBCwUAA4IBAQA6SjZ5xO7VxwQdVq+HtJTfKYFWhqjsBXlHocbTSRpf7+EN DgvlK7mwMVILJGKYUuIJMvV/rYcLrUWHBCkn4JRcY/px6LVkOUQy5jSVuzKKPbTU FJWenwiEheFQmxwbmAECSDdvUor+MfnH63BfbNnkTEIwWn3Fym1y7swciZslgbuc dj82e2tph86BfZbIdH3X0GwsXaOSZXYWIbePLCesS34/FjqNVyaw79xVA1pMw6fu AYsR0NkjXWhK4tn/XM3igEW8NfTC50PIlndcSQmmj5bm80XqA0ic3QEKUPKQY2dN otCLyWl6CsASx/8rCULM5H9YDL+J5uFv5TVZysw4 -----END CERTIFICATE-----Generated at Tue Apr 23 22:55:04 2024 by rpki-client on console-ams.rpki-client.org