$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa File: 3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa (raw, json) Hash identifier: 2v7tEh2xYZDUpXiWXprGUrSc2nVxEa//LKiBWv+p6gI= Subject key identifier: 4B:D8:52:50:4A:CF:2E:60:BF:A3:F8:C1:BB:5A:27:25:16:2D:29:AE Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 492680E81F1865BBF2E997DB82D9134B11C34847 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa Signing time: Mon 29 Jan 2024 04:00:02 +0000 ROA not before: Mon 29 Jan 2024 03:55:02 +0000 ROA not after: Mon 27 Jan 2025 04:00:02 +0000 asID: 58488 IP address blocks: 150.107.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 19:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:26:80:e8:1f:18:65:bb:f2:e9:97:db:82:d9:13:4b:11:c3:48:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jan 29 03:55:02 2024 GMT Not After : Jan 27 04:00:02 2025 GMT Subject: CN=4BD852504ACF2E60BFA3F8C1BB5A2725162D29AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0e:cd:63:d0:1b:5d:77:39:ad:4a:85:34:59: c0:02:2e:31:23:1a:5f:2e:4a:8d:b5:8a:3c:fe:a3: 56:0a:e1:35:58:ff:2e:61:35:d0:ca:c6:f3:c7:da: 7d:61:65:3f:04:14:f6:ad:16:96:22:0b:06:3f:1d: 37:32:3f:47:85:05:4f:a5:c5:66:2c:7a:58:fc:43: b4:f1:ac:00:a5:87:b3:c4:aa:a3:e1:1e:1b:c7:20: b1:57:67:83:55:55:48:cb:a3:e4:f3:11:f7:1c:2a: 58:f5:d2:d0:11:9a:d2:63:a2:0d:16:db:56:ef:94: cd:22:7a:b4:5d:1a:65:0f:74:bb:d4:1f:22:41:b9: ff:47:a4:43:f2:81:58:bc:8f:c2:73:10:27:fb:cb: b8:37:0a:71:aa:74:6d:13:d7:db:23:f3:d5:12:01: 73:3d:a3:2e:b3:9c:4b:b7:de:ad:4f:17:cc:d9:91: 76:89:11:44:ed:ca:69:ee:8c:dd:77:f3:9f:42:52: e7:4e:68:2e:2e:41:a0:4d:d5:57:0a:73:59:00:22: 4a:52:89:59:70:dd:b8:cb:d2:cc:15:ca:58:4e:d8: aa:40:00:db:28:d3:0c:8a:ff:e0:43:05:6b:c9:b8: f0:ef:17:ba:7c:c1:e4:65:c8:17:b5:e7:1b:dd:68: 10:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D8:52:50:4A:CF:2E:60:BF:A3:F8:C1:BB:5A:27:25:16:2D:29:AE X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.143.0/24 Signature Algorithm: sha256WithRSAEncryption 52:66:73:b4:a4:cb:b8:e8:06:ee:a7:22:48:78:c6:e8:ee:5e: f0:6f:a8:f8:8d:65:9e:2b:ed:eb:b6:7e:19:40:18:e8:f3:f5: c7:5a:23:0a:1d:4b:ff:07:63:20:82:b6:f9:93:05:5e:c7:74: 7f:8e:02:1a:50:6a:9c:3c:7e:84:25:9c:df:50:f2:d1:ed:2a: ff:f1:5b:9d:43:46:e7:de:6a:22:de:71:c3:4b:6a:34:1f:a0: d9:dd:36:63:21:9f:cc:0a:31:65:07:44:9e:32:79:52:3a:b9: b9:3b:d7:6f:3c:cb:d3:35:d5:f8:c0:9e:dd:8c:50:42:99:41: 71:7d:40:ce:ba:07:02:64:d4:65:9a:21:6a:a5:81:cc:a0:9e: e2:fe:c1:ec:ae:07:d8:c6:3b:3f:23:ff:bc:85:dc:5b:dc:f6: d8:96:ba:25:f1:f9:33:e7:5d:4b:30:91:bd:b0:87:62:f6:22: f7:69:f9:d6:fb:4a:3d:c6:72:48:e4:80:4b:98:4b:64:76:33: 83:fe:f1:0c:8b:48:04:8f:84:36:a7:a4:39:20:62:42:c5:4f: 44:56:77:37:0a:e4:5f:ea:27:1f:4a:c7:61:ff:2e:ce:bc:fc: e5:81:59:59:16:1f:b4:03:b9:01:76:c1:d4:32:de:80:95:b1: a6:1f:65:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSSaA6B8YZbvy6ZfbgtkTSxHDSEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDAxMjkwMzU1MDJaFw0yNTAxMjcwNDAwMDJaMDMxMTAvBgNV BAMTKDRCRDg1MjUwNEFDRjJFNjBCRkEzRjhDMUJCNUEyNzI1MTYyRDI5QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFDs1j0BtddzmtSoU0WcACLjEj Gl8uSo21ijz+o1YK4TVY/y5hNdDKxvPH2n1hZT8EFPatFpYiCwY/HTcyP0eFBU+l xWYselj8Q7TxrAClh7PEqqPhHhvHILFXZ4NVVUjLo+TzEfccKlj10tARmtJjog0W 21bvlM0ierRdGmUPdLvUHyJBuf9HpEPygVi8j8JzECf7y7g3CnGqdG0T19sj89US AXM9oy6znEu33q1PF8zZkXaJEUTtymnujN13859CUudOaC4uQaBN1VcKc1kAIkpS iVlw3bjL0swVylhO2KpAANso0wyK/+BDBWvJuPDvF7p8weRlyBe15xvdaBAJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUS9hSUErPLmC/o/jBu1onJRYtKa4wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuPMA0GCSqG SIb3DQEBCwUAA4IBAQBSZnO0pMu46AbupyJIeMbo7l7wb6j4jWWeK+3rtn4ZQBjo 8/XHWiMKHUv/B2Mggrb5kwVex3R/jgIaUGqcPH6EJZzfUPLR7Sr/8VudQ0bn3moi 3nHDS2o0H6DZ3TZjIZ/MCjFlB0SeMnlSOrm5O9dvPMvTNdX4wJ7djFBCmUFxfUDO ugcCZNRlmiFqpYHMoJ7i/sHsrgfYxjs/I/+8hdxb3PbYlrol8fkz511LMJG9sIdi 9iL3afnW+0o9xnJI5IBLmEtkdjOD/vEMi0gEj4Q2p6Q5IGJCxU9EVnc3CuRf6icf Ssdh/y7OvPzlgVlZFh+0A7kBdsHUMt6AlbGmH2XU -----END CERTIFICATE-----Generated at Sun May 12 05:44:04 2024 by rpki-client on console-ams.rpki-client.org