$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32322d3234203d3e203138303539.roa File: 3135302e3130372e3130382e302f32322d3234203d3e203138303539.roa (raw, json) Hash identifier: T3CEjkRGtXJauL+zJNCIrqOkYv9tx+hAekwbIfdBdnI= Subject key identifier: D6:06:DB:93:FC:CA:A8:CD:49:52:B4:02:6E:CD:0A:4E:00:D8:63:98 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 42022007F0CAB2029BE4613521C39B86D8E0AC10 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32322d3234203d3e203138303539.roa Signing time: Fri 19 Apr 2024 10:01:28 +0000 ROA not before: Fri 19 Apr 2024 09:56:28 +0000 ROA not after: Fri 18 Apr 2025 10:01:28 +0000 asID: 18059 IP address blocks: 150.107.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:02:20:07:f0:ca:b2:02:9b:e4:61:35:21:c3:9b:86:d8:e0:ac:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Apr 19 09:56:28 2024 GMT Not After : Apr 18 10:01:28 2025 GMT Subject: CN=D606DB93FCCAA8CD4952B4026ECD0A4E00D86398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:04:f8:8f:d1:3f:5e:63:ed:a9:58:25:e7:62: 1a:6c:d6:50:f5:f9:11:40:e3:93:8a:b9:e1:e6:ec: 61:03:7d:a0:ae:cf:23:f7:8c:8b:02:05:c2:73:8c: 6e:3a:58:75:a3:cb:a0:1f:01:b2:71:7c:f4:e4:30: e0:ed:6e:45:b2:85:be:83:83:9e:1f:ce:ff:fe:46: 18:8d:77:d3:4d:77:f8:33:e1:19:14:75:b4:70:38: 6b:b1:a0:62:d9:e2:09:a7:f4:db:2e:36:b4:09:01: e3:a0:56:bb:de:a5:8f:14:00:65:3c:ba:f2:33:ab: f4:00:b5:b5:35:72:0b:8c:4a:dc:3c:10:9b:cf:2f: bd:f7:0e:03:0d:47:df:29:3f:33:32:77:f9:65:3b: ea:31:67:f3:08:13:55:51:27:d8:62:fc:91:65:fb: 66:9d:14:e5:68:3d:c6:8f:96:35:61:61:63:39:a9: 07:d9:51:49:53:b4:24:90:02:cf:c2:68:10:32:5f: 24:54:63:a5:00:39:99:b5:d3:7b:8e:64:a8:59:64: 5e:ba:00:59:fa:47:49:e3:ca:9d:c8:ec:ed:82:bf: 17:80:24:53:2e:77:63:03:6c:e3:bc:76:4f:ff:fa: 45:a4:e3:b7:ba:41:0e:27:9c:65:73:26:66:f3:fb: f6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:06:DB:93:FC:CA:A8:CD:49:52:B4:02:6E:CD:0A:4E:00:D8:63:98 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32322d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.108.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:0f:82:a4:82:4f:53:2e:c3:5d:fe:b1:3a:11:11:44:80:ea: 72:05:6f:28:a7:fe:1c:33:ef:8f:c0:06:4c:0b:47:c2:c7:ca: c7:ef:51:92:54:4e:26:55:28:fe:de:96:55:a8:6e:13:f2:2e: bf:c7:41:52:7a:31:00:bf:b0:0e:89:ac:59:ae:9a:30:b9:a3: 4a:a2:a8:e1:0a:61:3b:5f:66:ad:62:92:19:37:da:55:5a:53: 45:20:73:2d:9f:dc:9e:1d:91:94:3d:7d:ea:fb:e2:aa:5b:d7: 9c:36:60:68:59:f1:05:13:65:a6:2e:35:99:d2:32:cb:f0:89: f7:c3:94:63:0c:05:3a:e1:54:af:c5:5f:74:4c:12:88:59:78: d8:a0:fc:68:28:ce:e9:99:00:c0:f5:bc:a4:40:55:ca:83:f8: 4b:ca:fe:be:8a:2e:10:ed:01:02:ae:a8:f5:21:74:0b:a2:62: 15:3f:6d:12:34:48:47:a6:be:ce:13:3b:0b:1a:4c:e1:49:fe: 19:ea:7c:4d:85:d0:6c:7e:51:36:10:ce:85:37:56:b9:e4:55: ef:38:58:3b:5c:60:03:1f:98:39:c3:0a:18:fe:2e:cf:96:2a: 28:99:f0:22:03:39:c6:50:0a:74:62:46:20:b1:4d:1b:8a:9e: 86:18:af:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQgIgB/DKsgKb5GE1IcObhtjgrBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDA0MTkwOTU2MjhaFw0yNTA0MTgxMDAxMjhaMDMxMTAvBgNV BAMTKEQ2MDZEQjkzRkNDQUE4Q0Q0OTUyQjQwMjZFQ0QwQTRFMDBEODYzOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNBPiP0T9eY+2pWCXnYhps1lD1 +RFA45OKueHm7GEDfaCuzyP3jIsCBcJzjG46WHWjy6AfAbJxfPTkMODtbkWyhb6D g54fzv/+RhiNd9NNd/gz4RkUdbRwOGuxoGLZ4gmn9NsuNrQJAeOgVrvepY8UAGU8 uvIzq/QAtbU1cguMStw8EJvPL733DgMNR98pPzMyd/llO+oxZ/MIE1VRJ9hi/JFl +2adFOVoPcaPljVhYWM5qQfZUUlTtCSQAs/CaBAyXyRUY6UAOZm103uOZKhZZF66 AFn6R0njyp3I7O2CvxeAJFMud2MDbOO8dk//+kWk47e6QQ4nnGVzJmbz+/ZdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1gbbk/zKqM1JUrQCbs0KTgDYY5gwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClmtsMA0GCSqG SIb3DQEBCwUAA4IBAQAdD4Kkgk9TLsNd/rE6ERFEgOpyBW8op/4cM++PwAZMC0fC x8rH71GSVE4mVSj+3pZVqG4T8i6/x0FSejEAv7AOiaxZrpowuaNKoqjhCmE7X2at YpIZN9pVWlNFIHMtn9yeHZGUPX3q++KqW9ecNmBoWfEFE2WmLjWZ0jLL8In3w5Rj DAU64VSvxV90TBKIWXjYoPxoKM7pmQDA9bykQFXKg/hLyv6+ii4Q7QECrqj1IXQL omIVP20SNEhHpr7OEzsLGkzhSf4Z6nxNhdBsflE2EM6FN1a55FXvOFg7XGADH5g5 wwoY/i7PlioomfAiAznGUAp0YkYgsU0bip6GGK/4 -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:59 2024 by rpki-client on console-ams.rpki-client.org