$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131302e302f32342d3234203d3e203138303539.roa File: 3135302e3130372e3131302e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 9Vh8Y31uMJGHZMP4NBjx3dGXolfh3YnhCzYmQTDZ40w= Subject key identifier: AC:78:33:07:83:D8:DC:8D:CC:1C:0A:D6:BF:7E:68:D3:B9:C8:3D:9E Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 6D8BFF4884348B4E91218686C60B71538A5A2650 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131302e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 04:04:46 +0000 ROA not before: Fri 24 Nov 2023 03:59:46 +0000 ROA not after: Fri 22 Nov 2024 04:04:46 +0000 asID: 18059 IP address blocks: 150.107.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:8b:ff:48:84:34:8b:4e:91:21:86:86:c6:0b:71:53:8a:5a:26:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:59:46 2023 GMT Not After : Nov 22 04:04:46 2024 GMT Subject: CN=AC78330783D8DC8DCC1C0AD6BF7E68D3B9C83D9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ff:c4:37:01:a9:08:24:a3:a1:9d:62:de:a1: 29:3b:2f:01:fe:c3:f4:2b:20:de:15:c0:97:01:23: 86:75:a0:5c:04:38:cd:00:3f:bd:22:30:6f:f4:fb: f9:4f:a5:33:f9:44:67:e3:05:a9:6b:be:06:ab:b8: f7:b0:a4:7e:a7:44:c0:8f:bc:7a:a9:26:f4:4b:45: 2b:e7:9b:e2:84:c7:31:b8:32:97:42:c5:3b:93:00: 29:34:24:12:d9:77:9d:b2:f3:5c:6e:64:69:c1:7b: 9c:73:d0:84:a2:1e:01:08:25:f0:73:1c:e9:89:85: 30:24:9d:f9:56:84:bd:59:69:d0:a6:76:c8:96:d1: 52:47:45:5e:ad:34:91:83:c0:7e:41:c6:81:2e:db: 00:40:a0:c7:5f:b2:d9:ed:68:1d:20:7a:93:5e:0e: 09:13:ad:20:b1:27:63:e7:fe:d3:e1:9b:3b:36:7f: e4:7b:77:75:e6:7c:58:05:92:4c:a7:41:f3:b9:14: 32:f1:61:2e:29:34:21:75:68:f4:24:60:ed:8d:16: 6b:82:3d:e9:6b:b6:0b:3f:bd:c9:ea:6c:4a:6a:54: 28:02:80:91:7c:8d:78:e0:e9:d9:83:5d:c0:ac:b5: ec:3f:a8:52:dc:cf:b9:e8:e3:d7:9b:dc:49:d1:f2: 5c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:78:33:07:83:D8:DC:8D:CC:1C:0A:D6:BF:7E:68:D3:B9:C8:3D:9E X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131302e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.110.0/24 Signature Algorithm: sha256WithRSAEncryption 92:f8:e6:5a:9e:dc:8c:1d:10:4f:6b:a4:e2:65:33:0c:b2:68: 25:93:73:0d:06:d3:2f:09:68:6f:4d:7c:8f:37:66:5b:0c:0b: 4b:08:d3:0d:8f:8d:ed:19:b8:9d:03:22:1c:9f:8d:2b:66:c1: 90:6d:3c:b8:80:68:df:9e:75:a0:df:c0:51:43:3e:2c:99:75: 15:49:03:9a:18:ac:34:c0:02:7b:d2:af:5d:a6:54:4c:09:17: 15:b2:e3:0d:1f:35:89:dd:5e:a3:37:1c:69:44:b1:f4:83:4f: 3f:c1:d1:6f:9d:6e:c5:e3:80:f3:9f:24:27:cf:c3:2d:64:dd: fe:cb:f1:7a:c3:2e:04:c5:fd:a8:10:ad:b4:6f:0e:23:e9:10: f5:7c:c7:7e:2e:73:5c:b5:41:1a:30:91:92:1a:71:ce:1e:6b: 84:99:19:6e:e0:fa:78:69:d3:42:91:f3:57:15:75:e3:e5:50: 23:e9:7e:c9:32:62:f5:fd:1d:d4:6c:b7:cd:6b:d4:72:74:66: b1:2a:5e:bf:8b:83:8b:9b:55:2b:31:38:74:c1:e2:b0:cb:61: 5d:b6:4c:3d:5d:90:26:98:29:60:b1:df:17:01:00:a8:6c:4e: ce:8d:fe:71:0e:a9:78:80:09:c1:9c:8d:df:b2:9e:98:db:a6: 23:ee:ae:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbYv/SIQ0i06RIYaGxgtxU4paJlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzU5NDZaFw0yNDExMjIwNDA0NDZaMDMxMTAvBgNV BAMTKEFDNzgzMzA3ODNEOERDOERDQzFDMEFENkJGN0U2OEQzQjlDODNEOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0/8Q3AakIJKOhnWLeoSk7LwH+ w/QrIN4VwJcBI4Z1oFwEOM0AP70iMG/0+/lPpTP5RGfjBalrvgaruPewpH6nRMCP vHqpJvRLRSvnm+KExzG4MpdCxTuTACk0JBLZd52y81xuZGnBe5xz0ISiHgEIJfBz HOmJhTAknflWhL1ZadCmdsiW0VJHRV6tNJGDwH5BxoEu2wBAoMdfstntaB0gepNe DgkTrSCxJ2Pn/tPhmzs2f+R7d3XmfFgFkkynQfO5FDLxYS4pNCF1aPQkYO2NFmuC Pelrtgs/vcnqbEpqVCgCgJF8jXjg6dmDXcCstew/qFLcz7no49eb3EnR8lxZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrHgzB4PY3I3MHArWv35o07nIPZ4wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmtuMA0GCSqG SIb3DQEBCwUAA4IBAQCS+OZantyMHRBPa6TiZTMMsmglk3MNBtMvCWhvTXyPN2Zb DAtLCNMNj43tGbidAyIcn40rZsGQbTy4gGjfnnWg38BRQz4smXUVSQOaGKw0wAJ7 0q9dplRMCRcVsuMNHzWJ3V6jNxxpRLH0g08/wdFvnW7F44DznyQnz8MtZN3+y/F6 wy4Exf2oEK20bw4j6RD1fMd+LnNctUEaMJGSGnHOHmuEmRlu4Pp4adNCkfNXFXXj 5VAj6X7JMmL1/R3UbLfNa9RydGaxKl6/i4OLm1UrMTh0weKwy2Fdtkw9XZAmmClg sd8XAQCobE7Ojf5xDql4gAnBnI3fsp6Y26Yj7q5u -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org