$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa File: 3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa (raw, json) Hash identifier: U4Kz+JMqmBXXJWJ51q9GFdWYnPA1z7UpadwESZtmyoA= Subject key identifier: DB:86:B6:0B:E4:C5:5E:96:18:E6:82:D6:64:92:03:E4:D6:59:01:C9 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 595DE452504AF42C5FA38DAFDC41621070EFCD54 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa Signing time: Fri 13 Sep 2024 01:06:48 +0000 ROA not before: Fri 13 Sep 2024 01:01:48 +0000 ROA not after: Fri 12 Sep 2025 01:06:48 +0000 asID: 134654 IP address blocks: 175.184.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:5d:e4:52:50:4a:f4:2c:5f:a3:8d:af:dc:41:62:10:70:ef:cd:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Sep 13 01:01:48 2024 GMT Not After : Sep 12 01:06:48 2025 GMT Subject: CN=DB86B60BE4C55E9618E682D6649203E4D65901C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5a:14:59:dd:ca:dd:0c:d4:ba:24:da:a7:13: 7b:9f:d8:30:db:d1:23:75:1b:c6:2a:17:5e:90:e3: b1:c8:c8:04:73:f0:f9:e0:8d:c5:f5:da:09:3b:7d: 33:23:e8:69:af:47:59:b2:67:83:4b:72:eb:64:2a: 46:c7:18:f0:52:a5:fa:58:57:77:82:0a:4f:41:97: 4b:9c:08:1b:09:0d:9a:a6:a3:3f:ba:18:bb:28:80: c1:48:75:7f:ac:7f:b3:75:e1:53:36:11:7f:dc:2f: e7:9e:ae:5a:4a:5a:20:0c:85:28:7d:a4:82:2d:2a: 17:bb:d4:77:be:73:a9:99:51:17:16:bb:72:c2:9e: 70:4a:56:ea:00:1f:9c:a5:30:fb:b0:de:3a:e6:16: 6e:08:1d:a4:1b:40:b8:98:ed:1a:de:4f:a0:8c:eb: 27:24:7d:7c:83:50:3b:5e:56:95:3e:f2:3d:4b:73: 6d:ce:f7:2d:50:88:12:79:96:15:d0:15:b4:7e:01: f5:f2:c7:83:8f:64:f6:88:a2:bc:96:a6:f7:c1:f3: a2:0f:4a:1b:37:29:fd:ed:9e:e7:e3:c1:8c:d1:5d: bb:50:36:d7:31:07:be:19:25:23:68:18:b9:49:21: 9a:e6:d4:99:dc:ee:b9:bc:44:73:07:11:d5:d6:25: d7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:86:B6:0B:E4:C5:5E:96:18:E6:82:D6:64:92:03:E4:D6:59:01:C9 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.238.0/23 Signature Algorithm: sha256WithRSAEncryption c8:e8:ee:74:75:49:fa:5b:8d:5c:50:e9:0f:e9:f8:62:5d:49: 06:a6:d0:bc:d3:18:54:ae:87:3b:e0:4a:48:68:a3:d9:f3:68: 65:9c:18:5a:08:38:07:1a:a7:44:32:72:dc:ec:bb:c6:23:55: 18:6e:c6:2c:e1:70:0c:89:a6:36:55:cb:bc:f4:55:21:c6:bc: f7:a2:c9:be:ec:c6:9d:b1:5a:88:b0:3e:63:b3:d3:d4:7a:10: ce:e2:b8:b8:2c:a1:b6:ed:e4:e4:ec:33:8f:e7:1a:ed:5a:fa: 4f:e8:83:59:3c:64:45:16:40:85:de:a5:1e:4c:c0:df:5f:f9: fb:19:d7:0e:16:78:32:df:41:d7:fc:1a:32:81:2b:95:7b:4c: e1:0d:b7:85:71:c7:3b:b1:42:b7:aa:9e:d8:6c:8a:8e:65:4f: f4:be:0b:f6:2f:0b:13:60:ac:4d:8a:2d:16:a4:1f:cf:4c:68: d6:ad:76:cd:e4:96:41:f1:ce:24:fd:2e:b7:ed:96:53:d8:28: 7b:a3:79:f4:53:3c:69:8e:9e:e9:44:a7:84:a5:02:a7:1d:8e: a2:ed:d6:26:5a:49:04:9a:22:da:e4:b7:fc:b3:e4:2f:1c:0b: 58:28:cc:b9:0d:13:b1:14:14:60:1c:27:ee:fa:17:54:a7:de: e2:5f:f4:72 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWV3kUlBK9Cxfo42v3EFiEHDvzVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDA5MTMwMTAxNDhaFw0yNTA5MTIwMTA2NDhaMDMxMTAvBgNV BAMTKERCODZCNjBCRTRDNTVFOTYxOEU2ODJENjY0OTIwM0U0RDY1OTAxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTWhRZ3crdDNS6JNqnE3uf2DDb 0SN1G8YqF16Q47HIyARz8PngjcX12gk7fTMj6GmvR1myZ4NLcutkKkbHGPBSpfpY V3eCCk9Bl0ucCBsJDZqmoz+6GLsogMFIdX+sf7N14VM2EX/cL+eerlpKWiAMhSh9 pIItKhe71He+c6mZURcWu3LCnnBKVuoAH5ylMPuw3jrmFm4IHaQbQLiY7RreT6CM 6yckfXyDUDteVpU+8j1Lc23O9y1QiBJ5lhXQFbR+AfXyx4OPZPaIoryWpvfB86IP Shs3Kf3tnufjwYzRXbtQNtcxB74ZJSNoGLlJIZrm1Jnc7rm8RHMHEdXWJdcfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU24a2C+TFXpYY5oLWZJID5NZZAckwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzczNTJlMzEzODM0MmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGvuO4wDQYJ KoZIhvcNAQELBQADggEBAMjo7nR1SfpbjVxQ6Q/p+GJdSQam0LzTGFSuhzvgSkho o9nzaGWcGFoIOAcap0Qyctzsu8YjVRhuxizhcAyJpjZVy7z0VSHGvPeiyb7sxp2x WoiwPmOz09R6EM7iuLgsobbt5OTsM4/nGu1a+k/og1k8ZEUWQIXepR5MwN9f+fsZ 1w4WeDLfQdf8GjKBK5V7TOENt4VxxzuxQreqnthsio5lT/S+C/YvCxNgrE2KLRak H89MaNatds3klkHxziT9LrftllPYKHujefRTPGmOnulEp4SlAqcdjqLt1iZaSQSa Itrkt/yz5C8cC1gozLkNE7EUFGAcJ+76F1Sn3uJf9HI= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org