$ rpki-client -vvf repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa File: 3135372e36362e372e302f32342d3234203d3e20313338383239.roa (raw, json) Hash identifier: JWCnrbnN26iSUpXDTPvbA5jZVTR8ZTFiUpK3shd3eUA= Subject key identifier: A3:F5:B9:EA:0D:C5:EF:B5:6C:6E:29:1E:73:7A:85:DC:A6:9F:AB:A0 Certificate issuer: /CN=D90C7042B5DC18341DCC77CA5CF8F4CA210D886B Certificate serial: 5947AA6500080FFEDC3A49C82DAA1EFE35167078 Authority key identifier: D9:0C:70:42:B5:DC:18:34:1D:CC:77:CA:5C:F8:F4:CA:21:0D:88:6B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa Signing time: Sun 31 Mar 2024 04:46:37 +0000 ROA not before: Sun 31 Mar 2024 04:41:37 +0000 ROA not after: Sun 30 Mar 2025 04:46:37 +0000 asID: 138829 IP address blocks: 157.66.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.crl rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:47:aa:65:00:08:0f:fe:dc:3a:49:c8:2d:aa:1e:fe:35:16:70:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D90C7042B5DC18341DCC77CA5CF8F4CA210D886B Validity Not Before: Mar 31 04:41:37 2024 GMT Not After : Mar 30 04:46:37 2025 GMT Subject: CN=A3F5B9EA0DC5EFB56C6E291E737A85DCA69FABA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:46:8b:5f:f0:10:5c:96:31:a0:f3:53:7e:64: 3f:7f:56:26:eb:1b:96:11:76:90:cd:96:f2:1e:75: df:f0:08:de:a4:00:56:12:78:39:b3:23:50:64:f7: 12:79:f4:a4:f1:3c:ae:43:dc:29:b9:43:81:64:75: f3:eb:a9:94:bc:c1:f4:7b:1b:86:52:9a:fa:4d:96: 77:35:73:b7:88:6c:72:71:6b:e6:11:e0:7f:01:84: dc:c7:46:52:bf:fa:9f:53:3a:ca:aa:0e:ba:a2:03: 20:3c:cb:03:73:ab:3f:68:1b:91:17:44:e0:ae:4f: 65:f6:37:a5:60:c3:f7:70:3a:d5:dd:53:df:2f:48: d0:b0:ef:28:05:d0:42:0d:52:31:f9:08:c4:29:97: c6:d5:fb:05:f0:94:62:ad:5d:c5:d8:fd:95:30:bb: cd:89:0c:22:1f:74:15:27:21:f8:27:81:a6:4c:80: 72:e9:31:f6:20:50:3e:3b:de:ad:2d:62:49:28:59: 27:05:22:79:2d:e7:b8:8f:8c:ce:44:8d:60:a3:0f: 41:94:eb:99:cf:18:d3:6a:af:d7:d3:c1:12:69:d6: 90:0e:7a:83:3a:70:34:fc:31:35:0d:8c:36:8d:f2: e8:4a:02:ae:ac:e8:26:36:47:e3:44:5d:74:79:59: 30:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F5:B9:EA:0D:C5:EF:B5:6C:6E:29:1E:73:7A:85:DC:A6:9F:AB:A0 X509v3 Authority Key Identifier: keyid:D9:0C:70:42:B5:DC:18:34:1D:CC:77:CA:5C:F8:F4:CA:21:0D:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.7.0/24 Signature Algorithm: sha256WithRSAEncryption 66:6b:9b:c5:4c:67:8e:69:f1:f8:59:09:b4:89:ff:fc:92:9f: fd:41:e8:52:60:11:3a:49:e2:b7:62:65:50:6d:13:91:03:63: eb:a4:37:96:a8:f7:ee:07:08:44:4f:93:b8:b9:03:70:95:64: 27:10:98:bd:ab:77:17:87:62:b0:2b:1c:f9:03:65:d9:c6:76: f2:b1:dd:46:47:b5:0d:7c:7b:e8:ed:e6:a9:54:fc:88:4c:bc: 2e:03:cb:69:77:75:b9:84:a0:34:d7:6a:2c:05:4a:72:27:94: 32:cd:aa:d0:d9:0f:17:e4:03:2a:89:9d:ed:21:b2:a5:da:bd: a6:79:1b:a2:b0:30:42:93:e1:54:22:84:8a:80:2c:89:a7:fc: 32:b0:0e:44:c0:d2:d5:4f:93:bf:69:bb:8e:5b:1d:3a:1d:5f: 08:03:9a:b6:13:65:86:a3:aa:92:66:8b:81:74:f9:5c:16:60: ec:74:da:b9:d1:75:c6:27:df:5a:19:56:ad:f3:d9:d9:f6:19: 48:7d:65:ca:c2:d5:40:15:fc:8f:e2:4a:03:ba:17:47:ef:c1: 24:bc:79:5a:10:0f:62:79:72:7d:e4:e2:95:dc:54:51:4b:d6: 34:ea:77:ee:65:bc:72:d4:e7:73:6f:56:81:53:d2:8a:96:b3: e7:67:ed:15 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWUeqZQAID/7cOknILaoe/jUWcHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkwQzcwNDJCNURDMTgzNDFEQ0M3N0NBNUNGOEY0Q0Ey MTBEODg2QjAeFw0yNDAzMzEwNDQxMzdaFw0yNTAzMzAwNDQ2MzdaMDMxMTAvBgNV BAMTKEEzRjVCOUVBMERDNUVGQjU2QzZFMjkxRTczN0E4NURDQTY5RkFCQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Rotf8BBcljGg81N+ZD9/Vibr G5YRdpDNlvIedd/wCN6kAFYSeDmzI1Bk9xJ59KTxPK5D3Cm5Q4FkdfPrqZS8wfR7 G4ZSmvpNlnc1c7eIbHJxa+YR4H8BhNzHRlK/+p9TOsqqDrqiAyA8ywNzqz9oG5EX ROCuT2X2N6Vgw/dwOtXdU98vSNCw7ygF0EINUjH5CMQpl8bV+wXwlGKtXcXY/ZUw u82JDCIfdBUnIfgngaZMgHLpMfYgUD473q0tYkkoWScFInkt57iPjM5EjWCjD0GU 65nPGNNqr9fTwRJp1pAOeoM6cDT8MTUNjDaN8uhKAq6s6CY2R+NEXXR5WTD7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUo/W56g3F77Vsbikec3qF3Kafq6AwHwYDVR0j BBgwFoAU2QxwQrXcGDQdzHfKXPj0yiENiGswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE2ZmVhYS02YjRmLTQ3Y2YtOWUzYy0wMGFlYWM2N2EzMmEvMC9EOTBDNzA0MkI1 REMxODM0MURDQzc3Q0E1Q0Y4RjRDQTIxMEQ4ODZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDkwQzcwNDJCNURDMTgzNDFEQ0M3N0NBNUNGOEY0Q0EyMTBE ODg2Qi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTZmZWFhLTZiNGYtNDdjZi05 ZTNjLTAwYWVhYzY3YTMyYS8wLzMxMzUzNzJlMzYzNjJlMzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzgzODMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgcwDQYJKoZIhvcN AQELBQADggEBAGZrm8VMZ45p8fhZCbSJ//ySn/1B6FJgETpJ4rdiZVBtE5EDY+uk N5ao9+4HCERPk7i5A3CVZCcQmL2rdxeHYrArHPkDZdnGdvKx3UZHtQ18e+jt5qlU /IhMvC4Dy2l3dbmEoDTXaiwFSnInlDLNqtDZDxfkAyqJne0hsqXavaZ5G6KwMEKT 4VQihIqALImn/DKwDkTA0tVPk79pu45bHTodXwgDmrYTZYajqpJmi4F0+VwWYOx0 2rnRdcYn31oZVq3z2dn2GUh9ZcrC1UAV/I/iSgO6F0fvwSS8eVoQD2J5cn3k4pXc VFFL1jTqd+5lvHLU53NvVoFT0oqWs+dn7RU= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org