$ rpki-client -vvf repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/3135372e36362e3137322e302f32342d3234203d3e20313533313339.roa File: 3135372e36362e3137322e302f32342d3234203d3e20313533313339.roa (raw, json) Hash identifier: xz2UzOeWgdfzttiDDjIPVkrUsHmTKAhuB/CYKE4i6hg= Subject key identifier: DE:DC:0C:5C:04:3A:11:B2:AF:23:D7:4C:89:87:76:F0:93:4E:4A:1B Certificate issuer: /CN=F5BC050A20C516FEBC061A1B70E488BB426444BC Certificate serial: 3D8F92CD74A031B4F4156F6535D66B648CCCB735 Authority key identifier: F5:BC:05:0A:20:C5:16:FE:BC:06:1A:1B:70:E4:88:BB:42:64:44:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5BC050A20C516FEBC061A1B70E488BB426444BC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/3135372e36362e3137322e302f32342d3234203d3e20313533313339.roa Signing time: Fri 15 Nov 2024 07:40:55 +0000 ROA not before: Fri 15 Nov 2024 07:35:55 +0000 ROA not after: Fri 14 Nov 2025 07:40:55 +0000 asID: 153139 IP address blocks: 157.66.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/F5BC050A20C516FEBC061A1B70E488BB426444BC.crl rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/F5BC050A20C516FEBC061A1B70E488BB426444BC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5BC050A20C516FEBC061A1B70E488BB426444BC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8f:92:cd:74:a0:31:b4:f4:15:6f:65:35:d6:6b:64:8c:cc:b7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5BC050A20C516FEBC061A1B70E488BB426444BC Validity Not Before: Nov 15 07:35:55 2024 GMT Not After : Nov 14 07:40:55 2025 GMT Subject: CN=DEDC0C5C043A11B2AF23D74C898776F0934E4A1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:8d:11:7c:42:ac:0a:eb:d2:41:98:6b:f5: 8e:f1:d9:bf:bb:3c:f8:87:6e:62:98:a2:f7:33:92: 67:c2:cc:38:e7:36:8b:f0:e0:c2:7d:3e:cf:4b:68: 25:05:1d:8d:7d:9b:3f:15:0b:28:fa:ae:3f:70:b1: 53:c2:a0:1b:3c:e2:36:49:35:a3:f6:51:25:e5:5d: 84:f5:67:f3:33:fe:b9:7b:f6:cf:82:c6:ae:ce:77: 7e:ca:d0:fd:23:7e:55:d2:aa:36:fc:5c:e3:03:52: 33:da:fd:76:bf:a0:34:bc:d6:6b:db:78:41:72:12: 2e:93:6b:54:d1:e0:41:33:21:eb:fa:15:18:c6:9f: e3:e6:79:11:03:74:ba:42:d9:c3:24:58:bf:10:68: 70:00:5b:39:d5:81:af:bb:72:c6:14:8b:c1:ac:a6: 99:a9:1b:0e:85:cb:da:13:bb:df:c0:e6:25:86:98: c5:c4:79:e8:31:13:38:e8:f9:50:73:3a:32:c1:c1: 0d:c5:49:a3:62:cb:27:d1:f6:e9:5c:f5:4a:38:a8: 44:9d:4c:de:a7:07:06:c9:96:4e:62:01:07:06:f9: bc:bc:30:72:2b:64:85:32:bb:d5:4b:88:3e:29:a3: ba:ec:ed:96:3e:2e:a6:76:71:91:0c:a8:56:f1:e3: 4b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:DC:0C:5C:04:3A:11:B2:AF:23:D7:4C:89:87:76:F0:93:4E:4A:1B X509v3 Authority Key Identifier: keyid:F5:BC:05:0A:20:C5:16:FE:BC:06:1A:1B:70:E4:88:BB:42:64:44:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/F5BC050A20C516FEBC061A1B70E488BB426444BC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5BC050A20C516FEBC061A1B70E488BB426444BC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/3135372e36362e3137322e302f32342d3234203d3e20313533313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.172.0/24 Signature Algorithm: sha256WithRSAEncryption 58:f1:87:28:f4:25:9e:11:a2:13:54:9c:48:c8:e2:a6:fa:c1: 9b:bb:22:44:88:b4:83:0b:60:50:aa:b2:57:f2:d9:f3:4d:bf: 5f:61:21:29:37:5a:d2:cf:af:15:71:64:61:eb:1b:64:21:f9: 65:5b:3c:88:ad:8b:66:af:84:0f:47:a5:ba:24:1a:f2:ca:84: 86:40:cf:31:2d:3f:f0:17:82:8f:b9:0b:5b:89:53:cf:7d:ff: 60:06:4b:d6:43:da:9e:2c:a1:c1:61:b0:32:5e:2d:64:b5:ec: ee:14:5c:fc:98:2d:ec:ea:d9:b4:fe:9e:15:0b:2a:b2:36:34: 97:ab:e5:95:2e:71:a8:96:e2:c2:d6:08:64:59:27:0a:9c:38: eb:0e:5d:d7:50:19:a8:a0:d3:c3:01:93:95:9e:fb:74:f2:49: 89:9c:8a:83:71:10:b4:10:4d:fc:8f:91:8e:2a:8c:46:53:34: 4d:25:ef:48:3b:c6:ff:74:c5:11:ae:21:ad:3e:f3:10:62:48: 67:53:6a:14:30:60:04:fc:e2:e6:73:37:0b:15:89:eb:36:50: e0:85:48:4c:f5:57:49:fb:31:ab:a3:e7:24:12:93:fd:ba:6c: b9:07:79:b5:9c:6b:bd:ee:7a:75:25:1a:21:41:c0:84:4c:ff: 32:1d:5e:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPY+SzXSgMbT0FW9lNdZrZIzMtzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVCQzA1MEEyMEM1MTZGRUJDMDYxQTFCNzBFNDg4QkI0 MjY0NDRCQzAeFw0yNDExMTUwNzM1NTVaFw0yNTExMTQwNzQwNTVaMDMxMTAvBgNV BAMTKERFREMwQzVDMDQzQTExQjJBRjIzRDc0Qzg5ODc3NkYwOTM0RTRBMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5+I0RfEKsCuvSQZhr9Y7x2b+7 PPiHbmKYovczkmfCzDjnNovw4MJ9Ps9LaCUFHY19mz8VCyj6rj9wsVPCoBs84jZJ NaP2USXlXYT1Z/Mz/rl79s+Cxq7Od37K0P0jflXSqjb8XOMDUjPa/Xa/oDS81mvb eEFyEi6Ta1TR4EEzIev6FRjGn+PmeREDdLpC2cMkWL8QaHAAWznVga+7csYUi8Gs ppmpGw6Fy9oTu9/A5iWGmMXEeegxEzjo+VBzOjLBwQ3FSaNiyyfR9ulc9Uo4qESd TN6nBwbJlk5iAQcG+by8MHIrZIUyu9VLiD4po7rs7ZY+LqZ2cZEMqFbx40tXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3twMXAQ6EbKvI9dMiYd28JNOShswHwYDVR0j BBgwFoAU9bwFCiDFFv68BhobcOSIu0JkRLwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzJmOThhMC0wOTQ3LTRmN2EtYmVlNy1mZmMzZDA1Yjk0MGUvMC9GNUJDMDUwQTIw QzUxNkZFQkMwNjFBMUI3MEU0ODhCQjQyNjQ0NEJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjVCQzA1MEEyMEM1MTZGRUJDMDYxQTFCNzBFNDg4QkI0MjY0 NDRCQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzMmY5OGEwLTA5NDctNGY3YS1i ZWU3LWZmYzNkMDViOTQwZS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKsMA0GCSqG SIb3DQEBCwUAA4IBAQBY8Yco9CWeEaITVJxIyOKm+sGbuyJEiLSDC2BQqrJX8tnz Tb9fYSEpN1rSz68VcWRh6xtkIfllWzyIrYtmr4QPR6W6JBryyoSGQM8xLT/wF4KP uQtbiVPPff9gBkvWQ9qeLKHBYbAyXi1ktezuFFz8mC3s6tm0/p4VCyqyNjSXq+WV LnGoluLC1ghkWScKnDjrDl3XUBmooNPDAZOVnvt08kmJnIqDcRC0EE38j5GOKoxG UzRNJe9IO8b/dMURriGtPvMQYkhnU2oUMGAE/OLmczcLFYnrNlDghUhM9VdJ+zGr o+ckEpP9umy5B3m1nGu97np1JRohQcCETP8yHV53 -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:37 2024 by rpki-client on console-ams.rpki-client.org