$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa File: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (raw, json) Hash identifier: x+tcMxSetwv0a/KQppEaHfjktTHb2Ld1yiJcPv0bo44= Subject key identifier: 0D:02:55:2F:97:B3:ED:6E:D6:B8:A3:94:6A:A5:89:05:1F:FF:50:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 5BC31B544C905AEB57C90306609B107723A17C31 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa Signing time: Mon 19 Feb 2024 06:41:26 +0000 ROA not before: Mon 19 Feb 2024 06:36:26 +0000 ROA not after: Mon 17 Feb 2025 06:41:26 +0000 asID: 152355 IP address blocks: 157.10.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c3:1b:54:4c:90:5a:eb:57:c9:03:06:60:9b:10:77:23:a1:7c:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Feb 19 06:36:26 2024 GMT Not After : Feb 17 06:41:26 2025 GMT Subject: CN=0D02552F97B3ED6ED6B8A3946AA589051FFF504E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:61:51:c0:5e:b9:c8:cc:0d:e2:a5:d4:49: 96:1c:5e:b5:ab:52:69:08:63:e0:94:b2:84:a0:38: 5b:95:0a:88:2d:21:7c:3d:1a:ab:2c:96:16:40:61: 20:0c:be:82:16:74:dc:4e:98:bb:a2:a5:7a:a5:88: c4:a0:25:08:40:7b:09:e0:07:65:23:b0:4b:cf:46: b0:74:fb:41:81:5e:0d:8a:74:fb:ea:39:76:0d:a8: 25:50:03:8b:c5:f0:58:7e:0e:c9:9d:79:c3:e7:6c: 88:79:4c:0e:d5:af:64:db:ef:87:4b:49:5c:f0:28: 2c:29:f7:78:ad:cd:e2:d0:72:b1:e1:0b:04:bc:7d: d7:b2:0c:0e:3a:3f:cf:71:68:b8:f8:ad:8d:9c:ad: 85:d1:92:19:61:69:f1:c6:9a:42:2e:bd:30:f4:be: 50:6a:2e:60:22:ca:f9:2e:f9:3e:52:f2:4e:66:e3: f2:a5:ae:f9:fd:bb:a5:66:a2:53:3f:6e:57:68:e8: 90:d6:12:6c:42:44:11:b6:d3:8d:06:1f:45:7a:2b: 78:01:ad:44:1e:43:bf:c0:8e:20:fb:94:b0:76:16: 0e:fd:9a:30:d2:1b:94:02:d8:39:1c:0d:cd:4f:fb: d4:46:98:fe:bf:04:a3:1b:5d:59:de:31:79:84:02: 73:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:02:55:2F:97:B3:ED:6E:D6:B8:A3:94:6A:A5:89:05:1F:FF:50:4E X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.158.0/23 Signature Algorithm: sha256WithRSAEncryption e8:ed:94:24:20:61:ec:63:d1:37:10:af:65:cb:ab:c2:4a:7e: e6:f5:d2:58:47:19:fc:ed:a9:50:14:49:57:04:ec:1e:2c:05: 96:53:14:75:d2:11:0e:c7:bd:24:43:ba:6a:15:4c:8d:9f:9e: ca:d8:1e:04:99:74:1f:07:7f:38:bc:7e:05:6d:53:f9:f0:a9: e4:24:60:d0:3f:c2:5d:e4:8d:54:50:6e:ac:bc:a2:2d:e3:66: ce:d4:99:1e:61:fc:a7:9b:e0:7a:c7:05:3e:78:7a:74:ac:b7: 65:25:4b:11:dc:43:c6:c8:83:c1:00:ac:af:c2:fb:68:90:d3: e6:f4:7b:c5:ed:72:58:5d:d6:45:de:82:f4:dc:c1:a6:66:c4: 0c:00:51:94:98:3b:c9:db:9d:7c:38:fe:5a:2c:69:6f:55:52: c6:93:ac:ac:fd:57:6f:54:0f:f6:24:09:86:25:f8:a5:f2:c1: 76:27:ba:8f:57:8f:d7:83:16:1a:3c:80:5b:85:51:bd:24:76: ae:da:96:fa:9d:df:e1:46:58:8e:c0:1e:6e:35:32:a7:50:42: 7f:6f:15:27:31:8e:62:a3:22:c2:fb:50:83:92:52:e3:ba:9c: d6:4b:59:98:df:05:66:e5:52:ee:6e:b3:97:8c:17:24:20:29: f8:3e:16:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW8MbVEyQWutXyQMGYJsQdyOhfDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNDAyMTkwNjM2MjZaFw0yNTAyMTcwNjQxMjZaMDMxMTAvBgNV BAMTKDBEMDI1NTJGOTdCM0VENkVENkI4QTM5NDZBQTU4OTA1MUZGRjUwNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2mFRwF65yMwN4qXUSZYcXrWr UmkIY+CUsoSgOFuVCogtIXw9GqsslhZAYSAMvoIWdNxOmLuipXqliMSgJQhAewng B2UjsEvPRrB0+0GBXg2KdPvqOXYNqCVQA4vF8Fh+DsmdecPnbIh5TA7Vr2Tb74dL SVzwKCwp93itzeLQcrHhCwS8fdeyDA46P89xaLj4rY2crYXRkhlhafHGmkIuvTD0 vlBqLmAiyvku+T5S8k5m4/Klrvn9u6VmolM/bldo6JDWEmxCRBG2040GH0V6K3gB rUQeQ7/AjiD7lLB2Fg79mjDSG5QC2DkcDc1P+9RGmP6/BKMbXVneMXmEAnPDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDQJVL5ez7W7WuKOUaqWJBR//UE4wHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVjLTA0NTYtNDZhMy05 NjMyLTcwOWM3NjcxMDRiYi8wLzMxMzUzNzJlMzEzMDJlMzEzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQqeMA0GCSqG SIb3DQEBCwUAA4IBAQDo7ZQkIGHsY9E3EK9ly6vCSn7m9dJYRxn87alQFElXBOwe LAWWUxR10hEOx70kQ7pqFUyNn57K2B4EmXQfB384vH4FbVP58KnkJGDQP8Jd5I1U UG6svKIt42bO1JkeYfynm+B6xwU+eHp0rLdlJUsR3EPGyIPBAKyvwvtokNPm9HvF 7XJYXdZF3oL03MGmZsQMAFGUmDvJ2518OP5aLGlvVVLGk6ys/VdvVA/2JAmGJfil 8sF2J7qPV4/XgxYaPIBbhVG9JHau2pb6nd/hRliOwB5uNTKnUEJ/bxUnMY5ioyLC +1CDklLjupzWS1mY3wVm5VLubrOXjBckICn4PhZ0 -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:15 2024 by rpki-client on console-fra.rpki-client.org