$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa File: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (raw, json) Hash identifier: SvD3X9eCmtqXidXDt4wEI5SOF39X6XsgPJbXVQqcbs4= Subject key identifier: E2:CF:10:B9:06:0C:41:D8:58:01:FA:E4:8A:2E:B7:93:D6:6C:F5:BF Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 12DFC1189A66BC35F2D9C728CD617826BC604B1F Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa Signing time: Mon 19 Feb 2024 06:53:45 +0000 ROA not before: Mon 19 Feb 2024 06:48:45 +0000 ROA not after: Mon 17 Feb 2025 06:53:45 +0000 asID: 152355 IP address blocks: 157.10.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:df:c1:18:9a:66:bc:35:f2:d9:c7:28:cd:61:78:26:bc:60:4b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Feb 19 06:48:45 2024 GMT Not After : Feb 17 06:53:45 2025 GMT Subject: CN=E2CF10B9060C41D85801FAE48A2EB793D66CF5BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:d4:bc:84:53:2e:96:f7:fd:92:9b:80:16: 3d:f1:2a:b9:c1:01:47:62:31:cb:bf:43:31:2e:bf: 6d:c3:c7:62:52:6a:34:f7:fd:29:ad:90:1f:bb:bf: 9f:66:96:87:f6:8a:2a:82:7f:f8:08:7a:9b:63:13: 33:38:f1:de:0c:ae:90:e4:16:a9:55:c5:2e:07:b3: 97:8a:c1:47:98:25:67:02:01:0a:4c:09:bd:37:25: 1e:4f:ac:c9:a1:ae:3e:f9:7e:69:97:3c:c3:0e:c1: 73:82:56:01:b3:f6:41:bb:92:d3:53:86:7d:c0:e9: a2:f0:e4:4d:2e:cd:80:4d:44:d2:a9:45:9e:03:fa: 4f:b8:82:5a:c4:ea:53:42:64:f3:06:e6:bf:bc:f9: 78:07:f6:36:e3:cb:90:88:ea:9e:68:cc:f4:86:1c: 0a:b2:99:d1:05:b8:1d:e8:d1:dd:40:0d:e7:e5:15: c0:75:53:c9:a8:b9:ab:b2:7a:9f:c7:63:39:01:b7: 21:49:de:e9:c5:7b:7a:45:f1:f3:34:92:01:ec:83: 4c:db:61:d8:9c:1e:6e:81:f0:39:73:01:2e:9d:cf: 97:a6:5f:76:ec:1a:63:1a:71:c4:48:1a:c7:14:cc: cf:51:8b:fa:64:a4:31:5f:66:bf:ba:47:72:93:34: ec:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CF:10:B9:06:0C:41:D8:58:01:FA:E4:8A:2E:B7:93:D6:6C:F5:BF X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.158.0/24 Signature Algorithm: sha256WithRSAEncryption 47:8b:27:a5:98:a3:50:c9:aa:c7:c0:4d:97:53:46:2d:da:45: 20:9e:4d:cf:23:cb:0c:01:b1:de:38:52:a5:30:62:f9:d7:ec: 14:86:97:57:b4:ce:c5:56:67:3a:e7:95:aa:20:4c:3d:9e:4e: de:07:37:64:71:7f:84:46:7b:a1:f8:8f:88:61:85:d4:ab:bd: a4:f7:a5:f5:fe:64:a8:40:22:d6:61:d6:23:60:01:fd:13:98: 3d:68:60:45:93:fd:09:ae:3d:37:a9:2d:d5:4d:84:41:c7:39: 7e:07:e4:1c:9f:b1:8b:9e:ad:9e:32:4c:d8:ac:f8:46:1b:aa: 57:a4:2e:45:b5:4f:57:63:80:0c:e8:54:f4:c2:ad:12:fb:45: 0f:9a:0d:59:f5:ad:8a:54:be:fb:1d:cb:c9:ad:33:70:b5:ce: e6:13:c8:c4:6d:1e:2c:c0:d6:f8:25:3d:a2:43:bf:9b:9e:75: 09:26:cc:6d:11:36:1a:c5:35:14:2b:6c:5b:83:a8:c1:a4:62: d2:1a:b4:a4:a9:a3:ba:f2:01:d0:88:2a:ed:d2:2b:ef:22:59: 7e:69:b8:7b:fe:fd:81:1a:cf:dd:68:f4:93:7d:ec:1e:56:ea: 28:68:d6:5c:03:ae:35:01:86:be:0a:3b:36:da:26:9d:5a:ba: a2:a2:18:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEt/BGJpmvDXy2ccozWF4JrxgSx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNDAyMTkwNjQ4NDVaFw0yNTAyMTcwNjUzNDVaMDMxMTAvBgNV BAMTKEUyQ0YxMEI5MDYwQzQxRDg1ODAxRkFFNDhBMkVCNzkzRDY2Q0Y1QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6DNS8hFMulvf9kpuAFj3xKrnB AUdiMcu/QzEuv23Dx2JSajT3/SmtkB+7v59mlof2iiqCf/gIeptjEzM48d4MrpDk FqlVxS4Hs5eKwUeYJWcCAQpMCb03JR5PrMmhrj75fmmXPMMOwXOCVgGz9kG7ktNT hn3A6aLw5E0uzYBNRNKpRZ4D+k+4glrE6lNCZPMG5r+8+XgH9jbjy5CI6p5ozPSG HAqymdEFuB3o0d1ADeflFcB1U8mouauyep/HYzkBtyFJ3unFe3pF8fM0kgHsg0zb YdicHm6B8DlzAS6dz5emX3bsGmMaccRIGscUzM9Ri/pkpDFfZr+6R3KTNOwzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4s8QuQYMQdhYAfrkii63k9Zs9b8wHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVjLTA0NTYtNDZhMy05 NjMyLTcwOWM3NjcxMDRiYi8wLzMxMzUzNzJlMzEzMDJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqeMA0GCSqG SIb3DQEBCwUAA4IBAQBHiyelmKNQyarHwE2XU0Yt2kUgnk3PI8sMAbHeOFKlMGL5 1+wUhpdXtM7FVmc655WqIEw9nk7eBzdkcX+ERnuh+I+IYYXUq72k96X1/mSoQCLW YdYjYAH9E5g9aGBFk/0Jrj03qS3VTYRBxzl+B+Qcn7GLnq2eMkzYrPhGG6pXpC5F tU9XY4AM6FT0wq0S+0UPmg1Z9a2KVL77HcvJrTNwtc7mE8jEbR4swNb4JT2iQ7+b nnUJJsxtETYaxTUUK2xbg6jBpGLSGrSkqaO68gHQiCrt0ivvIll+abh7/v2BGs/d aPSTfeweVuooaNZcA641AYa+Cjs22iadWrqiohhm -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org