$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa File: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (raw, json) Hash identifier: Qln6ACiT4IfivVrlrt5dnGFTIL97rtP2V/TeVXQDmTo= Subject key identifier: 95:67:CA:55:29:50:36:5B:AA:28:14:89:F7:5C:9A:E8:4E:2D:A0:48 Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 525D9C701D6E69BDE594AF600AFAD8C3D92445C5 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa Signing time: Mon 19 Feb 2024 06:53:25 +0000 ROA not before: Mon 19 Feb 2024 06:48:25 +0000 ROA not after: Mon 17 Feb 2025 06:53:25 +0000 asID: 152355 IP address blocks: 157.10.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5d:9c:70:1d:6e:69:bd:e5:94:af:60:0a:fa:d8:c3:d9:24:45:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Feb 19 06:48:25 2024 GMT Not After : Feb 17 06:53:25 2025 GMT Subject: CN=9567CA552950365BAA281489F75C9AE84E2DA048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:af:dd:0d:e9:bf:90:eb:af:ac:87:56:9b:45: 5f:b0:c8:22:4f:09:de:2f:85:78:bd:d3:f7:63:11: 18:9f:7a:03:f6:e3:a3:13:ef:42:0f:4a:b2:7a:da: 7e:b5:62:c1:2a:6b:98:eb:3c:44:42:95:f7:13:fb: 7d:75:19:93:b5:00:c0:ee:9b:f6:88:b1:64:9c:7b: e7:ce:b1:3b:34:ff:b4:c6:c5:ab:67:8f:c3:22:e9: 87:d0:cf:3c:1d:ba:6a:d2:26:b4:0c:d4:96:9d:4c: f1:c7:a2:de:1f:0c:6a:9f:0f:a8:80:b6:a2:2c:58: ca:a8:dd:7e:0a:6b:1e:4b:61:0c:a1:cf:b6:f8:8a: d5:14:6e:a9:c0:78:ee:de:d6:bf:b5:72:80:34:ef: 06:44:b1:26:76:83:1c:6a:18:25:6a:56:14:e1:79: 24:d3:23:e7:1d:a2:9c:54:a3:e6:46:e8:5d:b2:34: 13:6a:59:d6:af:53:bd:82:fd:73:48:0e:22:9b:1c: df:51:4e:ab:b9:35:a5:12:4c:de:99:69:17:e6:2e: fd:b8:dc:a9:1c:7b:ea:28:51:ce:9a:8a:b8:ac:83: ee:7d:d6:03:39:71:ba:dc:5b:d4:d2:96:9c:2f:a1: 8a:72:7c:d6:24:29:5b:60:6a:03:24:d6:50:97:93: 28:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:67:CA:55:29:50:36:5B:AA:28:14:89:F7:5C:9A:E8:4E:2D:A0:48 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.159.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:60:ff:95:7b:0e:84:a3:05:22:27:65:5a:fa:da:c7:1d:9a: 38:bb:86:54:69:85:1d:6b:8a:81:d3:b0:e7:7f:c8:83:2a:21: 72:02:f2:b4:c6:10:e6:49:64:9e:f3:32:79:c7:36:59:a4:68: 2e:7c:d8:7d:8f:43:6e:bc:1f:cf:13:13:60:0d:e8:e3:e2:30: 0f:40:a1:f5:d8:ce:c0:b2:ca:9d:33:b9:30:b5:49:22:0e:19: f1:db:70:d5:8c:77:cb:85:65:12:0f:65:30:9e:eb:9e:c0:47: 37:2b:3f:f9:f0:0b:39:d3:eb:a0:24:ba:23:b2:49:f8:e4:a0: 3e:19:2f:12:58:80:f5:97:78:7f:ff:94:8a:12:eb:14:a7:a7: fb:39:11:b3:9e:7c:d5:86:6e:57:51:bf:77:7f:a6:e9:30:51: 85:bd:58:ca:f7:43:41:c6:5d:6d:fd:93:f9:ad:ef:a4:9c:13: c5:ed:9e:a3:33:35:05:9a:0f:d1:a1:51:62:f3:00:58:ea:bb: 38:82:a4:78:a1:2d:34:fe:8c:68:da:95:55:6f:f4:07:66:cc: e6:d8:d2:77:03:73:c7:c8:21:95:35:22:e8:fa:d2:8e:66:1a: 38:a6:cf:b6:6b:61:06:76:db:e6:8c:5c:ee:e6:e2:6b:dd:57: 80:c3:38:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUl2ccB1uab3llK9gCvrYw9kkRcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNDAyMTkwNjQ4MjVaFw0yNTAyMTcwNjUzMjVaMDMxMTAvBgNV BAMTKDk1NjdDQTU1Mjk1MDM2NUJBQTI4MTQ4OUY3NUM5QUU4NEUyREEwNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxr90N6b+Q66+sh1abRV+wyCJP Cd4vhXi90/djERifegP246MT70IPSrJ62n61YsEqa5jrPERClfcT+311GZO1AMDu m/aIsWSce+fOsTs0/7TGxatnj8Mi6YfQzzwdumrSJrQM1JadTPHHot4fDGqfD6iA tqIsWMqo3X4Kax5LYQyhz7b4itUUbqnAeO7e1r+1coA07wZEsSZ2gxxqGCVqVhTh eSTTI+cdopxUo+ZG6F2yNBNqWdavU72C/XNIDiKbHN9RTqu5NaUSTN6ZaRfmLv24 3Kkce+ooUc6airisg+591gM5cbrcW9TSlpwvoYpyfNYkKVtgagMk1lCXkygjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlWfKVSlQNluqKBSJ91ya6E4toEgwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVjLTA0NTYtNDZhMy05 NjMyLTcwOWM3NjcxMDRiYi8wLzMxMzUzNzJlMzEzMDJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqfMA0GCSqG SIb3DQEBCwUAA4IBAQAsYP+Vew6EowUiJ2Va+trHHZo4u4ZUaYUda4qB07Dnf8iD KiFyAvK0xhDmSWSe8zJ5xzZZpGgufNh9j0NuvB/PExNgDejj4jAPQKH12M7Assqd M7kwtUkiDhnx23DVjHfLhWUSD2UwnuuewEc3Kz/58As50+ugJLojskn45KA+GS8S WID1l3h//5SKEusUp6f7ORGznnzVhm5XUb93f6bpMFGFvVjK90NBxl1t/ZP5re+k nBPF7Z6jMzUFmg/RoVFi8wBY6rs4gqR4oS00/oxo2pVVb/QHZszm2NJ3A3PHyCGV NSLo+tKOZho4ps+2a2EGdtvmjFzu5uJr3VeAwziS -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org