$ rpki-client -vvf repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa File: 3135372e31302e39372e302f32342d3234203d3e203538383231.roa (raw, json) Hash identifier: ruDlvZxwzH98WABBPfx4jUikFQHB1Z32f5yF+Dmn3Ng= Subject key identifier: FA:85:40:F9:F5:ED:93:27:3D:0D:9B:D2:43:17:85:BA:09:2B:B2:B2 Certificate issuer: /CN=B9A55DD123C2F224C4E245856905F78F2F354D92 Certificate serial: 25AB9CF1676027D6B67DF4A87B786C3C7B7EBA67 Authority key identifier: B9:A5:5D:D1:23:C2:F2:24:C4:E2:45:85:69:05:F7:8F:2F:35:4D:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B9A55DD123C2F224C4E245856905F78F2F354D92.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa Signing time: Fri 07 Jun 2024 04:11:34 +0000 ROA not before: Fri 07 Jun 2024 04:06:34 +0000 ROA not after: Fri 06 Jun 2025 04:11:34 +0000 asID: 58821 IP address blocks: 157.10.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/B9A55DD123C2F224C4E245856905F78F2F354D92.crl rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/B9A55DD123C2F224C4E245856905F78F2F354D92.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B9A55DD123C2F224C4E245856905F78F2F354D92.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ab:9c:f1:67:60:27:d6:b6:7d:f4:a8:7b:78:6c:3c:7b:7e:ba:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9A55DD123C2F224C4E245856905F78F2F354D92 Validity Not Before: Jun 7 04:06:34 2024 GMT Not After : Jun 6 04:11:34 2025 GMT Subject: CN=FA8540F9F5ED93273D0D9BD2431785BA092BB2B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:68:dc:9c:cc:ab:42:a1:e7:c1:43:9b:d4: b3:76:f7:b1:53:5e:53:29:5a:e2:0d:c3:8c:5f:51: c3:ba:fa:4a:ab:24:ef:7c:e5:67:05:f6:ad:87:a7: 78:05:ef:f6:5e:a0:18:63:9b:19:5e:24:b9:70:26: e7:da:9f:f0:e7:2c:92:bf:04:70:00:34:9c:fc:61: 84:17:be:e0:30:f0:c8:a8:16:2b:07:b3:2e:b9:44: 78:5a:1b:3d:7e:c2:9c:39:83:35:a0:c3:64:68:4f: 8e:0b:e3:d5:41:4b:d6:48:a2:0f:b9:0e:30:63:5e: e2:16:c1:0e:b0:54:1f:2d:56:9b:41:17:cd:97:f6: 6d:b1:af:3b:8b:8e:13:14:13:4b:f1:14:f2:4b:42: 1e:47:48:ad:7e:77:45:dc:59:f9:7f:f2:08:6a:fe: 0c:91:83:f3:ae:a1:d5:06:5f:2c:68:77:b6:b6:94: 53:c6:e8:2e:21:d5:33:72:8d:82:33:77:1c:d9:24: 23:93:1b:6a:81:ec:f4:fc:e3:0a:96:a2:4c:9f:4a: bb:d5:e0:35:0e:1c:87:bc:c7:77:12:c4:37:ac:50: 83:cd:47:a8:db:f2:8c:55:4d:f5:7f:d2:e2:53:5a: 31:de:ce:dd:68:a4:8d:eb:84:60:c0:43:d5:33:d9: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:85:40:F9:F5:ED:93:27:3D:0D:9B:D2:43:17:85:BA:09:2B:B2:B2 X509v3 Authority Key Identifier: keyid:B9:A5:5D:D1:23:C2:F2:24:C4:E2:45:85:69:05:F7:8F:2F:35:4D:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/B9A55DD123C2F224C4E245856905F78F2F354D92.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B9A55DD123C2F224C4E245856905F78F2F354D92.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.97.0/24 Signature Algorithm: sha256WithRSAEncryption 30:8e:c7:c9:4a:11:28:dc:24:fa:12:a9:cf:c6:da:38:5c:d1: 34:2a:c3:c7:e4:fe:19:5f:97:94:10:50:d3:42:48:9d:14:3c: 58:a6:4a:ed:0a:92:d7:f1:84:2b:33:52:c7:e6:9d:72:54:11: da:5b:61:bc:d2:f1:90:37:41:cd:13:b0:bd:f7:31:f0:c7:d7: e4:0e:af:c0:5c:9f:05:1e:d1:bc:6e:c0:ab:12:a8:28:e0:3a: 18:dc:fb:2d:fa:3a:69:d2:48:a7:cc:38:9d:73:5b:17:14:41: ed:8a:83:99:15:55:a5:41:01:bd:66:50:75:8c:a3:4d:b8:a7: 44:69:fb:c6:7d:cb:dd:a6:58:76:89:ac:d4:72:74:35:e7:16: 7c:ad:a0:5d:18:48:41:40:69:66:44:fe:74:4b:f6:63:ce:ca: 35:f2:ae:40:8d:f2:61:19:24:d2:b2:55:1e:ad:96:4f:15:0b: a3:8a:f4:f1:58:df:f6:94:53:a6:cf:6e:6c:30:2e:90:98:e3: 99:b2:14:f5:24:9b:01:e2:b9:e1:b4:b3:33:de:e4:d6:72:17: 54:37:de:55:ed:a4:04:e9:56:36:11:ba:e1:7d:da:12:dc:f1: e2:55:e9:9f:d3:9b:91:ad:e5:f0:9e:f4:e6:64:7e:7e:98:68: 11:9c:02:89 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJauc8WdgJ9a2ffSoe3hsPHt+umcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlBNTVERDEyM0MyRjIyNEM0RTI0NTg1NjkwNUY3OEYy RjM1NEQ5MjAeFw0yNDA2MDcwNDA2MzRaFw0yNTA2MDYwNDExMzRaMDMxMTAvBgNV BAMTKEZBODU0MEY5RjVFRDkzMjczRDBEOUJEMjQzMTc4NUJBMDkyQkIyQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr02jcnMyrQqHnwUOb1LN297FT XlMpWuINw4xfUcO6+kqrJO985WcF9q2Hp3gF7/ZeoBhjmxleJLlwJufan/DnLJK/ BHAANJz8YYQXvuAw8MioFisHsy65RHhaGz1+wpw5gzWgw2RoT44L49VBS9ZIog+5 DjBjXuIWwQ6wVB8tVptBF82X9m2xrzuLjhMUE0vxFPJLQh5HSK1+d0XcWfl/8ghq /gyRg/OuodUGXyxod7a2lFPG6C4h1TNyjYIzdxzZJCOTG2qB7PT84wqWokyfSrvV 4DUOHIe8x3cSxDesUIPNR6jb8oxVTfV/0uJTWjHezt1opI3rhGDAQ9Uz2UFfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+oVA+fXtkyc9DZvSQxeFugkrsrIwHwYDVR0j BBgwFoAUuaVd0SPC8iTE4kWFaQX3jy81TZIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZjJmNjRjYS1mYTU0LTQ5OWUtYmMzMy00ODYyZGNhNzk0ZjcvMC9COUE1NUREMTIz QzJGMjI0QzRFMjQ1ODU2OTA1Rjc4RjJGMzU0RDkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjlBNTVERDEyM0MyRjIyNEM0RTI0NTg1NjkwNUY3OEYyRjM1 NEQ5Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmMmY2NGNhLWZhNTQtNDk5ZS1i YzMzLTQ4NjJkY2E3OTRmNy8wLzMxMzUzNzJlMzEzMDJlMzkzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCmEwDQYJKoZIhvcN AQELBQADggEBADCOx8lKESjcJPoSqc/G2jhc0TQqw8fk/hlfl5QQUNNCSJ0UPFim Su0KktfxhCszUsfmnXJUEdpbYbzS8ZA3Qc0TsL33MfDH1+QOr8BcnwUe0bxuwKsS qCjgOhjc+y36OmnSSKfMOJ1zWxcUQe2Kg5kVVaVBAb1mUHWMo024p0Rp+8Z9y92m WHaJrNRydDXnFnytoF0YSEFAaWZE/nRL9mPOyjXyrkCN8mEZJNKyVR6tlk8VC6OK 9PFY3/aUU6bPbmwwLpCY45myFPUkmwHiueG0szPe5NZyF1Q33lXtpATpVjYRuuF9 2hLc8eJV6Z/Tm5Gt5fCe9OZkfn6YaBGcAok= -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:05 2024 by rpki-client on console-fra.rpki-client.org