$ rpki-client -vvf repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32332d3233203d3e20313532343431.roa File: 3135372e36362e31382e302f32332d3233203d3e20313532343431.roa (raw, json) Hash identifier: j6dgc3ruNxec67NtQTPzypJdOlM6suihHaG3ZbEwF2U= Subject key identifier: 55:BA:A7:15:9C:B9:8D:79:D9:62:0F:11:1D:66:10:93:C2:D3:A6:0F Certificate issuer: /CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Certificate serial: 6E97BBA1E9AFAA2F239A07252D12398E6FC9271B Authority key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32332d3233203d3e20313532343431.roa Signing time: Thu 18 Jul 2024 18:40:56 +0000 ROA not before: Thu 18 Jul 2024 18:35:56 +0000 ROA not after: Thu 17 Jul 2025 18:40:56 +0000 asID: 152441 IP address blocks: 157.66.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:97:bb:a1:e9:af:aa:2f:23:9a:07:25:2d:12:39:8e:6f:c9:27:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Validity Not Before: Jul 18 18:35:56 2024 GMT Not After : Jul 17 18:40:56 2025 GMT Subject: CN=55BAA7159CB98D79D9620F111D661093C2D3A60F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:15:1f:e1:5a:6d:2b:d9:fb:4b:64:8c:7d:59: be:f3:01:7f:68:6c:d9:b4:78:63:12:bf:f8:a8:ba: 93:5d:a6:56:f3:9c:03:78:d7:61:6b:e7:a5:a7:cb: 35:d7:7e:b4:d7:60:08:cb:9f:7a:69:6a:e2:b7:39: 07:e9:2f:bf:e6:35:7d:69:22:6c:00:e6:26:21:9e: a1:8a:5d:0c:49:99:5d:fc:06:7d:84:25:8e:35:79: d5:18:f3:80:57:c8:5d:3a:6a:80:e8:bc:16:42:bf: 2c:c9:c0:c8:3c:61:79:1f:8e:34:b6:e9:67:36:2f: 9e:0d:6b:67:0d:81:3a:75:2f:bb:6b:f8:6e:e1:2b: d9:42:22:a9:fb:e5:2a:d1:c0:ea:eb:d7:87:a6:dd: 31:d0:8d:b8:1b:05:65:5a:37:64:51:ca:3e:0b:36: a2:c0:21:d0:17:ee:cc:fc:25:29:60:db:6d:f0:7c: 44:11:97:30:e1:31:0e:27:b6:48:8d:22:15:90:02: 40:58:be:a6:d5:7b:49:32:bf:93:49:4c:f0:4b:59: 67:ca:e5:3b:65:8e:63:9b:c8:83:f6:ae:bc:93:68: 64:9e:dd:1e:de:c6:b3:3b:83:03:c9:36:49:53:06: 5d:28:ff:8f:53:46:6e:f6:a6:04:79:c4:a8:c1:13: b7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BA:A7:15:9C:B9:8D:79:D9:62:0F:11:1D:66:10:93:C2:D3:A6:0F X509v3 Authority Key Identifier: keyid:64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32332d3233203d3e20313532343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.18.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:ca:b6:9d:df:b6:59:96:94:b1:17:96:56:1a:4f:5b:00:3a: c7:0f:90:51:1e:12:b8:0e:f5:c6:97:c5:a6:e6:fb:09:df:56: d2:fd:43:a3:64:80:72:ba:c5:65:03:0c:27:23:ae:f9:5e:3d: 58:f1:b3:66:20:1f:b0:0c:ef:a9:89:2c:7d:a5:a0:b5:ab:cc: 9a:50:d9:6e:1f:a4:d4:92:3b:98:27:03:0f:90:d4:71:fa:c4: 69:31:db:49:65:16:42:b6:f5:47:e0:1b:28:81:0b:30:7f:b5: 1b:87:40:79:05:4b:3f:61:a9:98:b0:fb:17:eb:e7:6d:02:06: 30:ac:ca:3d:ce:39:b2:6f:f3:fb:ca:a6:9e:cf:77:50:57:e8: 6e:5c:0d:8b:82:74:36:c2:75:b2:da:d9:c6:b7:25:3f:c2:e5: 09:01:fd:21:22:75:d9:62:5a:8d:08:41:56:d6:9f:05:fd:bb: b9:08:7f:38:12:d4:41:ab:81:58:1d:9d:c7:09:45:c6:ec:08: 0f:de:af:a4:33:dd:0a:91:c3:2a:e9:3a:b8:11:2e:9c:a0:3d: d0:8a:4e:47:d3:13:58:de:a3:d5:3f:08:e3:b4:da:15:b2:76: 54:20:36:6a:a3:0b:aa:db:46:c4:91:33:35:48:1a:c7:20:e3: a5:01:be:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbpe7oemvqi8jmgclLRI5jm/JJxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3 OEM5QkMyODAeFw0yNDA3MTgxODM1NTZaFw0yNTA3MTcxODQwNTZaMDMxMTAvBgNV BAMTKDU1QkFBNzE1OUNCOThENzlEOTYyMEYxMTFENjYxMDkzQzJEM0E2MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHFR/hWm0r2ftLZIx9Wb7zAX9o bNm0eGMSv/ioupNdplbznAN412Fr56WnyzXXfrTXYAjLn3ppauK3OQfpL7/mNX1p ImwA5iYhnqGKXQxJmV38Bn2EJY41edUY84BXyF06aoDovBZCvyzJwMg8YXkfjjS2 6Wc2L54Na2cNgTp1L7tr+G7hK9lCIqn75SrRwOrr14em3THQjbgbBWVaN2RRyj4L NqLAIdAX7sz8JSlg223wfEQRlzDhMQ4ntkiNIhWQAkBYvqbVe0kyv5NJTPBLWWfK 5TtljmObyIP2rryTaGSe3R7exrM7gwPJNklTBl0o/49TRm72pgR5xKjBE7clAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVbqnFZy5jXnZYg8RHWYQk8LTpg8wHwYDVR0j BBgwFoAUZCg2FSKXfsdPo9TstgCcz3jJvCgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMC82NDI4MzYxNTIy OTc3RUM3NEZBM0Q0RUNCNjAwOUNDRjc4QzlCQzI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3OEM5 QkMyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYzLTA5YmMtNDkxYi04 ZmI5LWZkMzlmMDkxNjY5ZC8wLzMxMzUzNzJlMzYzNjJlMzEzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM0MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CEjANBgkqhkiG 9w0BAQsFAAOCAQEAn8q2nd+2WZaUsReWVhpPWwA6xw+QUR4SuA71xpfFpub7Cd9W 0v1Do2SAcrrFZQMMJyOu+V49WPGzZiAfsAzvqYksfaWgtavMmlDZbh+k1JI7mCcD D5DUcfrEaTHbSWUWQrb1R+AbKIELMH+1G4dAeQVLP2GpmLD7F+vnbQIGMKzKPc45 sm/z+8qmns93UFfoblwNi4J0NsJ1strZxrclP8LlCQH9ISJ12WJajQhBVtafBf27 uQh/OBLUQauBWB2dxwlFxuwID96vpDPdCpHDKuk6uBEunKA90IpOR9MTWN6j1T8I 47TaFbJ2VCA2aqMLqttGxJEzNUgaxyDjpQG+Dw== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:30 2024 by rpki-client on console-fra.rpki-client.org