$ rpki-client -vvf repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31392e302f32342d3234203d3e20313532343431.roa File: 3135372e36362e31392e302f32342d3234203d3e20313532343431.roa (raw, json) Hash identifier: wgS20VWqKQyTdaQvBzivbNIKKJm8jb1jO3D0v/T/0gk= Subject key identifier: 57:F6:4E:C3:53:86:61:5F:A9:2B:C8:74:29:EA:0D:46:72:52:94:55 Certificate issuer: /CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Certificate serial: 343606DC25400BC8E5A1FD55D066438B1FF0BBF6 Authority key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31392e302f32342d3234203d3e20313532343431.roa Signing time: Thu 18 Jul 2024 18:42:36 +0000 ROA not before: Thu 18 Jul 2024 18:37:36 +0000 ROA not after: Thu 17 Jul 2025 18:42:36 +0000 asID: 152441 IP address blocks: 157.66.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:36:06:dc:25:40:0b:c8:e5:a1:fd:55:d0:66:43:8b:1f:f0:bb:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Validity Not Before: Jul 18 18:37:36 2024 GMT Not After : Jul 17 18:42:36 2025 GMT Subject: CN=57F64EC35386615FA92BC87429EA0D4672529455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:bd:83:d4:8a:7b:85:f5:0e:e6:23:b9:e9: d8:66:d2:49:35:45:4b:d8:2d:03:d3:51:01:6e:49: 0a:2f:fe:c7:74:90:18:88:76:60:c6:0d:b2:a5:39: a8:94:6a:64:9f:08:1d:f4:c6:f7:44:4d:c6:5e:53: c7:fd:23:8d:2c:25:d2:c0:59:a5:c1:0c:81:ae:11: 91:05:82:38:20:4d:56:3d:b0:2b:0a:d8:f5:1f:4e: b1:09:2e:51:be:6f:43:45:94:18:e7:48:3d:6e:7c: 19:1e:cb:43:c7:1a:38:5a:6f:b4:80:01:3c:69:72: 05:30:c9:17:35:38:40:ca:bf:67:5d:d5:1d:ad:7c: 5d:1c:9e:2e:6c:77:da:7c:93:db:ee:21:c3:72:64: e4:6d:c1:8e:6a:d1:5e:a9:f4:cc:d2:16:92:09:7c: ed:02:ea:04:0d:00:73:cf:20:ed:38:d5:a8:81:28: 71:09:56:b6:2d:e5:d1:57:7f:ac:2a:71:13:77:c3: a1:e7:c6:b6:c1:0c:d5:6a:e2:14:e8:7c:63:94:d1: 40:cd:98:4b:d2:48:54:6e:d4:81:6e:be:a9:05:29: 14:91:73:8b:f5:b3:94:39:1e:b7:83:87:51:e8:7b: d7:38:4d:cb:cd:52:72:6b:1f:0b:bd:46:58:de:9f: 38:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F6:4E:C3:53:86:61:5F:A9:2B:C8:74:29:EA:0D:46:72:52:94:55 X509v3 Authority Key Identifier: keyid:64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31392e302f32342d3234203d3e20313532343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.19.0/24 Signature Algorithm: sha256WithRSAEncryption 64:22:1f:ea:1f:58:dd:36:d0:82:e6:5d:d1:d7:9e:8f:38:61: 4c:7e:04:ab:e0:60:5a:ac:be:08:13:76:34:d5:f0:07:58:0b: e6:43:67:91:c2:3a:e2:49:34:da:8f:c2:64:d3:81:0b:05:ab: 7c:f7:f7:81:b7:22:59:14:77:5d:bc:45:77:d5:3f:a8:c4:a3: 26:cc:12:b3:05:72:67:c2:d5:9e:51:ec:70:19:49:40:0b:90: 58:dc:c9:ad:f4:02:ec:47:68:db:48:16:2e:ae:24:32:c0:93: cc:f7:20:c0:2f:05:db:37:93:f9:6a:6c:03:1a:88:1d:20:f3: 44:d3:fe:b7:a1:9d:fa:44:3d:18:17:7a:88:38:64:c6:de:23: 21:0a:d8:a0:51:3d:3f:f2:47:2e:11:1d:5d:66:09:74:05:39: 8c:a7:99:43:63:16:37:c5:f4:c2:30:69:30:62:e4:6b:7e:ab: c9:f0:7b:a1:0f:97:11:0e:9a:84:03:25:c2:ef:1b:4b:e6:9d: 32:41:db:29:03:1a:f2:35:9c:56:12:dd:91:e4:f1:de:7a:7f: 77:89:e8:26:44:79:cd:b2:60:1d:f6:41:c0:9e:e8:55:ae:8c: 3f:a9:f4:e9:ce:44:85:91:dd:1a:f3:b6:55:7a:25:2a:89:7b: ee:65:a7:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNDYG3CVAC8jlof1V0GZDix/wu/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3 OEM5QkMyODAeFw0yNDA3MTgxODM3MzZaFw0yNTA3MTcxODQyMzZaMDMxMTAvBgNV BAMTKDU3RjY0RUMzNTM4NjYxNUZBOTJCQzg3NDI5RUEwRDQ2NzI1Mjk0NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Rr2D1Ip7hfUO5iO56dhm0kk1 RUvYLQPTUQFuSQov/sd0kBiIdmDGDbKlOaiUamSfCB30xvdETcZeU8f9I40sJdLA WaXBDIGuEZEFgjggTVY9sCsK2PUfTrEJLlG+b0NFlBjnSD1ufBkey0PHGjhab7SA ATxpcgUwyRc1OEDKv2dd1R2tfF0cni5sd9p8k9vuIcNyZORtwY5q0V6p9MzSFpIJ fO0C6gQNAHPPIO041aiBKHEJVrYt5dFXf6wqcRN3w6HnxrbBDNVq4hTofGOU0UDN mEvSSFRu1IFuvqkFKRSRc4v1s5Q5HreDh1Hoe9c4TcvNUnJrHwu9RljenzhbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUV/ZOw1OGYV+pK8h0KeoNRnJSlFUwHwYDVR0j BBgwFoAUZCg2FSKXfsdPo9TstgCcz3jJvCgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMC82NDI4MzYxNTIy OTc3RUM3NEZBM0Q0RUNCNjAwOUNDRjc4QzlCQzI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3OEM5 QkMyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYzLTA5YmMtNDkxYi04 ZmI5LWZkMzlmMDkxNjY5ZC8wLzMxMzUzNzJlMzYzNjJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CEzANBgkqhkiG 9w0BAQsFAAOCAQEAZCIf6h9Y3TbQguZd0deejzhhTH4Eq+BgWqy+CBN2NNXwB1gL 5kNnkcI64kk02o/CZNOBCwWrfPf3gbciWRR3XbxFd9U/qMSjJswSswVyZ8LVnlHs cBlJQAuQWNzJrfQC7Edo20gWLq4kMsCTzPcgwC8F2zeT+WpsAxqIHSDzRNP+t6Gd +kQ9GBd6iDhkxt4jIQrYoFE9P/JHLhEdXWYJdAU5jKeZQ2MWN8X0wjBpMGLka36r yfB7oQ+XEQ6ahAMlwu8bS+adMkHbKQMa8jWcVhLdkeTx3np/d4noJkR5zbJgHfZB wJ7oVa6MP6n06c5EhZHdGvO2VXolKol77mWnIQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org