$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136302e302f32302d3230203d3e203633383539.roa File: 3135382e3134302e3136302e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: MbAqVyBOoLgZUMGD+rZ7i5wD/UzVXJOdAfDqoiH5yG4= Subject key identifier: 4C:51:49:D9:45:54:24:9D:62:9A:BD:3B:D6:70:10:5E:2B:C7:E9:0A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5068BA5F6338B9127E4F571361D28262490030AA Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136302e302f32302d3230203d3e203633383539.roa Signing time: Fri 25 Oct 2024 06:00:58 +0000 ROA not before: Fri 25 Oct 2024 05:55:58 +0000 ROA not after: Fri 24 Oct 2025 06:00:58 +0000 asID: 63859 IP address blocks: 158.140.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:68:ba:5f:63:38:b9:12:7e:4f:57:13:61:d2:82:62:49:00:30:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Oct 25 05:55:58 2024 GMT Not After : Oct 24 06:00:58 2025 GMT Subject: CN=4C5149D94554249D629ABD3BD670105E2BC7E90A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ab:de:08:94:6d:0e:a2:a5:1d:be:d9:6a:0a: 39:62:95:5a:cd:43:96:ed:0d:a3:68:a2:74:35:fd: 00:17:a8:d0:6d:6c:48:d5:1c:8f:7c:3c:12:ed:8c: 1c:4c:71:80:f4:c6:86:6f:17:d3:c2:a5:c7:0a:f9: 01:4b:d3:4c:4c:9a:39:0b:a9:e1:d4:ba:44:c5:73: dc:f7:08:9e:a9:6c:cf:36:da:50:fc:c3:00:bc:c1: 3f:16:6e:37:57:3b:b9:3b:64:da:15:ef:a6:3e:ac: 50:98:54:46:ef:f7:5f:23:9b:b2:bc:e8:a6:28:5e: 23:8d:89:7d:84:a1:c1:6d:1c:89:18:df:bb:81:74: 40:64:e0:d9:1f:c2:4b:31:d6:30:9a:22:d3:97:9d: 13:fa:4f:82:d7:a2:50:c6:fe:4c:84:8f:b3:20:d9: 1d:5b:bb:b3:96:22:73:06:38:da:85:c4:2b:68:eb: ef:ba:bc:53:dc:97:6a:50:72:e6:83:35:8f:60:08: cb:09:6f:ae:37:a6:9a:2a:a0:a0:ca:ac:11:0a:7a: 4c:d9:e8:73:4c:81:53:83:c5:fc:eb:78:19:db:0a: 67:7d:0a:4b:80:1e:8d:d0:8e:dd:33:76:b5:44:1f: 98:3c:ab:5b:72:86:b8:d5:7b:b9:c2:ea:02:c8:63: 4f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:51:49:D9:45:54:24:9D:62:9A:BD:3B:D6:70:10:5E:2B:C7:E9:0A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136302e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.160.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:10:8c:d0:66:61:5d:d6:ed:ab:eb:c0:bb:98:45:38:94:0b: 4f:3e:7e:c3:d7:81:86:39:87:83:ee:33:d3:5c:d0:09:ef:8e: c2:c8:47:9f:8f:f6:87:38:9c:a8:2c:c6:e5:4b:6a:ae:36:fc: ac:75:62:8d:2a:2e:06:73:d4:04:a1:e3:cb:d9:2b:f4:7f:8b: 83:14:5e:d7:e6:1b:fc:50:d2:b9:9a:c2:cd:63:17:08:43:b8: d7:c2:b0:47:80:36:52:3f:ab:0c:d0:79:00:fd:d2:d0:54:16: de:32:85:9d:45:73:08:f6:72:d3:0f:0c:4c:93:19:1b:52:ac: 34:b6:a6:36:a3:27:a9:d2:b0:18:d5:9e:92:05:34:43:70:8a: fd:6c:19:bc:25:e1:fc:b1:30:83:ab:1c:25:45:f4:cf:85:15: 85:76:3f:9d:fc:e5:af:3e:45:dc:bc:fe:bf:87:d4:28:ab:ea: c9:79:79:a2:f6:f2:64:6c:c3:16:3e:a2:d5:21:4c:84:7d:f5: 1d:71:38:07:a1:fa:26:2f:ab:33:00:89:b7:6c:25:c6:16:6b: 77:68:20:31:0e:a0:6b:1c:4e:5b:fd:31:20:76:3c:be:6d:db: de:00:d7:e2:a1:8a:59:7c:bd:6b:fa:88:9f:29:22:18:42:ff: 47:3a:79:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUGi6X2M4uRJ+T1cTYdKCYkkAMKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDEwMjUwNTU1NThaFw0yNTEwMjQwNjAwNThaMDMxMTAvBgNV BAMTKDRDNTE0OUQ5NDU1NDI0OUQ2MjlBQkQzQkQ2NzAxMDVFMkJDN0U5MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzq94IlG0OoqUdvtlqCjlilVrN Q5btDaNoonQ1/QAXqNBtbEjVHI98PBLtjBxMcYD0xoZvF9PCpccK+QFL00xMmjkL qeHUukTFc9z3CJ6pbM822lD8wwC8wT8WbjdXO7k7ZNoV76Y+rFCYVEbv918jm7K8 6KYoXiONiX2EocFtHIkY37uBdEBk4Nkfwksx1jCaItOXnRP6T4LXolDG/kyEj7Mg 2R1bu7OWInMGONqFxCto6++6vFPcl2pQcuaDNY9gCMsJb643ppoqoKDKrBEKekzZ 6HNMgVODxfzreBnbCmd9CkuAHo3Qjt0zdrVEH5g8q1tyhrjVe7nC6gLIY09fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTFFJ2UVUJJ1imr071nAQXivH6QowHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzAyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnoygMA0GCSqG SIb3DQEBCwUAA4IBAQCdEIzQZmFd1u2r68C7mEU4lAtPPn7D14GGOYeD7jPTXNAJ 747CyEefj/aHOJyoLMblS2quNvysdWKNKi4Gc9QEoePL2Sv0f4uDFF7X5hv8UNK5 msLNYxcIQ7jXwrBHgDZSP6sM0HkA/dLQVBbeMoWdRXMI9nLTDwxMkxkbUqw0tqY2 oyep0rAY1Z6SBTRDcIr9bBm8JeH8sTCDqxwlRfTPhRWFdj+d/OWvPkXcvP6/h9Qo q+rJeXmi9vJkbMMWPqLVIUyEffUdcTgHofomL6szAIm3bCXGFmt3aCAxDqBrHE5b /TEgdjy+bdveANfioYpZfL1r+oifKSIYQv9HOnkF -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org