$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: kVfcd7TXK3jJv7bVk+v3xPvLfoEJteKE4YASUEHRrPQ= Subject key identifier: B0:95:6C:EE:D5:20:DF:BF:E1:5C:7A:F5:43:BE:52:BF:61:FA:09:7E Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 0EED01836B68AACC0D5BD30EB66853912FE4BEB0 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:05 +0000 ROA not before: Sun 11 Aug 2024 10:55:05 +0000 ROA not after: Sun 10 Aug 2025 11:00:05 +0000 asID: 63859 IP address blocks: 158.140.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ed:01:83:6b:68:aa:cc:0d:5b:d3:0e:b6:68:53:91:2f:e4:be:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:05 2024 GMT Not After : Aug 10 11:00:05 2025 GMT Subject: CN=B0956CEED520DFBFE15C7AF543BE52BF61FA097E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:57:2f:88:db:06:7f:ba:76:09:d3:5d:8b:b8: 46:63:d5:3c:a5:8b:e4:d2:b1:b6:0b:e8:ca:b2:9f: bd:82:6f:85:2a:f4:89:40:73:d5:30:55:07:1a:43: c1:37:ab:3c:84:1c:a0:a4:4a:b8:95:49:02:4c:ed: e5:dc:82:c1:0f:38:a6:e8:e3:4c:d5:55:8f:fd:c0: df:d7:47:b4:10:f5:60:1f:49:cb:14:24:a4:3b:4a: f2:00:21:14:35:3f:5c:1e:9f:6e:a8:7b:ac:dc:0d: 7f:40:9e:00:5a:ea:3f:5b:8c:ca:a4:b3:48:6a:c2: e4:d2:f8:8b:f5:a8:e7:7a:83:5f:64:9b:66:b1:c3: 98:7f:74:35:b1:a8:3a:ba:ae:1b:a3:ab:6b:7d:f4: a7:b6:28:59:a6:23:11:87:d7:e3:7a:81:2a:aa:81: 21:b5:3b:3b:b6:9c:e1:00:3e:7f:a2:1a:77:31:06: 72:46:41:2c:0e:57:12:4b:7c:4b:3e:5d:7c:f5:fd: 75:e4:f3:18:6a:d6:ec:ef:15:b0:8e:c3:9d:92:97: 36:3f:5a:a4:24:67:cd:fb:69:41:84:01:97:5e:4f: 6e:d2:f7:73:e2:d4:4b:3d:b5:ee:58:26:a2:1b:46: 32:bf:4e:34:30:3b:27:cc:00:4f:b1:88:95:da:4b: aa:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:95:6C:EE:D5:20:DF:BF:E1:5C:7A:F5:43:BE:52:BF:61:FA:09:7E X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.161.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:17:e5:a9:0f:13:2d:fa:79:cf:75:d8:7a:17:7f:6c:0d:86: db:a2:f3:01:57:08:76:18:02:ae:4c:41:01:95:61:1b:0f:8c: d4:41:53:89:71:4a:d1:3f:f7:4b:e8:ad:7c:99:80:9b:d5:6a: 88:76:04:db:f4:32:c4:9d:57:5e:4f:62:7d:2b:c6:e0:c3:76: 02:46:6c:03:c9:8f:81:6b:d9:8c:ca:02:24:e4:cd:06:75:af: 38:0a:e0:6c:71:65:bc:3a:9f:8b:20:d0:5f:28:26:95:41:14: d3:24:eb:a7:c2:a6:1b:0e:74:b6:8c:99:bd:50:4c:0a:40:4d: 32:a1:5f:3a:8f:32:18:48:bb:be:db:04:88:f3:2e:da:5d:c9: a1:55:6e:19:03:04:0a:7b:3f:f3:c5:c7:8e:ed:d6:87:35:87: 70:b6:8a:fd:62:54:7b:ea:72:1d:9c:42:96:82:2e:26:38:93: 18:f3:5a:7d:8e:79:3f:62:69:3d:a8:56:66:5d:16:8f:65:87: 6b:04:df:49:c3:2e:e1:2a:9a:b2:ea:81:34:81:77:66:ae:88: e1:4e:03:5f:b0:86:11:d3:4e:39:a4:4d:79:10:8f:44:ed:69: 49:5f:c7:5e:ef:47:24:b1:ce:0e:3a:3b:74:fb:1f:17:cf:6e: 0f:fb:77:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDu0Bg2toqswNW9MOtmhTkS/kvrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDVaFw0yNTA4MTAxMTAwMDVaMDMxMTAvBgNV BAMTKEIwOTU2Q0VFRDUyMERGQkZFMTVDN0FGNTQzQkU1MkJGNjFGQTA5N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnVy+I2wZ/unYJ012LuEZj1Tyl i+TSsbYL6Mqyn72Cb4Uq9IlAc9UwVQcaQ8E3qzyEHKCkSriVSQJM7eXcgsEPOKbo 40zVVY/9wN/XR7QQ9WAfScsUJKQ7SvIAIRQ1P1wen26oe6zcDX9AngBa6j9bjMqk s0hqwuTS+Iv1qOd6g19km2axw5h/dDWxqDq6rhujq2t99Ke2KFmmIxGH1+N6gSqq gSG1Ozu2nOEAPn+iGncxBnJGQSwOVxJLfEs+XXz1/XXk8xhq1uzvFbCOw52SlzY/ WqQkZ837aUGEAZdeT27S93Pi1Es9te5YJqIbRjK/TjQwOyfMAE+xiJXaS6qvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsJVs7tUg37/hXHr1Q75Sv2H6CX4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyhMA0GCSqG SIb3DQEBCwUAA4IBAQAvF+WpDxMt+nnPddh6F39sDYbbovMBVwh2GAKuTEEBlWEb D4zUQVOJcUrRP/dL6K18mYCb1WqIdgTb9DLEnVdeT2J9K8bgw3YCRmwDyY+Ba9mM ygIk5M0Gda84CuBscWW8Op+LINBfKCaVQRTTJOunwqYbDnS2jJm9UEwKQE0yoV86 jzIYSLu+2wSI8y7aXcmhVW4ZAwQKez/zxceO7daHNYdwtor9YlR76nIdnEKWgi4m OJMY81p9jnk/Ymk9qFZmXRaPZYdrBN9Jwy7hKpqy6oE0gXdmrojhTgNfsIYR0045 pE15EI9E7WlJX8de70cksc4OOjt0+x8Xz24P+3dx -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org