$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: MqNwi/9+XsS1zrZa+YAeiItaxiKp5aOMh29UQFrxIMk= Subject key identifier: C8:D8:4C:86:A6:A3:9F:C7:8A:E5:12:46:06:3B:B5:9B:F5:CB:78:08 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 53351D1C54039A182BE2B97681DBAE113FED4B1A Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:02 +0000 ROA not before: Sun 11 Aug 2024 10:55:02 +0000 ROA not after: Sun 10 Aug 2025 11:00:02 +0000 asID: 63859 IP address blocks: 158.140.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:35:1d:1c:54:03:9a:18:2b:e2:b9:76:81:db:ae:11:3f:ed:4b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:02 2024 GMT Not After : Aug 10 11:00:02 2025 GMT Subject: CN=C8D84C86A6A39FC78AE51246063BB59BF5CB7808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:db:6b:d9:32:bf:5f:2e:2a:72:b1:8a:7e:3d: 56:5e:12:c5:8e:33:63:db:56:e2:6f:d5:b0:f3:01: 74:8d:d0:c5:66:12:07:f0:6f:50:25:92:1d:16:9c: af:53:5f:33:b1:ad:9a:81:35:23:21:f8:b3:9a:68: ac:72:ba:b4:2b:d4:8a:cf:59:c4:fc:69:cd:51:ee: 5e:e9:9d:61:7d:2e:00:1f:98:69:7e:48:16:18:68: 6b:a5:47:9f:12:7d:27:17:0a:87:bd:4e:29:33:06: 6d:1f:7e:e6:03:c3:b2:81:c8:c3:e2:00:87:b1:7e: be:86:4c:e8:e1:35:52:c1:7c:37:e7:15:4d:5c:44: b0:c1:9f:1a:9f:95:ce:ad:4d:fe:d1:34:56:54:a0: 09:e9:50:bb:51:7e:96:e1:fc:d7:4c:05:ca:69:53: 71:2c:ab:06:02:54:e5:bb:2b:08:8e:05:99:5d:e1: 8f:16:79:35:c8:0b:8e:57:08:f4:ed:69:30:ec:1c: da:76:bb:9c:bf:63:1d:0b:61:35:cc:79:d0:41:9e: 92:df:ba:ff:f5:2c:fd:29:cf:24:19:fb:16:c5:f6: 1c:51:5a:ce:5e:67:3d:f8:fc:f0:c6:ff:12:f0:7b: d1:75:2a:30:d6:97:3c:76:75:3b:19:85:1d:99:db: 36:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D8:4C:86:A6:A3:9F:C7:8A:E5:12:46:06:3B:B5:9B:F5:CB:78:08 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.166.0/24 Signature Algorithm: sha256WithRSAEncryption 51:9f:9e:c8:34:15:d1:5f:21:4b:af:53:ee:ae:f1:53:53:07: 6f:92:62:bd:9b:07:9d:e8:dd:49:9b:74:fb:4a:8f:36:04:ee: 4d:63:d4:0a:e8:01:8d:15:2e:04:cc:6a:12:5e:e3:12:98:4a: df:cf:0f:77:35:02:cd:8c:40:04:b9:2f:83:a2:e6:38:56:cd: 82:37:a7:0e:44:f6:49:e0:15:2a:ce:1e:06:45:b7:28:1e:15: 0f:4d:be:5b:74:58:29:17:83:62:f3:09:7f:0e:90:5f:27:81: 92:85:49:d0:f2:71:d1:0c:29:4e:bd:5c:84:31:3c:19:94:da: 20:08:b2:b6:7c:48:65:32:82:53:a5:75:87:75:0b:11:f4:b6: 05:bb:ae:86:89:88:bf:89:4e:a1:b5:0a:23:e4:9b:80:52:01: 35:86:f1:94:a1:44:38:09:63:57:4b:83:21:02:e1:8e:f9:7f: bd:97:25:f9:36:07:77:d1:2a:6b:aa:c7:0c:9d:59:ab:67:f4: 1b:6d:d8:ef:7f:46:82:16:0b:5a:a2:fb:d9:fa:4c:42:ef:a0: 21:34:48:28:9f:ca:72:9e:6e:d2:05:fa:5f:81:89:0d:8f:6c: 94:3c:db:46:ad:bf:cf:5a:c0:87:bf:9e:91:b7:7f:7d:b1:79: 89:4f:9f:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUzUdHFQDmhgr4rl2gduuET/tSxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDJaFw0yNTA4MTAxMTAwMDJaMDMxMTAvBgNV BAMTKEM4RDg0Qzg2QTZBMzlGQzc4QUU1MTI0NjA2M0JCNTlCRjVDQjc4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf22vZMr9fLipysYp+PVZeEsWO M2PbVuJv1bDzAXSN0MVmEgfwb1Alkh0WnK9TXzOxrZqBNSMh+LOaaKxyurQr1IrP WcT8ac1R7l7pnWF9LgAfmGl+SBYYaGulR58SfScXCoe9TikzBm0ffuYDw7KByMPi AIexfr6GTOjhNVLBfDfnFU1cRLDBnxqflc6tTf7RNFZUoAnpULtRfpbh/NdMBcpp U3EsqwYCVOW7KwiOBZld4Y8WeTXIC45XCPTtaTDsHNp2u5y/Yx0LYTXMedBBnpLf uv/1LP0pzyQZ+xbF9hxRWs5eZz34/PDG/xLwe9F1KjDWlzx2dTsZhR2Z2zZLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyNhMhqajn8eK5RJGBju1m/XLeAgwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoymMA0GCSqG SIb3DQEBCwUAA4IBAQBRn57INBXRXyFLr1PurvFTUwdvkmK9mwed6N1Jm3T7So82 BO5NY9QK6AGNFS4EzGoSXuMSmErfzw93NQLNjEAEuS+DouY4Vs2CN6cORPZJ4BUq zh4GRbcoHhUPTb5bdFgpF4Ni8wl/DpBfJ4GShUnQ8nHRDClOvVyEMTwZlNogCLK2 fEhlMoJTpXWHdQsR9LYFu66GiYi/iU6htQoj5JuAUgE1hvGUoUQ4CWNXS4MhAuGO +X+9lyX5Ngd30SprqscMnVmrZ/Qbbdjvf0aCFgtaovvZ+kxC76AhNEgon8pynm7S BfpfgYkNj2yUPNtGrb/PWsCHv56Rt399sXmJT58U -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org