$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 8TovESFVKXPDkw35M7/l8LviP0LupwKPeOiPvvo6g8M= Subject key identifier: EF:EC:63:0E:BE:AC:28:4F:0C:1F:3E:8E:A3:C0:66:96:22:0F:24:26 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 653FEEC0F67747A6013C6EB0B8EFCC31C3FF8E85 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:03 +0000 ROA not before: Sun 11 Aug 2024 10:55:03 +0000 ROA not after: Sun 10 Aug 2025 11:00:03 +0000 asID: 63859 IP address blocks: 158.140.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3f:ee:c0:f6:77:47:a6:01:3c:6e:b0:b8:ef:cc:31:c3:ff:8e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:03 2024 GMT Not After : Aug 10 11:00:03 2025 GMT Subject: CN=EFEC630EBEAC284F0C1F3E8EA3C06696220F2426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:af:18:99:61:9d:b0:c1:9f:09:55:01:ed:50: 40:f2:20:a9:da:64:9d:28:f5:cc:73:70:66:9e:ed: 36:9d:fc:28:15:66:ed:c1:a9:ec:27:ee:a8:a2:76: 2c:95:9b:14:99:10:c4:2b:8c:6e:d1:92:ec:7d:b5: 1b:22:89:38:14:d9:07:ea:0c:f5:a5:fb:6a:c0:6e: 25:1b:13:13:8a:99:b9:9a:57:f9:03:b7:94:94:ec: 68:67:db:ee:83:ae:47:d4:20:1b:6c:c6:43:b5:4d: 77:8d:b2:12:4e:7b:98:13:45:35:7a:57:6a:ae:ad: 3c:32:9b:d1:18:5e:bf:6f:b1:7e:af:aa:a3:1b:10: c4:ec:4e:5d:a6:40:8d:f3:41:ea:b4:6a:22:84:b1: dd:85:ad:a0:40:98:9e:7a:11:82:f3:d8:8e:db:bc: f1:a7:58:97:cf:31:7c:72:96:e0:91:e1:60:7d:90: 25:7d:27:45:7e:5c:a5:71:eb:88:a9:0b:f2:53:c5: 06:45:ba:2a:19:a4:0d:42:28:99:73:37:cc:74:3a: 84:1e:33:83:5f:25:ef:41:d8:2b:50:8e:1d:97:f2: 51:92:80:75:ad:87:97:b2:2f:3f:d9:22:58:c7:4a: 5d:c4:fa:e9:60:ae:38:da:09:89:4c:16:b8:4b:04: b6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:EC:63:0E:BE:AC:28:4F:0C:1F:3E:8E:A3:C0:66:96:22:0F:24:26 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.167.0/24 Signature Algorithm: sha256WithRSAEncryption b2:4e:4f:f7:93:39:e4:5c:c8:5d:66:81:5a:38:7c:f5:9e:fa: ae:24:bd:69:26:a8:74:62:7c:a6:90:e4:15:9a:36:99:22:f3: 64:4e:28:24:32:18:27:f2:50:06:8f:b4:a6:b8:57:7b:7d:e6: e7:d9:b2:28:f5:ac:9d:67:2f:12:bf:e4:6f:32:ef:3e:af:6d: 48:8b:c3:73:d7:4f:84:1b:ec:4e:27:20:21:ed:b4:ca:ea:51: 03:13:08:89:aa:f8:95:c6:ba:49:96:71:49:6d:c9:42:c7:4f: f2:ce:7a:23:38:ec:e8:32:0e:34:fc:4a:47:6b:9f:52:9f:54: 8b:80:31:91:70:82:40:a5:2b:4e:8f:2d:d9:06:ba:38:0d:9f: c4:7f:cf:14:7a:1d:cd:0a:b6:ff:e5:e1:4e:4d:87:97:fe:e7: 2f:ec:63:7c:02:d7:df:2c:95:f8:b3:87:91:42:dd:e6:cc:dd: 18:0b:4d:58:c3:36:77:24:45:36:75:d3:e3:11:ca:76:12:ba: a9:e4:0a:5c:71:f1:9a:8c:4e:38:54:32:32:a9:d1:ce:43:aa: d8:f1:67:87:34:be:11:05:97:db:ff:a8:eb:e6:ff:ad:88:9a: 6f:0a:8e:d3:1b:c5:eb:f6:f4:bd:b4:bb:8a:0e:38:0f:dc:da: d1:83:e8:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZT/uwPZ3R6YBPG6wuO/MMcP/joUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDNaFw0yNTA4MTAxMTAwMDNaMDMxMTAvBgNV BAMTKEVGRUM2MzBFQkVBQzI4NEYwQzFGM0U4RUEzQzA2Njk2MjIwRjI0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjrxiZYZ2wwZ8JVQHtUEDyIKna ZJ0o9cxzcGae7Tad/CgVZu3Bqewn7qiidiyVmxSZEMQrjG7Rkux9tRsiiTgU2Qfq DPWl+2rAbiUbExOKmbmaV/kDt5SU7Ghn2+6DrkfUIBtsxkO1TXeNshJOe5gTRTV6 V2qurTwym9EYXr9vsX6vqqMbEMTsTl2mQI3zQeq0aiKEsd2FraBAmJ56EYLz2I7b vPGnWJfPMXxyluCR4WB9kCV9J0V+XKVx64ipC/JTxQZFuioZpA1CKJlzN8x0OoQe M4NfJe9B2CtQjh2X8lGSgHWth5eyLz/ZIljHSl3E+ulgrjjaCYlMFrhLBLbhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7+xjDr6sKE8MHz6Oo8BmliIPJCYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoynMA0GCSqG SIb3DQEBCwUAA4IBAQCyTk/3kznkXMhdZoFaOHz1nvquJL1pJqh0YnymkOQVmjaZ IvNkTigkMhgn8lAGj7SmuFd7febn2bIo9aydZy8Sv+RvMu8+r21Ii8Nz10+EG+xO JyAh7bTK6lEDEwiJqviVxrpJlnFJbclCx0/yznojOOzoMg40/EpHa59Sn1SLgDGR cIJApStOjy3ZBro4DZ/Ef88Ueh3NCrb/5eFOTYeX/ucv7GN8AtffLJX4s4eRQt3m zN0YC01YwzZ3JEU2ddPjEcp2Erqp5ApccfGajE44VDIyqdHOQ6rY8WeHNL4RBZfb /6jr5v+tiJpvCo7TG8Xr9vS9tLuKDjgP3NrRg+jK -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org