$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: gP/znVQ3qlKFWq3eNt4SS3dmOnUyBaGkZI/Iov3yvjo= Subject key identifier: 65:F7:6F:FA:FC:27:B1:F2:B8:D9:F9:F2:7D:54:3B:B1:07:24:1F:73 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 320D598696A7CBA9677C0A8C02C8CDB493F5BBFC Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:04 +0000 ROA not before: Sun 11 Aug 2024 10:55:04 +0000 ROA not after: Sun 10 Aug 2025 11:00:04 +0000 asID: 63859 IP address blocks: 158.140.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:0d:59:86:96:a7:cb:a9:67:7c:0a:8c:02:c8:cd:b4:93:f5:bb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:04 2024 GMT Not After : Aug 10 11:00:04 2025 GMT Subject: CN=65F76FFAFC27B1F2B8D9F9F27D543BB107241F73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5f:cc:9c:ed:56:92:8e:cb:aa:6b:80:22:88: 25:ce:62:2e:fa:45:fb:28:a7:96:69:cf:8f:c0:64: 57:21:f6:4d:e5:39:57:79:84:d5:ce:ea:2d:17:00: 56:59:37:65:f3:e0:dd:f7:a5:66:ce:ac:65:a6:1d: 7d:fc:d0:a7:c2:93:5f:3a:ae:12:19:f4:5f:81:85: 0b:c3:53:36:d7:cb:d7:e8:1b:91:83:c1:fb:0e:9e: fc:b6:87:4a:dc:af:5b:a8:dd:16:02:b7:35:77:9b: 1c:67:b1:61:7c:20:96:35:67:9f:d4:ba:24:cb:44: 90:75:54:90:e4:ae:e7:7e:bf:3a:b7:7a:2e:dc:0e: c5:9b:4b:00:b7:48:eb:fe:de:fc:fb:4c:91:ba:49: c0:85:be:13:d2:8b:7c:f9:b1:f5:4d:de:fa:bd:59: 0b:e8:dd:41:90:5c:a3:16:51:6b:ca:f9:02:f9:c7: 0b:04:3f:53:50:08:79:20:5a:d3:d1:6c:8b:11:27: d5:78:9f:72:f3:86:20:2c:c4:ad:51:e0:cf:88:3e: d5:de:f2:6a:35:35:dd:c6:75:6c:b8:da:74:34:88: 05:cd:d4:9d:16:cf:35:eb:08:3e:af:88:f6:c3:d1: 0c:fb:df:64:6d:91:25:dd:ae:ea:8b:77:86:66:52: 95:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F7:6F:FA:FC:27:B1:F2:B8:D9:F9:F2:7D:54:3B:B1:07:24:1F:73 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.168.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c9:a8:0d:91:9e:6b:2e:83:bd:a1:71:f3:34:26:e2:ca:e7: a2:49:5c:6a:a8:8a:d1:44:20:fa:28:44:4f:77:92:f6:00:37: 71:e6:3e:df:39:3f:b5:f3:f4:69:ac:c6:e2:d6:b2:98:2d:7b: ec:30:c4:9e:25:7a:a1:2a:98:0c:f2:be:de:b8:50:ff:8b:b4: 4f:67:c0:cc:c5:0e:ff:2c:21:1f:27:dd:d1:a8:62:ed:c2:77: 6c:2e:0a:67:cf:10:db:4f:b8:5b:f1:b9:08:ff:f2:70:a9:42: 6b:c3:36:ab:e1:9b:e8:7c:62:c3:ae:9e:5e:52:88:4a:20:53: 97:0c:e5:f7:e6:73:3c:2c:5c:f6:6a:ea:2c:28:19:89:94:67: 27:a2:96:7d:d5:65:e8:12:05:d0:d4:7b:4b:24:4b:8f:2b:38: 90:7e:d6:05:ca:6b:87:ee:54:64:b4:2f:fe:5e:3f:b7:73:8a: 6e:44:d6:05:03:56:f7:da:57:f0:05:ee:70:83:09:09:9a:1c: a3:1f:2d:fb:8e:d4:81:22:de:51:b0:35:8a:1d:1f:f3:89:05: d0:6d:09:7d:32:8f:bd:26:a5:45:e1:f5:be:b3:75:f3:c5:87: 5d:91:38:30:97:a4:53:7b:a3:8f:63:76:db:6a:31:a5:00:a9: 1e:a1:13:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMg1Zhpany6lnfAqMAsjNtJP1u/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDRaFw0yNTA4MTAxMTAwMDRaMDMxMTAvBgNV BAMTKDY1Rjc2RkZBRkMyN0IxRjJCOEQ5RjlGMjdENTQzQkIxMDcyNDFGNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSX8yc7VaSjsuqa4AiiCXOYi76 Rfsop5Zpz4/AZFch9k3lOVd5hNXO6i0XAFZZN2Xz4N33pWbOrGWmHX380KfCk186 rhIZ9F+BhQvDUzbXy9foG5GDwfsOnvy2h0rcr1uo3RYCtzV3mxxnsWF8IJY1Z5/U uiTLRJB1VJDkrud+vzq3ei7cDsWbSwC3SOv+3vz7TJG6ScCFvhPSi3z5sfVN3vq9 WQvo3UGQXKMWUWvK+QL5xwsEP1NQCHkgWtPRbIsRJ9V4n3LzhiAsxK1R4M+IPtXe 8mo1Nd3GdWy42nQ0iAXN1J0WzzXrCD6viPbD0Qz732RtkSXdruqLd4ZmUpWNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZfdv+vwnsfK42fnyfVQ7sQckH3MwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyoMA0GCSqG SIb3DQEBCwUAA4IBAQACyagNkZ5rLoO9oXHzNCbiyueiSVxqqIrRRCD6KERPd5L2 ADdx5j7fOT+18/RprMbi1rKYLXvsMMSeJXqhKpgM8r7euFD/i7RPZ8DMxQ7/LCEf J93RqGLtwndsLgpnzxDbT7hb8bkI//JwqUJrwzar4ZvofGLDrp5eUohKIFOXDOX3 5nM8LFz2auosKBmJlGcnopZ91WXoEgXQ1HtLJEuPKziQftYFymuH7lRktC/+Xj+3 c4puRNYFA1b32lfwBe5wgwkJmhyjHy37jtSBIt5RsDWKHR/ziQXQbQl9Mo+9JqVF 4fW+s3XzxYddkTgwl6RTe6OPY3bbajGlAKkeoRNV -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org