$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: /CudCrCMBnJXhLDmiSFEsWoONy/3OPxt1BYejFAI8AE= Subject key identifier: 5A:79:B1:91:4A:8D:6A:A7:E0:D1:1B:75:98:9B:0A:1F:D3:11:FB:D1 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5616502953D895B1A62518E0E6D6C32541A7CA1F Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:05 +0000 ROA not before: Sun 11 Aug 2024 10:55:05 +0000 ROA not after: Sun 10 Aug 2025 11:00:05 +0000 asID: 63859 IP address blocks: 158.140.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:16:50:29:53:d8:95:b1:a6:25:18:e0:e6:d6:c3:25:41:a7:ca:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:05 2024 GMT Not After : Aug 10 11:00:05 2025 GMT Subject: CN=5A79B1914A8D6AA7E0D11B75989B0A1FD311FBD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:40:2f:32:a8:04:85:cd:e8:65:be:3a:ae:a1: 76:b4:27:15:97:8f:24:55:e1:a5:7d:8f:43:91:57: a4:72:4a:99:c7:06:4e:9c:9e:1d:9e:5a:c1:f9:d7: e4:01:c4:da:b4:2a:e3:6b:d2:53:d2:53:58:9d:65: 3f:b3:fc:43:ca:de:ee:7f:f6:9a:b6:1f:7f:af:77: 38:ad:53:fe:47:0c:22:83:53:3c:7d:82:72:e3:7d: 96:c0:61:e8:7e:2d:7b:2e:7e:ad:d1:d4:86:af:5a: ce:9d:f3:ed:a5:cd:ec:ff:d8:86:6d:1f:4a:b6:f0: d6:1c:64:83:0c:d2:3e:2e:ae:bd:a2:2c:db:a6:2b: cc:41:21:59:b4:b9:9f:94:18:cc:e6:c9:a2:14:c5: 21:41:60:2a:6b:f1:84:f2:30:c2:08:2e:ea:c6:fa: d1:13:49:2f:48:19:6e:59:ba:70:a0:5b:83:40:b7: db:84:42:78:02:9b:ef:a8:ba:9d:79:63:c7:35:40: c4:60:f0:95:c1:f3:24:43:13:48:f6:5b:1c:f3:a5: eb:2c:25:b9:fc:ae:71:a6:be:fa:bc:8e:a6:bf:d0: fe:94:cc:64:e8:38:5e:ef:7c:e8:07:36:0b:65:6a: ef:4e:bd:d4:a0:76:3b:c6:2b:4d:4b:35:ad:23:72: db:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:79:B1:91:4A:8D:6A:A7:E0:D1:1B:75:98:9B:0A:1F:D3:11:FB:D1 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.169.0/24 Signature Algorithm: sha256WithRSAEncryption ac:cd:95:8e:7f:23:cc:09:80:a9:19:33:be:dc:b7:f3:47:0b: 89:1b:1e:74:f5:9f:c0:a8:07:9d:d4:70:f2:4b:9f:91:12:ea: 67:75:33:0c:7f:54:ba:fa:3b:f7:9b:32:3f:56:22:c1:ed:1d: d9:93:0e:60:fe:c0:be:11:da:ba:62:d7:d2:66:04:fd:17:a5: 17:f2:21:8f:de:1d:38:1a:93:9f:cb:9e:c4:98:93:f4:41:0f: 4b:a5:4e:14:7d:bc:cb:25:eb:c9:75:ac:1f:26:18:7b:2f:ea: fe:44:df:ff:d2:df:13:b7:07:77:86:af:fa:5c:23:b8:f7:77: 8e:94:82:a6:1e:48:07:44:6a:92:67:e9:f5:60:3a:25:9d:6c: 67:c0:d1:c4:82:1a:7a:23:10:76:87:ad:50:3f:e8:de:c9:0e: e9:46:ce:28:ca:3d:1d:b8:d8:48:09:24:71:b7:f6:d3:ff:36: 88:df:41:18:2e:78:0c:78:7d:e2:4d:7c:5f:a0:f0:15:b5:0f: 5a:d9:b0:9d:34:13:02:aa:a5:47:21:da:2a:02:b2:4f:ce:08: 35:f7:51:0b:f6:b2:06:7f:5b:60:ef:2b:23:ce:00:2c:52:ab: a1:82:b3:66:9c:1a:59:0a:ac:3f:e8:0f:23:ac:51:28:0e:ea: 24:e8:20:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVhZQKVPYlbGmJRjg5tbDJUGnyh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDVaFw0yNTA4MTAxMTAwMDVaMDMxMTAvBgNV BAMTKDVBNzlCMTkxNEE4RDZBQTdFMEQxMUI3NTk4OUIwQTFGRDMxMUZCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZQC8yqASFzehlvjquoXa0JxWX jyRV4aV9j0ORV6RySpnHBk6cnh2eWsH51+QBxNq0KuNr0lPSU1idZT+z/EPK3u5/ 9pq2H3+vdzitU/5HDCKDUzx9gnLjfZbAYeh+LXsufq3R1IavWs6d8+2lzez/2IZt H0q28NYcZIMM0j4urr2iLNumK8xBIVm0uZ+UGMzmyaIUxSFBYCpr8YTyMMIILurG +tETSS9IGW5ZunCgW4NAt9uEQngCm++oup15Y8c1QMRg8JXB8yRDE0j2Wxzzpess Jbn8rnGmvvq8jqa/0P6UzGToOF7vfOgHNgtlau9OvdSgdjvGK01LNa0jctvfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWnmxkUqNaqfg0Rt1mJsKH9MR+9EwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoypMA0GCSqG SIb3DQEBCwUAA4IBAQCszZWOfyPMCYCpGTO+3LfzRwuJGx509Z/AqAed1HDyS5+R EupndTMMf1S6+jv3mzI/ViLB7R3Zkw5g/sC+Edq6YtfSZgT9F6UX8iGP3h04GpOf y57EmJP0QQ9LpU4UfbzLJevJdawfJhh7L+r+RN//0t8Ttwd3hq/6XCO493eOlIKm HkgHRGqSZ+n1YDolnWxnwNHEghp6IxB2h61QP+jeyQ7pRs4oyj0duNhICSRxt/bT /zaI30EYLngMeH3iTXxfoPAVtQ9a2bCdNBMCqqVHIdoqArJPzgg191EL9rIGf1tg 7ysjzgAsUquhgrNmnBpZCqw/6A8jrFEoDuok6CB2 -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org