$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 67Z25USx4D5OzMzf6LByO9HN3Od2QTOGzH6Hu6i+DTU= Subject key identifier: 7B:8C:B8:1E:95:4A:33:9B:09:D9:79:FD:FB:5F:E6:C9:1D:FD:4B:78 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5AD959B41053BBBCE2312A3031664BA21196D23D Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:04 +0000 ROA not before: Sun 11 Aug 2024 10:55:04 +0000 ROA not after: Sun 10 Aug 2025 11:00:04 +0000 asID: 63859 IP address blocks: 158.140.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d9:59:b4:10:53:bb:bc:e2:31:2a:30:31:66:4b:a2:11:96:d2:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:04 2024 GMT Not After : Aug 10 11:00:04 2025 GMT Subject: CN=7B8CB81E954A339B09D979FDFB5FE6C91DFD4B78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e3:14:19:80:5b:5f:85:66:87:8c:d1:61:d0: 58:d3:22:6c:a1:8b:d9:d9:2c:e4:b0:18:fa:dc:91: 07:7f:6c:6c:ce:86:3f:89:24:2c:d5:20:83:a5:5b: 6a:b2:2c:f8:32:7c:03:12:6d:dc:ee:de:83:0a:25: 29:f6:d3:d7:28:48:4a:57:08:9e:ef:8c:a8:f2:64: e4:b5:ce:36:16:50:58:f6:39:3d:54:36:48:c6:19: ab:90:17:0c:a6:07:a3:64:36:2f:0c:26:fd:f9:10: b3:fb:cc:21:d4:eb:84:8d:6c:71:1b:07:23:d0:7c: 8b:9d:73:18:dc:ed:b0:f6:03:dc:56:5a:ff:66:43: cd:84:dd:66:ef:72:93:76:7f:70:63:19:1d:ec:31: 22:cc:96:a7:6a:74:a9:28:15:bc:a8:b8:e9:0e:a3: ac:7a:ad:f4:a0:c2:97:98:19:75:36:19:d4:72:80: 55:36:25:8a:6a:44:1c:93:22:39:8e:4c:02:68:24: 11:8e:b8:8c:8e:76:23:65:42:4e:7b:d2:1b:65:85: 70:c6:37:81:8f:34:29:53:4e:31:1f:9a:83:98:8c: 57:62:de:1f:57:53:b4:78:a2:76:77:84:b1:dd:80: c9:5b:04:10:5a:c9:a7:34:37:c7:15:0f:2a:6a:51: e5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8C:B8:1E:95:4A:33:9B:09:D9:79:FD:FB:5F:E6:C9:1D:FD:4B:78 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.170.0/24 Signature Algorithm: sha256WithRSAEncryption 41:f6:c0:d3:7b:83:08:34:a5:5e:84:de:39:21:d0:29:12:37: 40:bf:fc:ae:fb:e0:94:97:cd:76:b9:45:c9:39:c9:41:25:16: 0b:09:cd:7b:c5:d6:ed:d7:ad:3c:2d:5e:31:18:47:cf:bb:f0: 5d:0a:f4:5f:13:59:f7:52:c9:8a:71:a6:7b:17:2c:7c:ab:7d: be:df:35:3e:ec:7c:94:f2:d2:42:0b:0f:88:53:fb:66:ef:e6: 54:2a:e1:af:af:91:3b:81:46:7f:03:58:67:39:5b:27:fa:0d: ee:f9:d0:cf:18:5c:90:bf:ff:51:c5:2a:a4:0a:82:5b:d3:a8: 19:c0:38:e8:4e:35:19:7b:2d:a7:74:ef:cb:25:b1:6d:4e:a8: 04:e0:ab:fe:bc:4a:70:94:0d:ed:30:14:37:54:ca:ad:a8:a0: ef:6f:c7:7b:f0:63:e1:77:7e:cc:6c:3a:e4:fa:fa:03:df:e2: f3:8b:cb:97:82:88:db:a1:0f:c5:d7:8a:de:13:6b:63:28:63: 36:6e:5c:97:e8:2e:3f:bc:40:c5:8d:ef:d5:6a:14:e8:a0:3f: 03:fd:ff:70:8f:0b:cd:4e:c2:c8:63:fb:0c:72:36:78:56:88: 1d:64:a2:d8:a3:38:04:fe:af:fa:d7:d6:9a:6a:39:57:c7:65: c2:01:89:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWtlZtBBTu7ziMSowMWZLohGW0j0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDRaFw0yNTA4MTAxMTAwMDRaMDMxMTAvBgNV BAMTKDdCOENCODFFOTU0QTMzOUIwOUQ5NzlGREZCNUZFNkM5MURGRDRCNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX4xQZgFtfhWaHjNFh0FjTImyh i9nZLOSwGPrckQd/bGzOhj+JJCzVIIOlW2qyLPgyfAMSbdzu3oMKJSn209coSEpX CJ7vjKjyZOS1zjYWUFj2OT1UNkjGGauQFwymB6NkNi8MJv35ELP7zCHU64SNbHEb ByPQfIudcxjc7bD2A9xWWv9mQ82E3WbvcpN2f3BjGR3sMSLMlqdqdKkoFbyouOkO o6x6rfSgwpeYGXU2GdRygFU2JYpqRByTIjmOTAJoJBGOuIyOdiNlQk570htlhXDG N4GPNClTTjEfmoOYjFdi3h9XU7R4onZ3hLHdgMlbBBBayac0N8cVDypqUeXXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe4y4HpVKM5sJ2Xn9+1/myR39S3gwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyqMA0GCSqG SIb3DQEBCwUAA4IBAQBB9sDTe4MINKVehN45IdApEjdAv/yu++CUl812uUXJOclB JRYLCc17xdbt1608LV4xGEfPu/BdCvRfE1n3UsmKcaZ7Fyx8q32+3zU+7HyU8tJC Cw+IU/tm7+ZUKuGvr5E7gUZ/A1hnOVsn+g3u+dDPGFyQv/9RxSqkCoJb06gZwDjo TjUZey2ndO/LJbFtTqgE4Kv+vEpwlA3tMBQ3VMqtqKDvb8d78GPhd37MbDrk+voD 3+Lzi8uXgojboQ/F14reE2tjKGM2blyX6C4/vEDFje/VahTooD8D/f9wjwvNTsLI Y/sMcjZ4VogdZKLYozgE/q/619aaajlXx2XCAYni -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org