$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 8Dd7GkheRC96DnBzYxGfUzCVnyWIGnnS61Ok7AyYnwE= Subject key identifier: 9E:66:3A:04:D3:B8:50:CE:86:94:27:64:13:1A:FD:53:4D:84:F3:8F Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 189EF9D96B56681BF3956D8F379A33578F764B5C Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:06 +0000 ROA not before: Sun 11 Aug 2024 10:55:06 +0000 ROA not after: Sun 10 Aug 2025 11:00:06 +0000 asID: 63859 IP address blocks: 158.140.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:9e:f9:d9:6b:56:68:1b:f3:95:6d:8f:37:9a:33:57:8f:76:4b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:06 2024 GMT Not After : Aug 10 11:00:06 2025 GMT Subject: CN=9E663A04D3B850CE86942764131AFD534D84F38F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ee:0b:36:82:0f:7a:7c:f1:5b:18:ff:88:70: ab:0e:ce:8a:8b:4a:93:2f:f5:24:5b:57:a6:19:c9: 4b:75:e0:0a:f7:12:63:3e:96:6a:ad:ac:42:fd:78: 53:a9:cd:d8:cc:f2:5c:65:94:88:98:62:3a:82:75: 01:1e:89:18:52:97:ba:a4:e6:0a:bf:64:2e:c4:25: 47:67:de:24:7c:5c:de:e8:89:9f:c7:aa:30:a1:b7: d9:03:bb:84:77:9c:33:54:e2:02:15:37:4f:96:60: f9:f1:b3:c6:6a:e6:d5:08:b9:57:fa:2f:94:ab:a5: 3b:cc:14:02:27:24:bb:60:a2:c7:7c:24:52:51:b9: a0:05:3e:12:b1:43:c1:a0:11:bf:f6:2a:9f:39:06: 61:7d:37:84:97:2d:5a:5c:d9:cb:a3:f1:37:74:46: b3:6c:25:5a:63:00:a6:af:29:76:57:cd:cd:80:3e: d2:96:7b:1c:45:44:63:35:7a:ca:f6:11:94:4b:93: 76:51:bf:be:53:71:f8:5a:f3:ca:be:fb:4e:5a:85: 61:ad:25:d1:45:00:f8:bf:0f:07:b8:0f:f8:22:a6: d5:e6:ac:f4:03:ea:e8:f4:67:f2:0e:7b:73:ba:6d: 07:d5:80:6e:dc:d4:97:e9:f5:87:3a:64:ff:57:89: b6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:66:3A:04:D3:B8:50:CE:86:94:27:64:13:1A:FD:53:4D:84:F3:8F X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.174.0/24 Signature Algorithm: sha256WithRSAEncryption a7:e3:91:b9:77:e0:dc:b9:0a:5d:ef:d8:51:02:28:15:88:4d: fa:8f:fd:84:f5:1b:8a:5c:8f:2f:f8:ca:04:dc:4b:b7:21:b5: 7f:9e:43:2a:1a:86:0d:9e:b3:41:f0:e9:88:ea:8b:f1:72:79: 2a:97:bc:bf:75:0e:40:58:45:41:f8:13:0d:b8:b4:5f:a8:3b: c5:b0:56:68:08:78:aa:b3:a8:a1:f7:dc:9c:1f:cf:ed:ad:f1: c4:3d:f9:4e:97:c5:4f:a4:4b:96:53:dd:3a:56:f9:37:43:42: 63:31:03:bd:52:e2:18:cf:1e:ea:5a:2d:00:03:9c:57:b4:8a: 62:08:e9:02:21:97:98:87:f3:27:d5:85:02:ec:74:aa:ec:f7: 5d:92:4e:16:46:c5:bf:ae:ad:a2:ab:bb:af:86:d5:48:1b:a6: 90:f0:8b:d1:48:f1:7d:ba:d7:69:c8:69:2f:10:08:4e:38:ac: eb:21:96:85:67:3c:c5:bd:77:57:b2:3b:df:17:85:b8:f2:18: 18:7b:d7:ff:eb:d8:e2:5c:d8:37:f6:1b:2f:f2:14:28:93:05: 2f:13:1b:2e:c8:46:da:ea:51:04:df:8a:00:c8:70:b8:97:5d: 06:28:2b:72:1d:98:9d:7f:40:28:f4:f4:86:b7:98:42:bf:80: 74:ae:be:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGJ752WtWaBvzlW2PN5ozV492S1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDZaFw0yNTA4MTAxMTAwMDZaMDMxMTAvBgNV BAMTKDlFNjYzQTA0RDNCODUwQ0U4Njk0Mjc2NDEzMUFGRDUzNEQ4NEYzOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc7gs2gg96fPFbGP+IcKsOzoqL SpMv9SRbV6YZyUt14Ar3EmM+lmqtrEL9eFOpzdjM8lxllIiYYjqCdQEeiRhSl7qk 5gq/ZC7EJUdn3iR8XN7oiZ/HqjCht9kDu4R3nDNU4gIVN0+WYPnxs8Zq5tUIuVf6 L5SrpTvMFAInJLtgosd8JFJRuaAFPhKxQ8GgEb/2Kp85BmF9N4SXLVpc2cuj8Td0 RrNsJVpjAKavKXZXzc2APtKWexxFRGM1esr2EZRLk3ZRv75Tcfha88q++05ahWGt JdFFAPi/Dwe4D/giptXmrPQD6uj0Z/IOe3O6bQfVgG7c1Jfp9Yc6ZP9XibYzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnmY6BNO4UM6GlCdkExr9U02E848wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyuMA0GCSqG SIb3DQEBCwUAA4IBAQCn45G5d+DcuQpd79hRAigViE36j/2E9RuKXI8v+MoE3Eu3 IbV/nkMqGoYNnrNB8OmI6ovxcnkql7y/dQ5AWEVB+BMNuLRfqDvFsFZoCHiqs6ih 99ycH8/trfHEPflOl8VPpEuWU906Vvk3Q0JjMQO9UuIYzx7qWi0AA5xXtIpiCOkC IZeYh/Mn1YUC7HSq7Pddkk4WRsW/rq2iq7uvhtVIG6aQ8IvRSPF9utdpyGkvEAhO OKzrIZaFZzzFvXdXsjvfF4W48hgYe9f/69jiXNg39hsv8hQokwUvExsuyEba6lEE 34oAyHC4l10GKCtyHZidf0Ao9PSGt5hCv4B0rr6K -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org