$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa File: 3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa (raw, json) Hash identifier: aESswjp8Stmu/BLAa0aZI2fCXh1NtWBi3keqewDdnFQ= Subject key identifier: D3:5C:03:C0:16:25:29:DC:66:25:10:45:9E:B5:8C:F6:58:34:36:86 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 48A77CD5A1F7F773B13FEB8BF93E3B5DAC692705 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa Signing time: Fri 25 Oct 2024 05:01:30 +0000 ROA not before: Fri 25 Oct 2024 04:56:30 +0000 ROA not after: Fri 24 Oct 2025 05:01:30 +0000 asID: 63859 IP address blocks: 158.140.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a7:7c:d5:a1:f7:f7:73:b1:3f:eb:8b:f9:3e:3b:5d:ac:69:27:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Oct 25 04:56:30 2024 GMT Not After : Oct 24 05:01:30 2025 GMT Subject: CN=D35C03C0162529DC662510459EB58CF658343686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:22:c8:31:87:40:16:02:de:96:49:3a:ec: 98:ea:81:c4:06:54:9b:a3:b4:31:51:dd:b7:c3:ef: 2a:dc:88:cf:ec:15:fa:56:0b:1b:95:40:81:48:b4: 47:33:33:95:3a:61:d3:13:58:53:cb:d7:3c:55:fe: af:3a:c2:80:b7:ca:61:5d:a2:c8:ec:11:21:08:6d: 08:92:23:8d:e8:be:23:b2:07:6e:ce:c4:4f:c8:66: d8:4d:02:d0:4c:7d:f9:6f:62:95:2d:1c:57:c4:13: 41:14:b0:be:a3:3d:ad:c3:c3:7d:2b:e7:35:13:ef: bd:f1:65:4d:21:50:e4:87:15:6a:15:30:04:ec:4e: 9b:4a:83:15:ea:56:ef:70:f7:ab:b5:5b:33:1a:bc: 3a:5d:26:71:59:c9:12:7b:0a:ba:25:b8:d5:4a:38: 0a:b0:26:a9:bd:8e:49:d1:af:65:c4:04:0f:37:89: 31:e6:b3:d1:cf:ad:5c:74:fc:67:e1:6e:bc:ae:88: a4:8b:75:64:73:18:e9:f7:5d:2f:b8:16:92:67:05: ab:a7:1b:3b:f6:42:11:bb:9f:a5:6d:fb:d6:ea:1e: 0e:19:4b:ad:b7:32:d3:bf:a4:d4:1b:bc:cb:a8:c7: fe:e0:40:e5:93:ed:9b:9d:bd:3c:22:d7:af:9b:8c: 2a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5C:03:C0:16:25:29:DC:66:25:10:45:9E:B5:8C:F6:58:34:36:86 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.176.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:c3:c9:1c:1b:f0:e8:e5:b5:d3:29:68:ed:7d:a9:57:4f:84: 5b:30:1d:e1:b5:4d:aa:cc:d9:c3:e0:5b:7b:9e:39:e1:0c:c5: 4d:28:5e:97:0d:1e:07:f7:83:8f:a8:c0:15:d7:c4:17:9a:b4: 42:d2:77:15:74:c8:48:1b:40:24:30:73:8a:7a:65:3f:a3:be: 36:07:f0:2b:23:58:fd:87:5e:b5:af:ea:8a:d0:0b:43:59:d6: 23:f9:f7:68:2a:98:37:c4:d0:df:d3:c5:53:f6:67:a2:3a:9d: 19:cf:74:45:85:e0:78:0e:26:14:13:5e:47:d4:2f:4c:6a:56: 22:38:20:50:2e:7b:77:42:cc:c1:fe:5b:bc:69:fc:a0:3b:c7: f7:39:23:d8:80:ff:64:7d:48:ed:b8:30:7c:55:c9:c6:c2:cd: c0:11:4e:9d:7c:dd:5d:b6:f5:80:77:97:0c:3d:bb:2d:3a:29: 8c:b3:33:53:47:aa:6f:95:9c:c3:93:39:7b:e1:ed:ad:84:dd: ba:de:e5:6b:06:ca:24:be:b6:bd:2e:70:02:d2:77:73:18:f0: 03:65:49:74:0f:5e:88:2d:c2:00:00:01:7b:46:87:48:11:e0: ce:eb:a5:0d:12:2f:47:a9:ca:79:f0:79:71:88:ee:1d:b8:a3: f1:47:2b:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSKd81aH393OxP+uL+T47XaxpJwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDEwMjUwNDU2MzBaFw0yNTEwMjQwNTAxMzBaMDMxMTAvBgNV BAMTKEQzNUMwM0MwMTYyNTI5REM2NjI1MTA0NTlFQjU4Q0Y2NTgzNDM2ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBfSLIMYdAFgLelkk67JjqgcQG VJujtDFR3bfD7yrciM/sFfpWCxuVQIFItEczM5U6YdMTWFPL1zxV/q86woC3ymFd osjsESEIbQiSI43oviOyB27OxE/IZthNAtBMfflvYpUtHFfEE0EUsL6jPa3Dw30r 5zUT773xZU0hUOSHFWoVMATsTptKgxXqVu9w96u1WzMavDpdJnFZyRJ7CroluNVK OAqwJqm9jknRr2XEBA83iTHms9HPrVx0/GfhbryuiKSLdWRzGOn3XS+4FpJnBaun Gzv2QhG7n6Vt+9bqHg4ZS623MtO/pNQbvMuox/7gQOWT7ZudvTwi16+bjCq9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU01wDwBYlKdxmJRBFnrWM9lg0NoYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzYyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDnoywMA0GCSqG SIb3DQEBCwUAA4IBAQAfw8kcG/Do5bXTKWjtfalXT4RbMB3htU2qzNnD4Ft7njnh DMVNKF6XDR4H94OPqMAV18QXmrRC0ncVdMhIG0AkMHOKemU/o742B/ArI1j9h161 r+qK0AtDWdYj+fdoKpg3xNDf08VT9meiOp0Zz3RFheB4DiYUE15H1C9MalYiOCBQ Lnt3QszB/lu8afygO8f3OSPYgP9kfUjtuDB8VcnGws3AEU6dfN1dtvWAd5cMPbst OimMszNTR6pvlZzDkzl74e2thN263uVrBsokvra9LnAC0ndzGPADZUl0D16ILcIA AAF7RodIEeDO66UNEi9Hqcp58HlxiO4duKPxRytH -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org