$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: FwWme/B7psWmKtLZiY6weI44HC4ApOA2lP5Kn3VrjG0= Subject key identifier: 45:A8:33:EB:C9:76:DE:B8:9E:AC:08:1D:02:F6:D6:81:ED:1A:60:DC Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 68C9C22B57C445224D6C69678F5928076A629DE9 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:08 +0000 ROA not before: Sun 11 Aug 2024 10:55:08 +0000 ROA not after: Sun 10 Aug 2025 11:00:08 +0000 asID: 63859 IP address blocks: 158.140.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c9:c2:2b:57:c4:45:22:4d:6c:69:67:8f:59:28:07:6a:62:9d:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:08 2024 GMT Not After : Aug 10 11:00:08 2025 GMT Subject: CN=45A833EBC976DEB89EAC081D02F6D681ED1A60DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:de:64:20:92:fa:1f:c5:c2:4f:2b:a4:00:b0: 91:e5:35:a6:f7:58:3e:64:de:07:b2:fe:c1:f5:66: 94:39:f6:53:3f:ed:a9:03:1f:40:60:c6:e7:db:9d: 18:3e:c6:8f:c3:f7:91:ee:75:26:6b:a7:89:e8:73: 3a:e4:a9:40:e2:60:23:5b:66:c9:ef:53:96:71:f3: cc:ac:eb:bd:f1:ba:28:c7:81:f3:15:bd:61:24:f6: ed:22:de:58:95:6b:37:51:3d:65:a9:dd:a5:4f:1d: c3:47:a7:ca:f1:cb:cd:1b:65:ee:cd:d3:73:18:78: 37:a2:a5:53:55:e4:c9:35:b8:5f:40:b2:25:c4:e6: 32:cd:91:7e:a0:7d:33:1a:ea:65:10:27:27:b4:22: c2:19:8d:c6:e2:40:83:c8:9b:b4:1f:29:61:44:16: d0:6e:ec:86:d0:96:16:e2:ad:a4:fa:85:b0:bb:63: ef:65:9c:60:8f:63:f3:45:ed:09:0c:5d:17:0f:77: 57:d0:d5:b2:93:24:75:6d:c1:f2:b9:d0:11:60:2d: 1e:dd:59:74:65:5a:9d:c5:dc:7d:c4:9f:5c:56:cb: 02:20:59:fc:96:cf:61:6a:89:e7:4f:6d:d3:0f:9d: 25:ab:4a:2b:dc:d8:c6:67:c8:45:49:0f:3d:24:ad: 0d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A8:33:EB:C9:76:DE:B8:9E:AC:08:1D:02:F6:D6:81:ED:1A:60:DC X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.177.0/24 Signature Algorithm: sha256WithRSAEncryption 92:25:14:84:de:23:7b:b9:e7:9e:cf:56:26:f4:fa:d6:38:06: f5:95:ef:4b:17:ec:c6:76:c2:e3:8d:aa:c2:12:73:0a:da:92: 32:ce:19:09:f8:5f:40:56:b5:75:1e:7c:52:3e:b3:41:f1:1d: 78:67:1c:b5:9f:7d:b8:30:9a:45:11:d9:3a:01:88:ea:6f:07: 0f:d6:6c:e8:48:f1:a5:be:9a:4b:e7:7e:7f:cc:b4:8d:dc:54: 40:8f:01:8a:96:1e:31:fb:de:d3:5d:39:2d:b3:e7:65:91:27: bd:e3:e7:b3:b1:2b:e0:a8:73:ab:a2:5a:19:00:2d:98:3a:c3: 62:c7:7e:ec:74:77:38:6e:f2:df:f8:a4:db:80:e7:8f:57:e6: c8:eb:34:85:dd:6a:78:50:b2:32:e1:bf:8c:8c:6a:a3:9a:2a: c0:7a:6a:3b:b8:54:79:1f:fd:5e:f0:71:69:71:6f:a9:d7:b1: 63:74:02:c6:49:b9:bb:9b:40:16:cb:57:15:53:df:02:c2:16: a4:ac:50:d9:2c:48:b4:52:42:7c:0b:a7:d7:43:dc:c7:6c:00: fd:c7:a5:de:48:66:52:f5:05:cf:ff:8e:9b:37:2b:09:87:af: 2d:db:19:2c:e1:af:04:05:2f:a2:e0:80:e7:15:37:83:1f:18: d6:6f:ce:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaMnCK1fERSJNbGlnj1koB2pinekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDhaFw0yNTA4MTAxMTAwMDhaMDMxMTAvBgNV BAMTKDQ1QTgzM0VCQzk3NkRFQjg5RUFDMDgxRDAyRjZENjgxRUQxQTYwREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi3mQgkvofxcJPK6QAsJHlNab3 WD5k3gey/sH1ZpQ59lM/7akDH0BgxufbnRg+xo/D95HudSZrp4noczrkqUDiYCNb ZsnvU5Zx88ys673xuijHgfMVvWEk9u0i3liVazdRPWWp3aVPHcNHp8rxy80bZe7N 03MYeDeipVNV5Mk1uF9AsiXE5jLNkX6gfTMa6mUQJye0IsIZjcbiQIPIm7QfKWFE FtBu7IbQlhbiraT6hbC7Y+9lnGCPY/NF7QkMXRcPd1fQ1bKTJHVtwfK50BFgLR7d WXRlWp3F3H3En1xWywIgWfyWz2FqiedPbdMPnSWrSivc2MZnyEVJDz0krQ33AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURagz68l23rierAgdAvbWge0aYNwwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyxMA0GCSqG SIb3DQEBCwUAA4IBAQCSJRSE3iN7ueeez1Ym9PrWOAb1le9LF+zGdsLjjarCEnMK 2pIyzhkJ+F9AVrV1HnxSPrNB8R14Zxy1n324MJpFEdk6AYjqbwcP1mzoSPGlvppL 535/zLSN3FRAjwGKlh4x+97TXTkts+dlkSe94+ezsSvgqHOroloZAC2YOsNix37s dHc4bvLf+KTbgOePV+bI6zSF3Wp4ULIy4b+MjGqjmirAemo7uFR5H/1e8HFpcW+p 17FjdALGSbm7m0AWy1cVU98CwhakrFDZLEi0UkJ8C6fXQ9zHbAD9x6XeSGZS9QXP /46bNysJh68t2xks4a8EBS+i4IDnFTeDHxjWb85E -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org