$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 5aXfFHV5HE0aZHwEkQrhreeq2JVh8XBJR6/WNS1sr70= Subject key identifier: BA:9D:3D:9A:FE:E5:45:72:1E:71:5D:4B:08:B8:B4:7C:D6:0F:05:D1 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 3DDB50DA6A657E398ED9D38AADC69EBB4C17AED4 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:05 +0000 ROA not before: Sun 11 Aug 2024 10:55:05 +0000 ROA not after: Sun 10 Aug 2025 11:00:05 +0000 asID: 63859 IP address blocks: 158.140.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:db:50:da:6a:65:7e:39:8e:d9:d3:8a:ad:c6:9e:bb:4c:17:ae:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:05 2024 GMT Not After : Aug 10 11:00:05 2025 GMT Subject: CN=BA9D3D9AFEE545721E715D4B08B8B47CD60F05D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1f:14:5b:ad:83:b0:3a:1e:c4:d1:19:ff:68: 6a:06:76:35:f3:1c:dd:16:04:b7:c2:0f:f7:a6:16: ed:87:c5:dd:cc:fb:1a:4d:8c:d3:41:b2:be:c8:f5: a1:35:c8:1a:3e:0b:5a:57:6a:ca:95:63:b0:cd:72: 72:01:3b:e3:db:37:a1:34:b8:03:e3:59:e7:ab:96: 0b:e7:f4:4a:2e:ed:cc:26:5f:bb:07:32:1b:67:cd: 4c:bf:af:24:76:be:82:ac:f9:69:96:ba:40:ba:12: e3:c2:2e:14:a4:e3:0c:e3:8f:12:1c:ef:ff:82:cd: 7d:c7:a2:61:dd:a7:60:a8:8c:ff:a5:f0:47:2f:b4: dc:cd:ba:b4:b5:43:e1:80:1c:a9:7f:57:cf:e8:74: f4:97:d4:eb:66:ed:9d:6c:78:ee:f3:df:66:5a:e8: 5e:9e:5a:4e:8b:8a:8a:16:e3:a4:cf:7a:a7:f9:2c: 81:de:a4:43:ea:c8:4e:77:5a:d3:71:ea:32:fe:bb: 23:b1:43:29:8c:68:d9:2e:95:43:f4:ab:e6:61:3f: 6a:ea:ba:ce:cb:eb:3c:58:da:5d:e9:86:bb:24:5d: d1:9c:ef:04:ed:2a:f3:2a:f9:67:d0:b5:f5:b7:c6: ec:5a:47:e0:9d:5a:5c:2f:cb:f1:4a:7e:96:d8:4c: c2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:9D:3D:9A:FE:E5:45:72:1E:71:5D:4B:08:B8:B4:7C:D6:0F:05:D1 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.179.0/24 Signature Algorithm: sha256WithRSAEncryption 55:3d:2b:fb:54:16:55:82:ca:36:1a:5a:4a:bc:08:5a:bd:35: 11:7a:3f:c7:3c:78:7e:0a:2c:bd:21:41:b5:06:3b:3e:28:b9: 19:97:91:4e:d9:2e:a2:83:4d:0a:3c:0f:3c:d4:c8:09:b4:b9: f7:34:a0:ee:1e:8f:53:f4:32:ea:28:f3:0f:9f:07:61:d1:47: 7e:43:fe:4a:25:50:09:1b:67:d1:fa:cf:70:ee:6b:9b:e1:19: b8:f7:12:39:1e:c3:9f:ee:1c:3b:eb:2c:75:13:d0:d2:dc:de: f3:90:7d:73:c4:3f:eb:bd:75:5d:2f:09:68:44:3c:5d:45:b6: 67:db:2a:e7:b1:7d:34:76:63:5f:50:70:f8:3e:1f:3f:6a:2b: 12:7d:5b:b9:01:8a:cc:a8:7d:67:ab:68:d3:d5:7f:e2:aa:36: 96:e5:57:3f:51:30:b6:4b:e4:4f:a3:c9:da:dd:20:b4:90:72: 62:73:84:b2:7a:53:4f:0b:65:1c:80:57:51:72:c6:54:b5:9b: 4f:42:a2:dd:ac:90:6f:17:30:b7:77:19:d4:76:6d:22:bc:cf: 5b:55:7c:71:11:01:fb:22:ce:d3:10:ec:c5:62:46:89:97:25: 62:82:a4:8e:75:62:8f:71:1d:e9:0d:e0:63:cd:d4:df:17:fc: 5c:57:7f:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPdtQ2mplfjmO2dOKrcaeu0wXrtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDVaFw0yNTA4MTAxMTAwMDVaMDMxMTAvBgNV BAMTKEJBOUQzRDlBRkVFNTQ1NzIxRTcxNUQ0QjA4QjhCNDdDRDYwRjA1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3HxRbrYOwOh7E0Rn/aGoGdjXz HN0WBLfCD/emFu2Hxd3M+xpNjNNBsr7I9aE1yBo+C1pXasqVY7DNcnIBO+PbN6E0 uAPjWeerlgvn9Eou7cwmX7sHMhtnzUy/ryR2voKs+WmWukC6EuPCLhSk4wzjjxIc 7/+CzX3HomHdp2CojP+l8EcvtNzNurS1Q+GAHKl/V8/odPSX1Otm7Z1seO7z32Za 6F6eWk6LiooW46TPeqf5LIHepEPqyE53WtNx6jL+uyOxQymMaNkulUP0q+ZhP2rq us7L6zxY2l3phrskXdGc7wTtKvMq+WfQtfW3xuxaR+CdWlwvy/FKfpbYTMKTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUup09mv7lRXIecV1LCLi0fNYPBdEwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyzMA0GCSqG SIb3DQEBCwUAA4IBAQBVPSv7VBZVgso2GlpKvAhavTURej/HPHh+Ciy9IUG1Bjs+ KLkZl5FO2S6ig00KPA881MgJtLn3NKDuHo9T9DLqKPMPnwdh0Ud+Q/5KJVAJG2fR +s9w7mub4Rm49xI5HsOf7hw76yx1E9DS3N7zkH1zxD/rvXVdLwloRDxdRbZn2yrn sX00dmNfUHD4Ph8/aisSfVu5AYrMqH1nq2jT1X/iqjaW5Vc/UTC2S+RPo8na3SC0 kHJic4SyelNPC2UcgFdRcsZUtZtPQqLdrJBvFzC3dxnUdm0ivM9bVXxxEQH7Is7T EOzFYkaJlyVigqSOdWKPcR3pDeBjzdTfF/xcV3/k -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org