$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: nvt7Gqc2xMQwEhwgFYbrlZMUn0h334jT7ng3W3pUets= Subject key identifier: 3B:33:D2:85:EB:2D:8A:87:CE:2F:37:14:0A:87:7D:87:C9:C8:26:57 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 36C84C43F39CAEECBC4A0803B81B5DA960CD6B69 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:02 +0000 ROA not before: Sun 11 Aug 2024 10:55:02 +0000 ROA not after: Sun 10 Aug 2025 11:00:02 +0000 asID: 63859 IP address blocks: 158.140.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c8:4c:43:f3:9c:ae:ec:bc:4a:08:03:b8:1b:5d:a9:60:cd:6b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:02 2024 GMT Not After : Aug 10 11:00:02 2025 GMT Subject: CN=3B33D285EB2D8A87CE2F37140A877D87C9C82657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:58:4e:e6:14:82:c0:e2:63:45:76:78:01:84: 8d:2e:6c:00:b7:14:13:59:e6:15:f0:ae:d6:57:d7: 36:39:2b:16:62:de:a8:85:2f:8b:d6:a6:a6:ac:b6: 5d:05:cc:b1:41:61:29:e0:80:07:d6:c9:4c:c0:88: 66:72:cc:00:ff:18:6f:10:67:10:b8:7c:53:4f:be: 08:eb:42:0e:eb:1a:f7:4a:d1:80:25:09:2b:41:45: 7d:4b:9d:4f:6a:32:c4:24:e4:ea:79:4c:4d:83:eb: 24:25:dd:dd:c1:18:29:2c:52:68:9f:41:b7:fa:be: d8:c1:4d:5c:f8:07:5f:bb:26:ed:11:ff:35:81:e9: ab:47:a4:f8:a3:d6:f1:88:e3:a8:32:e5:4a:45:82: 37:48:70:4e:74:ef:f9:ed:67:37:1a:f7:2a:c1:c1: 07:7a:c7:28:3f:c2:05:e2:fb:65:7b:ed:48:ae:96: 50:09:b2:8a:33:9e:6f:2c:66:8b:d4:ad:12:83:7e: 8f:4b:d1:54:ce:d8:3c:24:b2:63:b6:1a:ba:b9:7b: 05:b6:1e:39:29:80:13:1a:71:93:84:ce:df:2b:c8: 14:94:8f:a4:ae:1f:15:bc:47:a8:48:f1:a3:a2:e9: 05:45:4b:5d:b0:c2:9e:c2:3e:3e:ba:b2:4d:f8:b9: d0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:33:D2:85:EB:2D:8A:87:CE:2F:37:14:0A:87:7D:87:C9:C8:26:57 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.181.0/24 Signature Algorithm: sha256WithRSAEncryption 87:27:64:17:01:ac:e1:78:23:d9:d3:1a:b9:13:9c:13:6b:aa: af:7f:94:00:72:78:34:4f:77:fc:0f:0c:fc:cf:95:11:78:a3: b3:45:e1:d0:9c:54:87:1d:39:f9:2e:f1:7d:2b:66:d2:6e:4c: 28:d9:0f:bd:b1:69:9e:a5:50:88:16:e7:da:56:e8:5e:1e:66: c8:6c:01:8f:74:3d:08:f5:87:ca:54:5f:81:71:8b:0f:9d:1f: e4:9b:3e:8a:f0:65:c8:cf:88:90:5c:1a:ad:2d:c8:d9:d7:ed: bd:1f:e1:1e:e0:4a:e0:f7:4b:cc:ee:8a:01:03:1e:73:60:bd: 02:b8:f4:ed:a1:fb:2f:0e:3b:86:96:df:ef:92:97:e5:7e:d3: 52:f3:fa:f7:b9:8d:8a:fa:4e:32:28:b0:2f:6f:6a:d7:b1:38: c8:7b:a1:d5:53:18:84:da:94:be:75:c5:aa:35:de:96:e9:98: d0:b4:32:76:ce:e1:e4:13:04:91:52:6b:2b:3f:c2:8d:1c:89: 54:5f:93:77:ca:cb:fe:f6:3c:1c:24:b9:a1:f3:9d:76:3b:30: 8c:17:22:5f:05:cc:b0:79:2f:32:98:67:d4:89:8e:a8:48:55: 75:79:6e:b4:a3:74:85:c8:28:34:bc:77:b5:72:7d:6d:cd:28: e5:ba:f3:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNshMQ/Ocruy8SggDuBtdqWDNa2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDJaFw0yNTA4MTAxMTAwMDJaMDMxMTAvBgNV BAMTKDNCMzNEMjg1RUIyRDhBODdDRTJGMzcxNDBBODc3RDg3QzlDODI2NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1WE7mFILA4mNFdngBhI0ubAC3 FBNZ5hXwrtZX1zY5KxZi3qiFL4vWpqastl0FzLFBYSnggAfWyUzAiGZyzAD/GG8Q ZxC4fFNPvgjrQg7rGvdK0YAlCStBRX1LnU9qMsQk5Op5TE2D6yQl3d3BGCksUmif Qbf6vtjBTVz4B1+7Ju0R/zWB6atHpPij1vGI46gy5UpFgjdIcE507/ntZzca9yrB wQd6xyg/wgXi+2V77UiullAJsooznm8sZovUrRKDfo9L0VTO2DwksmO2Grq5ewW2 HjkpgBMacZOEzt8ryBSUj6SuHxW8R6hI8aOi6QVFS12wwp7CPj66sk34udBvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOzPShestiofOLzcUCod9h8nIJlcwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy1MA0GCSqG SIb3DQEBCwUAA4IBAQCHJ2QXAazheCPZ0xq5E5wTa6qvf5QAcng0T3f8Dwz8z5UR eKOzReHQnFSHHTn5LvF9K2bSbkwo2Q+9sWmepVCIFufaVuheHmbIbAGPdD0I9YfK VF+BcYsPnR/kmz6K8GXIz4iQXBqtLcjZ1+29H+Ee4Erg90vM7ooBAx5zYL0CuPTt ofsvDjuGlt/vkpflftNS8/r3uY2K+k4yKLAvb2rXsTjIe6HVUxiE2pS+dcWqNd6W 6ZjQtDJ2zuHkEwSRUmsrP8KNHIlUX5N3ysv+9jwcJLmh8512OzCMFyJfBcyweS8y mGfUiY6oSFV1eW60o3SFyCg0vHe1cn1tzSjluvM3 -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org