$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: iVkuBg+MCDe4xkwqC8xGnTviOKTLOugV0xjRq52CgKA= Subject key identifier: A1:C5:3D:5C:AA:6B:AC:7A:32:A4:1F:08:BB:7F:88:84:E1:FD:F3:3D Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 0DCC058BB6431FB9A64E7382FAFF78BB4BBD00FC Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 10:00:02 +0000 ROA not before: Sun 11 Aug 2024 09:55:02 +0000 ROA not after: Sun 10 Aug 2025 10:00:02 +0000 asID: 63859 IP address blocks: 158.140.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:cc:05:8b:b6:43:1f:b9:a6:4e:73:82:fa:ff:78:bb:4b:bd:00:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 09:55:02 2024 GMT Not After : Aug 10 10:00:02 2025 GMT Subject: CN=A1C53D5CAA6BAC7A32A41F08BB7F8884E1FDF33D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:77:17:72:93:35:b6:b4:ae:0e:01:e8:cd:3e: 6f:5c:78:77:cd:97:a1:8e:19:2a:a6:3f:32:c1:d3: 84:c4:26:22:da:49:9f:84:49:77:2e:9e:a7:79:b5: 16:34:32:8f:04:a3:9b:1a:f1:d5:9b:94:08:83:21: df:22:cd:06:80:fa:f1:f5:17:63:fe:97:14:c5:20: dd:b2:a0:c3:7e:37:4b:15:39:47:ab:be:c9:4d:00: ec:35:46:b4:07:9e:6c:28:ce:72:e6:94:ef:7e:c7: 52:e0:62:65:56:ac:9d:f5:35:b1:60:30:1b:22:dc: eb:46:83:93:5e:45:5f:40:25:c9:75:38:0c:0b:01: be:b2:ed:d1:73:12:79:f6:46:af:0d:0f:40:66:a6: c9:ec:83:28:5d:76:1b:25:f9:b5:da:08:b3:93:30: f9:3d:1b:d5:c3:f1:4c:95:79:fd:91:10:3c:72:d4: 14:f1:03:92:9c:23:0b:d9:26:fd:31:2a:d8:a8:ac: 9f:b3:ba:0d:07:99:0f:25:4c:fa:cb:9d:60:1b:1d: 06:c4:80:dc:ff:b3:26:e1:9c:e0:4a:ed:aa:36:aa: 55:04:22:1c:b7:81:b8:83:87:ee:3b:0f:01:5d:50: c3:22:40:d2:d3:89:3c:e5:0b:99:f7:bb:c1:41:6a: 36:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C5:3D:5C:AA:6B:AC:7A:32:A4:1F:08:BB:7F:88:84:E1:FD:F3:3D X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.183.0/24 Signature Algorithm: sha256WithRSAEncryption 86:66:ac:1c:6c:f1:9b:8d:8c:f9:31:3f:49:31:61:d4:66:d6: ff:03:2d:a4:80:b2:c7:ad:02:cc:40:6b:73:ef:17:7b:d8:c3: f1:cc:f5:c6:f7:fb:a7:9a:39:fe:40:00:75:8b:02:4b:ee:49: 7d:74:45:b9:f5:cf:c6:19:56:18:88:b6:33:5f:9c:37:85:c0: 64:60:88:ab:38:ca:17:8c:8a:5b:58:24:ca:6f:a0:ad:88:cb: df:f4:55:dc:cf:0b:07:fa:3d:90:e3:5c:aa:24:11:c0:65:33: ea:d7:6b:2a:9e:95:8a:95:ed:bd:eb:27:0f:95:84:a7:ca:2a: de:88:21:ce:db:b7:a2:31:b9:aa:75:60:69:91:30:6f:42:b6: 7e:75:c9:a8:00:40:63:69:27:ff:f4:4d:f8:bd:4b:0b:e1:63: df:5b:fc:54:23:30:52:4d:c5:1e:3c:ab:3a:3f:47:b6:d2:d3: 61:ae:3a:a7:e1:0f:d4:df:dd:60:ff:b1:79:1f:09:a5:bb:b7: 70:4d:28:22:a4:f7:d8:82:0d:fb:81:2e:f0:f8:5a:1a:29:ea: e3:b6:43:96:fd:2a:6c:a8:c0:f9:37:b9:39:31:cb:96:db:cf: 8d:8b:89:e0:f1:c8:85:bc:2b:ce:b2:e5:c1:7f:d4:f0:83:f1: d6:55:50:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDcwFi7ZDH7mmTnOC+v94u0u9APwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTEwOTU1MDJaFw0yNTA4MTAxMDAwMDJaMDMxMTAvBgNV BAMTKEExQzUzRDVDQUE2QkFDN0EzMkE0MUYwOEJCN0Y4ODg0RTFGREYzM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUdxdykzW2tK4OAejNPm9ceHfN l6GOGSqmPzLB04TEJiLaSZ+ESXcunqd5tRY0Mo8Eo5sa8dWblAiDId8izQaA+vH1 F2P+lxTFIN2yoMN+N0sVOUervslNAOw1RrQHnmwoznLmlO9+x1LgYmVWrJ31NbFg MBsi3OtGg5NeRV9AJcl1OAwLAb6y7dFzEnn2Rq8ND0Bmpsnsgyhddhsl+bXaCLOT MPk9G9XD8UyVef2REDxy1BTxA5KcIwvZJv0xKtiorJ+zug0HmQ8lTPrLnWAbHQbE gNz/sybhnOBK7ao2qlUEIhy3gbiDh+47DwFdUMMiQNLTiTzlC5n3u8FBajbZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUocU9XKprrHoypB8Iu3+IhOH98z0wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy3MA0GCSqG SIb3DQEBCwUAA4IBAQCGZqwcbPGbjYz5MT9JMWHUZtb/Ay2kgLLHrQLMQGtz7xd7 2MPxzPXG9/unmjn+QAB1iwJL7kl9dEW59c/GGVYYiLYzX5w3hcBkYIirOMoXjIpb WCTKb6CtiMvf9FXczwsH+j2Q41yqJBHAZTPq12sqnpWKle296ycPlYSnyireiCHO 27eiMbmqdWBpkTBvQrZ+dcmoAEBjaSf/9E34vUsL4WPfW/xUIzBSTcUePKs6P0e2 0tNhrjqn4Q/U391g/7F5Hwmlu7dwTSgipPfYgg37gS7w+FoaKerjtkOW/SpsqMD5 N7k5McuW28+Ni4ng8ciFvCvOsuXBf9Twg/HWVVDb -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org