$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32322d3232203d3e203633383539.roa File: 3135382e3134302e3138342e302f32322d3232203d3e203633383539.roa (raw, json) Hash identifier: QNfy4flQl4Ly+oCKQ92awEzaOblw9irFDR97XdMBVt0= Subject key identifier: BE:4C:46:34:44:90:4B:DC:F7:14:96:97:12:5F:DC:8D:76:29:A7:B0 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 05D67BE419D8FC8D3DC97F1B036FA76DADB047AC Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32322d3232203d3e203633383539.roa Signing time: Fri 25 Oct 2024 05:01:30 +0000 ROA not before: Fri 25 Oct 2024 04:56:30 +0000 ROA not after: Fri 24 Oct 2025 05:01:30 +0000 asID: 63859 IP address blocks: 158.140.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d6:7b:e4:19:d8:fc:8d:3d:c9:7f:1b:03:6f:a7:6d:ad:b0:47:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Oct 25 04:56:30 2024 GMT Not After : Oct 24 05:01:30 2025 GMT Subject: CN=BE4C463444904BDCF7149697125FDC8D7629A7B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ce:d7:2c:63:75:1f:66:a1:48:50:c8:6f:5a: ad:d6:88:47:e3:2b:23:7f:95:cc:03:3e:d1:7c:ea: b3:e4:cb:34:32:7b:1f:be:8f:38:65:29:01:25:2f: dc:4b:16:d7:e9:da:f1:e1:7d:76:34:8d:4a:74:e5: 3d:1f:aa:74:2b:04:bd:9f:71:7f:52:8e:65:c1:97: ea:91:6b:26:02:63:fb:c8:bd:67:64:fd:60:b8:25: d6:65:c5:c0:d5:de:78:f5:b6:c6:8e:14:78:f1:e9: a8:f8:df:59:73:34:92:60:56:00:8b:df:21:c2:75: 62:21:aa:cb:1d:cb:23:0c:ca:6c:e8:30:9d:3d:c0: 4b:b1:49:c3:00:b5:2b:cc:18:eb:1c:8f:0e:65:a6: 75:d9:eb:66:36:4f:d5:62:7c:e0:c5:4f:fb:99:4b: bc:9a:75:73:e5:81:c1:f3:d6:67:87:d0:28:21:39: c1:57:8f:13:77:1b:66:75:4d:2b:e3:59:83:63:24: 92:ab:10:58:85:52:75:6b:36:1a:b9:ed:10:30:b7: 90:f0:f7:9f:13:3e:38:59:fc:e0:d0:62:b9:31:a3: b1:e8:b9:a9:87:56:b5:e0:31:b7:cf:7d:c6:92:c9: 44:35:90:e1:a6:6c:d2:b6:f6:f6:3d:a9:86:8c:e4: fb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4C:46:34:44:90:4B:DC:F7:14:96:97:12:5F:DC:8D:76:29:A7:B0 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32322d3232203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.184.0/22 Signature Algorithm: sha256WithRSAEncryption 89:3f:f1:57:36:6e:38:35:77:3a:2b:8e:11:70:ce:b8:07:ce: 58:6e:58:e1:f3:62:1c:b4:66:e7:f5:47:d2:ff:4e:2a:5f:8d: 9d:d8:6f:ef:5f:06:60:52:32:92:94:3f:a9:10:21:71:76:fa: 94:f3:b1:f4:97:c8:51:ca:ca:90:a7:c1:3d:50:f6:24:90:94: ac:f1:9b:6a:02:00:bf:31:a3:25:dc:b6:21:2f:73:69:8c:c6: a7:b0:98:6b:ec:5c:52:89:a3:f7:78:0a:15:23:5a:4c:8a:fb: 84:82:11:07:b4:ad:7e:d2:07:cf:70:e4:3d:af:b7:4b:ec:b7: 08:17:56:a6:13:9d:65:72:f7:7e:4f:a1:33:28:56:cb:f1:28: 09:a1:0a:22:0b:96:51:9f:eb:ec:26:ef:ba:91:c2:cc:b6:d4: e1:74:0b:56:65:4d:6a:36:ad:da:99:00:c2:18:f9:2a:39:fc: 5e:f6:32:9a:a5:a6:78:d4:36:43:c5:f4:24:7f:13:f2:3a:51: de:7e:4f:d8:72:d4:23:4e:61:13:06:ce:64:0c:40:4c:09:7a: 64:96:99:c3:99:f3:4a:c2:18:d5:a5:23:7f:5c:27:13:77:df: 0f:38:f6:6b:92:fd:8c:c6:50:de:3e:b2:f2:4f:d0:83:4b:25: 3c:5a:3a:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBdZ75BnY/I09yX8bA2+nba2wR6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDEwMjUwNDU2MzBaFw0yNTEwMjQwNTAxMzBaMDMxMTAvBgNV BAMTKEJFNEM0NjM0NDQ5MDRCRENGNzE0OTY5NzEyNUZEQzhENzYyOUE3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdztcsY3UfZqFIUMhvWq3WiEfj KyN/lcwDPtF86rPkyzQyex++jzhlKQElL9xLFtfp2vHhfXY0jUp05T0fqnQrBL2f cX9SjmXBl+qRayYCY/vIvWdk/WC4JdZlxcDV3nj1tsaOFHjx6aj431lzNJJgVgCL 3yHCdWIhqssdyyMMymzoMJ09wEuxScMAtSvMGOscjw5lpnXZ62Y2T9VifODFT/uZ S7yadXPlgcHz1meH0CghOcFXjxN3G2Z1TSvjWYNjJJKrEFiFUnVrNhq57RAwt5Dw 958TPjhZ/ODQYrkxo7HouamHVrXgMbfPfcaSyUQ1kOGmbNK29vY9qYaM5PsNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvkxGNESQS9z3FJaXEl/cjXYpp7AwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnoy4MA0GCSqG SIb3DQEBCwUAA4IBAQCJP/FXNm44NXc6K44RcM64B85Ybljh82IctGbn9UfS/04q X42d2G/vXwZgUjKSlD+pECFxdvqU87H0l8hRysqQp8E9UPYkkJSs8ZtqAgC/MaMl 3LYhL3NpjMansJhr7FxSiaP3eAoVI1pMivuEghEHtK1+0gfPcOQ9r7dL7LcIF1am E51lcvd+T6EzKFbL8SgJoQoiC5ZRn+vsJu+6kcLMttThdAtWZU1qNq3amQDCGPkq Ofxe9jKapaZ41DZDxfQkfxPyOlHefk/YctQjTmETBs5kDEBMCXpklpnDmfNKwhjV pSN/XCcTd98POPZrkv2MxlDePrLyT9CDSyU8Wjoc -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org