$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: luap2GOEwPvICblpGLw3X34uVnSgMtx7dfARsYQWoKQ= Subject key identifier: 08:17:02:6C:C6:77:1E:A2:3D:30:87:D0:CE:B6:1C:B7:14:AB:BC:9C Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 7168402F43E3BA2822C6F8617E21F9B94754F0B4 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 10:00:02 +0000 ROA not before: Sun 11 Aug 2024 09:55:02 +0000 ROA not after: Sun 10 Aug 2025 10:00:02 +0000 asID: 63859 IP address blocks: 158.140.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:68:40:2f:43:e3:ba:28:22:c6:f8:61:7e:21:f9:b9:47:54:f0:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 09:55:02 2024 GMT Not After : Aug 10 10:00:02 2025 GMT Subject: CN=0817026CC6771EA23D3087D0CEB61CB714ABBC9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0d:e6:95:18:3d:4d:cf:33:a6:3c:78:d8:56: ca:b7:d5:c1:b1:5c:6c:52:d9:87:aa:a4:f8:00:ef: f8:b2:5c:03:2b:32:38:45:a0:5c:09:f8:20:b0:a1: 3a:bf:5f:ec:a7:90:db:9b:fb:44:9a:b3:67:cc:2d: 3a:20:03:ba:24:45:88:ec:2f:0c:8f:e2:74:ad:de: b4:86:16:b8:0c:dc:c4:ca:fc:11:7e:0d:40:94:17: 17:0f:5f:ca:d7:1e:4d:d5:19:db:d5:ea:41:1f:fd: 56:00:86:f5:20:54:9c:7e:b0:e0:05:24:9d:e8:ad: b1:ae:d0:e2:11:52:bd:de:74:c7:55:b9:cd:8d:a4: 3a:2e:f7:42:92:65:22:a9:e5:70:3f:3a:b0:83:14: 03:21:40:49:d0:d5:21:ea:55:99:5c:79:7c:a3:6d: 8f:cb:e7:89:79:ef:0e:4f:ea:78:8a:53:b6:00:42: d9:64:99:c5:24:e8:e2:e9:8c:51:4e:9c:c7:5c:47: 79:ab:62:66:72:c9:2c:6e:30:c2:cd:ad:75:97:c5: d2:96:60:a2:ff:02:59:22:55:9c:59:98:1b:9f:61: 63:a7:ef:30:7a:97:bd:dc:6d:b2:03:e4:3a:68:2f: 28:34:81:c4:6b:d6:f6:b8:6f:db:d7:29:d9:85:e8: 76:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:17:02:6C:C6:77:1E:A2:3D:30:87:D0:CE:B6:1C:B7:14:AB:BC:9C X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.184.0/24 Signature Algorithm: sha256WithRSAEncryption 18:7a:22:66:26:b3:5b:42:09:c5:9e:cd:5e:cb:0d:4b:6a:67: 58:f5:e3:83:f6:23:15:26:37:35:9e:32:50:ca:7e:98:03:be: f7:c6:48:71:94:fb:66:08:e0:68:5b:7d:bc:4d:8f:9e:fe:cc: dc:95:64:8f:ac:a8:63:f9:b7:79:6e:08:cd:57:07:24:38:e5: 4b:d3:ca:24:7c:0a:24:30:36:33:a8:2b:6b:b7:48:cd:81:17: 37:11:6f:16:a4:5d:f2:fd:eb:94:41:95:e5:92:05:39:a4:ee: 19:29:05:78:8c:8b:19:39:44:33:12:ce:cc:34:27:5f:57:cc: 3c:39:8d:c0:9f:15:cb:6f:a1:75:10:09:75:3d:91:b3:4d:3a: 59:ab:5b:20:d0:dd:b1:db:3a:76:ff:37:13:ca:99:a0:09:23: b5:d8:45:82:3b:c1:a8:96:6d:97:31:0b:b2:aa:61:a4:e9:cf: 27:55:3e:12:08:74:42:4e:5c:b7:f7:01:ae:82:d3:87:d3:91: 6b:4a:b9:84:06:8d:dc:0a:c9:bf:df:f5:e7:2e:8f:93:ea:6a: ec:49:97:39:3e:83:6f:08:36:42:38:43:6f:80:32:9b:9a:d9: 6b:68:67:c0:a4:6b:18:35:8e:1b:be:0a:9e:b7:b4:8f:fe:d3: 50:81:42:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcWhAL0PjuigixvhhfiH5uUdU8LQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTEwOTU1MDJaFw0yNTA4MTAxMDAwMDJaMDMxMTAvBgNV BAMTKDA4MTcwMjZDQzY3NzFFQTIzRDMwODdEMENFQjYxQ0I3MTRBQkJDOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRDeaVGD1NzzOmPHjYVsq31cGx XGxS2YeqpPgA7/iyXAMrMjhFoFwJ+CCwoTq/X+ynkNub+0Sas2fMLTogA7okRYjs LwyP4nSt3rSGFrgM3MTK/BF+DUCUFxcPX8rXHk3VGdvV6kEf/VYAhvUgVJx+sOAF JJ3orbGu0OIRUr3edMdVuc2NpDou90KSZSKp5XA/OrCDFAMhQEnQ1SHqVZlceXyj bY/L54l57w5P6niKU7YAQtlkmcUk6OLpjFFOnMdcR3mrYmZyySxuMMLNrXWXxdKW YKL/AlkiVZxZmBufYWOn7zB6l73cbbID5DpoLyg0gcRr1va4b9vXKdmF6HZfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCBcCbMZ3HqI9MIfQzrYctxSrvJwwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy4MA0GCSqG SIb3DQEBCwUAA4IBAQAYeiJmJrNbQgnFns1eyw1LamdY9eOD9iMVJjc1njJQyn6Y A773xkhxlPtmCOBoW328TY+e/szclWSPrKhj+bd5bgjNVwckOOVL08okfAokMDYz qCtrt0jNgRc3EW8WpF3y/euUQZXlkgU5pO4ZKQV4jIsZOUQzEs7MNCdfV8w8OY3A nxXLb6F1EAl1PZGzTTpZq1sg0N2x2zp2/zcTypmgCSO12EWCO8Golm2XMQuyqmGk 6c8nVT4SCHRCTly39wGugtOH05FrSrmEBo3cCsm/3/XnLo+T6mrsSZc5PoNvCDZC OENvgDKbmtlraGfApGsYNY4bvgqet7SP/tNQgUJ6 -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org