$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: axpdBTKi80MUucHGnHyH1uaZy1eozieGLXXq4oDI81I= Subject key identifier: 41:70:40:91:89:2E:90:F0:D8:8A:12:C0:32:5D:CF:0E:70:76:77:1A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 07326AFCB5E7B6E56C394548652DD221A8D2D6C8 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:03 +0000 ROA not before: Sun 11 Aug 2024 10:55:03 +0000 ROA not after: Sun 10 Aug 2025 11:00:03 +0000 asID: 63859 IP address blocks: 158.140.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:32:6a:fc:b5:e7:b6:e5:6c:39:45:48:65:2d:d2:21:a8:d2:d6:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:03 2024 GMT Not After : Aug 10 11:00:03 2025 GMT Subject: CN=41704091892E90F0D88A12C0325DCF0E7076771A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:92:55:c2:d2:e2:7c:c2:0d:78:ff:ed:61:b7: d2:82:18:13:92:95:29:4c:0b:7e:d4:9d:9d:d3:08: 49:6f:13:e6:03:dc:ba:a0:fb:3d:2e:74:3a:62:7f: ef:c4:9b:12:e1:8a:3e:ff:c8:75:26:5f:d7:a4:ed: 4b:c2:d1:35:b7:bd:76:e6:c5:a6:1f:b2:f0:0f:b9: 4b:f8:58:26:23:8f:9a:63:ec:29:54:31:62:49:a2: 0f:d7:0f:a7:7e:ac:99:24:7c:a9:98:22:ee:9c:5d: 21:75:19:a5:4a:de:88:13:3c:9f:8f:f3:e5:1f:2f: 22:39:d5:fd:4e:fb:14:2c:38:58:7c:4b:3f:cb:7b: 3e:3c:ca:53:ab:84:ac:91:f1:ac:bb:b9:60:52:49: 9e:1a:4d:3c:0a:c5:2b:eb:49:98:84:73:2e:94:31: 27:b9:24:d4:17:ee:9f:4f:16:e7:2e:d4:1e:43:30: 2e:b6:97:e3:c6:cf:d8:ef:93:75:49:95:e5:d4:d7: 7d:cc:d9:23:8b:6f:81:ae:16:5c:f4:54:1d:c9:59: 9f:62:4b:8e:31:b2:b0:0f:84:2c:33:bb:1f:6c:bd: 9f:31:6e:33:47:59:cf:cc:88:9d:9f:6d:51:80:d3: d5:05:c1:38:2c:53:82:08:27:27:30:49:01:72:f6: 59:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:70:40:91:89:2E:90:F0:D8:8A:12:C0:32:5D:CF:0E:70:76:77:1A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.186.0/24 Signature Algorithm: sha256WithRSAEncryption 99:dd:6d:db:2f:e9:58:ea:f4:2f:f9:fb:4a:0f:b8:1d:a1:65: 66:cd:79:8c:52:e1:37:e9:07:f0:34:5b:2d:f8:f2:a7:50:a1: 82:3e:55:04:f1:fe:5f:98:58:46:c9:78:81:ba:1f:1f:ee:e9: 32:7c:0c:58:b2:73:f0:9f:e1:a2:45:c0:82:49:ce:cd:44:e4: d2:e9:12:51:28:ad:9d:40:68:be:31:6c:32:7c:54:27:c1:a6: 69:80:5b:fe:60:71:92:ea:d6:db:81:41:ef:a2:b9:d3:0f:af: 0f:c9:76:17:f0:22:bd:34:77:a8:98:18:9c:a7:4d:da:ed:a5: 3d:46:c7:a9:ca:0c:ef:cd:2f:cb:61:4d:8e:61:72:60:c2:c8: f2:60:d0:a0:83:31:da:5f:d1:7c:bd:18:ff:75:54:30:7f:40: cb:cd:35:ee:56:88:e4:5b:34:19:c8:8c:76:b2:4d:4c:62:e2: b4:d5:e8:19:30:99:98:c8:ad:c5:56:2b:c3:ea:42:5c:4e:63: aa:7e:29:7e:2a:4d:d4:b1:50:17:f2:26:c4:6e:38:db:ff:72: 41:96:a1:70:ec:4f:78:c1:ee:ae:da:0b:0d:83:d4:62:7c:de: 6d:d4:04:ca:a7:89:86:c2:18:1d:23:5d:63:08:4a:dd:9c:51: 4f:0d:7e:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBzJq/LXntuVsOUVIZS3SIajS1sgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDNaFw0yNTA4MTAxMTAwMDNaMDMxMTAvBgNV BAMTKDQxNzA0MDkxODkyRTkwRjBEODhBMTJDMDMyNURDRjBFNzA3Njc3MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIklXC0uJ8wg14/+1ht9KCGBOS lSlMC37UnZ3TCElvE+YD3Lqg+z0udDpif+/EmxLhij7/yHUmX9ek7UvC0TW3vXbm xaYfsvAPuUv4WCYjj5pj7ClUMWJJog/XD6d+rJkkfKmYIu6cXSF1GaVK3ogTPJ+P 8+UfLyI51f1O+xQsOFh8Sz/Lez48ylOrhKyR8ay7uWBSSZ4aTTwKxSvrSZiEcy6U MSe5JNQX7p9PFucu1B5DMC62l+PGz9jvk3VJleXU133M2SOLb4GuFlz0VB3JWZ9i S44xsrAPhCwzux9svZ8xbjNHWc/MiJ2fbVGA09UFwTgsU4IIJycwSQFy9lnBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQXBAkYkukPDYihLAMl3PDnB2dxowHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy6MA0GCSqG SIb3DQEBCwUAA4IBAQCZ3W3bL+lY6vQv+ftKD7gdoWVmzXmMUuE36QfwNFst+PKn UKGCPlUE8f5fmFhGyXiBuh8f7ukyfAxYsnPwn+GiRcCCSc7NROTS6RJRKK2dQGi+ MWwyfFQnwaZpgFv+YHGS6tbbgUHvornTD68PyXYX8CK9NHeomBicp03a7aU9Rsep ygzvzS/LYU2OYXJgwsjyYNCggzHaX9F8vRj/dVQwf0DLzTXuVojkWzQZyIx2sk1M YuK01egZMJmYyK3FVivD6kJcTmOqfil+Kk3UsVAX8ibEbjjb/3JBlqFw7E94we6u 2gsNg9RifN5t1ATKp4mGwhgdI11jCErdnFFPDX6i -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org