$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa File: 3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa (raw, json) Hash identifier: JNZ5xu8ED6PJ2RZGKaIfIPv/kU2+NF1GrRPEn83DuJQ= Subject key identifier: 24:41:25:EA:F7:E7:2D:95:B9:35:49:FF:1D:FA:0C:6E:3A:64:F2:18 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 48E1BBA8673D8C083505A7DA88BFDD877287F5A9 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa Signing time: Fri 24 Nov 2023 05:00:01 +0000 ROA not before: Fri 24 Nov 2023 04:55:01 +0000 ROA not after: Fri 22 Nov 2024 05:00:01 +0000 asID: 63859 IP address blocks: 158.140.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e1:bb:a8:67:3d:8c:08:35:05:a7:da:88:bf:dd:87:72:87:f5:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Nov 24 04:55:01 2023 GMT Not After : Nov 22 05:00:01 2024 GMT Subject: CN=244125EAF7E72D95B93549FF1DFA0C6E3A64F218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ee:46:07:bf:3b:95:e0:18:ba:93:80:b5:a6: 0d:bc:d5:aa:84:06:cf:63:ed:ae:aa:c7:65:94:f3: 6f:70:e3:16:49:e5:c7:f0:2e:fe:bc:b5:87:f9:c2: 3c:a0:8c:5c:fe:ac:50:4a:b3:05:22:e1:a7:d9:70: da:ca:f9:f4:e1:bd:09:d6:40:7c:2e:a8:e1:2a:b6: 4d:36:da:94:8d:3b:41:4f:95:1e:f3:b2:78:88:10: db:bc:0b:50:f0:bc:4b:c3:8a:81:95:a0:84:88:69: cc:a8:05:1b:03:fb:ee:d3:a5:ce:97:c7:49:96:94: 73:3a:5e:fc:e0:c5:2b:5d:0e:7a:97:4a:0e:c6:01: 85:1f:53:43:13:c7:80:93:2d:80:d0:cd:4e:cf:84: 3c:65:78:cd:a9:fe:7e:4f:27:54:01:a4:6b:83:b4: 3a:6f:b9:4a:dc:07:f8:b1:24:66:a3:90:73:a5:f2: 78:13:70:9b:ac:fa:20:a1:11:83:8a:b5:a6:d1:10: 5c:7e:79:09:a4:c0:34:95:03:08:4c:d1:60:c8:50: a9:cb:65:b7:3f:2d:a4:c9:16:33:22:15:89:01:fd: 9d:1f:2a:28:a0:08:01:30:c5:f5:c0:9b:31:25:cc: 74:7c:33:45:4b:44:e2:cc:7c:01:8e:f6:e2:28:db: 4b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:41:25:EA:F7:E7:2D:95:B9:35:49:FF:1D:FA:0C:6E:3A:64:F2:18 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.190.0/23 Signature Algorithm: sha256WithRSAEncryption 70:33:11:89:58:6f:2c:2d:05:2c:ce:b4:46:2c:c4:17:06:6e: 5e:db:5f:32:08:14:37:46:26:c9:6e:5e:3a:02:18:f5:41:ba: 0e:90:94:f0:a7:1e:a9:5c:cb:7d:b6:36:2f:02:f4:e8:81:c3: fc:45:46:bb:1a:0f:9c:b2:41:ea:67:e6:7e:94:37:40:11:6e: e3:33:eb:42:2b:ff:9b:9f:6e:25:1d:4a:e8:cd:66:5d:16:88: ea:21:32:21:4b:fc:69:13:c9:b4:2b:b3:6d:96:1f:e9:75:cd: 8e:3f:5e:10:cb:3e:65:83:80:b5:47:e6:80:fd:bb:d5:70:f2: df:7e:e5:34:2a:03:cc:a7:31:88:8e:19:11:7c:10:af:3a:4e: 9d:56:24:41:5b:40:56:fa:ca:56:de:31:91:eb:5a:3b:fc:38: b9:fc:3f:e4:f6:78:cc:51:58:49:f1:df:88:9e:8e:bf:5c:e0: a3:37:01:b0:48:cf:39:5a:e1:cd:cf:76:e8:be:5b:a4:0c:fe: ac:8f:33:07:01:5f:1a:f6:02:58:32:6d:81:34:e6:d4:55:fe: 39:54:54:7d:36:9e:a1:45:0f:6c:77:bd:a0:8d:2e:4e:28:2c: 0f:5d:82:6b:80:eb:d5:6c:3e:9d:d3:e3:02:99:04:94:a7:da: 3d:56:89:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSOG7qGc9jAg1BafaiL/dh3KH9akwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzExMjQwNDU1MDFaFw0yNDExMjIwNTAwMDFaMDMxMTAvBgNV BAMTKDI0NDEyNUVBRjdFNzJEOTVCOTM1NDlGRjFERkEwQzZFM0E2NEYyMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb7kYHvzuV4Bi6k4C1pg281aqE Bs9j7a6qx2WU829w4xZJ5cfwLv68tYf5wjygjFz+rFBKswUi4afZcNrK+fThvQnW QHwuqOEqtk022pSNO0FPlR7zsniIENu8C1DwvEvDioGVoISIacyoBRsD++7Tpc6X x0mWlHM6XvzgxStdDnqXSg7GAYUfU0MTx4CTLYDQzU7PhDxleM2p/n5PJ1QBpGuD tDpvuUrcB/ixJGajkHOl8ngTcJus+iChEYOKtabREFx+eQmkwDSVAwhM0WDIUKnL Zbc/LaTJFjMiFYkB/Z0fKiigCAEwxfXAmzElzHR8M0VLROLMfAGO9uIo20sBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJEEl6vfnLZW5NUn/HfoMbjpk8hgwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnoy+MA0GCSqG SIb3DQEBCwUAA4IBAQBwMxGJWG8sLQUszrRGLMQXBm5e218yCBQ3RibJbl46Ahj1 QboOkJTwpx6pXMt9tjYvAvTogcP8RUa7Gg+cskHqZ+Z+lDdAEW7jM+tCK/+bn24l HUrozWZdFojqITIhS/xpE8m0K7Ntlh/pdc2OP14Qyz5lg4C1R+aA/bvVcPLffuU0 KgPMpzGIjhkRfBCvOk6dViRBW0BW+spW3jGR61o7/Di5/D/k9njMUVhJ8d+Ino6/ XOCjNwGwSM85WuHNz3bovlukDP6sjzMHAV8a9gJYMm2BNObUVf45VFR9Np6hRQ9s d72gjS5OKCwPXYJrgOvVbD6d0+MCmQSUp9o9Von0 -----END CERTIFICATE-----Generated at Sun May 5 00:13:44 2024 by rpki-client on console-ams.rpki-client.org