$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa File: 3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa (raw, json) Hash identifier: t3o5KGjpsLpuqXe+p8RMIhbFlMfTjypsGsI9H9/9kmQ= Subject key identifier: 80:C7:03:7B:24:15:E0:95:1C:9A:95:4F:84:B4:E1:2B:C6:A4:97:7A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 68AEE9159ADF2807E1DD5E4947CA42BDAF1C7965 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa Signing time: Fri 25 Oct 2024 05:01:30 +0000 ROA not before: Fri 25 Oct 2024 04:56:30 +0000 ROA not after: Fri 24 Oct 2025 05:01:30 +0000 asID: 63859 IP address blocks: 158.140.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ae:e9:15:9a:df:28:07:e1:dd:5e:49:47:ca:42:bd:af:1c:79:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Oct 25 04:56:30 2024 GMT Not After : Oct 24 05:01:30 2025 GMT Subject: CN=80C7037B2415E0951C9A954F84B4E12BC6A4977A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ee:12:93:d8:83:55:56:f2:96:5e:dc:34:8c: b3:db:d1:23:46:ed:9e:db:e1:2c:53:dc:01:59:47: 12:d2:15:62:74:06:09:07:87:9a:4a:47:c1:84:96: f2:a0:61:b2:66:a0:68:ac:30:8a:a5:38:1e:53:63: 1a:65:14:3b:27:4a:fb:87:50:10:d8:6b:19:e2:9f: 34:8a:ec:d7:16:ac:b4:7c:3a:99:4f:ee:fa:71:ce: f4:c0:5a:5e:b7:c4:a9:4d:5a:63:da:2c:f9:07:b5: 58:40:cb:05:a4:83:7d:cc:fc:39:29:67:f9:f6:77: b8:94:c6:e5:f9:76:a7:f1:75:2c:9c:66:55:99:3b: 4c:1f:3e:22:63:51:1b:80:2a:6c:be:e5:9f:08:56: 02:50:41:34:94:39:20:01:8f:2b:1b:5b:4f:11:84: 66:32:6f:db:8e:e5:30:75:48:7b:20:84:8b:b1:99: e1:fa:b3:2c:87:65:e4:98:80:0e:f0:33:a1:2f:c0: 04:fb:e4:b9:be:b8:d4:e9:95:4f:c1:0d:27:e8:74: c7:6c:3e:81:5f:48:c4:49:1c:86:e6:f8:e2:f0:d9: af:a7:f3:f0:46:9e:52:c9:a0:83:fc:a7:17:13:46: 12:21:44:a1:85:19:b7:4f:4a:be:06:37:7d:a6:e9: 3d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C7:03:7B:24:15:E0:95:1C:9A:95:4F:84:B4:E1:2B:C6:A4:97:7A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.190.0/23 Signature Algorithm: sha256WithRSAEncryption 60:d8:fe:16:d0:01:d3:98:f5:2e:fe:b1:1a:b0:0e:b6:8f:7a: e7:f8:14:df:26:28:6f:fb:7c:7d:ea:2c:b0:b0:bc:22:33:f9: 25:1d:51:13:b0:b4:31:75:f9:90:bb:d8:ef:bf:f0:52:29:a4: 23:41:1f:5e:d1:21:ef:60:ab:6a:55:27:d0:b8:34:59:e4:0c: a4:76:99:62:57:2a:29:4a:f9:5e:66:a2:04:ef:07:50:39:01: bd:86:ce:d7:04:30:41:43:f5:81:1c:5f:c4:c0:c5:42:c1:b6: ec:59:6f:dc:a0:2e:42:12:5a:76:2e:4d:45:c8:38:f0:84:60: 79:f8:3f:fd:d6:f7:6f:7a:66:bf:78:cf:de:5d:68:e3:79:6d: a7:46:96:03:f2:b6:5b:90:35:9d:c5:b4:bf:f9:dc:14:fb:34: f7:c3:af:dd:c4:55:1c:4e:35:88:09:3f:d1:d2:9a:b2:61:e6: ce:5e:40:92:19:a3:34:a4:84:07:9a:da:36:0b:6c:59:1a:80: 02:6e:d1:26:2c:00:a9:6d:6d:e6:86:0b:df:94:f9:82:8c:e9: 42:4b:95:98:e4:ba:c9:28:49:4a:20:93:e2:b0:37:eb:54:b2: fa:4f:22:29:04:fd:12:9d:08:d9:a5:4e:b3:0d:a2:18:60:b5: 4d:e5:ff:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaK7pFZrfKAfh3V5JR8pCva8ceWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDEwMjUwNDU2MzBaFw0yNTEwMjQwNTAxMzBaMDMxMTAvBgNV BAMTKDgwQzcwMzdCMjQxNUUwOTUxQzlBOTU0Rjg0QjRFMTJCQzZBNDk3N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc7hKT2INVVvKWXtw0jLPb0SNG 7Z7b4SxT3AFZRxLSFWJ0BgkHh5pKR8GElvKgYbJmoGisMIqlOB5TYxplFDsnSvuH UBDYaxninzSK7NcWrLR8OplP7vpxzvTAWl63xKlNWmPaLPkHtVhAywWkg33M/Dkp Z/n2d7iUxuX5dqfxdSycZlWZO0wfPiJjURuAKmy+5Z8IVgJQQTSUOSABjysbW08R hGYyb9uO5TB1SHsghIuxmeH6syyHZeSYgA7wM6EvwAT75Lm+uNTplU/BDSfodMds PoFfSMRJHIbm+OLw2a+n8/BGnlLJoIP8pxcTRhIhRKGFGbdPSr4GN32m6T17AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgMcDeyQV4JUcmpVPhLThK8akl3owHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnoy+MA0GCSqG SIb3DQEBCwUAA4IBAQBg2P4W0AHTmPUu/rEasA62j3rn+BTfJihv+3x96iywsLwi M/klHVETsLQxdfmQu9jvv/BSKaQjQR9e0SHvYKtqVSfQuDRZ5AykdpliVyopSvle ZqIE7wdQOQG9hs7XBDBBQ/WBHF/EwMVCwbbsWW/coC5CElp2Lk1FyDjwhGB5+D/9 1vdvema/eM/eXWjjeW2nRpYD8rZbkDWdxbS/+dwU+zT3w6/dxFUcTjWICT/R0pqy YebOXkCSGaM0pIQHmto2C2xZGoACbtEmLACpbW3mhgvflPmCjOlCS5WY5LrJKElK IJPisDfrVLL6TyIpBP0SnQjZpU6zDaIYYLVN5f8C -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org