$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: /B+AqoTDKjNxel7vg+9P8q1gbeaeqYLzF2F2B186w6c= Subject key identifier: 75:D4:FE:44:9F:3C:89:6B:31:13:22:BD:95:6C:A4:CD:58:35:2E:04 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 11F29B006BC8BB58D7D77767A15302472B8826EF Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 09:00:02 +0000 ROA not before: Sun 11 Aug 2024 08:55:02 +0000 ROA not after: Sun 10 Aug 2025 09:00:02 +0000 asID: 63859 IP address blocks: 158.140.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f2:9b:00:6b:c8:bb:58:d7:d7:77:67:a1:53:02:47:2b:88:26:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 08:55:02 2024 GMT Not After : Aug 10 09:00:02 2025 GMT Subject: CN=75D4FE449F3C896B311322BD956CA4CD58352E04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:7b:55:e9:46:f6:51:0f:76:8d:8c:49:8d:45: 1e:9d:bc:96:e8:2a:8e:42:54:ff:e6:6d:7a:bc:b6: a1:0b:28:76:1b:fc:d1:b7:ec:e9:ea:cf:5e:b5:39: 2a:96:a9:15:af:d0:b1:be:ee:c1:d4:cd:dd:ca:0b: fd:a3:b9:d8:78:24:c9:03:97:30:a6:71:59:c9:22: 85:4f:33:90:1a:2a:32:4f:02:a8:2c:cc:91:6d:36: 9c:20:48:18:9f:ba:bd:12:dd:be:cf:c7:04:bb:d8: 08:c3:48:04:c2:54:f5:27:43:05:70:8a:69:ec:16: 1a:2d:b2:e1:1a:51:8b:26:81:ce:3f:b6:bf:c6:fc: 48:f0:b8:e3:d1:5c:ac:98:bc:e1:ed:0a:a6:fd:ad: 69:75:27:41:26:de:e8:69:23:4b:9f:52:8a:f2:17: e9:15:48:cf:f8:94:ba:ef:65:79:f9:f3:9c:26:ab: 2e:ba:78:9d:6b:2e:3e:a0:e2:14:8f:68:c6:2c:15: 0a:fc:5d:3e:15:3e:15:15:8e:03:ad:f0:08:58:8e: 9c:8c:7a:b3:e8:eb:3f:54:08:c1:b5:f9:d6:1a:37: bc:92:c2:14:77:e0:69:b4:46:74:ff:dd:3a:f7:bf: 07:cd:c8:a2:8c:97:2c:e0:a8:93:26:b2:1b:54:aa: 20:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D4:FE:44:9F:3C:89:6B:31:13:22:BD:95:6C:A4:CD:58:35:2E:04 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.190.0/24 Signature Algorithm: sha256WithRSAEncryption 91:3a:fa:83:32:92:fa:1d:50:06:22:cd:98:f8:29:55:60:c6: c5:9d:5b:72:e4:47:ca:fd:d1:00:6e:d5:e2:e7:4f:4e:e5:53: b7:26:1c:3a:08:f6:b9:a1:3d:63:0f:36:9e:2d:59:ca:b4:eb: 2d:a3:f0:79:11:38:bc:d5:1c:6b:aa:7d:f6:64:b5:dc:86:69: 5b:de:c6:8d:d7:60:90:0e:04:1a:78:7b:d7:5f:d6:63:4b:f5: 69:ab:0c:1e:f6:c7:23:e9:0b:e4:3b:27:58:1c:e5:98:71:30: ef:2c:09:18:90:ea:1d:ab:6a:38:64:df:44:f5:08:30:f5:4e: b6:86:e8:0c:a4:ae:f1:f0:1d:e6:7f:81:e8:f3:8f:da:b1:27: f2:3d:4d:f5:5d:3a:ff:75:09:87:62:cc:d6:94:31:f1:35:76: 86:fd:cb:ca:5b:c2:63:63:b9:94:ea:5c:bd:49:7b:92:e0:38: ad:e8:cd:62:6e:fd:41:9b:5a:70:d0:26:3d:d6:32:c2:d0:0c: 2b:c8:b9:55:5b:4a:a5:ad:3e:bd:4e:75:82:bb:12:47:e8:db: 49:45:e3:0a:8c:6e:b6:de:86:32:3c:14:4f:59:dd:82:1b:e0: ed:0b:16:f2:7a:16:f6:7f:39:22:b9:ad:ad:1a:68:5e:d5:83: 36:77:68:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEfKbAGvIu1jX13dnoVMCRyuIJu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTEwODU1MDJaFw0yNTA4MTAwOTAwMDJaMDMxMTAvBgNV BAMTKDc1RDRGRTQ0OUYzQzg5NkIzMTEzMjJCRDk1NkNBNENENTgzNTJFMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4e1XpRvZRD3aNjEmNRR6dvJbo Ko5CVP/mbXq8tqELKHYb/NG37Onqz161OSqWqRWv0LG+7sHUzd3KC/2judh4JMkD lzCmcVnJIoVPM5AaKjJPAqgszJFtNpwgSBifur0S3b7PxwS72AjDSATCVPUnQwVw imnsFhotsuEaUYsmgc4/tr/G/EjwuOPRXKyYvOHtCqb9rWl1J0Em3uhpI0ufUory F+kVSM/4lLrvZXn585wmqy66eJ1rLj6g4hSPaMYsFQr8XT4VPhUVjgOt8AhYjpyM erPo6z9UCMG1+dYaN7ySwhR34Gm0RnT/3Tr3vwfNyKKMlyzgqJMmshtUqiABAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUddT+RJ88iWsxEyK9lWykzVg1LgQwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy+MA0GCSqG SIb3DQEBCwUAA4IBAQCROvqDMpL6HVAGIs2Y+ClVYMbFnVty5EfK/dEAbtXi509O 5VO3Jhw6CPa5oT1jDzaeLVnKtOsto/B5ETi81Rxrqn32ZLXchmlb3saN12CQDgQa eHvXX9ZjS/Vpqwwe9scj6QvkOydYHOWYcTDvLAkYkOodq2o4ZN9E9Qgw9U62hugM pK7x8B3mf4Ho84/asSfyPU31XTr/dQmHYszWlDHxNXaG/cvKW8JjY7mU6ly9SXuS 4Dit6M1ibv1Bm1pw0CY91jLC0AwryLlVW0qlrT69TnWCuxJH6NtJReMKjG623oYy PBRPWd2CG+DtCxbyehb2fzkiua2tGmhe1YM2d2hN -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org