$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa File: 3135372e36362e322e302f32332d3234203d3e20313532343430.roa (raw, json) Hash identifier: k1ABqECpixq2cAGwylGOS1bNZF6AWmXzRRrM23inilg= Subject key identifier: F0:33:BD:C0:27:F0:C1:4A:96:C1:76:54:75:F7:99:91:2D:2B:73:7D Certificate issuer: /CN=FC2DAAA409BA60DE33EC91F3A861D1A00719D426 Certificate serial: 69982880AC39AFC5DAD6E22BB0F74458830305ED Authority key identifier: FC:2D:AA:A4:09:BA:60:DE:33:EC:91:F3:A8:61:D1:A0:07:19:D4:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa Signing time: Sun 02 Jun 2024 05:04:06 +0000 ROA not before: Sun 02 Jun 2024 04:59:06 +0000 ROA not after: Sun 01 Jun 2025 05:04:06 +0000 asID: 152440 IP address blocks: 157.66.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.crl rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 10:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:98:28:80:ac:39:af:c5:da:d6:e2:2b:b0:f7:44:58:83:03:05:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC2DAAA409BA60DE33EC91F3A861D1A00719D426 Validity Not Before: Jun 2 04:59:06 2024 GMT Not After : Jun 1 05:04:06 2025 GMT Subject: CN=F033BDC027F0C14A96C1765475F799912D2B737D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:84:02:01:9d:9f:49:e9:e5:ad:19:83:52:c7: 34:94:2a:b9:17:0e:fb:d0:2a:2d:9f:48:5f:4f:a6: ca:39:b9:c6:56:f0:c2:2b:1a:9b:08:69:56:7e:54: bd:c2:18:77:9f:da:64:2b:d0:72:51:f7:ad:8e:a6: 42:1f:b5:80:1f:d2:c7:0c:6e:38:09:e8:e7:f4:28: 5a:38:44:cf:a7:db:c7:11:dc:44:fb:1f:d1:a4:7b: cd:d8:05:4b:fa:04:96:3c:4b:4e:6b:77:f0:76:eb: 9b:4e:a6:c5:6c:da:5a:d1:4f:47:5f:99:ea:18:4b: 20:3a:8c:39:40:cf:e0:6c:63:d4:a7:cc:81:24:96: f5:72:fa:80:e3:60:92:4c:5e:c0:26:d9:52:7d:18: d6:30:b2:00:80:4c:40:b9:69:e4:50:46:a1:76:b6: 97:b6:33:cc:e1:2b:7b:ce:ef:ec:22:cb:38:68:a6: 89:93:9d:36:fd:79:86:35:5f:32:ca:50:76:97:b7: 3e:80:66:58:6f:63:7a:00:dc:ba:18:b7:38:80:6f: d4:4c:89:21:30:92:7d:ba:0c:8c:62:b9:24:5d:b5: 6c:3c:8b:72:25:05:93:77:20:f1:40:e2:0a:e0:3b: 83:73:2b:14:12:f8:1f:f2:d1:12:09:3c:d4:9b:07: dd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:33:BD:C0:27:F0:C1:4A:96:C1:76:54:75:F7:99:91:2D:2B:73:7D X509v3 Authority Key Identifier: keyid:FC:2D:AA:A4:09:BA:60:DE:33:EC:91:F3:A8:61:D1:A0:07:19:D4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.2.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:d5:62:a9:2e:0b:3d:53:9b:93:35:88:15:00:87:31:a9:69: e6:40:c7:c5:12:77:d2:c5:3b:47:ec:37:6a:a6:df:f7:67:e4: 95:37:15:c9:09:a4:a1:3e:c7:37:2b:a6:46:72:30:d6:7a:8a: 3f:93:b8:87:cf:e8:e7:05:5c:fa:5a:70:7b:1e:81:d8:2b:0a: e7:b4:ef:cb:4b:85:9d:24:9b:14:ec:3f:60:01:5f:cc:c0:8c: 43:f8:b4:a3:dc:74:2f:68:ce:a8:16:52:e9:f1:1a:ce:81:7b: 5b:74:3e:ac:85:6e:b9:f2:35:3e:66:96:8b:82:d0:41:a0:87: 2d:66:d1:6c:38:fc:4c:f5:be:c4:98:94:14:84:29:31:28:19: 9d:52:06:a8:36:b6:79:61:a5:4d:01:44:be:02:d4:38:6c:97: b9:29:16:78:88:da:86:c5:12:50:27:fc:9d:c2:15:04:93:68: 28:ce:7f:d3:c2:40:e0:da:9a:2a:6f:6e:73:6f:38:83:ef:f8: 21:dd:c6:5b:28:3a:23:f3:13:5b:f6:3a:63:1b:4b:03:c7:91: f9:19:a6:ab:84:3c:da:53:86:82:73:f5:c3:dd:42:32:dc:37: f7:3d:09:53:5e:54:cf:d9:d6:f7:64:ed:5c:2c:6a:14:ed:b0: dd:33:13:9c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaZgogKw5r8Xa1uIrsPdEWIMDBe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkMyREFBQTQwOUJBNjBERTMzRUM5MUYzQTg2MUQxQTAw NzE5RDQyNjAeFw0yNDA2MDIwNDU5MDZaFw0yNTA2MDEwNTA0MDZaMDMxMTAvBgNV BAMTKEYwMzNCREMwMjdGMEMxNEE5NkMxNzY1NDc1Rjc5OTkxMkQyQjczN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqhAIBnZ9J6eWtGYNSxzSUKrkX DvvQKi2fSF9Ppso5ucZW8MIrGpsIaVZ+VL3CGHef2mQr0HJR962OpkIftYAf0scM bjgJ6Of0KFo4RM+n28cR3ET7H9Gke83YBUv6BJY8S05rd/B265tOpsVs2lrRT0df meoYSyA6jDlAz+BsY9SnzIEklvVy+oDjYJJMXsAm2VJ9GNYwsgCATEC5aeRQRqF2 tpe2M8zhK3vO7+wiyzhopomTnTb9eYY1XzLKUHaXtz6AZlhvY3oA3LoYtziAb9RM iSEwkn26DIxiuSRdtWw8i3IlBZN3IPFA4grgO4NzKxQS+B/y0RIJPNSbB92LAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8DO9wCfwwUqWwXZUdfeZkS0rc30wHwYDVR0j BBgwFoAU/C2qpAm6YN4z7JHzqGHRoAcZ1CYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmI4MDhlYi1jOThlLTQwMzYtYmU5YS0xOTNiYmNjNjQ4OTIvMC9GQzJEQUFBNDA5 QkE2MERFMzNFQzkxRjNBODYxRDFBMDA3MTlENDI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkMyREFBQTQwOUJBNjBERTMzRUM5MUYzQTg2MUQxQTAwNzE5 RDQyNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjgwOGViLWM5OGUtNDAzNi1i ZTlhLTE5M2JiY2M2NDg5Mi8wLzMxMzUzNzJlMzYzNjJlMzIyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM1MzIzNDM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgIwDQYJKoZIhvcN AQELBQADggEBAHzVYqkuCz1Tm5M1iBUAhzGpaeZAx8USd9LFO0fsN2qm3/dn5JU3 FckJpKE+xzcrpkZyMNZ6ij+TuIfP6OcFXPpacHsegdgrCue078tLhZ0kmxTsP2AB X8zAjEP4tKPcdC9ozqgWUunxGs6Be1t0PqyFbrnyNT5mlouC0EGghy1m0Ww4/Ez1 vsSYlBSEKTEoGZ1SBqg2tnlhpU0BRL4C1Dhsl7kpFniI2obFElAn/J3CFQSTaCjO f9PCQODamipvbnNvOIPv+CHdxlsoOiPzE1v2OmMbSwPHkfkZpquEPNpThoJz9cPd QjLcN/c9CVNeVM/Z1vdk7VwsahTtsN0zE5w= -----END CERTIFICATE-----Generated at Wed Feb 19 22:12:38 2025 by rpki-client