$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa File: 3135372e31302e38382e302f32332d3233203d3e20313532303832.roa (raw, json) Hash identifier: Fy4YPsCVni6C/TRLoUtitVXhhu5KkW1pCaPz4zYyFfQ= Subject key identifier: F8:C3:8E:B9:C5:AE:F2:50:C5:20:4A:8A:1C:11:56:7F:8E:88:D0:55 Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 36C34332B29789874BEE565DC0EB58ECC7C7FC2A Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa Signing time: Thu 11 Jan 2024 03:26:05 +0000 ROA not before: Thu 11 Jan 2024 03:21:05 +0000 ROA not after: Thu 09 Jan 2025 03:26:05 +0000 asID: 152082 IP address blocks: 157.10.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c3:43:32:b2:97:89:87:4b:ee:56:5d:c0:eb:58:ec:c7:c7:fc:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Jan 11 03:21:05 2024 GMT Not After : Jan 9 03:26:05 2025 GMT Subject: CN=F8C38EB9C5AEF250C5204A8A1C11567F8E88D055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:19:c0:ec:6c:dc:d9:aa:59:21:32:d5:6c: 6d:44:b2:bb:67:09:fc:fe:d5:09:03:a6:cb:67:ab: bb:d7:71:5f:c5:58:6b:c3:2a:3d:8e:70:d6:59:6f: 2f:4e:74:de:85:fe:4f:e8:c3:ea:1f:cb:8e:69:80: 1e:e1:04:ad:2e:93:06:70:4d:20:a3:a5:11:ac:e8: 9c:e9:93:a1:13:d6:58:fa:60:84:bb:1e:ea:9b:ea: ae:e2:b3:1f:31:3a:a2:97:c8:4e:45:91:ef:2c:92: 1e:83:97:5c:f1:67:67:61:e9:7b:4a:c8:23:14:a5: 79:a9:0d:91:0c:31:7c:61:59:98:da:f0:c3:5d:12: 42:a3:df:de:26:de:34:83:ff:79:cc:73:70:11:5f: 6e:80:fb:9b:a0:29:92:0f:59:3a:30:cc:aa:18:2b: 2d:ff:dc:f8:a2:04:f5:20:ba:50:63:10:64:9a:60: d8:42:ac:4c:df:35:1a:ae:f4:be:69:df:07:20:34: af:4a:4e:3a:17:d0:e4:1d:91:f9:a2:a7:7b:17:a3: fc:ce:9f:a1:2e:70:45:94:82:34:55:f4:3b:05:db: 5e:c3:00:e6:c6:72:18:a9:f6:9d:7d:17:99:f4:94: 57:ee:9b:3c:43:7f:61:ce:77:3c:d1:83:17:1e:45: 56:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C3:8E:B9:C5:AE:F2:50:C5:20:4A:8A:1C:11:56:7F:8E:88:D0:55 X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption aa:4d:64:27:e4:49:63:23:2f:17:9e:e5:84:74:38:53:6f:38: c3:0d:47:e5:fc:1f:2c:12:33:4d:a0:57:94:17:10:6c:e1:70: db:5c:e6:27:d5:de:f3:e9:47:7c:0c:28:d8:33:38:e8:a3:ab: 9f:67:81:77:25:80:31:93:0f:32:2a:50:a8:c0:89:a4:72:44: 63:e5:cd:85:22:b2:82:8c:35:33:cb:28:11:46:ee:cc:3d:40: fd:19:65:f0:8a:43:ca:4d:e2:3c:ef:78:de:0e:9d:af:75:33: 28:d0:4e:71:9b:05:b0:94:a1:53:5d:a5:39:51:55:c6:ea:5f: b4:e6:dc:f2:cd:69:90:ef:58:de:25:14:2c:66:9b:b1:f9:1a: 27:03:19:88:e9:ae:86:5b:97:3c:60:28:cd:66:28:7b:09:16: 31:82:d4:8f:c7:7b:d8:d8:7d:23:c5:73:7e:02:5a:eb:62:80: 2e:54:6e:07:99:de:e7:14:63:e9:0d:77:31:f6:3d:31:f1:93: 80:0b:11:e3:9a:0b:9a:08:97:d7:53:5f:ae:ca:af:8e:35:8f: 45:ad:26:40:98:19:da:35:86:92:87:39:d0:d6:d9:85:5b:69: cd:9a:e2:ba:7a:3e:e6:25:3e:5c:92:bc:c4:bf:62:8a:77:60: dd:ef:16:3c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNsNDMrKXiYdL7lZdwOtY7MfH/CowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNDAxMTEwMzIxMDVaFw0yNTAxMDkwMzI2MDVaMDMxMTAvBgNV BAMTKEY4QzM4RUI5QzVBRUYyNTBDNTIwNEE4QTFDMTE1NjdGOEU4OEQwNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxhRnA7Gzc2apZITLVbG1Esrtn Cfz+1QkDpstnq7vXcV/FWGvDKj2OcNZZby9OdN6F/k/ow+ofy45pgB7hBK0ukwZw TSCjpRGs6Jzpk6ET1lj6YIS7Huqb6q7isx8xOqKXyE5Fke8skh6Dl1zxZ2dh6XtK yCMUpXmpDZEMMXxhWZja8MNdEkKj394m3jSD/3nMc3ARX26A+5ugKZIPWTowzKoY Ky3/3PiiBPUgulBjEGSaYNhCrEzfNRqu9L5p3wcgNK9KTjoX0OQdkfmip3sXo/zO n6EucEWUgjRV9DsF217DAObGchip9p19F5n0lFfumzxDf2HOdzzRgxceRVYTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+MOOucWu8lDFIEqKHBFWf46I0FUwHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAqk1kJ+RJYyMvF57lhHQ4U284ww1H5fwfLBIzTaBXlBcQbOFw 21zmJ9Xe8+lHfAwo2DM46KOrn2eBdyWAMZMPMipQqMCJpHJEY+XNhSKygow1M8so EUbuzD1A/Rll8IpDyk3iPO943g6dr3UzKNBOcZsFsJShU12lOVFVxupftObc8s1p kO9Y3iUULGabsfkaJwMZiOmuhluXPGAozWYoewkWMYLUj8d72Nh9I8VzfgJa62KA LlRuB5ne5xRj6Q13MfY9MfGTgAsR45oLmgiX11NfrsqvjjWPRa0mQJgZ2jWGkoc5 0NbZhVtpzZriuno+5iU+XJK8xL9iindg3e8WPA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org