$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: WVdEr6CDf0Azzks/9vne22lzkX84SEOJOkbMFp6g2Ok= Subject key identifier: 4E:82:F9:E9:14:A8:14:85:3A:AD:97:61:D6:C2:B7:53:49:6E:F3:A6 Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 61B5856C7263CA7D39090AA2E5ACB3B3988D877B Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa Signing time: Thu 11 Jan 2024 03:26:18 +0000 ROA not before: Thu 11 Jan 2024 03:21:18 +0000 ROA not after: Thu 09 Jan 2025 03:26:18 +0000 asID: 152082 IP address blocks: 157.10.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b5:85:6c:72:63:ca:7d:39:09:0a:a2:e5:ac:b3:b3:98:8d:87:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Jan 11 03:21:18 2024 GMT Not After : Jan 9 03:26:18 2025 GMT Subject: CN=4E82F9E914A814853AAD9761D6C2B753496EF3A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b5:b0:8b:df:41:b1:b9:12:07:4e:76:94:31: 45:96:b3:41:62:94:ad:76:f2:49:06:d9:77:73:86: fc:b0:8e:87:91:29:46:98:25:1b:18:04:8b:a9:be: 34:2b:0f:12:3f:a6:af:b8:71:65:e7:89:43:e1:b6: 89:ad:e0:43:96:e6:e4:df:71:3e:ba:a2:58:72:54: 11:5e:e9:6a:0b:a4:3c:7a:08:77:2d:c6:5c:71:63: a9:07:fe:6c:2d:53:44:bc:3c:ba:93:67:b4:75:3b: 04:68:0d:dc:74:1d:2b:47:34:54:a1:18:39:42:ea: c7:87:c4:57:cc:8f:fe:73:a9:ac:06:be:0e:3e:7b: 0a:8f:e2:e8:23:3e:cb:d0:77:1b:69:cd:53:23:bf: 0a:a8:28:a5:60:bb:e5:7b:f5:02:08:fc:47:b3:48: 79:8b:97:71:fd:48:13:a6:1c:09:be:14:80:1f:54: a2:5d:67:b0:9f:e5:d4:56:d1:f8:64:e8:49:1f:f7: 0b:51:9f:80:24:db:75:f7:a0:fc:48:fd:82:2c:e4: 23:3e:e0:8c:21:1c:b5:fc:91:4a:7d:7b:56:62:7d: 85:9f:d7:ea:eb:d8:0a:64:1b:9d:18:4d:46:55:43: 44:78:03:ef:bc:42:d0:f0:cd:1d:8a:b5:6d:87:d4: 91:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:82:F9:E9:14:A8:14:85:3A:AD:97:61:D6:C2:B7:53:49:6E:F3:A6 X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/24 Signature Algorithm: sha256WithRSAEncryption ae:fe:2d:59:c4:8d:7c:5b:86:c4:e6:c0:ab:c8:cd:1d:95:07: c6:5d:19:c9:c1:51:86:2a:66:de:02:39:30:63:b5:c9:ff:1a: f0:e4:b9:fa:ea:a7:1a:95:86:eb:fc:98:1e:08:02:b7:0c:47: f8:ca:b8:5a:c0:52:4e:9d:5a:7d:b6:69:55:3d:03:69:38:f0: bf:22:d9:0f:85:10:4b:d0:35:23:32:fe:2a:51:9a:f3:82:47: ba:d8:85:63:63:00:f4:52:b6:40:f8:b0:1e:f1:1b:ca:94:8a: b3:5c:2c:2d:c9:57:94:f5:2d:1f:a1:65:96:0b:fc:ab:a6:52: 23:b7:e5:9e:d6:0a:f7:cb:6a:ae:01:02:4f:cd:16:f6:d2:24: e0:fe:a6:0a:ed:c8:10:d3:25:3f:6c:f0:b2:1a:1f:35:a3:42: 8c:fc:30:83:60:89:63:9b:a0:79:4e:03:15:83:35:4e:17:08: c7:27:1b:d5:c2:52:db:97:1d:e3:b0:63:c8:d7:5b:28:ad:49: 02:90:60:ab:23:36:5b:97:38:2f:55:96:ae:11:6f:1e:dd:51: 1c:38:a9:8a:0a:2e:4b:f4:1b:92:13:50:30:2d:89:07:1a:f5: 86:ad:3b:18:c6:ee:d2:f9:ef:8e:45:ce:eb:3b:af:68:92:46: 9f:49:20:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYbWFbHJjyn05CQqi5ayzs5iNh3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNDAxMTEwMzIxMThaFw0yNTAxMDkwMzI2MThaMDMxMTAvBgNV BAMTKDRFODJGOUU5MTRBODE0ODUzQUFEOTc2MUQ2QzJCNzUzNDk2RUYzQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWtbCL30GxuRIHTnaUMUWWs0Fi lK128kkG2XdzhvywjoeRKUaYJRsYBIupvjQrDxI/pq+4cWXniUPhtomt4EOW5uTf cT66olhyVBFe6WoLpDx6CHctxlxxY6kH/mwtU0S8PLqTZ7R1OwRoDdx0HStHNFSh GDlC6seHxFfMj/5zqawGvg4+ewqP4ugjPsvQdxtpzVMjvwqoKKVgu+V79QII/Eez SHmLl3H9SBOmHAm+FIAfVKJdZ7Cf5dRW0fhk6Ekf9wtRn4Ak23X3oPxI/YIs5CM+ 4IwhHLX8kUp9e1ZifYWf1+rr2ApkG50YTUZVQ0R4A++8QtDwzR2KtW2H1JELAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUToL56RSoFIU6rZdh1sK3U0lu86YwHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEArv4tWcSNfFuGxObAq8jNHZUHxl0ZycFRhipm3gI5MGO1yf8a 8OS5+uqnGpWG6/yYHggCtwxH+Mq4WsBSTp1afbZpVT0DaTjwvyLZD4UQS9A1IzL+ KlGa84JHutiFY2MA9FK2QPiwHvEbypSKs1wsLclXlPUtH6Fllgv8q6ZSI7flntYK 98tqrgECT80W9tIk4P6mCu3IENMlP2zwshofNaNCjPwwg2CJY5ugeU4DFYM1ThcI xycb1cJS25cd47BjyNdbKK1JApBgqyM2W5c4L1WWrhFvHt1RHDipigouS/QbkhNQ MC2JBxr1hq07GMbu0vnvjkXO6zuvaJJGn0kgYA== -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org