$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38392e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: UfkQEqwAgNpW/E09xB4i7O7yIEdbBcf8T28prhE7hL4= Subject key identifier: EC:11:52:89:CE:64:5F:2E:1C:71:2D:3D:DA:DB:C7:56:BB:E7:5C:BB Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 2B5B9F8AE94AE57E46DF7676B958D08A8E95A263 Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa Signing time: Thu 11 Jan 2024 03:26:34 +0000 ROA not before: Thu 11 Jan 2024 03:21:34 +0000 ROA not after: Thu 09 Jan 2025 03:26:34 +0000 asID: 152082 IP address blocks: 157.10.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5b:9f:8a:e9:4a:e5:7e:46:df:76:76:b9:58:d0:8a:8e:95:a2:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Jan 11 03:21:34 2024 GMT Not After : Jan 9 03:26:34 2025 GMT Subject: CN=EC115289CE645F2E1C712D3DDADBC756BBE75CBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:72:3b:29:69:e6:c5:c3:bc:04:33:cc:87:d4: f5:1c:80:0a:f0:b8:e3:6f:b9:de:e6:c0:08:e2:9e: b5:a2:e5:b3:41:da:08:15:56:77:83:ef:ef:76:a4: e3:2b:a1:31:b9:32:57:2f:65:29:4b:97:e6:d2:08: ce:73:d0:90:2d:22:4a:4c:99:85:ba:5f:24:97:b9: c0:cd:41:c8:b7:2b:ee:45:1f:fd:0b:fb:97:63:d6: c1:89:a4:ba:3d:00:0e:e5:06:06:2c:75:34:5e:52: 4d:5e:72:83:0f:cc:79:17:ea:f0:7b:20:ae:fc:5a: 4a:d6:70:d2:99:bd:f3:f5:ff:a3:c2:3f:d3:04:49: 80:30:65:cc:39:df:12:a6:7c:43:45:4a:c5:fd:33: 72:e3:10:54:34:03:fd:a9:78:b0:4b:5d:5e:88:7f: 41:6c:a2:c0:93:4d:20:80:2b:fd:56:45:57:97:1b: 88:0c:e3:21:92:6d:58:cb:e6:9d:5c:8f:6f:fc:5c: cd:30:41:45:5f:01:e0:47:57:fb:fa:39:98:ed:29: 23:8b:32:84:57:c6:83:63:11:b8:94:6c:76:df:f0: e2:8e:0f:23:14:7b:e8:89:43:3a:d0:a0:e7:31:c4: a6:5c:67:3d:f6:b9:61:d5:23:a7:f7:09:1b:70:cb: 05:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:11:52:89:CE:64:5F:2E:1C:71:2D:3D:DA:DB:C7:56:BB:E7:5C:BB X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.89.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:d9:5c:9c:c8:58:dd:71:93:9e:09:7c:a4:ee:95:b9:0c:79: 73:d1:0f:93:b5:ce:2e:39:a4:c6:68:61:97:dd:4e:b3:d3:fd: 19:0d:3e:5b:a6:04:c5:eb:e2:42:36:ff:3e:ff:3d:ae:43:d1: ae:77:97:c0:66:13:07:04:c4:d6:cf:5b:e9:8d:7f:00:34:f9: e8:58:dc:c1:d9:2a:f8:62:45:78:7e:49:c7:45:fe:f7:d2:cf: fb:6c:c4:11:7c:06:e1:fc:9d:cd:f0:6f:87:46:ee:2c:99:ac: ab:6f:a5:a9:e9:9f:71:38:fb:4b:19:26:65:7a:bc:ad:90:06: 4c:2a:51:70:ac:0a:9e:36:8a:5c:05:59:62:0a:2f:da:75:22: 12:77:f6:f2:04:73:2e:b3:c1:7b:f3:35:52:6c:aa:49:ec:e0: 7b:28:bd:b9:83:3c:90:23:7e:20:0c:56:d9:7c:db:98:80:cf: 70:34:e2:1e:4c:66:fd:c4:5c:d7:ec:c5:40:57:d4:43:8d:98: 2a:7c:60:f9:71:07:5f:83:06:e3:ad:ef:35:08:46:cd:d0:d9: cc:da:76:ad:95:26:5b:b3:6d:5a:84:5f:27:08:c6:56:49:68: eb:59:4b:54:47:36:93:c5:da:9c:33:47:de:4e:83:ba:38:22: 28:f3:79:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK1ufiulK5X5G33Z2uVjQio6VomMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNDAxMTEwMzIxMzRaFw0yNTAxMDkwMzI2MzRaMDMxMTAvBgNV BAMTKEVDMTE1Mjg5Q0U2NDVGMkUxQzcxMkQzRERBREJDNzU2QkJFNzVDQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdcjspaebFw7wEM8yH1PUcgArw uONvud7mwAjinrWi5bNB2ggVVneD7+92pOMroTG5MlcvZSlLl+bSCM5z0JAtIkpM mYW6XySXucDNQci3K+5FH/0L+5dj1sGJpLo9AA7lBgYsdTReUk1ecoMPzHkX6vB7 IK78WkrWcNKZvfP1/6PCP9MESYAwZcw53xKmfENFSsX9M3LjEFQ0A/2peLBLXV6I f0FsosCTTSCAK/1WRVeXG4gM4yGSbVjL5p1cj2/8XM0wQUVfAeBHV/v6OZjtKSOL MoRXxoNjEbiUbHbf8OKODyMUe+iJQzrQoOcxxKZcZz32uWHVI6f3CRtwywXPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7BFSic5kXy4ccS092tvHVrvnXLswHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWTANBgkqhkiG 9w0BAQsFAAOCAQEAPtlcnMhY3XGTngl8pO6VuQx5c9EPk7XOLjmkxmhhl91Os9P9 GQ0+W6YExeviQjb/Pv89rkPRrneXwGYTBwTE1s9b6Y1/ADT56Fjcwdkq+GJFeH5J x0X+99LP+2zEEXwG4fydzfBvh0buLJmsq2+lqemfcTj7SxkmZXq8rZAGTCpRcKwK njaKXAVZYgov2nUiEnf28gRzLrPBe/M1UmyqSezgeyi9uYM8kCN+IAxW2XzbmIDP cDTiHkxm/cRc1+zFQFfUQ42YKnxg+XEHX4MG463vNQhGzdDZzNp2rZUmW7NtWoRf JwjGVklo61lLVEc2k8XanDNH3k6DujgiKPN5+g== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org