$ rpki-client -vvf repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa File: 3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa (raw, json) Hash identifier: GmOFMzAjvKi/R6Ihcjui8Ly/R+qTvmjieLr7Vq9tAb8= Subject key identifier: BB:35:29:DF:66:AB:97:B4:71:DF:63:31:FF:79:AA:AF:85:B2:3D:08 Certificate issuer: /CN=1A43B9C67646D3B8444E277C64D1FD489A45E536 Certificate serial: 74DC9CF194BB1DCCF845F322EB0FDBF5EED8C0F0 Authority key identifier: 1A:43:B9:C6:76:46:D3:B8:44:4E:27:7C:64:D1:FD:48:9A:45:E5:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa Signing time: Sun 16 Jun 2024 17:25:13 +0000 ROA not before: Sun 16 Jun 2024 17:20:13 +0000 ROA not after: Sun 15 Jun 2025 17:25:13 +0000 asID: 152772 IP address blocks: 157.66.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.crl rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:dc:9c:f1:94:bb:1d:cc:f8:45:f3:22:eb:0f:db:f5:ee:d8:c0:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A43B9C67646D3B8444E277C64D1FD489A45E536 Validity Not Before: Jun 16 17:20:13 2024 GMT Not After : Jun 15 17:25:13 2025 GMT Subject: CN=BB3529DF66AB97B471DF6331FF79AAAF85B23D08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e9:bc:a2:b5:38:55:c5:c6:8f:09:2f:61:5d: dd:8f:ff:23:c7:49:28:76:1b:03:0b:d2:74:af:08: 90:b9:cb:5a:91:96:52:b6:d8:ad:44:93:1d:ff:9b: 95:d5:ca:38:1d:66:c3:e9:da:93:21:de:f6:a2:fe: ea:b7:7a:0c:3e:9f:4e:16:86:d5:52:cd:c8:cf:12: a8:e3:e5:e5:f6:e7:90:4c:bf:86:9b:7e:41:4e:67: fd:4c:c9:27:6f:a7:63:19:ba:6d:4e:08:06:91:30: 57:46:c8:78:0a:55:d1:bf:d5:c5:b2:a9:29:67:dd: 71:69:0c:31:56:bb:22:a3:ee:8c:54:01:b4:ef:4a: 68:ca:c7:7e:2c:fb:ff:c9:77:45:b6:34:a5:ea:e7: 06:71:c0:45:e1:50:f8:3f:90:97:73:79:98:4e:22: 6e:36:da:f8:b8:da:4a:79:af:fc:cc:7f:d1:2d:81: ba:a4:f6:fe:f0:1f:4f:d3:69:12:03:e6:c9:22:cb: bf:91:c3:5c:61:76:43:7c:19:20:85:2e:bd:95:29: 0a:20:27:68:45:01:ea:43:f0:41:a4:7f:5d:c9:af: cc:d3:05:31:d4:d0:d4:eb:b3:38:04:d5:63:86:75: dc:9e:c9:2f:f6:3a:dd:d4:66:54:fd:c7:70:55:53: cf:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:35:29:DF:66:AB:97:B4:71:DF:63:31:FF:79:AA:AF:85:B2:3D:08 X509v3 Authority Key Identifier: keyid:1A:43:B9:C6:76:46:D3:B8:44:4E:27:7C:64:D1:FD:48:9A:45:E5:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.125.0/24 Signature Algorithm: sha256WithRSAEncryption a5:f6:e6:cc:72:e3:61:df:34:9a:fe:4c:e0:1a:75:a6:23:e7: 64:34:42:f9:23:54:bc:79:78:ef:17:b5:19:1d:0f:ee:c8:7e: de:30:83:7a:c2:5c:ee:7b:16:06:12:25:5f:6c:f7:ab:73:fe: a7:ba:0f:06:0a:0a:ab:91:5e:88:0e:32:7d:4b:d0:c5:bb:44: cc:2a:d3:b8:c8:01:f9:b0:a6:dd:ed:8f:5e:7a:04:25:0f:6f: dc:ba:b9:22:db:f1:d8:2d:1e:a3:81:4f:37:4e:68:78:fe:97: ae:83:eb:3d:58:3c:fc:4a:18:34:cc:f7:4b:12:a2:14:2c:ed: ea:37:d5:7b:c9:67:da:44:2f:de:aa:5c:77:9b:e6:72:34:a6: 88:a9:1a:50:74:90:4a:e7:88:25:6f:b1:ec:8d:ec:8c:96:1d: 2a:b6:78:4b:0e:42:d6:fb:39:2a:69:10:2c:de:1c:f9:8d:8c: d3:b1:1f:9b:bb:90:b5:39:eb:89:79:ac:eb:80:8d:7d:cf:b5: 77:31:87:83:20:5c:27:98:94:b1:50:db:6a:44:70:4c:49:52: ee:5a:4d:8a:7e:d7:91:cf:5b:7e:72:73:b8:70:54:b0:23:8d: 1e:00:5c:72:12:f5:db:17:1c:52:71:8b:a7:04:9f:75:3b:01: 86:08:81:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdNyc8ZS7Hcz4RfMi6w/b9e7YwPAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0M0I5QzY3NjQ2RDNCODQ0NEUyNzdDNjREMUZENDg5 QTQ1RTUzNjAeFw0yNDA2MTYxNzIwMTNaFw0yNTA2MTUxNzI1MTNaMDMxMTAvBgNV BAMTKEJCMzUyOURGNjZBQjk3QjQ3MURGNjMzMUZGNzlBQUFGODVCMjNEMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl6byitThVxcaPCS9hXd2P/yPH SSh2GwML0nSvCJC5y1qRllK22K1Ekx3/m5XVyjgdZsPp2pMh3vai/uq3egw+n04W htVSzcjPEqjj5eX255BMv4abfkFOZ/1MySdvp2MZum1OCAaRMFdGyHgKVdG/1cWy qSln3XFpDDFWuyKj7oxUAbTvSmjKx34s+//Jd0W2NKXq5wZxwEXhUPg/kJdzeZhO Im422vi42kp5r/zMf9Etgbqk9v7wH0/TaRID5skiy7+Rw1xhdkN8GSCFLr2VKQog J2hFAepD8EGkf13Jr8zTBTHU0NTrszgE1WOGddyeyS/2Ot3UZlT9x3BVU89XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuzUp32arl7Rx32Mx/3mqr4WyPQgwHwYDVR0j BBgwFoAUGkO5xnZG07hETid8ZNH9SJpF5TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2YwMWVjNi04ZTg5LTQwMmEtOTBjNy01MGM2ZjE0Y2QyNDIvMC8xQTQzQjlDNjc2 NDZEM0I4NDQ0RTI3N0M2NEQxRkQ0ODlBNDVFNTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMUE0M0I5QzY3NjQ2RDNCODQ0NEUyNzdDNjREMUZENDg5QTQ1 RTUzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZjAxZWM2LThlODktNDAyYS05 MGM3LTUwYzZmMTRjZDI0Mi8wLzMxMzUzNzJlMzYzNjJlMzEzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUJ9MA0GCSqG SIb3DQEBCwUAA4IBAQCl9ubMcuNh3zSa/kzgGnWmI+dkNEL5I1S8eXjvF7UZHQ/u yH7eMIN6wlzuexYGEiVfbPerc/6nug8GCgqrkV6IDjJ9S9DFu0TMKtO4yAH5sKbd 7Y9eegQlD2/curki2/HYLR6jgU83Tmh4/peug+s9WDz8Shg0zPdLEqIULO3qN9V7 yWfaRC/eqlx3m+ZyNKaIqRpQdJBK54glb7HsjeyMlh0qtnhLDkLW+zkqaRAs3hz5 jYzTsR+bu5C1OeuJeazrgI19z7V3MYeDIFwnmJSxUNtqRHBMSVLuWk2KfteRz1t+ cnO4cFSwI40eAFxyEvXbFxxScYunBJ91OwGGCIEj -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org