$ rpki-client -vvf repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/3135372e31302e36372e302f32342d3234203d3e20313532333531.roa File: 3135372e31302e36372e302f32342d3234203d3e20313532333531.roa (raw, json) Hash identifier: nvbZjZ+huqXbS/JKyuHhEMF7xo3c9QbThk8AtkhBVWw= Subject key identifier: B3:03:37:FB:55:9E:FB:95:72:3B:CE:B6:B3:66:BD:D8:5B:35:AD:F3 Certificate issuer: /CN=9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1 Certificate serial: 22CBA2841A74CE5BDE3C6A54463743AF519B90DD Authority key identifier: 98:02:D7:CD:84:EC:A3:7A:2E:C2:D6:37:8D:CA:35:B1:11:3F:5D:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/3135372e31302e36372e302f32342d3234203d3e20313532333531.roa Signing time: Wed 29 May 2024 07:32:28 +0000 ROA not before: Wed 29 May 2024 07:27:28 +0000 ROA not after: Wed 28 May 2025 07:32:28 +0000 asID: 152351 IP address blocks: 157.10.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.crl rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:cb:a2:84:1a:74:ce:5b:de:3c:6a:54:46:37:43:af:51:9b:90:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1 Validity Not Before: May 29 07:27:28 2024 GMT Not After : May 28 07:32:28 2025 GMT Subject: CN=B30337FB559EFB95723BCEB6B366BDD85B35ADF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:be:a1:ac:0f:a0:02:c0:82:fa:82:8e:87:f8: a6:7a:53:7a:5f:0e:47:ab:63:ae:cb:31:b4:30:0a: cf:02:bf:52:62:ba:6c:2f:21:a9:34:da:49:08:ca: f2:1a:fe:f6:0e:f6:6d:08:cc:d0:c7:62:1e:06:b2: 9e:c7:4b:45:d4:8b:26:07:fe:71:24:6e:60:e1:5f: 97:11:19:9e:bb:f3:0c:63:2b:05:7f:6f:7a:7d:b1: e1:75:13:42:c0:8f:e4:01:3a:4a:41:8f:cb:a6:42: ed:71:9b:d2:ea:c4:21:d9:3d:bd:8a:d8:ea:a3:91: 97:a9:dc:b1:de:b6:15:19:e5:9c:40:71:31:30:3c: 0f:94:09:90:5c:00:e5:99:dc:a1:55:fa:8e:8c:d3: 00:ab:80:8b:e8:2c:86:61:0d:2a:0b:ed:d3:80:bc: aa:16:49:b7:10:69:31:8d:10:4b:dd:cc:34:d3:7d: e1:74:25:b7:72:77:56:bd:fb:57:3a:e6:b6:05:d8: f1:86:a3:b4:38:d9:95:cf:a5:1a:c0:8d:04:20:77: 3a:19:14:3a:91:be:c5:55:4f:04:a5:64:ec:63:f6: 3f:c0:35:86:b5:bc:1d:cb:40:6a:7e:17:e8:52:43: 0e:5b:66:3f:0a:09:be:55:f7:39:a2:e0:4b:25:f3: 4e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:03:37:FB:55:9E:FB:95:72:3B:CE:B6:B3:66:BD:D8:5B:35:AD:F3 X509v3 Authority Key Identifier: keyid:98:02:D7:CD:84:EC:A3:7A:2E:C2:D6:37:8D:CA:35:B1:11:3F:5D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/3135372e31302e36372e302f32342d3234203d3e20313532333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.67.0/24 Signature Algorithm: sha256WithRSAEncryption 44:4e:c1:93:4d:7f:28:d2:0a:26:c6:3c:c2:c4:16:4d:7b:6a: 5a:9e:81:2d:37:dd:c8:26:a2:ff:66:11:7d:ec:fd:f4:3d:5a: 78:4c:a9:82:3a:96:ab:d2:83:b4:8e:a6:c6:78:25:95:1e:4b: 36:a8:7f:79:9c:44:6b:d8:22:b3:8f:04:37:06:6f:46:96:28: 33:0e:e6:aa:b2:a4:09:e0:b1:4c:40:cf:09:80:fe:8f:07:79: 42:d3:49:a4:d2:eb:d0:37:f0:b2:8b:6c:e9:3a:c8:9a:a1:8b: f7:9e:31:b0:d8:f3:23:1a:2a:e1:04:82:05:b2:2a:02:2f:d1: ce:48:cc:eb:3d:e6:67:6c:93:df:32:54:6a:ee:64:1c:de:df: 8e:f5:61:80:eb:25:b4:ae:cd:73:ee:29:bc:c2:f0:9a:74:b2: 6e:8c:d1:56:55:0d:9c:13:40:bf:64:12:58:12:31:5a:1f:2c: b1:dc:61:23:53:a5:5c:f0:99:d6:ee:93:51:70:d1:07:45:4c: ae:1f:d8:f6:3a:71:0f:bc:99:24:c3:86:6c:d6:2f:5c:a5:61: 87:bf:36:56:12:50:07:75:29:4e:95:6a:9d:f0:83:8e:61:0b: 61:78:85:84:97:b8:e8:0e:28:ed:39:62:d8:83:38:44:95:9a: 03:87:f8:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIsuihBp0zlvePGpURjdDr1GbkN0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgwMkQ3Q0Q4NEVDQTM3QTJFQzJENjM3OERDQTM1QjEx MTNGNUREMTAeFw0yNDA1MjkwNzI3MjhaFw0yNTA1MjgwNzMyMjhaMDMxMTAvBgNV BAMTKEIzMDMzN0ZCNTU5RUZCOTU3MjNCQ0VCNkIzNjZCREQ4NUIzNUFERjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDavqGsD6ACwIL6go6H+KZ6U3pf DkerY67LMbQwCs8Cv1JiumwvIak02kkIyvIa/vYO9m0IzNDHYh4Gsp7HS0XUiyYH /nEkbmDhX5cRGZ678wxjKwV/b3p9seF1E0LAj+QBOkpBj8umQu1xm9LqxCHZPb2K 2OqjkZep3LHethUZ5ZxAcTEwPA+UCZBcAOWZ3KFV+o6M0wCrgIvoLIZhDSoL7dOA vKoWSbcQaTGNEEvdzDTTfeF0Jbdyd1a9+1c65rYF2PGGo7Q42ZXPpRrAjQQgdzoZ FDqRvsVVTwSlZOxj9j/ANYa1vB3LQGp+F+hSQw5bZj8KCb5V9zmi4Esl804lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUswM3+1We+5VyO862s2a92Fs1rfMwHwYDVR0j BBgwFoAUmALXzYTso3ouwtY3jco1sRE/XdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MGMyNjZlNi0wYjg0LTQzMWYtOWU3NC0wNmQzZDkzZTk3MDQvMC85ODAyRDdDRDg0 RUNBMzdBMkVDMkQ2Mzc4RENBMzVCMTExM0Y1REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTgwMkQ3Q0Q4NEVDQTM3QTJFQzJENjM3OERDQTM1QjExMTNG NUREMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwYzI2NmU2LTBiODQtNDMxZi05 ZTc0LTA2ZDNkOTNlOTcwNC8wLzMxMzUzNzJlMzEzMDJlMzYzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KQzANBgkqhkiG 9w0BAQsFAAOCAQEARE7Bk01/KNIKJsY8wsQWTXtqWp6BLTfdyCai/2YRfez99D1a eEypgjqWq9KDtI6mxngllR5LNqh/eZxEa9gis48ENwZvRpYoMw7mqrKkCeCxTEDP CYD+jwd5QtNJpNLr0Dfwsots6TrImqGL954xsNjzIxoq4QSCBbIqAi/RzkjM6z3m Z2yT3zJUau5kHN7fjvVhgOsltK7Nc+4pvMLwmnSybozRVlUNnBNAv2QSWBIxWh8s sdxhI1OlXPCZ1u6TUXDRB0VMrh/Y9jpxD7yZJMOGbNYvXKVhh782VhJQB3UpTpVq nfCDjmELYXiFhJe46A4o7Tli2IM4RJWaA4f4Eg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org