$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa File: 3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa (raw, json) Hash identifier: ciUy0UssIwD3zqr8/0zlXBgZIw/zkVM4rTUa8BUUQGs= Subject key identifier: 95:F4:66:63:98:62:68:78:53:16:EF:90:10:1A:6D:CA:1C:B3:1F:20 Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Certificate serial: 56DFC31797EEC7A7C4AAF5969F22B198A03C05C7 Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa Signing time: Sat 29 Jun 2024 12:27:50 +0000 ROA not before: Sat 29 Jun 2024 12:22:50 +0000 ROA not after: Sat 28 Jun 2025 12:27:50 +0000 asID: 141581 IP address blocks: 157.66.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:df:c3:17:97:ee:c7:a7:c4:aa:f5:96:9f:22:b1:98:a0:3c:05:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Validity Not Before: Jun 29 12:22:50 2024 GMT Not After : Jun 28 12:27:50 2025 GMT Subject: CN=95F46663986268785316EF90101A6DCA1CB31F20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b9:09:bd:40:06:e5:ac:79:7c:88:27:da:eb: f2:15:64:a1:d3:82:98:87:f6:18:a6:b2:86:1e:7e: 9c:1e:1f:6c:e2:37:d1:a2:f0:32:3e:61:1a:68:85: c0:31:7b:19:2f:c4:99:09:a6:8a:20:3b:2e:44:83: 83:be:e0:87:1c:b1:55:85:df:4e:a6:a9:16:ac:e9: 85:ba:c7:67:2e:8a:ba:ad:c5:88:b0:30:26:27:5d: 30:38:51:59:4b:e8:b6:ee:b5:11:7f:13:f6:d3:5e: cb:86:c1:5a:e0:b6:14:34:e9:c8:e3:da:fc:80:bb: 5b:b9:a0:f9:4d:d5:03:d8:b8:d7:a8:6d:24:da:be: e0:e6:78:4a:48:3e:81:5e:99:36:9e:81:25:c3:2a: 2d:b3:73:0a:ee:76:da:5d:bf:45:c0:80:83:00:98: c7:78:c4:d2:23:70:97:19:6a:fc:9e:fe:14:35:38: 31:b0:0b:6f:1e:a2:fb:80:92:b2:83:08:6f:0c:59: b0:e4:84:ad:41:6b:1c:36:f1:ca:32:93:aa:7e:b3: e9:ba:6a:f0:4f:76:14:8a:a6:9d:fd:a5:47:d3:35: f9:6a:68:d2:c7:1c:f5:e6:ec:82:6d:e4:c2:bf:64: 4c:f0:9e:7a:b5:80:22:d3:6c:6a:fa:ac:9d:4d:e5: 14:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F4:66:63:98:62:68:78:53:16:EF:90:10:1A:6D:CA:1C:B3:1F:20 X509v3 Authority Key Identifier: keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32332d3233203d3e20313431353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.132.0/23 Signature Algorithm: sha256WithRSAEncryption a2:0c:4d:32:e9:a1:d6:ee:1d:d6:2e:21:bb:fe:48:48:61:56: 4e:10:e0:1c:6c:b5:f4:f9:27:40:f8:32:92:a8:46:a6:d1:3f: e3:b5:c4:cb:49:64:f5:b4:21:b1:5f:42:d6:5b:af:10:e1:97: 4f:5e:6b:9a:19:c4:dd:85:b8:26:5a:f8:99:39:1b:e7:23:20: 15:42:37:42:a2:ac:e6:6a:4b:0b:46:58:6c:f5:40:bf:c2:85: 93:7d:07:2f:bb:07:2a:ca:e5:ed:71:6f:1c:87:f0:1e:2b:ea: 45:b2:ef:00:fd:3d:99:6c:e1:06:e8:0e:d0:07:b8:54:6f:67: 12:aa:ff:0b:2b:66:32:0b:81:81:de:39:21:2e:4f:22:67:92: 13:b1:e2:42:23:8c:92:07:a8:29:21:70:a0:dc:5c:a5:7a:4f: 33:7f:d2:a5:90:d0:17:ff:a7:40:a5:ed:1b:58:90:28:d8:1f: 9d:05:f3:53:94:fb:17:70:09:66:a8:c8:98:7d:4a:62:94:50: 93:9b:c9:b1:0d:d4:c5:b4:f1:fb:af:5d:59:c0:37:be:44:62: 80:27:21:17:4f:9e:5b:d1:f5:db:bf:83:59:ac:58:1d:e3:7c: aa:a5:a8:94:52:8a:e8:52:99:99:9a:f6:e9:23:98:11:61:45: 59:6c:07:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVt/DF5fux6fEqvWWnyKxmKA8BccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVG MDg4QkU0MTAeFw0yNDA2MjkxMjIyNTBaFw0yNTA2MjgxMjI3NTBaMDMxMTAvBgNV BAMTKDk1RjQ2NjYzOTg2MjY4Nzg1MzE2RUY5MDEwMUE2RENBMUNCMzFGMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCluQm9QAblrHl8iCfa6/IVZKHT gpiH9himsoYefpweH2ziN9Gi8DI+YRpohcAxexkvxJkJpoogOy5Eg4O+4IccsVWF 306mqRas6YW6x2cuirqtxYiwMCYnXTA4UVlL6LbutRF/E/bTXsuGwVrgthQ06cjj 2vyAu1u5oPlN1QPYuNeobSTavuDmeEpIPoFemTaegSXDKi2zcwrudtpdv0XAgIMA mMd4xNIjcJcZavye/hQ1ODGwC28eovuAkrKDCG8MWbDkhK1Baxw28coyk6p+s+m6 avBPdhSKpp39pUfTNflqaNLHHPXm7IJt5MK/ZEzwnnq1gCLTbGr6rJ1N5RQpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlfRmY5hiaHhTFu+QEBptyhyzHyAwHwYDVR0j BBgwFoAUq/eTtTRobsLVggzxU+Q6rvCIvkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWE0Yjc4Mi1jMzdmLTQzNzktYThhNi00ZGE1ZDgyYjIzOWYvMC9BQkY3OTNCNTM0 Njg2RUMyRDU4MjBDRjE1M0U0M0FBRUYwODhCRTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVGMDg4 QkU0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYTRiNzgyLWMzN2YtNDM3OS1h OGE2LTRkYTVkODJiMjM5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKEMA0GCSqG SIb3DQEBCwUAA4IBAQCiDE0y6aHW7h3WLiG7/khIYVZOEOAcbLX0+SdA+DKSqEam 0T/jtcTLSWT1tCGxX0LWW68Q4ZdPXmuaGcTdhbgmWviZORvnIyAVQjdCoqzmaksL Rlhs9UC/woWTfQcvuwcqyuXtcW8ch/AeK+pFsu8A/T2ZbOEG6A7QB7hUb2cSqv8L K2YyC4GB3jkhLk8iZ5ITseJCI4ySB6gpIXCg3Fylek8zf9KlkNAX/6dApe0bWJAo 2B+dBfNTlPsXcAlmqMiYfUpilFCTm8mxDdTFtPH7r11ZwDe+RGKAJyEXT55b0fXb v4NZrFgd43yqpaiUUoroUpmZmvbpI5gRYUVZbAf3 -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org