$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa File: 3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa (raw, json) Hash identifier: KdEaTKN6AleSQvVu+wySJtdluJCuau/WQhujVbfG1d8= Subject key identifier: CD:09:D1:D1:8C:13:E4:76:CB:BD:8A:EF:7F:A0:63:2B:E7:A9:4A:5D Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Certificate serial: 7C1AB49E02CE11A3066D1E22DBD7B83DC2C45691 Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa Signing time: Sat 29 Jun 2024 12:28:35 +0000 ROA not before: Sat 29 Jun 2024 12:23:35 +0000 ROA not after: Sat 28 Jun 2025 12:28:35 +0000 asID: 141581 IP address blocks: 157.66.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1a:b4:9e:02:ce:11:a3:06:6d:1e:22:db:d7:b8:3d:c2:c4:56:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Validity Not Before: Jun 29 12:23:35 2024 GMT Not After : Jun 28 12:28:35 2025 GMT Subject: CN=CD09D1D18C13E476CBBD8AEF7FA0632BE7A94A5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e4:be:96:e1:5c:ca:e1:84:f8:78:41:e6:a1: b0:70:16:ae:f4:f0:8e:30:e5:c1:54:4f:38:86:49: a7:c6:8b:a8:5a:27:ba:89:71:d9:65:d6:4f:9f:59: 11:a0:67:aa:47:9a:78:bb:98:b7:4c:2e:ce:04:1f: 82:85:03:38:5a:4d:53:98:0a:f9:3b:27:4f:3a:1b: 92:c6:35:04:4e:0d:a2:a3:c4:82:7e:7c:d6:e5:b8: 45:0f:28:fb:f3:b8:c2:f3:de:e3:20:99:00:3c:33: 9a:44:d8:54:ee:d2:23:ca:4d:c6:26:e6:02:a0:62: 50:5c:a2:18:d6:36:bd:02:c3:91:bd:be:b9:f6:fe: 3d:39:fa:47:f0:42:34:fe:35:7b:67:92:06:6f:f2: 45:21:3a:e4:01:2a:ec:ac:33:a6:a2:89:a7:cb:88: af:ce:e3:52:4c:ea:b2:9f:3d:1b:a6:30:d2:92:30: 84:f5:95:b7:d4:09:b5:74:c9:6a:63:0d:7a:63:32: f1:d5:ce:5a:6b:36:10:c8:c8:45:0a:cb:7e:1d:a5: 2c:0e:17:32:ca:b7:21:ca:64:e4:cb:78:75:6e:42: 69:ae:6a:32:01:29:a3:9b:50:91:15:e2:3e:b1:a6: b5:c9:e4:85:e1:c2:2d:06:87:d6:9b:a9:92:0f:bb: 44:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:09:D1:D1:8C:13:E4:76:CB:BD:8A:EF:7F:A0:63:2B:E7:A9:4A:5D X509v3 Authority Key Identifier: keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.132.0/24 Signature Algorithm: sha256WithRSAEncryption a5:3c:16:51:43:93:ad:a5:f3:2f:d5:41:0d:5d:a0:2e:d0:4e: 19:e6:c0:bc:15:ea:0a:46:c6:59:7d:58:1a:6b:b5:0b:9a:1b: 50:4b:da:79:7c:0e:dc:4f:eb:16:45:72:b4:35:09:48:5e:f2: 5c:f1:58:39:77:a1:0f:b1:93:4c:ff:95:5f:f7:90:da:49:24: 34:d2:66:4c:3f:98:a2:6d:f4:a5:4d:22:cb:e6:7d:8a:23:08: 87:ea:99:0c:89:d5:ae:60:3a:c9:9b:b2:db:1c:3e:fc:cb:5c: 57:4c:45:e8:16:3d:c1:9f:44:35:5f:c1:e9:d7:a8:bb:78:4f: 91:40:f1:83:ba:34:fa:27:ba:71:bd:8a:8d:6b:ef:1c:84:5d: cc:17:af:d1:a4:79:64:a0:12:0f:3f:30:08:74:59:5b:e8:30: ea:2b:fe:93:20:22:f0:73:3c:f6:5d:43:d6:3b:97:00:a9:b4: 4a:d8:30:a6:c8:9e:02:b8:26:8f:a5:3d:e2:43:8c:fb:97:83: 83:a0:6e:94:91:9a:dc:da:9b:0e:46:a1:b2:3b:9c:fc:af:4d: 18:f5:4a:2a:f1:c7:b8:b2:c4:01:80:ce:d2:cf:2f:e9:0f:89: a8:0e:86:79:7a:82:a7:7c:b7:db:10:0f:fe:5d:73:7f:f7:32: c9:a3:81:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfBq0ngLOEaMGbR4i29e4PcLEVpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVG MDg4QkU0MTAeFw0yNDA2MjkxMjIzMzVaFw0yNTA2MjgxMjI4MzVaMDMxMTAvBgNV BAMTKENEMDlEMUQxOEMxM0U0NzZDQkJEOEFFRjdGQTA2MzJCRTdBOTRBNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh5L6W4VzK4YT4eEHmobBwFq70 8I4w5cFUTziGSafGi6haJ7qJcdll1k+fWRGgZ6pHmni7mLdMLs4EH4KFAzhaTVOY Cvk7J086G5LGNQRODaKjxIJ+fNbluEUPKPvzuMLz3uMgmQA8M5pE2FTu0iPKTcYm 5gKgYlBcohjWNr0Cw5G9vrn2/j05+kfwQjT+NXtnkgZv8kUhOuQBKuysM6aiiafL iK/O41JM6rKfPRumMNKSMIT1lbfUCbV0yWpjDXpjMvHVzlprNhDIyEUKy34dpSwO FzLKtyHKZOTLeHVuQmmuajIBKaObUJEV4j6xprXJ5IXhwi0Gh9abqZIPu0TlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzQnR0YwT5HbLvYrvf6BjK+epSl0wHwYDVR0j BBgwFoAUq/eTtTRobsLVggzxU+Q6rvCIvkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWE0Yjc4Mi1jMzdmLTQzNzktYThhNi00ZGE1ZDgyYjIzOWYvMC9BQkY3OTNCNTM0 Njg2RUMyRDU4MjBDRjE1M0U0M0FBRUYwODhCRTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVGMDg4 QkU0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYTRiNzgyLWMzN2YtNDM3OS1h OGE2LTRkYTVkODJiMjM5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKEMA0GCSqG SIb3DQEBCwUAA4IBAQClPBZRQ5OtpfMv1UENXaAu0E4Z5sC8FeoKRsZZfVgaa7UL mhtQS9p5fA7cT+sWRXK0NQlIXvJc8Vg5d6EPsZNM/5Vf95DaSSQ00mZMP5iibfSl TSLL5n2KIwiH6pkMidWuYDrJm7LbHD78y1xXTEXoFj3Bn0Q1X8Hp16i7eE+RQPGD ujT6J7pxvYqNa+8chF3MF6/RpHlkoBIPPzAIdFlb6DDqK/6TICLwczz2XUPWO5cA qbRK2DCmyJ4CuCaPpT3iQ4z7l4ODoG6UkZrc2psORqGyO5z8r00Y9Uoq8ce4ssQB gM7Szy/pD4moDoZ5eoKnfLfbEA/+XXN/9zLJo4H0 -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org