$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa File: 3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa (raw, json) Hash identifier: vE0iFM1EETfZXZSAiwCHT3tvK82AVhE2Ent645QVTOk= Subject key identifier: 6E:4A:10:61:72:77:CF:4F:BA:79:6A:2B:31:FD:91:75:DD:7D:DF:DE Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Certificate serial: 2B453D7ED7C4E7E3F9113A13A874B7E40543D4F2 Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa Signing time: Sat 29 Jun 2024 12:29:03 +0000 ROA not before: Sat 29 Jun 2024 12:24:03 +0000 ROA not after: Sat 28 Jun 2025 12:29:03 +0000 asID: 141581 IP address blocks: 157.66.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:45:3d:7e:d7:c4:e7:e3:f9:11:3a:13:a8:74:b7:e4:05:43:d4:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Validity Not Before: Jun 29 12:24:03 2024 GMT Not After : Jun 28 12:29:03 2025 GMT Subject: CN=6E4A10617277CF4FBA796A2B31FD9175DD7DDFDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c4:21:0e:49:66:43:d2:ef:e3:e9:f5:2f:e9: 01:80:6c:1b:12:6b:ba:6a:0f:3c:5e:42:6f:6a:82: cd:58:a0:5a:c6:9a:71:8a:32:20:e1:a5:cd:50:95: c8:84:41:78:52:ca:5d:f9:61:83:b1:fe:21:62:17: 0e:e9:ce:43:33:2e:40:76:f0:d9:d1:b9:57:0f:6c: f2:a1:9a:58:4f:39:40:6a:8f:79:0f:bd:5c:26:0c: 6f:46:45:5f:96:cc:bf:2a:03:e8:f0:e1:2c:4a:32: 81:f5:ab:c6:8b:a3:fd:4f:51:ed:b5:12:1a:52:44: 42:45:77:0f:6c:22:cc:ce:74:a1:4b:ad:e0:6e:7b: e1:81:09:ab:ac:53:be:ff:c4:ac:ea:5a:a9:9b:f5: 61:f3:7d:9e:13:67:2b:48:52:f9:47:dd:24:c5:c5: d7:2b:97:4c:65:19:73:20:99:de:bd:a7:1a:f8:d7: 91:52:72:e3:ef:8d:c9:95:d7:6b:d8:88:c1:56:d9: 48:74:0a:63:7a:d0:6c:08:42:7f:0d:80:57:ce:83: fe:b0:72:97:ba:96:6f:13:81:aa:15:44:14:42:32: cd:55:0c:21:8b:47:f4:5c:4e:ff:2c:38:ed:79:73: 97:22:ae:a5:f1:5c:5f:a2:22:38:7e:ef:27:5b:f1: 7d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4A:10:61:72:77:CF:4F:BA:79:6A:2B:31:FD:91:75:DD:7D:DF:DE X509v3 Authority Key Identifier: keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.133.0/24 Signature Algorithm: sha256WithRSAEncryption 61:e6:b7:01:99:07:f9:0c:19:41:e1:df:21:ad:b4:41:e3:61: f6:dd:b9:a6:ac:8d:d1:58:59:a6:c4:90:c5:5c:7f:19:f1:5d: a5:ab:3e:83:00:f6:8f:20:e5:5d:26:56:a1:9b:61:a3:b8:5d: 94:cb:23:36:be:e0:32:0f:22:09:4b:af:31:94:d1:f6:2e:64: 94:28:a1:b9:a6:42:b3:6e:47:69:bd:b3:ee:9d:13:61:7d:f9: aa:75:98:68:0c:3e:d2:11:a9:a1:a4:fc:d1:09:9b:22:5e:e7: 7c:1d:53:2e:bc:a5:35:51:03:e6:9c:ff:00:2e:60:87:55:97: ae:91:0a:d8:d2:cd:21:c8:3a:3d:ce:9c:a7:79:32:8c:a7:7a: 44:3b:93:f2:49:db:de:a0:55:17:e5:9e:49:43:62:32:a4:2f: 60:4b:18:82:4f:52:d9:3f:b2:aa:0d:c9:b6:7e:1c:1e:1a:f6: 2b:09:b2:63:f6:f2:80:14:a8:c8:29:e0:c3:2c:a4:c9:dc:7d: 40:0c:3a:7c:e9:b9:61:17:5a:4e:89:1a:36:15:10:93:8a:66: 2d:31:15:d8:6f:1b:0b:33:ea:54:29:70:95:5d:7d:9f:fb:8a: 7f:63:8c:00:42:57:bc:c4:66:e5:9b:f1:e2:73:90:72:c9:20: 67:7f:9e:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK0U9ftfE5+P5EToTqHS35AVD1PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVG MDg4QkU0MTAeFw0yNDA2MjkxMjI0MDNaFw0yNTA2MjgxMjI5MDNaMDMxMTAvBgNV BAMTKDZFNEExMDYxNzI3N0NGNEZCQTc5NkEyQjMxRkQ5MTc1REQ3RERGREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVxCEOSWZD0u/j6fUv6QGAbBsS a7pqDzxeQm9qgs1YoFrGmnGKMiDhpc1QlciEQXhSyl35YYOx/iFiFw7pzkMzLkB2 8NnRuVcPbPKhmlhPOUBqj3kPvVwmDG9GRV+WzL8qA+jw4SxKMoH1q8aLo/1PUe21 EhpSREJFdw9sIszOdKFLreBue+GBCausU77/xKzqWqmb9WHzfZ4TZytIUvlH3STF xdcrl0xlGXMgmd69pxr415FScuPvjcmV12vYiMFW2Uh0CmN60GwIQn8NgFfOg/6w cpe6lm8TgaoVRBRCMs1VDCGLR/RcTv8sOO15c5cirqXxXF+iIjh+7ydb8X1tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbkoQYXJ3z0+6eWorMf2Rdd19394wHwYDVR0j BBgwFoAUq/eTtTRobsLVggzxU+Q6rvCIvkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWE0Yjc4Mi1jMzdmLTQzNzktYThhNi00ZGE1ZDgyYjIzOWYvMC9BQkY3OTNCNTM0 Njg2RUMyRDU4MjBDRjE1M0U0M0FBRUYwODhCRTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVGMDg4 QkU0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYTRiNzgyLWMzN2YtNDM3OS1h OGE2LTRkYTVkODJiMjM5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKFMA0GCSqG SIb3DQEBCwUAA4IBAQBh5rcBmQf5DBlB4d8hrbRB42H23bmmrI3RWFmmxJDFXH8Z 8V2lqz6DAPaPIOVdJlahm2GjuF2UyyM2vuAyDyIJS68xlNH2LmSUKKG5pkKzbkdp vbPunRNhffmqdZhoDD7SEamhpPzRCZsiXud8HVMuvKU1UQPmnP8ALmCHVZeukQrY 0s0hyDo9zpyneTKMp3pEO5PySdveoFUX5Z5JQ2IypC9gSxiCT1LZP7KqDcm2fhwe GvYrCbJj9vKAFKjIKeDDLKTJ3H1ADDp86blhF1pOiRo2FRCTimYtMRXYbxsLM+pU KXCVXX2f+4p/Y4wAQle8xGblm/Hic5ByySBnf54b -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org