$ rpki-client -vvf repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313532373531.roa File: 3135372e36362e3132382e302f32332d3234203d3e20313532373531.roa (raw, json) Hash identifier: M53bMMoB3Vk0kqNR0U9Lj9GHPUpRIoVlUITOwmFV5uI= Subject key identifier: DD:A5:B2:AF:E4:90:6A:AA:CE:6E:C6:5D:D4:49:45:A4:D1:1D:23:3F Certificate issuer: /CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Certificate serial: 7E1EADC1C2621ACFBE26DF9B3C04474427053F35 Authority key identifier: 63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313532373531.roa Signing time: Thu 23 May 2024 06:41:22 +0000 ROA not before: Thu 23 May 2024 06:36:22 +0000 ROA not after: Thu 22 May 2025 06:41:22 +0000 asID: 152751 IP address blocks: 157.66.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Sep 2024 12:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:1e:ad:c1:c2:62:1a:cf:be:26:df:9b:3c:04:47:44:27:05:3f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Validity Not Before: May 23 06:36:22 2024 GMT Not After : May 22 06:41:22 2025 GMT Subject: CN=DDA5B2AFE4906AAACE6EC65DD44945A4D11D233F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3f:72:5e:ee:95:c8:89:18:08:10:b9:82:2d: 5d:e2:09:40:80:74:f7:64:f4:65:45:07:a2:8b:3a: af:d3:10:e7:35:59:c3:dd:b8:4c:48:04:da:2a:d8: ba:ad:44:d2:0d:ef:40:4c:a7:0b:17:2b:9a:1b:d4: 8d:ce:83:f2:a2:ad:10:54:87:1a:07:b3:a3:8d:74: 3c:f6:f6:39:65:cd:a0:d1:6b:9a:f4:56:1a:ac:18: 1f:e4:29:ac:73:d6:f0:99:42:fd:51:38:58:01:14: 9b:c0:09:00:2d:bf:b6:c5:08:f8:d7:17:7f:67:24: 05:76:99:08:31:0d:52:1b:66:05:3d:d8:08:f9:89: 0a:83:e3:c1:9d:12:79:0b:d3:3b:bc:7d:3a:ec:a5: f4:da:1e:49:ea:a4:bf:7a:02:9a:3c:74:98:80:6b: 54:61:f7:dc:dc:da:75:a6:ec:9e:b1:91:b0:d6:04: 64:46:d9:2f:7a:1b:1e:6d:7f:bf:0f:9e:5a:4d:13: 85:36:e6:e7:f6:ff:8e:0c:4a:3c:35:cb:06:5e:f8: 49:41:55:c7:eb:b6:39:dc:09:b4:12:bd:f1:3f:69: 65:86:2c:b0:d4:ed:58:53:5d:a3:4a:73:83:35:3e: 50:3f:d4:37:5d:83:83:7f:46:ce:77:c3:c4:c5:ad: cb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A5:B2:AF:E4:90:6A:AA:CE:6E:C6:5D:D4:49:45:A4:D1:1D:23:3F X509v3 Authority Key Identifier: keyid:63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313532373531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.128.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:ec:f1:3f:b9:a0:26:55:55:17:ca:d9:e0:a8:91:a4:fa:9c: 3f:d2:1d:86:3a:fc:23:4f:ce:55:7f:7d:1c:88:98:cd:e9:42: 73:06:63:e0:61:72:11:e0:66:16:c5:19:3f:05:a7:a2:a2:d6: 59:0d:8c:57:fc:56:69:d7:d6:15:b2:75:a2:af:f1:4b:fc:0c: a4:42:db:08:dc:a3:dc:b6:db:65:b3:60:2e:f2:52:56:ae:b8: fb:ae:ca:d2:46:2a:1a:b8:1f:0e:6a:03:01:9c:35:2c:3e:3e: 80:43:5e:08:73:4d:80:5e:16:a5:d9:91:90:6d:f4:9c:e0:f0: 17:8e:9e:f1:22:6f:8a:b1:5e:1c:fd:6f:59:cd:9b:4c:fe:d6: 23:38:18:4d:7c:f3:d1:21:d8:64:c7:01:68:aa:ec:08:fb:be: 04:d2:18:6c:8d:dc:c6:fb:14:7a:44:2a:fd:3f:4a:55:8d:b5: 3d:0e:17:25:18:ca:01:98:af:5a:f1:3b:a7:67:5e:28:9e:c8: ef:d6:28:10:c8:fc:fa:e7:66:de:7e:ae:b5:47:53:07:76:20: c8:70:0a:94:f9:53:b6:f7:a7:91:dd:5b:ff:a2:97:4a:6a:6f: d2:0c:03:eb:e6:ae:cc:d0:74:86:83:91:02:bb:e2:fc:94:52: c7:b4:33:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfh6twcJiGs++Jt+bPARHRCcFPzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNC RUYxMkY3RDAeFw0yNDA1MjMwNjM2MjJaFw0yNTA1MjIwNjQxMjJaMDMxMTAvBgNV BAMTKEREQTVCMkFGRTQ5MDZBQUFDRTZFQzY1REQ0NDk0NUE0RDExRDIzM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhP3Je7pXIiRgIELmCLV3iCUCA dPdk9GVFB6KLOq/TEOc1WcPduExIBNoq2LqtRNIN70BMpwsXK5ob1I3Og/KirRBU hxoHs6ONdDz29jllzaDRa5r0VhqsGB/kKaxz1vCZQv1ROFgBFJvACQAtv7bFCPjX F39nJAV2mQgxDVIbZgU92Aj5iQqD48GdEnkL0zu8fTrspfTaHknqpL96Apo8dJiA a1Rh99zc2nWm7J6xkbDWBGRG2S96Gx5tf78PnlpNE4U25uf2/44MSjw1ywZe+ElB VcfrtjncCbQSvfE/aWWGLLDU7VhTXaNKc4M1PlA/1Dddg4N/Rs53w8TFrcv/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3aWyr+SQaqrObsZd1ElFpNEdIz8wHwYDVR0j BBgwFoAUY8S/Sxwnw0Be58odVDwfA77xL30wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjRkMWViYi1hZWViLTQ5NDUtOWVmMi0zMmFkOWJmZGViMTkvMC82M0M0QkY0QjFD MjdDMzQwNUVFN0NBMUQ1NDNDMUYwM0JFRjEyRjdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNCRUYx MkY3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNGQxZWJiLWFlZWItNDk0NS05 ZWYyLTMyYWQ5YmZkZWIxOS8wLzMxMzUzNzJlMzYzNjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKAMA0GCSqG SIb3DQEBCwUAA4IBAQAc7PE/uaAmVVUXytngqJGk+pw/0h2GOvwjT85Vf30ciJjN 6UJzBmPgYXIR4GYWxRk/BaeiotZZDYxX/FZp19YVsnWir/FL/AykQtsI3KPctttl s2Au8lJWrrj7rsrSRioauB8OagMBnDUsPj6AQ14Ic02AXhal2ZGQbfSc4PAXjp7x Im+KsV4c/W9ZzZtM/tYjOBhNfPPRIdhkxwFoquwI+74E0hhsjdzG+xR6RCr9P0pV jbU9DhclGMoBmK9a8TunZ14onsjv1igQyPz652befq61R1MHdiDIcAqU+VO296eR 3Vv/opdKam/SDAPr5q7M0HSGg5ECu+L8lFLHtDP0 -----END CERTIFICATE-----Generated at Thu Sep 26 23:11:50 2024 by rpki-client on console-fra.rpki-client.org