$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa File: 3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: q9Kwcq8e8IDhO5Hgys0Ez4imFfVGGcFwXNnnP5qegxI= Subject key identifier: 06:B6:64:0B:6B:C6:CD:44:A1:B0:7D:C3:5C:57:07:B1:04:07:FB:73 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 398DE01B0D83086AD9C77A38374A14644E9E1BB4 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa Signing time: Fri 03 May 2024 08:19:07 +0000 ROA not before: Fri 03 May 2024 08:14:07 +0000 ROA not after: Fri 02 May 2025 08:19:07 +0000 asID: 55685 IP address blocks: 150.107.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8d:e0:1b:0d:83:08:6a:d9:c7:7a:38:37:4a:14:64:4e:9e:1b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: May 3 08:14:07 2024 GMT Not After : May 2 08:19:07 2025 GMT Subject: CN=06B6640B6BC6CD44A1B07DC35C5707B10407FB73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b9:f8:ef:4a:7e:05:f2:be:03:db:87:4a:ab: 13:9b:a6:c2:ac:ce:dc:a3:f9:4f:d1:b4:ce:81:57: 13:32:8e:d3:da:73:76:69:96:02:31:a2:53:db:d9: 38:f4:74:3c:b5:88:ae:38:ee:3c:cf:d5:aa:e4:fc: 06:8f:a7:15:41:10:d3:b3:e2:98:92:c4:65:bd:5f: f8:ab:a9:a9:b9:5a:ea:c6:ed:0a:55:0f:21:90:3e: 62:9a:ee:2b:a6:eb:d1:45:bb:4a:97:bc:45:66:ba: da:b5:5a:fa:ad:51:36:0e:c1:8b:e5:b6:19:b5:d2: fb:d6:6e:d4:f4:eb:31:53:4c:4c:cb:eb:70:7c:e3: 99:e1:8a:a2:fe:30:44:13:19:42:7f:d7:65:7b:a3: df:e6:b3:0e:69:73:1f:03:29:58:33:07:96:d0:c3: c6:2f:f6:65:82:2d:c9:3b:0f:98:78:a2:f0:4e:72: 22:24:d4:c3:5b:49:a0:03:cf:f9:f7:9d:4f:7d:b4: b1:2b:c3:0d:ee:3d:9f:9b:b9:fb:48:32:64:0f:83: e9:e3:8d:79:67:33:3b:65:54:7f:59:57:76:da:22: 35:bb:51:bd:6c:99:d5:c8:98:45:45:51:6e:b6:6f: 71:40:8d:67:12:72:f4:66:9f:8d:b1:63:ea:b7:38: 03:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B6:64:0B:6B:C6:CD:44:A1:B0:7D:C3:5C:57:07:B1:04:07:FB:73 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.141.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:3f:78:e6:90:8c:a8:bf:28:57:22:ce:5d:07:b2:cf:88:46: 81:92:2c:1d:2c:f2:36:af:6a:63:e8:27:6a:04:94:86:ed:aa: bf:e3:e5:46:d6:9d:32:66:0e:2e:17:94:e7:3b:10:0e:36:55: db:9d:6c:a4:47:1d:31:1a:80:76:4d:35:8d:94:17:bf:b6:b3: 4b:49:2c:08:67:0c:49:2d:75:6b:98:b1:89:c0:2c:cf:2e:5e: c5:e9:93:2a:18:e7:68:63:48:7a:61:53:68:1a:d0:34:19:13: e7:de:6d:d4:78:e7:b2:ee:dd:72:dc:bc:64:f7:bc:fb:1a:72: 45:5f:0d:cb:35:f0:df:bc:7a:d2:b3:21:a1:9f:72:11:d8:82: 14:9e:82:bb:33:4e:23:3c:4f:6f:f1:e2:d7:3f:ae:4b:6e:9d: bb:e2:12:b9:52:ae:41:f8:07:ea:43:d0:15:ae:f9:ba:60:d9: 16:39:8e:f1:96:46:fb:68:f2:14:6d:59:8b:3d:11:35:37:5c: 26:56:08:f0:38:7a:14:d5:9a:d6:ca:e0:5b:9c:d4:37:f8:cd: e7:56:20:d3:ac:8c:d0:17:3a:73:d8:3d:a6:02:cd:e8:c7:12: 04:f5:de:d2:14:58:ca:ca:2c:dc:bb:9e:91:7a:e2:ea:1e:96: 53:c3:5a:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOY3gGw2DCGrZx3o4N0oUZE6eG7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA1MDMwODE0MDdaFw0yNTA1MDIwODE5MDdaMDMxMTAvBgNV BAMTKDA2QjY2NDBCNkJDNkNENDRBMUIwN0RDMzVDNTcwN0IxMDQwN0ZCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdufjvSn4F8r4D24dKqxObpsKs ztyj+U/RtM6BVxMyjtPac3ZplgIxolPb2Tj0dDy1iK447jzP1ark/AaPpxVBENOz 4piSxGW9X/irqam5WurG7QpVDyGQPmKa7ium69FFu0qXvEVmutq1WvqtUTYOwYvl thm10vvWbtT06zFTTEzL63B845nhiqL+MEQTGUJ/12V7o9/msw5pcx8DKVgzB5bQ w8Yv9mWCLck7D5h4ovBOciIk1MNbSaADz/n3nU99tLErww3uPZ+buftIMmQPg+nj jXlnMztlVH9ZV3baIjW7Ub1smdXImEVFUW62b3FAjWcScvRmn42xY+q3OAObAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBrZkC2vGzUShsH3DXFcHsQQH+3MwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuNMA0GCSqG SIb3DQEBCwUAA4IBAQBqP3jmkIyovyhXIs5dB7LPiEaBkiwdLPI2r2pj6CdqBJSG 7aq/4+VG1p0yZg4uF5TnOxAONlXbnWykRx0xGoB2TTWNlBe/trNLSSwIZwxJLXVr mLGJwCzPLl7F6ZMqGOdoY0h6YVNoGtA0GRPn3m3UeOey7t1y3Lxk97z7GnJFXw3L NfDfvHrSsyGhn3IR2IIUnoK7M04jPE9v8eLXP65Lbp274hK5Uq5B+AfqQ9AVrvm6 YNkWOY7xlkb7aPIUbVmLPRE1N1wmVgjwOHoU1ZrWyuBbnNQ3+M3nViDTrIzQFzpz 2D2mAs3oxxIE9d7SFFjKyizcu56ReuLqHpZTw1qt -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org