$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/3135372e36362e302e302f32332d3234203d3e20313430343737.roa File: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (raw, json) Hash identifier: y71ZhCBj0ZFKWRv/ArGsOF0ogDJDqOvjhhVCZLjfrqA= Subject key identifier: D8:5B:BD:36:91:68:D4:73:55:75:A2:A5:57:13:11:B3:77:10:6F:B4 Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Certificate serial: 387B8641825539924941595F1005E19BAC912F5E Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/3135372e36362e302e302f32332d3234203d3e20313430343737.roa Signing time: Tue 04 Jun 2024 09:40:21 +0000 ROA not before: Tue 04 Jun 2024 09:35:21 +0000 ROA not after: Tue 03 Jun 2025 09:40:21 +0000 asID: 140477 IP address blocks: 157.66.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7b:86:41:82:55:39:92:49:41:59:5f:10:05:e1:9b:ac:91:2f:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Validity Not Before: Jun 4 09:35:21 2024 GMT Not After : Jun 3 09:40:21 2025 GMT Subject: CN=D85BBD369168D4735575A2A5571311B377106FB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:1a:53:80:74:7c:bc:75:dd:a1:5c:0f:de: 21:1b:53:fd:c9:d1:25:db:ae:11:a5:84:81:35:86: cd:91:34:d5:49:a6:42:c0:40:34:e4:d2:46:63:43: df:77:ef:4a:c5:12:c1:9e:84:89:f7:5a:bd:17:47: da:2a:a6:1b:42:9f:ed:47:2e:b5:b7:c1:9b:74:0e: 42:27:ea:8e:22:7d:ee:9e:d7:e9:e2:4e:80:36:b7: f6:49:d2:e1:78:4a:4b:bb:ad:b9:6a:f8:ca:0e:86: 54:ef:64:34:92:70:79:43:8a:c0:c8:af:51:1c:2b: 5f:93:75:ed:79:34:4d:13:7d:9f:94:ce:c4:6e:29: f9:a6:ae:40:91:e7:ab:45:9a:51:f9:e1:fd:21:22: e7:04:6b:7f:d4:4a:e4:f5:8b:a8:1e:89:e3:91:08: ee:ed:32:a8:7e:e7:8c:d0:cb:b5:55:66:6d:5b:5d: d5:9d:9d:21:f6:8e:2f:11:d5:0b:c9:6f:ab:8a:15: 08:1c:f9:94:81:db:d3:d0:5a:f6:db:13:0b:91:bd: ca:34:d6:a8:c9:89:8c:b6:5c:e2:41:49:c7:11:7a: ac:90:86:ec:4f:67:b4:63:ee:2e:ec:b3:3f:59:9f: ac:51:2b:86:57:2a:5e:c2:a1:9b:e5:0f:41:37:0e: 69:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5B:BD:36:91:68:D4:73:55:75:A2:A5:57:13:11:B3:77:10:6F:B4 X509v3 Authority Key Identifier: keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/3135372e36362e302e302f32332d3234203d3e20313430343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.0.0/23 Signature Algorithm: sha256WithRSAEncryption f1:6e:42:27:ab:b3:f1:d4:ea:f8:48:4a:28:ca:54:1f:86:21: b0:08:65:ba:53:13:16:90:91:64:bb:c5:12:7c:f5:1c:e4:37: 55:5c:ca:f4:d3:19:2a:b7:db:b3:d6:f7:d4:98:ba:77:44:2e: f9:fa:42:f5:09:cb:14:c6:dc:82:08:ae:b3:e5:25:26:16:94: 8b:b4:d7:d1:55:b4:8e:4a:7f:01:44:20:b4:ab:65:f2:9f:55: 19:15:92:c6:4b:53:f1:fb:2e:6e:06:9f:4e:25:b4:71:f7:ec: 2e:0e:be:b6:91:91:e6:ee:d2:34:d4:76:8b:b9:8e:a1:2e:9d: 5d:c1:b3:7c:69:87:3e:c3:cb:ac:f0:5f:ad:0a:c5:2d:94:95: 5d:1a:4c:a4:d2:3f:db:ca:51:25:a1:f0:89:24:be:90:22:4b: 0a:5d:0e:8c:9a:9c:16:06:83:9d:2d:97:c6:48:a0:e5:29:8c: cf:36:90:27:94:c6:b5:0a:d7:e8:c9:d2:0d:d2:12:8d:50:26: 27:3c:ea:f6:dd:46:16:69:45:d1:31:8f:46:eb:4d:d3:23:16: e8:f5:b0:1e:3d:76:10:9b:79:55:f7:f4:09:d7:83:db:92:18: dd:98:36:62:56:bb:35:bb:9b:dc:97:e9:b5:47:f2:90:8a:57: 99:12:57:a9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOHuGQYJVOZJJQVlfEAXhm6yRL14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4 Rjg1MkJBQTAeFw0yNDA2MDQwOTM1MjFaFw0yNTA2MDMwOTQwMjFaMDMxMTAvBgNV BAMTKEQ4NUJCRDM2OTE2OEQ0NzM1NTc1QTJBNTU3MTMxMUIzNzcxMDZGQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RRpTgHR8vHXdoVwP3iEbU/3J 0SXbrhGlhIE1hs2RNNVJpkLAQDTk0kZjQ99370rFEsGehIn3Wr0XR9oqphtCn+1H LrW3wZt0DkIn6o4ife6e1+niToA2t/ZJ0uF4Sku7rblq+MoOhlTvZDSScHlDisDI r1EcK1+Tde15NE0TfZ+UzsRuKfmmrkCR56tFmlH54f0hIucEa3/USuT1i6geieOR CO7tMqh+54zQy7VVZm1bXdWdnSH2ji8R1QvJb6uKFQgc+ZSB29PQWvbbEwuRvco0 1qjJiYy2XOJBSccReqyQhuxPZ7Rj7i7ssz9Zn6xRK4ZXKl7CoZvlD0E3DmnvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU2Fu9NpFo1HNVdaKlVxMRs3cQb7QwHwYDVR0j BBgwFoAUQJScfJ3Q0/iZaB/y61PknI+FK6owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWRhZTk3Zi0xYWQxLTRiMzQtOGZlOS0xYmM2NWIwOTA4ZjMvMC80MDk0OUM3QzlE RDBEM0Y4OTk2ODFGRjJFQjUzRTQ5QzhGODUyQkFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4Rjg1 MkJBQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ZGFlOTdmLTFhZDEtNGIzNC04 ZmU5LTFiYzY1YjA5MDhmMy8wLzMxMzUzNzJlMzYzNjJlMzAyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM0MzAzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgAwDQYJKoZIhvcN AQELBQADggEBAPFuQiers/HU6vhISijKVB+GIbAIZbpTExaQkWS7xRJ89RzkN1Vc yvTTGSq327PW99SYundELvn6QvUJyxTG3IIIrrPlJSYWlIu019FVtI5KfwFEILSr ZfKfVRkVksZLU/H7Lm4Gn04ltHH37C4OvraRkebu0jTUdou5jqEunV3Bs3xphz7D y6zwX60KxS2UlV0aTKTSP9vKUSWh8IkkvpAiSwpdDoyanBYGg50tl8ZIoOUpjM82 kCeUxrUK1+jJ0g3SEo1QJic86vbdRhZpRdExj0brTdMjFuj1sB49dhCbeVX39AnX g9uSGN2YNmJWuzW7m9yX6bVH8pCKV5kSV6k= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org