$ rpki-client -vvf repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa File: 3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa (raw, json) Hash identifier: i0rS2o3mTh9+/ZMOMUuCXL7VcRhfm2ZL+vmQMK6r/AQ= Subject key identifier: 60:13:EE:57:ED:D6:69:59:C0:CF:AA:3D:CF:43:E0:FB:89:A5:DA:4F Certificate issuer: /CN=DA680D591E9E6B4622614F94CF255933B6749212 Certificate serial: 5633328E574E80F417E5374D23D87BA36D7B8010 Authority key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa Signing time: Tue 29 Oct 2024 20:15:26 +0000 ROA not before: Tue 29 Oct 2024 20:10:26 +0000 ROA not after: Tue 28 Oct 2025 20:15:26 +0000 asID: 152344 IP address blocks: 157.10.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:33:32:8e:57:4e:80:f4:17:e5:37:4d:23:d8:7b:a3:6d:7b:80:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA680D591E9E6B4622614F94CF255933B6749212 Validity Not Before: Oct 29 20:10:26 2024 GMT Not After : Oct 28 20:15:26 2025 GMT Subject: CN=6013EE57EDD66959C0CFAA3DCF43E0FB89A5DA4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:95:f3:9d:00:bc:60:6c:6c:98:9e:4c:ae:79: 00:a3:88:07:cd:03:74:91:f6:c7:a9:b5:e5:19:e1: d5:bc:b8:31:cf:42:4e:3f:b0:81:3a:70:71:b8:2e: 33:ae:b3:fd:59:01:23:4e:08:f9:5e:24:87:88:1c: ec:48:4a:f2:91:eb:bf:0a:91:3b:69:f7:13:88:a6: 05:14:2e:a9:cb:20:13:34:9e:ad:0d:14:fb:6e:e0: 68:3d:bc:78:32:76:8e:c3:db:90:0c:ed:2c:b9:51: 7c:c3:1a:31:fa:ff:2b:9a:ff:11:14:5c:fd:94:9a: 4f:9c:5f:56:4e:e5:d7:bd:c0:7c:33:cf:65:e3:1f: ea:6f:24:f3:be:34:d4:55:69:d6:88:9d:09:f0:22: 22:ef:a9:a8:81:a0:eb:a5:a5:3b:da:9f:81:8c:14: f6:21:03:b7:79:8c:83:83:5c:cd:97:e9:65:ce:10: 19:a5:65:74:40:0b:9b:b1:78:60:3b:52:68:9d:34: d7:6b:3c:24:e7:ae:64:32:79:69:ef:1a:7f:db:61: 4c:73:2e:da:d1:9c:ba:1f:49:55:e2:13:17:db:34: 4e:ad:52:97:a7:1e:73:34:06:5b:09:ef:7c:5e:6b: 85:9c:7e:dc:02:1b:79:8e:c5:62:e8:49:88:16:5c: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:13:EE:57:ED:D6:69:59:C0:CF:AA:3D:CF:43:E0:FB:89:A5:DA:4F X509v3 Authority Key Identifier: keyid:DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/23 Signature Algorithm: sha256WithRSAEncryption 00:cd:7f:50:7f:ea:62:d2:c8:e1:1b:9e:32:53:cb:71:ee:ef: 83:ab:4a:e3:58:0b:c1:71:2f:35:b4:52:26:aa:6f:5c:d6:7c: df:a9:81:06:d8:56:e4:d5:9f:97:3c:93:b4:2c:db:fb:35:bd: 1b:c7:91:fa:68:aa:1d:3b:a3:67:c4:b8:97:24:f7:83:2a:96: 1a:df:ac:71:eb:ef:87:e7:9a:96:c3:78:e1:9a:ea:7d:7f:9e: be:a5:82:0d:94:9d:66:13:5a:9a:ac:2d:d5:f1:85:74:c7:5c: 66:4a:47:d2:5e:22:4b:07:36:44:34:fe:9c:89:48:86:b3:f2: c7:40:bb:56:b2:b3:c1:63:36:8c:27:47:60:c6:af:aa:80:5f: 2f:a8:00:52:73:d1:40:7a:3d:7e:f3:60:31:56:dc:97:d9:10: ff:e9:36:01:32:e7:2a:61:25:df:15:43:d9:e6:06:35:49:5c: 4b:a7:f9:ff:2d:bb:eb:2f:50:cf:8c:a0:55:32:37:02:14:6a: 8c:9e:4a:54:e8:bf:54:12:a6:c8:e5:8d:22:86:5d:bc:a3:fe: 68:cb:b1:e5:8b:af:8f:b5:d3:3a:8f:9c:03:5d:a1:78:29:aa: d2:b3:29:be:45:06:9d:f6:0a:9b:87:bb:3d:df:41:a6:db:7c: 16:48:1e:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVjMyjldOgPQX5TdNI9h7o217gBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNC Njc0OTIxMjAeFw0yNDEwMjkyMDEwMjZaFw0yNTEwMjgyMDE1MjZaMDMxMTAvBgNV BAMTKDYwMTNFRTU3RURENjY5NTlDMENGQUEzRENGNDNFMEZCODlBNURBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9lfOdALxgbGyYnkyueQCjiAfN A3SR9septeUZ4dW8uDHPQk4/sIE6cHG4LjOus/1ZASNOCPleJIeIHOxISvKR678K kTtp9xOIpgUULqnLIBM0nq0NFPtu4Gg9vHgydo7D25AM7Sy5UXzDGjH6/yua/xEU XP2Umk+cX1ZO5de9wHwzz2XjH+pvJPO+NNRVadaInQnwIiLvqaiBoOulpTvan4GM FPYhA7d5jIODXM2X6WXOEBmlZXRAC5uxeGA7UmidNNdrPCTnrmQyeWnvGn/bYUxz LtrRnLofSVXiExfbNE6tUpenHnM0BlsJ73xea4WcftwCG3mOxWLoSYgWXImbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYBPuV+3WaVnAz6o9z0Pg+4ml2k8wHwYDVR0j BBgwFoAU2mgNWR6ea0YiYU+UzyVZM7Z0khIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMC9EQTY4MEQ1OTFF OUU2QjQ2MjI2MTRGOTRDRjI1NTkzM0I2NzQ5MjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNCNjc0 OTIxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQq2MA0GCSqG SIb3DQEBCwUAA4IBAQAAzX9Qf+pi0sjhG54yU8tx7u+Dq0rjWAvBcS81tFImqm9c 1nzfqYEG2Fbk1Z+XPJO0LNv7Nb0bx5H6aKodO6NnxLiXJPeDKpYa36xx6++H55qW w3jhmup9f56+pYINlJ1mE1qarC3V8YV0x1xmSkfSXiJLBzZENP6ciUiGs/LHQLtW srPBYzaMJ0dgxq+qgF8vqABSc9FAej1+82AxVtyX2RD/6TYBMucqYSXfFUPZ5gY1 SVxLp/n/LbvrL1DPjKBVMjcCFGqMnkpU6L9UEqbI5Y0ihl28o/5oy7Hli6+PtdM6 j5wDXaF4KarSsym+RQad9gqbh7s930Gm23wWSB7g -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org