$ rpki-client -vvf repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa File: 3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa (raw, json) Hash identifier: zo0q/Qyr9+OM0Fi4S3qemAqF/9QAiZg3ou4qqrAMiyU= Subject key identifier: 42:3A:59:85:ED:45:7D:47:74:CA:C3:D1:84:DC:3D:07:BA:3E:AA:93 Certificate issuer: /CN=DA680D591E9E6B4622614F94CF255933B6749212 Certificate serial: 4669BBF72E0A4325D7DD5223BFFBDE98426963E3 Authority key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa Signing time: Tue 29 Oct 2024 20:15:46 +0000 ROA not before: Tue 29 Oct 2024 20:10:46 +0000 ROA not after: Tue 28 Oct 2025 20:15:46 +0000 asID: 152344 IP address blocks: 157.10.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:69:bb:f7:2e:0a:43:25:d7:dd:52:23:bf:fb:de:98:42:69:63:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA680D591E9E6B4622614F94CF255933B6749212 Validity Not Before: Oct 29 20:10:46 2024 GMT Not After : Oct 28 20:15:46 2025 GMT Subject: CN=423A5985ED457D4774CAC3D184DC3D07BA3EAA93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f3:0b:dc:be:74:58:39:3b:c6:8b:4f:60:0f: 21:41:9b:e8:65:7d:78:b9:64:d7:9d:40:48:3c:4a: 08:6c:75:ab:65:2d:2d:8c:ad:64:75:a3:6a:64:d7: 0a:e0:c0:3b:9e:ae:e8:71:c0:54:ca:b7:53:15:a0: a0:d3:0b:b8:14:24:0a:59:55:0b:8d:a6:70:bd:ad: 5a:72:ba:df:6f:9f:f4:17:90:36:c8:97:00:0e:ea: a7:77:81:73:71:ea:b0:2f:1a:12:de:0c:97:66:43: ad:00:b6:39:1b:49:ae:c4:48:66:51:1f:d5:0f:4a: dc:06:d0:45:d9:26:3b:c8:c2:26:91:cf:6c:55:90: a4:0a:bf:1f:50:91:5f:35:32:4d:a3:24:2b:f6:33: df:5b:c4:49:4a:b2:e1:5c:08:68:62:e2:e2:e4:b1: 98:dc:35:4f:2b:48:4c:51:03:b0:50:59:eb:b9:d6: f1:1a:5f:6f:27:d0:36:a2:48:fa:15:71:da:7f:6a: c6:7c:95:60:3e:13:ee:d1:f4:af:b2:49:7b:a1:57: b2:cf:06:8c:41:83:5d:e9:7a:6e:89:14:15:5f:00: b0:2a:00:23:1c:7e:bf:1e:ec:ec:55:17:02:2e:00: 04:57:72:fa:59:fa:d1:c0:a1:9e:f7:2d:42:ab:00: 63:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3A:59:85:ED:45:7D:47:74:CA:C3:D1:84:DC:3D:07:BA:3E:AA:93 X509v3 Authority Key Identifier: keyid:DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/24 Signature Algorithm: sha256WithRSAEncryption 46:db:ef:15:ee:e3:4b:e6:a9:7e:70:56:da:9e:f1:d0:b7:f7: 5e:62:72:00:02:d4:7e:30:a0:af:30:af:e5:3a:49:e1:08:02: 24:e3:00:30:9e:cf:71:36:03:fd:6a:4d:4e:b2:58:04:bf:6b: 5f:df:57:21:8b:d3:5f:f7:ac:71:79:bd:d2:a6:f2:c7:a0:f3: 82:ab:aa:d4:63:58:37:69:a2:cc:b6:57:74:ce:a8:6c:1f:dd: f7:d7:85:3a:1e:6e:b7:ed:f9:a1:cb:aa:65:9e:6b:5a:b5:f7: 86:2a:cb:e3:7d:fd:07:70:7c:ec:5f:1f:6c:7c:fa:8d:ee:af: aa:7d:ae:31:b0:5d:60:e3:34:2c:61:94:31:cb:e7:3d:9a:72: f0:29:1b:80:1c:6f:ea:b8:e2:ea:63:4d:46:e8:87:e0:b2:ec: 85:00:b7:6c:25:79:ac:19:ad:9a:10:1b:db:f6:51:2b:6e:03: d9:ad:c6:71:ee:91:e5:aa:c6:2f:22:8a:71:c0:97:3e:3c:43: b1:e3:4f:56:44:b1:45:a4:49:06:03:72:46:9b:25:05:75:40: 82:c7:5a:9c:83:6f:65:cf:a2:b5:54:91:2c:5d:c1:66:10:27: 0d:51:e3:6f:4c:48:75:65:94:09:f6:ba:e0:57:cd:4f:f5:29: 63:3c:18:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURmm79y4KQyXX3VIjv/vemEJpY+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNC Njc0OTIxMjAeFw0yNDEwMjkyMDEwNDZaFw0yNTEwMjgyMDE1NDZaMDMxMTAvBgNV BAMTKDQyM0E1OTg1RUQ0NTdENDc3NENBQzNEMTg0REMzRDA3QkEzRUFBOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC28wvcvnRYOTvGi09gDyFBm+hl fXi5ZNedQEg8SghsdatlLS2MrWR1o2pk1wrgwDueruhxwFTKt1MVoKDTC7gUJApZ VQuNpnC9rVpyut9vn/QXkDbIlwAO6qd3gXNx6rAvGhLeDJdmQ60AtjkbSa7ESGZR H9UPStwG0EXZJjvIwiaRz2xVkKQKvx9QkV81Mk2jJCv2M99bxElKsuFcCGhi4uLk sZjcNU8rSExRA7BQWeu51vEaX28n0DaiSPoVcdp/asZ8lWA+E+7R9K+ySXuhV7LP BoxBg13pem6JFBVfALAqACMcfr8e7OxVFwIuAARXcvpZ+tHAoZ73LUKrAGOJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQjpZhe1FfUd0ysPRhNw9B7o+qpMwHwYDVR0j BBgwFoAU2mgNWR6ea0YiYU+UzyVZM7Z0khIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMC9EQTY4MEQ1OTFF OUU2QjQ2MjI2MTRGOTRDRjI1NTkzM0I2NzQ5MjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNCNjc0 OTIxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq2MA0GCSqG SIb3DQEBCwUAA4IBAQBG2+8V7uNL5ql+cFbanvHQt/deYnIAAtR+MKCvMK/lOknh CAIk4wAwns9xNgP9ak1OslgEv2tf31chi9Nf96xxeb3SpvLHoPOCq6rUY1g3aaLM tld0zqhsH93314U6Hm637fmhy6plnmtatfeGKsvjff0HcHzsXx9sfPqN7q+qfa4x sF1g4zQsYZQxy+c9mnLwKRuAHG/quOLqY01G6IfgsuyFALdsJXmsGa2aEBvb9lEr bgPZrcZx7pHlqsYvIopxwJc+PEOx409WRLFFpEkGA3JGmyUFdUCCx1qcg29lz6K1 VJEsXcFmECcNUeNvTEh1ZZQJ9rrgV81P9SljPBh/ -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org