$ rpki-client -vvf repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa File: 3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa (raw, json) Hash identifier: bW5GhG+n2gDC7aNS0QQfawXhWxcHV8PEi1pP/7l6eDw= Subject key identifier: 5A:63:13:B6:28:59:E2:B7:94:8B:DE:99:6B:33:C1:03:09:1D:E1:A5 Certificate issuer: /CN=DA680D591E9E6B4622614F94CF255933B6749212 Certificate serial: 7B03B24CBE03B4362C31BA75A096AFCE8CB18B9E Authority key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa Signing time: Tue 29 Oct 2024 20:16:02 +0000 ROA not before: Tue 29 Oct 2024 20:11:02 +0000 ROA not after: Tue 28 Oct 2025 20:16:02 +0000 asID: 152344 IP address blocks: 157.10.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:03:b2:4c:be:03:b4:36:2c:31:ba:75:a0:96:af:ce:8c:b1:8b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA680D591E9E6B4622614F94CF255933B6749212 Validity Not Before: Oct 29 20:11:02 2024 GMT Not After : Oct 28 20:16:02 2025 GMT Subject: CN=5A6313B62859E2B7948BDE996B33C103091DE1A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:02:4d:25:97:f5:f6:ea:ce:3a:fe:4d:ce:16: d4:0f:d1:c2:a3:c9:1b:19:fb:01:fd:da:40:2b:ba: b9:e4:6e:95:eb:10:23:21:38:2e:c4:b6:da:bd:d8: 54:86:56:d0:91:0b:ad:5a:a6:28:0b:d9:d9:45:3c: 09:78:63:43:2f:a0:14:fe:d4:be:c9:5f:ba:b4:d6: b6:ed:d5:2d:ad:5d:fc:7c:c9:7f:d2:36:7d:a1:84: a6:88:f3:e7:bd:bc:88:bd:94:bc:9c:b7:7e:41:4b: 0c:dc:1f:16:b2:0b:68:26:ab:7e:80:7d:af:07:98: ab:72:76:9e:1e:6c:90:20:d7:8c:91:1d:b0:a0:88: 86:1d:ce:5d:66:8f:6d:0c:1b:ef:28:53:b8:3b:52: 73:08:ae:f4:d6:0d:ad:a1:6b:ea:16:76:26:07:1f: cb:c6:1e:29:db:8b:e4:e1:03:81:7c:b2:55:63:b2: a0:ae:f9:58:cc:24:0d:6b:5d:f2:8e:81:76:6e:1e: dd:2b:42:d8:f1:47:93:4b:d8:3e:77:df:3d:2b:79: e3:08:dd:e9:a1:f0:25:19:62:45:c8:e9:ad:b4:73: 59:09:5b:18:e4:b2:fe:78:38:b2:17:81:65:da:6e: c2:ab:2b:e2:f8:64:99:b0:0d:39:25:ef:69:d9:b3: 26:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:63:13:B6:28:59:E2:B7:94:8B:DE:99:6B:33:C1:03:09:1D:E1:A5 X509v3 Authority Key Identifier: keyid:DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.183.0/24 Signature Algorithm: sha256WithRSAEncryption cd:2c:39:12:a9:63:f8:42:20:17:49:4f:d8:ae:6f:f3:8c:22: 23:d9:8a:d2:45:0a:8f:45:ff:b8:0f:17:fb:1f:21:0b:db:8f: aa:42:a4:44:2f:6d:fd:5d:2e:61:85:10:38:fb:e4:a7:30:10: 42:cd:35:4a:00:91:c4:7c:6e:f7:8e:58:cf:d4:ff:28:89:75: 28:6a:6d:09:93:14:65:08:60:31:d4:a2:05:96:c7:c8:a3:95: 7f:45:f2:12:0a:18:92:89:42:fd:fe:9e:3c:51:44:0f:6d:dc: 24:0b:f1:6c:b3:0f:c9:73:fc:04:86:3e:ae:42:58:78:72:7f: 2d:ae:72:70:65:25:92:36:b0:26:e5:32:03:43:c9:cd:00:32: 27:a7:4c:04:1b:5e:29:11:5f:f9:51:6e:b0:e8:96:6a:ea:bf: 4f:26:7b:a4:e3:db:30:62:b2:ed:e9:31:45:91:95:fb:43:67: c3:5f:1f:53:f7:19:48:f7:16:30:ba:11:b9:2f:6b:26:89:a9: c3:d5:bd:d2:82:02:5d:e7:8c:21:68:32:39:d1:61:68:cc:74: 36:b7:2d:25:27:71:2f:bf:a6:7c:34:2c:2f:cc:e6:f0:5a:01: c0:a3:2f:8b:71:fa:6e:e2:e1:05:17:36:32:0d:6b:4a:c6:e7: eb:4e:5e:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUewOyTL4DtDYsMbp1oJavzoyxi54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNC Njc0OTIxMjAeFw0yNDEwMjkyMDExMDJaFw0yNTEwMjgyMDE2MDJaMDMxMTAvBgNV BAMTKDVBNjMxM0I2Mjg1OUUyQjc5NDhCREU5OTZCMzNDMTAzMDkxREUxQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcAk0ll/X26s46/k3OFtQP0cKj yRsZ+wH92kArurnkbpXrECMhOC7Ettq92FSGVtCRC61apigL2dlFPAl4Y0MvoBT+ 1L7JX7q01rbt1S2tXfx8yX/SNn2hhKaI8+e9vIi9lLyct35BSwzcHxayC2gmq36A fa8HmKtydp4ebJAg14yRHbCgiIYdzl1mj20MG+8oU7g7UnMIrvTWDa2ha+oWdiYH H8vGHinbi+ThA4F8slVjsqCu+VjMJA1rXfKOgXZuHt0rQtjxR5NL2D533z0reeMI 3emh8CUZYkXI6a20c1kJWxjksv54OLIXgWXabsKrK+L4ZJmwDTkl72nZsyYFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWmMTtihZ4reUi96ZazPBAwkd4aUwHwYDVR0j BBgwFoAU2mgNWR6ea0YiYU+UzyVZM7Z0khIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMC9EQTY4MEQ1OTFF OUU2QjQ2MjI2MTRGOTRDRjI1NTkzM0I2NzQ5MjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNCNjc0 OTIxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq3MA0GCSqG SIb3DQEBCwUAA4IBAQDNLDkSqWP4QiAXSU/Yrm/zjCIj2YrSRQqPRf+4Dxf7HyEL 24+qQqREL239XS5hhRA4++SnMBBCzTVKAJHEfG73jljP1P8oiXUoam0JkxRlCGAx 1KIFlsfIo5V/RfISChiSiUL9/p48UUQPbdwkC/Fssw/Jc/wEhj6uQlh4cn8trnJw ZSWSNrAm5TIDQ8nNADInp0wEG14pEV/5UW6w6JZq6r9PJnuk49swYrLt6TFFkZX7 Q2fDXx9T9xlI9xYwuhG5L2smianD1b3SggJd54whaDI50WFozHQ2ty0lJ3Evv6Z8 NCwvzObwWgHAoy+Lcfpu4uEFFzYyDWtKxufrTl4i -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org