$ rpki-client -vvf repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa File: 3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa (raw, json) Hash identifier: r2hXreEY+VRAQGcl/v1nEspZ0+VSQl3vloIjw9JG664= Subject key identifier: CD:74:AA:FB:40:E0:34:24:A4:82:A1:0F:5E:66:B5:F3:7E:32:F7:87 Certificate issuer: /CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Certificate serial: 6BAD939D2FD4FBF199A4E1C39284DCBB13D5EC19 Authority key identifier: 39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa Signing time: Sat 08 Jun 2024 14:03:59 +0000 ROA not before: Sat 08 Jun 2024 13:58:59 +0000 ROA not after: Sat 07 Jun 2025 14:03:59 +0000 asID: 152753 IP address blocks: 157.66.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.crl rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ad:93:9d:2f:d4:fb:f1:99:a4:e1:c3:92:84:dc:bb:13:d5:ec:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Validity Not Before: Jun 8 13:58:59 2024 GMT Not After : Jun 7 14:03:59 2025 GMT Subject: CN=CD74AAFB40E03424A482A10F5E66B5F37E32F787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5c:87:9c:87:24:87:59:2a:65:48:08:52:83: c3:52:ec:24:d5:46:1b:65:cd:8f:09:10:cb:1c:fd: 4e:c1:02:d3:78:a0:61:78:ee:e0:00:32:de:d3:5b: 01:b4:3f:8f:89:41:61:dc:b9:d4:f7:51:c3:1b:2a: 32:e1:8c:dd:80:34:76:f2:70:93:46:75:46:c5:8a: fd:34:92:e7:f1:00:68:1b:74:38:1d:2f:87:67:e8: f9:f0:c2:61:5d:0b:63:f1:9c:04:15:cd:67:ed:85: bc:34:f7:67:a1:e2:cd:4d:55:92:0f:98:d1:db:1c: e9:9c:68:45:63:e9:09:0c:93:66:06:c4:63:eb:6c: 05:7b:18:53:c8:69:67:f7:6c:78:dd:9c:53:5b:ea: 9a:ea:a7:ca:10:b3:c1:c7:97:4d:4f:1e:16:e4:21: e1:56:fc:a8:64:7a:e9:ae:9b:bb:44:2e:67:06:f2: de:52:fb:3e:ce:60:5f:2e:a4:31:2a:14:4f:0e:85: 68:fc:81:d7:98:70:58:e2:fc:e2:32:35:f2:db:44: 54:e7:68:24:28:15:91:31:d1:35:11:7e:58:57:f9: 4d:79:ba:76:38:6b:52:d9:95:25:4c:4f:06:e3:92: 4a:c3:40:79:71:6c:07:26:6e:e7:d1:3a:c0:53:1e: 3f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:74:AA:FB:40:E0:34:24:A4:82:A1:0F:5E:66:B5:F3:7E:32:F7:87 X509v3 Authority Key Identifier: keyid:39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.190.0/24 Signature Algorithm: sha256WithRSAEncryption 28:4a:a6:25:b3:87:77:3f:c9:50:67:0f:c8:d0:9e:8e:87:e3: 8f:a3:54:ff:97:5e:82:e9:6b:0f:b4:8d:67:ea:72:4e:5c:31: 6a:dd:1e:02:57:52:2e:55:70:86:ff:bc:68:c5:1c:7f:42:bc: 75:84:0f:0d:03:bc:c5:4b:3b:8f:fd:c2:0e:f5:96:0e:28:19: d0:94:0d:56:77:76:55:52:89:be:9d:08:8f:c6:b7:ff:2e:f0: e5:9e:7d:47:27:10:53:db:bd:72:2d:5c:77:cb:9f:af:52:df: 6b:41:62:d8:12:57:b4:da:b3:14:38:9c:eb:77:01:c7:56:04: 49:72:4c:e0:9c:92:64:21:cd:50:1e:69:4a:5d:23:a6:08:6f: 74:7a:6e:66:f0:14:cf:df:ff:56:40:f4:25:a5:1c:88:f4:9e: 85:17:fb:01:1f:ff:41:ab:79:58:cc:9e:a0:35:c3:65:5f:d6: 95:d7:1b:3e:16:3c:d9:40:7d:72:d5:36:03:c2:af:34:cd:61: 7a:3a:9b:87:f7:b4:ac:6b:b2:01:ab:49:a1:4b:92:2a:11:30: a0:49:e2:73:10:da:81:c6:12:fc:e9:36:2f:02:41:83:59:1d: 5c:a0:f4:1f:43:98:ee:5c:30:b9:a7:59:f6:94:25:79:b1:22: 8a:2d:97:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa62TnS/U+/GZpOHDkoTcuxPV7BkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk0QkNDNUMwMzEwREIwMTE3RERDMURDMUExNzYwMjZE QjQyMUQ4ODAeFw0yNDA2MDgxMzU4NTlaFw0yNTA2MDcxNDAzNTlaMDMxMTAvBgNV BAMTKENENzRBQUZCNDBFMDM0MjRBNDgyQTEwRjVFNjZCNUYzN0UzMkY3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6XIechySHWSplSAhSg8NS7CTV RhtlzY8JEMsc/U7BAtN4oGF47uAAMt7TWwG0P4+JQWHcudT3UcMbKjLhjN2ANHby cJNGdUbFiv00kufxAGgbdDgdL4dn6PnwwmFdC2PxnAQVzWfthbw092eh4s1NVZIP mNHbHOmcaEVj6QkMk2YGxGPrbAV7GFPIaWf3bHjdnFNb6prqp8oQs8HHl01PHhbk IeFW/Khkeumum7tELmcG8t5S+z7OYF8upDEqFE8OhWj8gdeYcFji/OIyNfLbRFTn aCQoFZEx0TURflhX+U15unY4a1LZlSVMTwbjkkrDQHlxbAcmbufROsBTHj+TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzXSq+0DgNCSkgqEPXma1834y94cwHwYDVR0j BBgwFoAUOUvMXAMQ2wEX3cHcGhdgJttCHYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NzEzNGYxOC0xMWUxLTQxYWUtYmIwNS05ZmJmNDgyMTJiN2QvMC8zOTRCQ0M1QzAz MTBEQjAxMTdEREMxREMxQTE3NjAyNkRCNDIxRDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzk0QkNDNUMwMzEwREIwMTE3RERDMURDMUExNzYwMjZEQjQy MUQ4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3MTM0ZjE4LTExZTEtNDFhZS1i YjA1LTlmYmY0ODIxMmI3ZC8wLzMxMzUzNzJlMzYzNjJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUK+MA0GCSqG SIb3DQEBCwUAA4IBAQAoSqYls4d3P8lQZw/I0J6Oh+OPo1T/l16C6WsPtI1n6nJO XDFq3R4CV1IuVXCG/7xoxRx/Qrx1hA8NA7zFSzuP/cIO9ZYOKBnQlA1Wd3ZVUom+ nQiPxrf/LvDlnn1HJxBT271yLVx3y5+vUt9rQWLYEle02rMUOJzrdwHHVgRJckzg nJJkIc1QHmlKXSOmCG90em5m8BTP3/9WQPQlpRyI9J6FF/sBH/9Bq3lYzJ6gNcNl X9aV1xs+FjzZQH1y1TYDwq80zWF6OpuH97Ssa7IBq0mhS5IqETCgSeJzENqBxhL8 6TYvAkGDWR1coPQfQ5juXDC5p1n2lCV5sSKKLZc6 -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org