$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa File: 3135372e31302e302e302f32332d3233203d3e20313532303739.roa (raw, json) Hash identifier: 90PAR1zpjuz3wU3p+ezmzwfhfDrP+7N9pc9jzxWV7TY= Subject key identifier: F3:8A:EE:6B:D4:AE:58:21:B9:1E:95:A8:0A:20:2B:EC:5F:BD:1B:70 Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 610B650B1CD0D2178823E5A5154470EF61CC5663 Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa Signing time: Wed 28 Feb 2024 14:28:46 +0000 ROA not before: Wed 28 Feb 2024 14:23:46 +0000 ROA not after: Wed 26 Feb 2025 14:28:46 +0000 asID: 152079 IP address blocks: 157.10.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0b:65:0b:1c:d0:d2:17:88:23:e5:a5:15:44:70:ef:61:cc:56:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Feb 28 14:23:46 2024 GMT Not After : Feb 26 14:28:46 2025 GMT Subject: CN=F38AEE6BD4AE5821B91E95A80A202BEC5FBD1B70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:18:d9:5d:a9:70:cb:0e:6c:45:fb:28:ca:7d: a8:18:61:13:ae:97:6a:2c:4f:55:a6:7a:67:ac:8e: 92:5c:df:d3:02:e2:f4:28:dc:eb:8e:97:c6:4b:c1: 31:2a:01:92:3b:25:7a:d7:cb:3e:d6:f9:8b:10:e7: af:57:cf:96:67:8e:ed:94:46:d3:02:21:38:de:e1: ff:81:de:6b:da:aa:8c:6b:17:af:09:74:92:c9:6a: 8a:73:11:94:6a:d6:5f:ec:16:bc:ef:ae:29:22:c3: 72:a3:9a:a4:ce:c3:ad:78:d9:5d:0a:73:96:19:84: 28:9d:f2:01:93:38:95:b4:31:35:96:2b:c3:8e:d5: ac:2c:62:8d:9a:b8:0f:cb:ba:42:90:fb:37:37:5a: 9a:e0:41:1c:a7:01:8b:57:75:6e:b3:10:37:00:45: 7c:37:9b:a0:96:4c:c5:82:bc:b6:78:9d:7e:71:d7: 03:67:34:24:37:c0:3a:45:8c:34:a9:63:04:76:50: e8:5a:59:78:a7:e7:9b:27:a6:81:7d:af:47:a4:cf: a0:f7:eb:86:67:a7:61:cc:a8:a7:42:36:51:f0:18: 29:99:84:a0:e7:06:e1:27:76:42:81:c4:1d:63:16: ab:3c:99:e1:c3:56:d6:02:49:05:cc:56:57:df:bc: 48:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8A:EE:6B:D4:AE:58:21:B9:1E:95:A8:0A:20:2B:EC:5F:BD:1B:70 X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption ac:f8:6f:99:be:95:dd:1d:7b:f2:d6:f8:77:42:4d:a7:c3:f3: 34:4a:45:4c:1e:6e:61:bb:b7:e9:68:a8:2d:0c:ac:c8:08:2a: f4:12:73:18:c3:4f:16:0e:1a:be:de:a8:66:f5:95:18:f5:c1: f0:b3:8a:0a:9c:97:5e:37:f9:90:26:bb:1f:a6:0b:6e:ea:02: 1a:ef:ac:e7:01:ba:5b:7b:33:7f:0b:45:bb:ca:bf:6f:b4:15: ea:b2:d8:5a:1d:52:8b:f1:0c:a2:22:6c:2e:00:0e:84:cc:85: b4:6c:e0:3a:b7:39:51:8b:79:bb:09:37:6e:68:10:cd:66:53: 39:c6:f5:3e:43:a2:b8:37:31:3d:3b:f1:c2:dd:ab:de:b1:4a: 00:a6:87:8a:ef:a4:59:dc:58:53:db:e8:13:55:da:d8:8c:7a: 47:57:db:16:09:58:fd:2a:0b:e4:a7:68:7b:3c:62:1c:46:8c: 17:75:20:66:44:54:6f:0d:ba:3d:ba:20:01:63:28:81:50:91: 67:57:e4:d3:75:af:3c:a6:8f:28:7b:68:7d:23:dd:03:27:57: 8c:ae:97:dd:0a:71:74:4b:c8:18:ba:fa:09:a0:20:7c:b3:a2: fe:12:83:9c:75:3e:2b:72:17:f8:99:85:38:3d:4e:a1:36:8f: 4e:6c:da:cb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYQtlCxzQ0heII+WlFURw72HMVmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNDAyMjgxNDIzNDZaFw0yNTAyMjYxNDI4NDZaMDMxMTAvBgNV BAMTKEYzOEFFRTZCRDRBRTU4MjFCOTFFOTVBODBBMjAyQkVDNUZCRDFCNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEGNldqXDLDmxF+yjKfagYYROu l2osT1WmemesjpJc39MC4vQo3OuOl8ZLwTEqAZI7JXrXyz7W+YsQ569Xz5Znju2U RtMCITje4f+B3mvaqoxrF68JdJLJaopzEZRq1l/sFrzvrikiw3KjmqTOw6142V0K c5YZhCid8gGTOJW0MTWWK8OO1awsYo2auA/LukKQ+zc3WprgQRynAYtXdW6zEDcA RXw3m6CWTMWCvLZ4nX5x1wNnNCQ3wDpFjDSpYwR2UOhaWXin55snpoF9r0ekz6D3 64Znp2HMqKdCNlHwGCmZhKDnBuEndkKBxB1jFqs8meHDVtYCSQXMVlffvEg3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU84rua9SuWCG5HpWoCiAr7F+9G3AwHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzAyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdCgAwDQYJKoZIhvcN AQELBQADggEBAKz4b5m+ld0de/LW+HdCTafD8zRKRUwebmG7t+loqC0MrMgIKvQS cxjDTxYOGr7eqGb1lRj1wfCzigqcl143+ZAmux+mC27qAhrvrOcBult7M38LRbvK v2+0Feqy2FodUovxDKIibC4ADoTMhbRs4Dq3OVGLebsJN25oEM1mUznG9T5Dorg3 MT078cLdq96xSgCmh4rvpFncWFPb6BNV2tiMekdX2xYJWP0qC+SnaHs8YhxGjBd1 IGZEVG8Nuj26IAFjKIFQkWdX5NN1rzymjyh7aH0j3QMnV4yul90KcXRLyBi6+gmg IHyzov4Sg5x1PityF/iZhTg9TqE2j05s2ss= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:19 2024 by rpki-client on console-fra.rpki-client.org