$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa File: 3135372e31302e302e302f32342d3234203d3e20313532303739.roa (raw, json) Hash identifier: NG/V7tZ6fxa7mQbEqxEmMmd57qX1tvAwfua5paMALyU= Subject key identifier: 84:46:F9:BC:38:F4:DD:44:7F:FC:29:A1:10:02:2E:DC:7A:37:35:8B Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 2C1D0B78560BAF85003C7F31EC08AB15FB48D5DC Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa Signing time: Wed 28 Feb 2024 14:29:04 +0000 ROA not before: Wed 28 Feb 2024 14:24:04 +0000 ROA not after: Wed 26 Feb 2025 14:29:04 +0000 asID: 152079 IP address blocks: 157.10.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:1d:0b:78:56:0b:af:85:00:3c:7f:31:ec:08:ab:15:fb:48:d5:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Feb 28 14:24:04 2024 GMT Not After : Feb 26 14:29:04 2025 GMT Subject: CN=8446F9BC38F4DD447FFC29A110022EDC7A37358B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:60:51:be:23:76:60:66:11:1d:62:ce:37:14: 0c:31:1e:76:86:e9:29:a2:33:d1:be:12:0c:6f:72: 23:40:c2:53:d1:ba:bc:5d:19:63:b3:38:84:44:ef: 49:e4:29:91:46:cd:d3:b3:9b:d1:30:15:6e:c3:ca: 21:4c:c9:8e:0c:10:46:8e:ec:52:31:8f:14:fa:c5: 22:6f:0c:1b:6e:65:da:da:26:f7:cd:e3:d9:88:21: 9e:44:f5:0b:13:50:31:76:5a:02:bb:b0:12:31:8e: 8a:1c:73:54:50:f5:a3:ec:d8:ea:59:03:92:03:d0: d6:32:c5:48:5a:73:61:32:45:bc:ad:d2:9e:91:af: e6:c0:9b:64:e2:de:e7:f9:3a:0e:9f:a7:ee:a2:3c: 2b:84:13:35:26:fe:e4:41:cb:23:cd:a0:4b:cd:3d: 56:a5:e2:d5:89:27:55:7b:69:5f:8c:91:a5:97:04: 0b:4b:c6:29:d8:b3:c5:e8:46:0f:8c:c1:d6:ee:75: 09:14:16:6e:b1:c8:da:39:49:cc:11:aa:b3:b9:ed: 7d:21:52:c9:9b:15:59:5f:52:bf:17:6b:4c:d2:9f: 9e:ab:71:de:67:d9:71:57:d6:55:5e:6c:b8:e9:4e: 53:d5:72:5d:a9:c7:40:db:15:67:3c:b8:9e:e3:a8: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:46:F9:BC:38:F4:DD:44:7F:FC:29:A1:10:02:2E:DC:7A:37:35:8B X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:60:8a:2e:8c:18:ef:8d:9d:d1:86:c7:06:09:e4:01:d4:8b: 1e:d9:79:b2:85:9c:e7:b9:65:27:09:3f:fa:7e:dc:da:b6:3c: 6e:cc:6c:bf:d3:e6:9e:50:6c:f7:88:b1:e3:f0:74:de:f2:c8: 2d:b6:cd:cc:a0:27:43:0d:97:23:45:6b:43:d8:4c:e7:db:b4: 39:e4:03:b2:2c:e6:8e:5a:37:02:51:1b:c3:89:34:94:59:65: e4:3f:eb:76:b2:80:23:9e:b4:9c:ff:10:60:55:11:61:d5:90: 1d:d4:a6:da:6f:6b:e6:c2:6e:e6:10:4e:95:83:2a:6f:29:3b: a3:3b:2e:9d:e6:fd:83:b4:65:b7:81:86:9b:0e:01:ed:a6:a2: 69:cc:02:c6:33:81:ba:f4:b7:31:4c:65:b0:6e:0f:e1:45:23: 54:e3:54:79:27:b1:cb:8b:18:6b:01:95:08:be:65:ca:53:45: fc:67:29:b6:6c:54:ea:d8:47:01:e9:f0:a3:09:07:b4:64:87: 59:f5:98:71:23:f5:ec:6d:87:59:a5:55:b8:43:83:fe:29:75: 3d:95:fd:a1:51:af:5e:5f:d1:aa:3d:d9:38:c5:bc:f8:4a:d2: e4:de:7d:cf:e4:e6:3d:61:96:17:b6:6e:bb:0a:18:b1:f9:dd: e0:cf:9d:2e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULB0LeFYLr4UAPH8x7AirFftI1dwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNDAyMjgxNDI0MDRaFw0yNTAyMjYxNDI5MDRaMDMxMTAvBgNV BAMTKDg0NDZGOUJDMzhGNERENDQ3RkZDMjlBMTEwMDIyRURDN0EzNzM1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqYFG+I3ZgZhEdYs43FAwxHnaG 6SmiM9G+EgxvciNAwlPRurxdGWOzOIRE70nkKZFGzdOzm9EwFW7DyiFMyY4MEEaO 7FIxjxT6xSJvDBtuZdraJvfN49mIIZ5E9QsTUDF2WgK7sBIxjoocc1RQ9aPs2OpZ A5ID0NYyxUhac2EyRbyt0p6Rr+bAm2Ti3uf5Og6fp+6iPCuEEzUm/uRByyPNoEvN PVal4tWJJ1V7aV+MkaWXBAtLxinYs8XoRg+MwdbudQkUFm6xyNo5ScwRqrO57X0h UsmbFVlfUr8Xa0zSn56rcd5n2XFX1lVebLjpTlPVcl2px0DbFWc8uJ7jqCK7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhEb5vDj03UR//CmhEAIu3Ho3NYswHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCgAwDQYJKoZIhvcN AQELBQADggEBAHxgii6MGO+NndGGxwYJ5AHUix7ZebKFnOe5ZScJP/p+3Nq2PG7M bL/T5p5QbPeIsePwdN7yyC22zcygJ0MNlyNFa0PYTOfbtDnkA7Is5o5aNwJRG8OJ NJRZZeQ/63aygCOetJz/EGBVEWHVkB3Uptpva+bCbuYQTpWDKm8pO6M7Lp3m/YO0 ZbeBhpsOAe2momnMAsYzgbr0tzFMZbBuD+FFI1TjVHknscuLGGsBlQi+ZcpTRfxn KbZsVOrYRwHp8KMJB7Rkh1n1mHEj9exth1mlVbhDg/4pdT2V/aFRr15f0ao92TjF vPhK0uTefc/k5j1hlhe2brsKGLH53eDPnS4= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:19 2024 by rpki-client on console-fra.rpki-client.org