$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa File: 3135372e31302e312e302f32342d3234203d3e20313532303739.roa (raw, json) Hash identifier: 8XiBdJyNiq4lnHmJG397fvq+Fc4UygVW1SkxEbPh8+4= Subject key identifier: F9:32:25:8E:DB:C5:79:F0:9D:F0:0D:BE:93:D0:85:17:18:70:DF:18 Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 031409594F3E3173D32B6D7F2C774B01A845BB1F Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa Signing time: Wed 28 Feb 2024 14:29:17 +0000 ROA not before: Wed 28 Feb 2024 14:24:17 +0000 ROA not after: Wed 26 Feb 2025 14:29:17 +0000 asID: 152079 IP address blocks: 157.10.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:14:09:59:4f:3e:31:73:d3:2b:6d:7f:2c:77:4b:01:a8:45:bb:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Feb 28 14:24:17 2024 GMT Not After : Feb 26 14:29:17 2025 GMT Subject: CN=F932258EDBC579F09DF00DBE93D085171870DF18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:39:8f:f6:db:97:b0:6c:0e:9b:da:97:07:07: c6:bf:a8:bd:6f:c3:7a:d9:8d:c2:44:9a:82:98:d1: 31:35:96:37:72:14:02:8d:c5:03:63:88:44:cb:dc: 33:85:1d:aa:25:1d:5a:1f:5b:e1:d7:03:ef:f9:68: 21:75:f7:05:cd:47:fd:5c:ab:a9:4c:a1:e3:28:d5: 83:73:c0:60:db:d6:1e:3d:d2:8c:45:ed:93:9e:84: 46:4a:62:a9:19:6e:4f:80:a5:8e:9a:73:32:3f:1a: 19:0d:dd:14:3c:2f:0b:74:aa:63:d2:27:32:5a:11: 22:4b:4c:d9:f1:21:60:d1:64:41:14:93:9a:21:07: af:34:23:08:39:f0:02:c3:ad:d2:39:c1:85:c6:05: 22:55:cf:48:2e:17:d0:36:3c:f3:0b:09:de:9c:e3: d4:38:5a:90:03:87:fd:8c:21:55:c0:33:0b:40:20: 10:6a:10:c5:4d:76:e7:81:32:d2:1d:25:19:2a:f4: 1a:0d:9d:bf:ee:e2:de:c1:19:8d:1b:bc:db:4e:d9: bc:7b:62:8c:4c:d5:9e:a3:85:ee:5d:5e:46:a7:74: 34:01:37:fc:01:79:82:80:fc:5f:93:d9:69:af:2b: 47:80:7a:eb:f3:0b:99:af:a6:c3:0b:7d:29:4d:c9: dc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:32:25:8E:DB:C5:79:F0:9D:F0:0D:BE:93:D0:85:17:18:70:DF:18 X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.1.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:33:66:5f:a8:63:d4:87:03:80:5b:c3:8b:a1:e6:c0:ab:fc: 45:b4:0c:f0:1b:92:79:1b:07:09:71:63:e9:d7:4d:cd:a7:9a: 27:ec:43:07:53:58:7f:7f:64:bf:a3:58:bb:58:59:be:4f:a0: cb:97:f3:c0:6b:01:2e:81:45:dd:5b:bd:b3:5b:c8:7e:d1:2a: 6a:2a:26:82:9e:ad:15:e3:67:35:2e:d5:d4:ca:44:b8:7f:9a: 79:af:e7:e0:26:e1:eb:1c:d4:0f:62:ec:17:61:c6:ae:09:5c: b9:7a:c6:b8:1c:6b:cc:6e:59:0a:2c:a5:13:78:ce:e7:65:83: bc:43:c2:f2:a8:8d:be:68:3d:6d:20:53:59:63:fd:3d:ae:d4: e3:ca:48:3d:d0:89:e3:c7:fe:60:16:84:57:4e:76:76:31:2e: 59:e9:e1:a5:80:05:07:11:81:94:e4:3e:17:1b:9f:c9:3b:eb: e8:5a:1f:b5:70:5e:37:3e:c9:11:de:fd:c8:aa:91:7b:9f:64: 1d:35:55:60:05:5f:57:bf:52:f0:10:f4:80:f9:fb:ee:a7:43: 6f:33:0f:2f:c5:d3:2a:22:90:b3:4b:2c:ff:98:c7:02:d9:86: 69:8f:18:07:bd:7e:df:5c:ed:fd:4c:6c:b8:54:e0:e1:de:76: d0:c6:8c:85 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAxQJWU8+MXPTK21/LHdLAahFux8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNDAyMjgxNDI0MTdaFw0yNTAyMjYxNDI5MTdaMDMxMTAvBgNV BAMTKEY5MzIyNThFREJDNTc5RjA5REYwMERCRTkzRDA4NTE3MTg3MERGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAOY/225ewbA6b2pcHB8a/qL1v w3rZjcJEmoKY0TE1ljdyFAKNxQNjiETL3DOFHaolHVofW+HXA+/5aCF19wXNR/1c q6lMoeMo1YNzwGDb1h490oxF7ZOehEZKYqkZbk+ApY6aczI/GhkN3RQ8Lwt0qmPS JzJaESJLTNnxIWDRZEEUk5ohB680Iwg58ALDrdI5wYXGBSJVz0guF9A2PPMLCd6c 49Q4WpADh/2MIVXAMwtAIBBqEMVNdueBMtIdJRkq9BoNnb/u4t7BGY0bvNtO2bx7 YoxM1Z6jhe5dXkandDQBN/wBeYKA/F+T2WmvK0eAeuvzC5mvpsMLfSlNydzxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+TIljtvFefCd8A2+k9CFFxhw3xgwHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCgEwDQYJKoZIhvcN AQELBQADggEBAH8zZl+oY9SHA4Bbw4uh5sCr/EW0DPAbknkbBwlxY+nXTc2nmifs QwdTWH9/ZL+jWLtYWb5PoMuX88BrAS6BRd1bvbNbyH7RKmoqJoKerRXjZzUu1dTK RLh/mnmv5+Am4esc1A9i7Bdhxq4JXLl6xrgca8xuWQospRN4zudlg7xDwvKojb5o PW0gU1lj/T2u1OPKSD3QiePH/mAWhFdOdnYxLlnp4aWABQcRgZTkPhcbn8k76+ha H7VwXjc+yRHe/ciqkXufZB01VWAFX1e/UvAQ9ID5++6nQ28zDy/F0yoikLNLLP+Y xwLZhmmPGAe9ft9c7f1MbLhU4OHedtDGjIU= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:19 2024 by rpki-client on console-fra.rpki-client.org