$ rpki-client -vvf repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa File: 3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa (raw, json) Hash identifier: 4avm3eGfo7pdZ4wCw97CSHHOC8jKriOntJd1LBlXxkc= Subject key identifier: 86:B0:DD:71:5C:9B:93:F7:6B:DF:FA:CC:2A:4A:F2:F1:B2:8A:61:7C Certificate issuer: /CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Certificate serial: 606D5649373B6BA4AAFD3F09B766A7ED90061852 Authority key identifier: 73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa Signing time: Fri 19 Jul 2024 09:23:11 +0000 ROA not before: Fri 19 Jul 2024 09:18:11 +0000 ROA not after: Fri 18 Jul 2025 09:23:11 +0000 asID: 152777 IP address blocks: 157.66.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:6d:56:49:37:3b:6b:a4:aa:fd:3f:09:b7:66:a7:ed:90:06:18:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Validity Not Before: Jul 19 09:18:11 2024 GMT Not After : Jul 18 09:23:11 2025 GMT Subject: CN=86B0DD715C9B93F76BDFFACC2A4AF2F1B28A617C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5c:ef:57:74:0b:9d:a4:5c:bc:99:43:fc:77: ac:51:23:eb:60:64:20:bf:e3:d3:76:73:e0:26:eb: 4a:7c:71:5b:4c:71:97:b9:7f:86:c7:b6:2d:8b:ef: d5:d5:93:55:5c:e4:d0:2d:ae:21:c5:eb:c0:ed:18: b0:d0:b9:9c:47:be:fa:cf:5b:b5:1e:7f:6e:dc:ac: 0b:d0:38:10:4f:db:59:99:78:99:dc:9b:2c:09:e3: 70:af:56:dc:80:a4:19:b9:a7:8a:c4:47:32:6b:64: b1:6e:f5:96:4c:25:e5:0e:79:6a:bb:cb:54:9f:22: 1c:9e:44:d7:08:fb:b9:5c:06:94:b0:22:2e:32:6b: 6e:4d:4b:9a:b9:a6:5b:8d:e1:de:c9:c8:9b:42:67: 69:16:11:f8:86:24:dd:b8:9b:cc:d0:a5:3c:38:94: 69:89:9d:ae:88:6a:69:7a:f3:bf:6d:03:f9:51:28: 15:1d:b1:37:f2:4f:49:01:e5:05:48:ba:63:ef:31: e3:29:d6:47:ae:3f:d1:1e:82:0c:1c:3e:89:3f:53: cd:42:5b:ef:f3:a1:bb:d3:fe:3b:15:7c:e3:8f:7c: 72:d5:a1:97:37:ab:54:26:9a:6b:64:c8:2a:53:e6: 87:19:90:56:81:ee:ff:51:5c:ed:25:6c:64:a8:20: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B0:DD:71:5C:9B:93:F7:6B:DF:FA:CC:2A:4A:F2:F1:B2:8A:61:7C X509v3 Authority Key Identifier: keyid:73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.171.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:ae:2d:7a:de:ac:56:5b:3d:cd:26:f2:bc:e4:41:e5:49:76: 81:36:08:a2:35:c0:7c:7c:61:22:a3:e0:2c:69:c8:39:6c:1b: 2d:dc:b9:df:73:de:09:07:3d:b6:da:90:69:ad:54:6c:68:41: 64:bb:00:b1:46:89:26:28:bc:83:18:87:b2:76:42:43:ab:71: 17:aa:66:35:45:a3:d9:e4:74:70:9b:4e:92:2c:f8:c7:f9:87: 47:90:b1:26:ec:98:e3:5e:7f:80:55:a2:f8:e3:4b:d9:e9:5c: 1f:bf:55:e5:bb:c5:5b:48:d8:17:88:de:f4:33:48:d3:04:00: bd:c2:e2:a5:ed:9c:09:32:a5:1a:a4:dc:ba:8d:a5:72:b1:1d: 82:76:06:8d:db:7e:c0:b9:55:ed:12:b8:93:40:19:fc:d5:8d: 0c:df:fc:f7:b8:e7:d8:b2:6e:b5:d4:45:39:24:c1:e5:af:9b: 69:cd:53:ff:57:1c:85:90:15:87:8c:53:f9:c9:2c:df:fe:16: ec:cf:43:83:1f:d3:a4:28:3e:53:fc:4c:6e:8d:05:31:bc:08: 9d:60:50:f0:76:b8:eb:d3:22:77:0e:01:76:16:dd:0a:8f:5c: 52:49:2d:0f:bd:49:99:34:d7:d8:bc:1f:7e:3e:18:1c:33:77: 44:c1:68:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYG1WSTc7a6Sq/T8Jt2an7ZAGGFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4 N0UxOUFCNjAeFw0yNDA3MTkwOTE4MTFaFw0yNTA3MTgwOTIzMTFaMDMxMTAvBgNV BAMTKDg2QjBERDcxNUM5QjkzRjc2QkRGRkFDQzJBNEFGMkYxQjI4QTYxN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdXO9XdAudpFy8mUP8d6xRI+tg ZCC/49N2c+Am60p8cVtMcZe5f4bHti2L79XVk1Vc5NAtriHF68DtGLDQuZxHvvrP W7Uef27crAvQOBBP21mZeJncmywJ43CvVtyApBm5p4rERzJrZLFu9ZZMJeUOeWq7 y1SfIhyeRNcI+7lcBpSwIi4ya25NS5q5pluN4d7JyJtCZ2kWEfiGJN24m8zQpTw4 lGmJna6Iaml6879tA/lRKBUdsTfyT0kB5QVIumPvMeMp1keuP9EeggwcPok/U81C W+/zobvT/jsVfOOPfHLVoZc3q1QmmmtkyCpT5ocZkFaB7v9RXO0lbGSoIHE1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhrDdcVybk/dr3/rMKkry8bKKYXwwHwYDVR0j BBgwFoAUc6+UXv9eqdHv3CYX+kNDDofhmrYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTQ4MTYwNi1kNWZkLTQxOTYtYWJjZC01OGU2Yzc2MjQzYzUvMC83M0FGOTQ1RUZG NUVBOUQxRUZEQzI2MTdGQTQzNDMwRTg3RTE5QUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4N0Ux OUFCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NDgxNjA2LWQ1ZmQtNDE5Ni1h YmNkLTU4ZTZjNzYyNDNjNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKrMA0GCSqG SIb3DQEBCwUAA4IBAQANri163qxWWz3NJvK85EHlSXaBNgiiNcB8fGEio+Asacg5 bBst3Lnfc94JBz222pBprVRsaEFkuwCxRokmKLyDGIeydkJDq3EXqmY1RaPZ5HRw m06SLPjH+YdHkLEm7JjjXn+AVaL440vZ6Vwfv1Xlu8VbSNgXiN70M0jTBAC9wuKl 7ZwJMqUapNy6jaVysR2CdgaN237AuVXtEriTQBn81Y0M3/z3uOfYsm611EU5JMHl r5tpzVP/VxyFkBWHjFP5ySzf/hbsz0ODH9OkKD5T/ExujQUxvAidYFDwdrjr0yJ3 DgF2Ft0Kj1xSSS0PvUmZNNfYvB9+PhgcM3dEwWgD -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org