$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: i92NJiw6J2SOzFshQJDnLswa/trwAmKcRxlzAXPicVw= Subject key identifier: 2A:E3:21:FE:D8:BE:0E:8E:3C:7E:91:36:2C:B6:55:D8:88:56:88:47 Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 14F92FE6D103EE1A4623F48F1E669F6EBF4DC148 Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa Signing time: Fri 24 May 2024 16:30:14 +0000 ROA not before: Fri 24 May 2024 16:25:14 +0000 ROA not after: Fri 23 May 2025 16:30:14 +0000 asID: 152756 IP address blocks: 157.66.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f9:2f:e6:d1:03:ee:1a:46:23:f4:8f:1e:66:9f:6e:bf:4d:c1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: May 24 16:25:14 2024 GMT Not After : May 23 16:30:14 2025 GMT Subject: CN=2AE321FED8BE0E8E3C7E91362CB655D888568847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:e0:f6:c1:0d:f6:22:e9:95:e0:89:d7:f9: 9e:03:1d:55:bb:c8:a4:f9:2f:92:99:0f:bc:3d:eb: 69:3c:d5:fb:2f:b1:fc:ff:22:f6:4f:fb:40:54:0b: 1b:36:58:cf:7b:78:50:2f:23:fd:8c:8a:5f:58:6b: 8a:d7:b7:80:19:9e:43:e2:f9:df:04:46:db:54:1f: a8:1b:a9:cb:b9:7a:55:8f:ca:e8:38:cb:4f:d0:f0: 08:2a:aa:47:a1:88:43:9c:9e:51:6c:b3:1f:e4:da: c9:3f:3e:cb:da:23:3b:75:8a:55:53:8e:d5:90:61: 37:50:7f:ed:d2:bb:de:bd:c6:a7:24:42:26:d3:7a: 97:b4:bf:10:7c:f1:2d:38:74:ee:e2:53:ee:ef:98: e1:0c:f3:eb:f1:b1:d3:dd:ca:55:46:9a:da:c2:de: 3b:23:7f:02:02:4a:b1:8b:06:82:8f:00:36:8f:dd: 10:3f:3c:38:31:97:79:ca:cf:8e:9f:a9:8e:c7:74: 0e:a8:2b:74:fa:f8:35:06:4c:97:3f:56:5b:ff:35: 0e:52:a5:47:e3:1e:80:17:5c:b4:3b:83:ab:64:67: db:4e:2e:8d:75:92:28:e6:e2:f0:ec:2b:32:fc:2b: dc:4c:f1:79:9e:9a:98:e7:e1:98:c4:82:15:94:20: 55:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E3:21:FE:D8:BE:0E:8E:3C:7E:91:36:2C:B6:55:D8:88:56:88:47 X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/24 Signature Algorithm: sha256WithRSAEncryption 16:0c:b0:8f:05:da:79:6f:66:2d:12:c5:f3:d4:71:f1:92:5d: 41:9f:38:10:d2:45:ff:40:4a:9d:a1:3a:45:20:9c:c9:84:e2: 58:d5:47:fb:7d:09:28:60:70:b5:0b:c7:ea:40:89:70:e3:bf: fb:84:1c:3d:e5:0a:eb:ad:7a:50:b7:61:1a:7f:ea:94:41:4c: 1e:03:fc:9d:0e:53:83:48:e8:41:9c:b6:93:d1:98:8b:0e:6b: 78:9d:f5:6f:85:b4:49:5b:d7:fa:a1:26:bf:8a:d9:05:43:68: b2:0e:e8:a7:92:28:c4:f3:b0:a2:e6:7d:fd:68:42:49:fc:27: 2d:2c:fa:e9:47:fa:d7:ce:de:c7:00:d9:2d:df:33:10:29:01: 5d:e8:d8:92:17:02:85:06:d1:74:7f:21:8e:21:b3:33:94:6e: 43:85:8e:68:9f:7a:65:33:f6:c4:ec:ec:09:8b:02:f0:fd:64: c0:95:e1:f5:27:6c:82:91:be:9a:d7:93:94:6c:a2:d3:49:60: 72:22:cb:c3:d9:70:0f:3e:7a:2a:99:ad:0a:0b:e4:18:7d:5c: 1c:c2:4f:d1:03:cf:9e:18:9e:87:5a:05:99:93:03:9f:09:4b: 8d:37:75:11:f3:aa:2a:c7:9b:94:92:50:39:6d:60:ec:74:6f: d2:15:69:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFPkv5tED7hpGI/SPHmafbr9NwUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNDA1MjQxNjI1MTRaFw0yNTA1MjMxNjMwMTRaMDMxMTAvBgNV BAMTKDJBRTMyMUZFRDhCRTBFOEUzQzdFOTEzNjJDQjY1NUQ4ODg1Njg4NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0VuD2wQ32IumV4InX+Z4DHVW7 yKT5L5KZD7w962k81fsvsfz/IvZP+0BUCxs2WM97eFAvI/2Mil9Ya4rXt4AZnkPi +d8ERttUH6gbqcu5elWPyug4y0/Q8AgqqkehiEOcnlFssx/k2sk/PsvaIzt1ilVT jtWQYTdQf+3Su969xqckQibTepe0vxB88S04dO7iU+7vmOEM8+vxsdPdylVGmtrC 3jsjfwICSrGLBoKPADaP3RA/PDgxl3nKz46fqY7HdA6oK3T6+DUGTJc/Vlv/NQ5S pUfjHoAXXLQ7g6tkZ9tOLo11kijm4vDsKzL8K9xM8Xmempjn4ZjEghWUIFUFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKuMh/ti+Do48fpE2LLZV2IhWiEcwHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQAWDLCPBdp5b2YtEsXz1HHxkl1BnzgQ0kX/QEqdoTpFIJzJ hOJY1Uf7fQkoYHC1C8fqQIlw47/7hBw95QrrrXpQt2Eaf+qUQUweA/ydDlODSOhB nLaT0ZiLDmt4nfVvhbRJW9f6oSa/itkFQ2iyDuinkijE87Ci5n39aEJJ/CctLPrp R/rXzt7HANkt3zMQKQFd6NiSFwKFBtF0fyGOIbMzlG5DhY5on3plM/bE7OwJiwLw /WTAleH1J2yCkb6a15OUbKLTSWByIsvD2XAPPnoqma0KC+QYfVwcwk/RA8+eGJ6H WgWZkwOfCUuNN3UR86oqx5uUklA5bWDsdG/SFWnm -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org