$ rpki-client -vvf repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa File: 3135372e36362e342e302f32332d3233203d3e20313336383633.roa (raw, json) Hash identifier: bXioZO6x/8LROWzu8O4ERRj1VfVQN01+jdBzhXXeRPs= Subject key identifier: C0:C6:4D:7E:A0:1F:20:FE:AE:19:01:31:D2:11:E0:69:36:EA:86:76 Certificate issuer: /CN=676E12EDA912B67493E88316A428CFDBCAB51941 Certificate serial: 7227E7CFC52600F79C34C0024FE341746C2B3F30 Authority key identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa Signing time: Sat 01 Jun 2024 03:39:45 +0000 ROA not before: Sat 01 Jun 2024 03:34:45 +0000 ROA not after: Sat 31 May 2025 03:39:45 +0000 asID: 136863 IP address blocks: 157.66.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:27:e7:cf:c5:26:00:f7:9c:34:c0:02:4f:e3:41:74:6c:2b:3f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=676E12EDA912B67493E88316A428CFDBCAB51941 Validity Not Before: Jun 1 03:34:45 2024 GMT Not After : May 31 03:39:45 2025 GMT Subject: CN=C0C64D7EA01F20FEAE190131D211E06936EA8676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b9:a4:40:79:3f:92:a7:00:dc:88:94:1c:ca: c5:82:95:9a:21:b6:ab:f0:fa:2b:2c:3e:a8:d8:ff: fa:5a:a6:93:e8:16:7b:46:f9:50:cd:d8:53:a6:30: 9e:e6:91:b8:ea:28:f5:ad:e2:13:32:45:ed:ae:33: 6d:ab:f6:d9:a8:25:15:df:e6:f6:8b:4c:fe:06:bc: e9:72:35:fa:95:90:6d:be:4f:ea:66:51:1b:52:55: db:81:10:09:2b:d3:71:15:9c:09:ca:7e:db:65:6f: 51:65:3d:c0:62:af:b4:d7:c8:52:e1:5b:ca:fc:1b: 37:d8:90:d6:82:95:32:1e:a8:77:a4:3c:9c:1c:1c: ec:e9:e2:e5:68:a7:55:37:6d:14:32:2e:aa:65:7d: c7:85:4a:97:bc:13:e4:54:eb:17:33:33:7e:a8:63: a3:ea:a9:4c:ef:4a:43:0a:79:dc:1b:a2:eb:98:71: e6:26:49:e5:f1:af:be:34:09:b4:a5:a4:bf:4c:a1: f0:0e:ee:fe:40:60:b3:7e:36:c0:98:43:07:5d:1c: 8c:7e:4e:2e:65:ec:63:2a:42:79:b6:df:71:73:3b: 79:dc:f1:54:f6:03:5f:52:a5:50:10:3f:6e:d9:c4: 05:2b:18:1a:09:86:d0:52:89:5f:ba:52:b6:0c:c1: 9c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C6:4D:7E:A0:1F:20:FE:AE:19:01:31:D2:11:E0:69:36:EA:86:76 X509v3 Authority Key Identifier: keyid:67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:b2:66:45:ff:ef:4a:15:1e:4a:74:99:65:f4:f2:be:67:95: 60:9b:87:16:46:54:5e:38:fc:84:c1:c0:5d:4b:eb:ec:8d:96: 21:68:45:97:ed:4e:5c:e3:d5:e0:ac:ba:8b:82:4e:b9:d8:6a: 93:4c:93:f1:67:e5:15:ae:1e:d9:1d:22:06:63:0c:8e:b5:14: 3e:66:52:e1:fd:98:8b:ef:1f:d3:53:29:19:22:7c:4b:eb:4d: a6:0a:d5:77:a6:29:18:f1:cf:72:24:9c:f2:2c:51:ee:e6:85: f4:f5:d3:b1:d7:09:3d:d7:f9:2f:4c:7c:62:7b:6f:29:b4:32: 49:c4:32:e3:84:a0:bd:93:3a:71:86:32:cf:76:39:57:55:f0: 52:49:c2:66:ae:e5:a8:9e:01:87:4c:97:07:6a:82:ce:d3:9a: 8b:7d:4b:c1:4d:d4:d0:24:3c:a5:55:17:cf:65:bb:14:e1:05: 18:0f:1c:0f:d6:63:08:8f:42:d8:72:d5:f0:29:a6:c5:16:c1: 59:f7:0a:c6:f7:a9:4a:13:e9:9e:85:e1:fa:5d:e6:e0:9b:9d: d8:fc:ba:60:6a:2f:0a:49:33:f3:2a:90:21:11:62:5f:6c:54: 11:1c:f6:29:cf:70:be:38:38:65:f8:21:85:a1:33:b4:74:27: 66:34:5b:9d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcifnz8UmAPecNMACT+NBdGwrPzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJD QUI1MTk0MTAeFw0yNDA2MDEwMzM0NDVaFw0yNTA1MzEwMzM5NDVaMDMxMTAvBgNV BAMTKEMwQzY0RDdFQTAxRjIwRkVBRTE5MDEzMUQyMTFFMDY5MzZFQTg2NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3uaRAeT+SpwDciJQcysWClZoh tqvw+issPqjY//pappPoFntG+VDN2FOmMJ7mkbjqKPWt4hMyRe2uM22r9tmoJRXf 5vaLTP4GvOlyNfqVkG2+T+pmURtSVduBEAkr03EVnAnKfttlb1FlPcBir7TXyFLh W8r8GzfYkNaClTIeqHekPJwcHOzp4uVop1U3bRQyLqplfceFSpe8E+RU6xczM36o Y6PqqUzvSkMKedwbouuYceYmSeXxr740CbSlpL9MofAO7v5AYLN+NsCYQwddHIx+ Ti5l7GMqQnm233FzO3nc8VT2A19SpVAQP27ZxAUrGBoJhtBSiV+6UrYMwZz3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUwMZNfqAfIP6uGQEx0hHgaTbqhnYwHwYDVR0j BBgwFoAUZ24S7akStnST6IMWpCjP28q1GUEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjY0YmZiMi1kNDFkLTQzMTctYjkyZC1iYjk0NDFmZDBkY2YvMC82NzZFMTJFREE5 MTJCNjc0OTNFODgzMTZBNDI4Q0ZEQkNBQjUxOTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJDQUI1 MTk0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzQyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgQwDQYJKoZIhvcN AQELBQADggEBAC6yZkX/70oVHkp0mWX08r5nlWCbhxZGVF44/ITBwF1L6+yNliFo RZftTlzj1eCsuouCTrnYapNMk/Fn5RWuHtkdIgZjDI61FD5mUuH9mIvvH9NTKRki fEvrTaYK1XemKRjxz3IknPIsUe7mhfT107HXCT3X+S9MfGJ7bym0MknEMuOEoL2T OnGGMs92OVdV8FJJwmau5aieAYdMlwdqgs7Tmot9S8FN1NAkPKVVF89luxThBRgP HA/WYwiPQthy1fAppsUWwVn3Csb3qUoT6Z6F4fpd5uCbndj8umBqLwpJM/MqkCER Yl9sVBEc9inPcL44OGX4IYWhM7R0J2Y0W50= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:09 2024 by rpki-client on console-ams.rpki-client.org