$ rpki-client -vvf repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/3135372e36362e3234382e302f32332d3234203d3e20313532373937.roa File: 3135372e36362e3234382e302f32332d3234203d3e20313532373937.roa (raw, json) Hash identifier: +7YR+QuAeVk3+sgZlcgzGSfoLo31AJ2VMqC4Rm6spP4= Subject key identifier: F5:ED:37:98:A3:27:EF:B5:C5:5E:DA:F5:EE:98:B5:F2:09:53:4F:96 Certificate issuer: /CN=A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44 Certificate serial: 3A4E48F9A720282FAE8BD0326C5DEAA4AD2BB01C Authority key identifier: A4:B6:31:C8:CF:E0:EE:72:AC:D5:F2:08:FC:12:39:06:4F:6C:DE:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/3135372e36362e3234382e302f32332d3234203d3e20313532373937.roa Signing time: Sun 23 Jun 2024 09:26:18 +0000 ROA not before: Sun 23 Jun 2024 09:21:18 +0000 ROA not after: Sun 22 Jun 2025 09:26:18 +0000 asID: 152797 IP address blocks: 157.66.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.crl rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4e:48:f9:a7:20:28:2f:ae:8b:d0:32:6c:5d:ea:a4:ad:2b:b0:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44 Validity Not Before: Jun 23 09:21:18 2024 GMT Not After : Jun 22 09:26:18 2025 GMT Subject: CN=F5ED3798A327EFB5C55EDAF5EE98B5F209534F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9e:95:30:f7:89:cb:46:7b:1e:3d:31:b4:bb: c2:8b:2d:1a:3b:21:6f:09:f4:5e:e2:a5:6b:e7:09: 29:36:7f:5a:5b:43:89:3c:3d:1a:c7:9e:63:cc:89: b9:f5:db:4b:f6:a6:20:b1:cd:e7:4a:ae:e3:40:02: 71:a1:b7:8c:20:6e:00:b6:d4:01:e3:ad:8d:37:ac: 39:b7:98:ec:87:71:05:46:02:7c:f1:f8:3c:0b:91: 84:ef:e5:00:d4:d0:2e:2e:32:d0:d4:b4:2c:83:b9: 80:2a:89:c8:26:5c:f3:15:f9:33:19:7a:33:bc:8f: fb:14:b5:31:04:fa:16:84:f3:c9:1f:b3:ae:a0:91: f8:52:fe:31:5c:c5:ff:c8:64:7c:b7:05:24:8a:c0: ab:c3:dc:97:f3:f9:89:2e:4c:a4:96:47:6b:fd:85: 6b:c3:e0:aa:f7:00:c4:03:f7:a9:04:33:f6:5f:c0: e7:4c:fa:aa:e0:db:68:20:08:b7:d4:1f:22:9a:13: 17:3b:90:8b:57:05:6e:8e:21:ea:2d:80:2a:5a:e4: a8:b2:2f:ed:22:36:c1:62:fe:87:01:d8:b3:74:76: f4:7a:73:26:d9:24:ee:19:c1:21:6b:27:5f:ef:65: dc:b3:23:a0:ba:f2:e0:56:f7:76:16:d2:c9:91:84: f6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:ED:37:98:A3:27:EF:B5:C5:5E:DA:F5:EE:98:B5:F2:09:53:4F:96 X509v3 Authority Key Identifier: keyid:A4:B6:31:C8:CF:E0:EE:72:AC:D5:F2:08:FC:12:39:06:4F:6C:DE:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/3135372e36362e3234382e302f32332d3234203d3e20313532373937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.248.0/23 Signature Algorithm: sha256WithRSAEncryption 41:ad:4d:e2:08:65:72:56:33:5f:f5:39:a6:01:ea:48:57:ed: be:46:db:02:11:73:95:53:0a:2f:d1:e0:2f:0e:29:4e:7c:19: a7:a7:b6:d5:23:e2:7e:41:ed:d5:c4:55:cf:44:63:ab:0b:75: 9f:d0:47:eb:12:d7:b7:61:7e:ac:4b:24:d5:39:26:c6:8f:22: b5:34:48:8c:a5:55:97:8f:ef:12:a1:70:4d:9f:24:35:c6:45: 57:f3:e2:80:0a:d5:07:93:c6:34:39:e5:d3:9e:fc:a1:11:ed: 3b:2c:f9:99:69:fc:18:d0:bf:34:fb:f8:4c:66:9e:5f:ad:5c: c0:cb:5d:46:04:66:90:6f:b7:4f:a6:02:29:5e:8b:ab:0a:d4: 73:a3:8e:05:2f:02:f9:8c:06:5d:ca:ed:9a:a7:99:76:f5:39: ef:e0:c0:bb:b0:cd:72:da:ad:80:c4:d4:54:3c:d6:75:3c:3e: da:24:ef:cb:8a:b4:c3:4d:8e:b0:1e:8d:9a:a6:48:fb:95:78: b4:1d:df:c6:9b:cd:ba:ef:12:57:f2:08:27:0e:de:6f:04:d0: 85:58:b3:d5:0a:4e:49:4d:43:ab:5e:fe:1b:82:40:57:5c:6a: 01:38:b0:71:3e:1e:6a:f8:64:b6:35:2f:3b:b5:42:b3:f7:05: 09:c7:6f:c9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOk5I+acgKC+ui9AybF3qpK0rsBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRCNjMxQzhDRkUwRUU3MkFDRDVGMjA4RkMxMjM5MDY0 RjZDREU0NDAeFw0yNDA2MjMwOTIxMThaFw0yNTA2MjIwOTI2MThaMDMxMTAvBgNV BAMTKEY1RUQzNzk4QTMyN0VGQjVDNTVFREFGNUVFOThCNUYyMDk1MzRGOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnpUw94nLRnsePTG0u8KLLRo7 IW8J9F7ipWvnCSk2f1pbQ4k8PRrHnmPMibn120v2piCxzedKruNAAnGht4wgbgC2 1AHjrY03rDm3mOyHcQVGAnzx+DwLkYTv5QDU0C4uMtDUtCyDuYAqicgmXPMV+TMZ ejO8j/sUtTEE+haE88kfs66gkfhS/jFcxf/IZHy3BSSKwKvD3Jfz+YkuTKSWR2v9 hWvD4Kr3AMQD96kEM/ZfwOdM+qrg22ggCLfUHyKaExc7kItXBW6OIeotgCpa5Kiy L+0iNsFi/ocB2LN0dvR6cybZJO4ZwSFrJ1/vZdyzI6C68uBW93YW0smRhPbFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9e03mKMn77XFXtr17pi18glTT5YwHwYDVR0j BBgwFoAUpLYxyM/g7nKs1fII/BI5Bk9s3kQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzk5MWY3YS0wYTcxLTRmMGQtOTMzZi1lY2Y4MTM1MzAyNzQvMC9BNEI2MzFDOENG RTBFRTcyQUNENUYyMDhGQzEyMzkwNjRGNkNERTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTRCNjMxQzhDRkUwRUU3MkFDRDVGMjA4RkMxMjM5MDY0RjZD REU0NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzOTkxZjdhLTBhNzEtNGYwZC05 MzNmLWVjZjgxMzUzMDI3NC8wLzMxMzUzNzJlMzYzNjJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUL4MA0GCSqG SIb3DQEBCwUAA4IBAQBBrU3iCGVyVjNf9TmmAepIV+2+RtsCEXOVUwov0eAvDilO fBmnp7bVI+J+Qe3VxFXPRGOrC3Wf0EfrEte3YX6sSyTVOSbGjyK1NEiMpVWXj+8S oXBNnyQ1xkVX8+KACtUHk8Y0OeXTnvyhEe07LPmZafwY0L80+/hMZp5frVzAy11G BGaQb7dPpgIpXourCtRzo44FLwL5jAZdyu2ap5l29Tnv4MC7sM1y2q2AxNRUPNZ1 PD7aJO/LirTDTY6wHo2apkj7lXi0Hd/Gm8267xJX8ggnDt5vBNCFWLPVCk5JTUOr Xv4bgkBXXGoBOLBxPh5q+GS2NS87tUKz9wUJx2/J -----END CERTIFICATE-----Generated at Sat Nov 23 16:20:59 2024 by rpki-client on console-ams.rpki-client.org