$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa File: 3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: 2Xzrd99gfWjLyXPyVFPR6/hDG8K/iUOh9y8qCTgaWaM= Subject key identifier: 42:CB:DD:9B:BA:FC:A7:E7:0F:A6:D7:45:A2:78:6A:49:95:82:CB:28 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 7DF0A0F73ABD7A785C958509EA1074E0F65A0F88 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:04 +0000 ROA not before: Mon 01 Jul 2024 00:59:04 +0000 ROA not after: Mon 30 Jun 2025 01:04:04 +0000 asID: 55699 IP address blocks: 150.107.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f0:a0:f7:3a:bd:7a:78:5c:95:85:09:ea:10:74:e0:f6:5a:0f:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:04 2024 GMT Not After : Jun 30 01:04:04 2025 GMT Subject: CN=42CBDD9BBAFCA7E70FA6D745A2786A499582CB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:e8:9c:84:58:76:24:81:84:49:95:fb:41: 58:ac:31:34:06:68:d2:84:6f:55:62:a2:da:c0:5c: 3c:01:59:d6:d5:b7:70:4a:ec:da:b4:ad:d5:46:fa: 82:f2:a5:ae:3e:61:f3:4c:07:fc:3f:cf:91:33:d4: 31:28:82:19:63:1f:06:b7:b1:40:c2:55:5b:3f:2a: ff:93:82:04:df:80:56:be:1b:50:d2:97:3e:3e:a6: 54:80:68:8d:14:7e:42:99:ca:7b:29:1b:7e:13:6c: 74:cf:4c:33:03:2f:d8:5f:76:73:17:62:3b:82:7f: c2:44:c3:49:d8:6e:44:8d:ad:a6:96:f0:47:e6:b1: 76:59:62:fe:ed:67:1b:99:22:3a:1f:27:57:75:49: f3:d5:5c:bd:35:14:dc:aa:57:f9:73:ec:77:a7:51: 80:88:a0:76:f2:62:77:fc:cd:4c:07:54:68:a2:53: ff:f0:22:ed:3e:75:3c:50:a2:00:a0:df:c6:b4:dd: 90:cc:c9:9d:c7:0a:ab:ac:4a:9f:c3:24:2d:59:bc: b9:10:c8:83:1f:6a:5b:6f:7f:90:00:42:47:12:88: e7:7d:d2:c7:32:9f:8a:15:33:d0:a4:bf:e3:09:55: 98:37:7e:e8:ce:40:e4:a2:8f:24:dd:6c:fa:8e:58: 19:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CB:DD:9B:BA:FC:A7:E7:0F:A6:D7:45:A2:78:6A:49:95:82:CB:28 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.244.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:03:c3:23:2c:a4:1f:03:26:7d:46:4c:d3:83:8b:06:dc:c7: d4:4e:26:8b:ca:5d:3e:14:6e:7d:0b:cd:5e:2c:da:18:bb:ee: ca:06:db:82:01:80:fe:23:36:b6:9e:e8:83:37:81:1b:36:d8: fc:38:a5:ca:76:15:26:6c:42:4a:c9:e9:bf:13:c4:f8:d0:ff: 18:fb:fe:9d:cb:e2:3e:d5:6c:f4:6d:fb:d0:c8:0f:db:94:25: 52:0e:66:54:6f:39:fb:0a:51:cf:ee:aa:5c:0b:36:0c:95:3a: dd:6a:cb:13:8b:8c:fd:ba:f2:eb:db:50:ec:01:73:17:b2:7f: 4f:9b:95:2a:da:36:e5:e6:76:2f:e3:84:ae:0e:d9:b3:19:72: 4d:39:9e:34:71:e6:8d:f4:86:1d:fb:b4:9d:e2:85:77:f7:75: f6:54:9d:5c:a5:91:93:f6:13:a6:8e:93:c4:9b:ff:16:23:58: fa:97:d4:8d:bd:2f:ae:d3:64:88:7c:84:40:00:fd:b3:89:81: f4:7a:f2:f0:5b:ac:fa:36:e4:94:2e:b6:ad:b3:ab:bf:6d:a9: 6e:f6:75:20:7e:11:a5:fc:42:b8:24:77:cd:42:69:1b:3a:20: fa:b2:e3:00:8c:6f:d8:a0:e6:1f:b1:b0:73:a4:5d:03:da:91: 92:0a:98:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUffCg9zq9enhclYUJ6hB04PZaD4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDRaFw0yNTA2MzAwMTA0MDRaMDMxMTAvBgNV BAMTKDQyQ0JERDlCQkFGQ0E3RTcwRkE2RDc0NUEyNzg2QTQ5OTU4MkNCMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UeichFh2JIGESZX7QVisMTQG aNKEb1ViotrAXDwBWdbVt3BK7Nq0rdVG+oLypa4+YfNMB/w/z5Ez1DEoghljHwa3 sUDCVVs/Kv+TggTfgFa+G1DSlz4+plSAaI0UfkKZynspG34TbHTPTDMDL9hfdnMX YjuCf8JEw0nYbkSNraaW8EfmsXZZYv7tZxuZIjofJ1d1SfPVXL01FNyqV/lz7Hen UYCIoHbyYnf8zUwHVGiiU//wIu0+dTxQogCg38a03ZDMyZ3HCqusSp/DJC1ZvLkQ yIMfaltvf5AAQkcSiOd90scyn4oVM9Ckv+MJVZg3fujOQOSijyTdbPqOWBmTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQsvdm7r8p+cPptdFonhqSZWCyygwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzUzMDJlMzEzMDM3MmUzMjM0MzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClmv0MA0GCSqG SIb3DQEBCwUAA4IBAQBfA8MjLKQfAyZ9RkzTg4sG3MfUTiaLyl0+FG59C81eLNoY u+7KBtuCAYD+Iza2nuiDN4EbNtj8OKXKdhUmbEJKyem/E8T40P8Y+/6dy+I+1Wz0 bfvQyA/blCVSDmZUbzn7ClHP7qpcCzYMlTrdassTi4z9uvLr21DsAXMXsn9Pm5Uq 2jbl5nYv44SuDtmzGXJNOZ40ceaN9IYd+7Sd4oV393X2VJ1cpZGT9hOmjpPEm/8W I1j6l9SNvS+u02SIfIRAAP2ziYH0evLwW6z6NuSULrats6u/balu9nUgfhGl/EK4 JHfNQmkbOiD6suMAjG/YoOYfsbBzpF0D2pGSCphz -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org