$ rpki-client -vvf repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa File: 3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa (raw, json) Hash identifier: 8FPhxDphugXh+NqSEJNKiuwL/Ju34oBivfOS3hLv1ao= Subject key identifier: 9E:7B:0C:0D:E7:1C:BA:51:DD:78:E0:C0:FD:C0:63:C7:D9:2C:53:D9 Certificate issuer: /CN=AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3 Certificate serial: 27D043B310DFA17FC596D861ADDF1E2AC86AF7B1 Authority key identifier: AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa Signing time: Fri 05 Apr 2024 14:56:38 +0000 ROA not before: Fri 05 Apr 2024 14:51:38 +0000 ROA not after: Fri 04 Apr 2025 14:56:38 +0000 asID: 152349 IP address blocks: 157.10.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.crl rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:d0:43:b3:10:df:a1:7f:c5:96:d8:61:ad:df:1e:2a:c8:6a:f7:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3 Validity Not Before: Apr 5 14:51:38 2024 GMT Not After : Apr 4 14:56:38 2025 GMT Subject: CN=9E7B0C0DE71CBA51DD78E0C0FDC063C7D92C53D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:07:64:88:99:22:32:85:8a:49:c8:58:a7:65: 1a:51:14:1a:4f:93:f2:08:ad:f8:57:7a:f9:e2:1d: fb:cb:80:73:2d:ff:dc:db:3c:d7:45:45:32:9c:8c: 3c:9c:c2:5c:36:80:04:1a:66:2a:15:4a:57:e0:00: bb:c7:ab:73:36:1e:9c:d3:63:db:1e:8e:57:34:16: 9b:66:d1:6f:2b:00:6a:4e:a5:c5:5b:0f:a2:3b:e3: 22:ef:d0:7d:c4:b2:6b:58:e9:0b:98:2d:26:24:5d: ea:5e:c3:47:f9:9d:33:31:c7:94:7c:2f:e7:8e:d9: 52:b5:9c:60:0c:00:17:0c:16:53:37:6d:b6:c7:d5: 98:a1:ae:5d:34:27:03:4e:cd:81:e3:31:89:6a:0a: ab:7c:a7:2f:01:0a:94:8d:91:a8:60:73:58:58:b2: 6d:79:be:4f:cf:9e:a1:ca:43:3a:6a:bb:ae:f7:4e: bd:84:5c:32:c7:d0:b6:65:67:d1:26:87:2e:b3:08: a2:00:29:3c:a8:4b:26:9f:47:d2:d4:5d:a8:9d:a0: 18:89:eb:f2:29:89:93:b2:aa:08:56:b1:a6:1a:cf: ec:9e:69:91:14:84:56:c3:8e:73:46:d8:35:02:03: 0a:0a:8e:ad:15:71:e5:c6:a9:8f:15:d4:cd:b4:86: 04:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7B:0C:0D:E7:1C:BA:51:DD:78:E0:C0:FD:C0:63:C7:D9:2C:53:D9 X509v3 Authority Key Identifier: keyid:AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.181.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:fb:db:ae:38:e9:7a:9b:53:7c:50:22:e5:08:5b:df:0b:db: 9e:d0:43:85:1c:87:83:be:3b:c0:d0:af:f1:85:83:4e:51:21: ee:38:27:be:2c:0a:07:98:51:ae:c6:26:9a:10:16:5e:0c:7c: 59:a3:78:01:df:83:9f:f5:f7:59:20:45:c4:1c:2b:c8:e4:07: 41:31:e5:53:17:70:ee:ae:c8:e4:76:cd:aa:e6:38:53:80:a4: 0d:0e:05:49:88:f9:d0:59:4e:10:6a:06:7b:f5:c0:52:e0:7c: 6d:35:50:27:b5:5b:4d:1b:bd:df:17:91:1c:6f:b7:52:ce:b2: 01:f8:49:05:83:4e:a5:fa:57:34:c3:4a:f7:2e:0b:c1:8f:9c: 16:75:0a:a3:f0:c4:68:a7:d8:21:ed:5d:ec:aa:fe:e1:b2:a1: c2:f9:ed:a4:78:ea:75:69:b1:6d:99:24:0b:bb:21:a9:0d:73: 95:72:ed:58:41:93:55:60:c3:17:c8:d1:cc:6f:31:12:0b:47: 29:fe:af:c3:79:2b:a9:48:db:dc:60:2e:87:e2:e8:73:b7:22: 8f:1c:67:cf:f6:6f:e6:a4:0b:2f:01:a5:11:ea:c0:35:2c:11: c7:58:70:95:f6:a5:c7:20:69:4b:f3:d9:71:d9:26:37:1e:ca: be:56:c4:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ9BDsxDfoX/Flthhrd8eKshq97EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZBN0FFM0Q3OTBBMUYwQzkxNEI4Mzk5RTQ2OTVGNEQ2 MzQyQjRDMzAeFw0yNDA0MDUxNDUxMzhaFw0yNTA0MDQxNDU2MzhaMDMxMTAvBgNV BAMTKDlFN0IwQzBERTcxQ0JBNTFERDc4RTBDMEZEQzA2M0M3RDkyQzUzRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8B2SImSIyhYpJyFinZRpRFBpP k/IIrfhXevniHfvLgHMt/9zbPNdFRTKcjDycwlw2gAQaZioVSlfgALvHq3M2HpzT Y9sejlc0Fptm0W8rAGpOpcVbD6I74yLv0H3EsmtY6QuYLSYkXepew0f5nTMxx5R8 L+eO2VK1nGAMABcMFlM3bbbH1Zihrl00JwNOzYHjMYlqCqt8py8BCpSNkahgc1hY sm15vk/PnqHKQzpqu673Tr2EXDLH0LZlZ9Emhy6zCKIAKTyoSyafR9LUXaidoBiJ 6/IpiZOyqghWsaYaz+yeaZEUhFbDjnNG2DUCAwoKjq0VceXGqY8V1M20hgTfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnnsMDecculHdeODA/cBjx9ksU9kwHwYDVR0j BBgwFoAUr6euPXkKHwyRS4OZ5GlfTWNCtMMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTBkMDI2NS0yY2MxLTQ2M2QtOTQ4Yi1jZGVkMTNhMjAyOTUvMC9BRkE3QUUzRDc5 MEExRjBDOTE0QjgzOTlFNDY5NUY0RDYzNDJCNEMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUZBN0FFM0Q3OTBBMUYwQzkxNEI4Mzk5RTQ2OTVGNEQ2MzQy QjRDMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5MGQwMjY1LTJjYzEtNDYzZC05 NDhiLWNkZWQxM2EyMDI5NS8wLzMxMzUzNzJlMzEzMDJlMzEzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq1MA0GCSqG SIb3DQEBCwUAA4IBAQAf+9uuOOl6m1N8UCLlCFvfC9ue0EOFHIeDvjvA0K/xhYNO USHuOCe+LAoHmFGuxiaaEBZeDHxZo3gB34Of9fdZIEXEHCvI5AdBMeVTF3Dursjk ds2q5jhTgKQNDgVJiPnQWU4QagZ79cBS4HxtNVAntVtNG73fF5Ecb7dSzrIB+EkF g06l+lc0w0r3LgvBj5wWdQqj8MRop9gh7V3sqv7hsqHC+e2keOp1abFtmSQLuyGp DXOVcu1YQZNVYMMXyNHMbzESC0cp/q/DeSupSNvcYC6H4uhztyKPHGfP9m/mpAsv AaUR6sA1LBHHWHCV9qXHIGlL89lx2SY3Hsq+VsRK -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:19 2024 by rpki-client on console-ams.rpki-client.org