$ rpki-client -vvf repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/3135372e36362e392e302f32342d3234203d3e20313532373436.roa File: 3135372e36362e392e302f32342d3234203d3e20313532373436.roa (raw, json) Hash identifier: GDLEqINGnoic22nc+5ztQM6jlgjc82PFYbuVUxVheFs= Subject key identifier: C2:0B:E2:FB:A5:77:F9:99:28:6C:52:31:81:BE:C5:3D:D1:F1:22:31 Certificate issuer: /CN=F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD Certificate serial: 5CD92F49329B39A0F3B5F5F7DF98D975BE326B20 Authority key identifier: F9:93:0E:30:8D:30:B3:E1:5C:FF:F7:EB:0D:34:37:A0:B7:EC:E7:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/3135372e36362e392e302f32342d3234203d3e20313532373436.roa Signing time: Thu 30 May 2024 09:09:54 +0000 ROA not before: Thu 30 May 2024 09:04:54 +0000 ROA not after: Thu 29 May 2025 09:09:54 +0000 asID: 152746 IP address blocks: 157.66.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.crl rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:d9:2f:49:32:9b:39:a0:f3:b5:f5:f7:df:98:d9:75:be:32:6b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD Validity Not Before: May 30 09:04:54 2024 GMT Not After : May 29 09:09:54 2025 GMT Subject: CN=C20BE2FBA577F999286C523181BEC53DD1F12231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c1:25:a8:83:d8:ee:b4:b1:11:c0:4e:b1:f4: 64:69:be:66:03:2a:38:7c:38:99:47:e3:8b:48:48: d8:80:c6:fb:89:da:1f:b1:82:cc:16:09:cf:9d:11: 51:9d:42:95:32:bc:f1:94:a6:0a:54:46:e2:c0:2d: 4e:a7:9f:fb:fc:64:ef:6b:ee:87:b3:e1:f0:bb:2e: cc:82:a3:7b:86:36:8f:69:2e:39:3d:2e:f8:ea:21: cf:47:aa:bc:8e:28:85:fc:38:15:79:bb:ab:d1:00: 0e:5f:39:dc:52:c9:e6:a0:0f:18:9f:bb:c5:de:1d: 02:38:97:4f:01:63:f5:63:ce:59:10:6c:83:1c:0e: 1c:3b:57:ca:e8:c0:14:87:d8:bc:0f:4d:03:e9:81: 04:1c:d8:5a:ba:41:5d:72:ba:6a:ef:54:4e:d7:9d: 29:29:e6:b5:42:7e:d3:73:05:e6:4b:78:52:0c:b0: 9d:04:7e:3a:72:8d:ec:02:a8:80:30:1f:c6:47:e5: b2:1f:bf:1a:9d:dd:e8:15:db:7b:3e:54:dd:4d:d6: 87:b8:0d:df:0d:07:d0:84:a6:a1:b7:aa:23:aa:74: e3:f4:d9:eb:29:17:50:34:20:15:9c:51:42:60:7c: ac:3b:91:cf:16:85:ee:ec:f9:ba:d0:1a:69:c6:5b: 07:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:0B:E2:FB:A5:77:F9:99:28:6C:52:31:81:BE:C5:3D:D1:F1:22:31 X509v3 Authority Key Identifier: keyid:F9:93:0E:30:8D:30:B3:E1:5C:FF:F7:EB:0D:34:37:A0:B7:EC:E7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/3135372e36362e392e302f32342d3234203d3e20313532373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.9.0/24 Signature Algorithm: sha256WithRSAEncryption b5:e0:b6:c9:1b:39:8c:55:b3:34:7f:48:50:96:90:c0:ab:17: a5:ce:43:58:12:03:81:fd:fc:12:72:08:97:78:c3:e4:f3:96: 66:b6:c8:ac:78:3b:5f:7a:2b:2e:45:4e:13:30:d1:e5:5d:be: de:f7:bb:0c:f7:56:33:ea:38:be:0c:15:5a:9f:64:14:9d:db: 57:b3:cf:b0:32:89:1d:b2:ea:c5:64:3f:88:eb:3a:8a:2f:fe: 0b:a0:4c:fd:fc:ec:a1:88:35:9f:51:2f:7e:c9:21:d1:94:63: 3f:02:cf:6f:fd:18:6e:b3:22:e5:bb:db:d7:1f:35:93:9b:17: 4e:32:68:d4:c8:08:7a:71:24:41:ab:6a:4e:89:a1:84:56:2d: ff:14:40:bb:8a:f2:77:1a:93:23:03:e5:6a:45:74:6b:b6:02: b6:ab:44:cb:e5:ac:11:80:51:ff:d0:ad:8f:94:5b:cd:3c:1f: e2:f5:99:a7:fb:9e:5e:8b:20:0f:e2:83:4d:0d:2d:d8:24:c3: f9:48:f2:e9:72:c0:19:0d:d8:3f:28:4a:df:3a:e7:d4:c4:82: ec:85:88:0a:3a:d1:7d:94:39:c0:bb:ca:37:e1:87:cb:86:25: d6:f1:27:6e:58:6c:25:16:58:93:3e:04:29:8b:28:d0:e4:4c: b0:34:7c:db -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXNkvSTKbOaDztfX335jZdb4yayAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk5MzBFMzA4RDMwQjNFMTVDRkZGN0VCMEQzNDM3QTBC N0VDRTdCRDAeFw0yNDA1MzAwOTA0NTRaFw0yNTA1MjkwOTA5NTRaMDMxMTAvBgNV BAMTKEMyMEJFMkZCQTU3N0Y5OTkyODZDNTIzMTgxQkVDNTNERDFGMTIyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/wSWog9jutLERwE6x9GRpvmYD Kjh8OJlH44tISNiAxvuJ2h+xgswWCc+dEVGdQpUyvPGUpgpURuLALU6nn/v8ZO9r 7oez4fC7LsyCo3uGNo9pLjk9LvjqIc9HqryOKIX8OBV5u6vRAA5fOdxSyeagDxif u8XeHQI4l08BY/VjzlkQbIMcDhw7V8rowBSH2LwPTQPpgQQc2Fq6QV1yumrvVE7X nSkp5rVCftNzBeZLeFIMsJ0EfjpyjewCqIAwH8ZH5bIfvxqd3egV23s+VN1N1oe4 Dd8NB9CEpqG3qiOqdOP02espF1A0IBWcUUJgfKw7kc8Whe7s+brQGmnGWwfHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUwgvi+6V3+ZkobFIxgb7FPdHxIjEwHwYDVR0j BBgwFoAU+ZMOMI0ws+Fc//frDTQ3oLfs570wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZWJmNTVjYS1kNzgzLTRhM2ItOTVjYy03M2NjMzQ2ZGI0NmUvMC9GOTkzMEUzMDhE MzBCM0UxNUNGRkY3RUIwRDM0MzdBMEI3RUNFN0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjk5MzBFMzA4RDMwQjNFMTVDRkZGN0VCMEQzNDM3QTBCN0VD RTdCRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlYmY1NWNhLWQ3ODMtNGEzYi05 NWNjLTczY2MzNDZkYjQ2ZS8wLzMxMzUzNzJlMzYzNjJlMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgkwDQYJKoZIhvcN AQELBQADggEBALXgtskbOYxVszR/SFCWkMCrF6XOQ1gSA4H9/BJyCJd4w+Tzlma2 yKx4O196Ky5FThMw0eVdvt73uwz3VjPqOL4MFVqfZBSd21ezz7AyiR2y6sVkP4jr Ooov/gugTP387KGINZ9RL37JIdGUYz8Cz2/9GG6zIuW729cfNZObF04yaNTICHpx JEGrak6JoYRWLf8UQLuK8ncakyMD5WpFdGu2ArarRMvlrBGAUf/QrY+UW808H+L1 maf7nl6LIA/ig00NLdgkw/lI8ulywBkN2D8oSt8659TEguyFiAo60X2UOcC7yjfh h8uGJdbxJ25YbCUWWJM+BCmLKNDkTLA0fNs= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org