$ rpki-client -vvf repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa File: 3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa (raw, json) Hash identifier: dk9lT4c8YPePQBplMSb9peNtJTmkudz4Yd6u9d5dqKU= Subject key identifier: 21:85:89:9F:43:06:B6:88:BF:24:85:56:67:B1:C1:07:05:5B:E9:10 Certificate issuer: /CN=2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD Certificate serial: 40FB80C22ABACB60BD2ECD73E3BE17D3664CA4F5 Authority key identifier: 2A:62:B9:64:EC:86:44:7D:C2:2D:DE:70:DC:35:17:F0:CF:7C:9A:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa Signing time: Thu 04 Jul 2024 02:11:04 +0000 ROA not before: Thu 04 Jul 2024 02:06:04 +0000 ROA not after: Thu 03 Jul 2025 02:11:04 +0000 asID: 152771 IP address blocks: 157.66.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.crl rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:fb:80:c2:2a:ba:cb:60:bd:2e:cd:73:e3:be:17:d3:66:4c:a4:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD Validity Not Before: Jul 4 02:06:04 2024 GMT Not After : Jul 3 02:11:04 2025 GMT Subject: CN=2185899F4306B688BF24855667B1C107055BE910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:64:6a:d9:2e:ea:87:79:a5:3d:b9:55:25:4c: 02:aa:fa:c7:d4:40:6c:b8:a5:59:77:cb:f2:e2:c7: ed:67:ae:c0:f4:e7:f8:9e:04:69:4a:fe:9c:b6:5e: e7:18:e7:6a:50:2c:19:b0:d3:1a:74:7b:2a:96:07: c7:56:45:34:69:83:ac:1a:48:6b:78:10:7a:65:ec: a2:64:5b:1a:c4:06:35:8c:7f:83:3c:48:7d:ec:4e: 7c:87:62:98:47:8d:39:fa:d5:03:a6:5a:45:b9:35: e0:7e:75:1f:ef:a2:9f:f4:af:d9:56:cb:7d:b5:20: 72:ec:1d:b8:d7:cf:c8:8c:c1:f8:bf:30:64:b5:bd: ed:8c:a2:fd:24:29:b5:4a:06:f7:05:2e:4c:43:52: 79:88:33:b8:3c:ad:af:7e:ad:ac:bc:06:8b:ab:6e: c8:2e:66:d4:55:30:ba:a3:ab:92:b7:73:74:7d:f5: 87:0e:9e:26:98:ab:e3:3b:76:c4:01:5e:b8:ba:1f: 70:51:0f:e9:34:59:3a:25:8b:0f:1f:f6:a3:a7:2f: 95:ee:05:97:6a:b5:54:8a:70:1f:d6:cc:30:4a:96: 5d:fd:b7:64:b9:28:78:85:38:2e:9a:05:6f:c0:79: 79:52:3a:b2:3b:f8:db:10:0f:5f:54:80:3f:db:a9: 32:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:85:89:9F:43:06:B6:88:BF:24:85:56:67:B1:C1:07:05:5B:E9:10 X509v3 Authority Key Identifier: keyid:2A:62:B9:64:EC:86:44:7D:C2:2D:DE:70:DC:35:17:F0:CF:7C:9A:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.123.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:f9:2e:ed:29:ae:61:46:d8:3d:74:93:3d:b9:14:bd:9a:db: ff:96:67:3f:5f:95:94:d9:b3:f2:86:f3:5b:24:cd:0e:4f:99: a5:b3:f2:64:a0:7d:d2:17:24:57:f6:57:84:ab:99:80:83:61: 11:30:d6:b1:12:e4:71:77:9f:0f:1e:fe:55:ad:cc:f5:a7:05: 60:d4:df:ec:f9:05:39:b7:20:03:97:4e:aa:6f:79:42:35:88: b3:ed:b7:2b:8e:03:7b:35:c8:95:9c:14:4b:66:46:c1:fb:38: f8:c5:3b:ce:ca:80:b8:e2:96:c7:7c:5c:69:5b:71:04:5f:db: 9b:ae:99:b9:c0:54:b7:db:88:32:98:15:e9:39:78:05:26:88: b2:91:ad:f9:d2:ae:50:91:4b:1a:b3:a1:27:28:d2:4d:8d:2c: 29:ee:28:60:fc:12:49:f4:34:b3:90:05:5d:43:9d:8c:dd:e1: 8a:14:59:e4:8b:90:c1:07:9d:8f:c3:6d:86:0e:46:43:9d:39: 83:ec:fa:c6:4e:ef:b7:a5:d7:aa:67:ef:e1:ea:1e:86:a5:73: 89:f6:f1:3c:79:85:3b:7a:27:c4:78:6b:b9:6f:90:9b:95:e1: e1:f9:57:30:e5:8f:62:61:93:df:69:5c:b0:6c:5b:ef:17:78: 1d:3b:1c:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQPuAwiq6y2C9Ls1z474X02ZMpPUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE2MkI5NjRFQzg2NDQ3REMyMkRERTcwREMzNTE3RjBD RjdDOUFDRDAeFw0yNDA3MDQwMjA2MDRaFw0yNTA3MDMwMjExMDRaMDMxMTAvBgNV BAMTKDIxODU4OTlGNDMwNkI2ODhCRjI0ODU1NjY3QjFDMTA3MDU1QkU5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZGrZLuqHeaU9uVUlTAKq+sfU QGy4pVl3y/Lix+1nrsD05/ieBGlK/py2XucY52pQLBmw0xp0eyqWB8dWRTRpg6wa SGt4EHpl7KJkWxrEBjWMf4M8SH3sTnyHYphHjTn61QOmWkW5NeB+dR/vop/0r9lW y321IHLsHbjXz8iMwfi/MGS1ve2Mov0kKbVKBvcFLkxDUnmIM7g8ra9+ray8Bour bsguZtRVMLqjq5K3c3R99YcOniaYq+M7dsQBXri6H3BRD+k0WToliw8f9qOnL5Xu BZdqtVSKcB/WzDBKll39t2S5KHiFOC6aBW/AeXlSOrI7+NsQD19UgD/bqTLfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIYWJn0MGtoi/JIVWZ7HBBwVb6RAwHwYDVR0j BBgwFoAUKmK5ZOyGRH3CLd5w3DUX8M98ms0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MWIwODg0NS1kZjgyLTQ0YzItOTc2ZC02ZDc0YjgxMTY2ZjQvMC8yQTYyQjk2NEVD ODY0NDdEQzIyRERFNzBEQzM1MTdGMENGN0M5QUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkE2MkI5NjRFQzg2NDQ3REMyMkRERTcwREMzNTE3RjBDRjdD OUFDRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYjA4ODQ1LWRmODItNDRjMi05 NzZkLTZkNzRiODExNjZmNC8wLzMxMzUzNzJlMzYzNjJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUJ7MA0GCSqG SIb3DQEBCwUAA4IBAQAb+S7tKa5hRtg9dJM9uRS9mtv/lmc/X5WU2bPyhvNbJM0O T5mls/JkoH3SFyRX9leEq5mAg2ERMNaxEuRxd58PHv5Vrcz1pwVg1N/s+QU5tyAD l06qb3lCNYiz7bcrjgN7NciVnBRLZkbB+zj4xTvOyoC44pbHfFxpW3EEX9ubrpm5 wFS324gymBXpOXgFJoiyka350q5QkUsas6EnKNJNjSwp7ihg/BJJ9DSzkAVdQ52M 3eGKFFnki5DBB52Pw22GDkZDnTmD7PrGTu+3pdeqZ+/h6h6GpXOJ9vE8eYU7eifE eGu5b5CbleHh+Vcw5Y9iYZPfaVywbFvvF3gdOxym -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org