$ rpki-client -vvf repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa File: 3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa (raw, json) Hash identifier: ovjV3a2j1iQ8rLesRKk+cSW1tBSJlk1/Dzy2fJZMGZY= Subject key identifier: 2C:9A:5E:8C:A8:1D:C5:76:06:86:84:38:7A:5B:D3:5E:BE:0D:66:3F Certificate issuer: /CN=CEB4F9AE3476630AAF22F4CD42CE606BB4444140 Certificate serial: 7A793C3F94024E45283FCDB0420C8B5A83A14CD9 Authority key identifier: CE:B4:F9:AE:34:76:63:0A:AF:22:F4:CD:42:CE:60:6B:B4:44:41:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa Signing time: Wed 22 May 2024 20:03:29 +0000 ROA not before: Wed 22 May 2024 19:58:29 +0000 ROA not after: Wed 21 May 2025 20:03:29 +0000 asID: 141898 IP address blocks: 157.10.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.crl rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:79:3c:3f:94:02:4e:45:28:3f:cd:b0:42:0c:8b:5a:83:a1:4c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEB4F9AE3476630AAF22F4CD42CE606BB4444140 Validity Not Before: May 22 19:58:29 2024 GMT Not After : May 21 20:03:29 2025 GMT Subject: CN=2C9A5E8CA81DC576068684387A5BD35EBE0D663F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a7:24:b3:29:c5:10:e1:5d:cb:a2:79:e6:eb: ad:71:e6:cc:e1:33:0d:42:83:bc:6a:85:86:74:88: da:62:13:82:e3:07:76:bb:78:e3:ef:90:45:e7:a3: 5e:69:b3:da:65:92:3c:ff:bf:fb:ce:cc:ef:17:6d: b0:4c:9b:59:02:02:fc:91:50:89:73:22:cb:50:1f: f1:84:4a:3f:88:b8:dd:bb:27:28:f0:1d:8a:4f:68: 4f:b2:19:5a:d9:3a:24:62:73:51:5f:a8:c4:55:a6: 87:a2:4e:49:be:98:59:fa:f5:fb:c5:0a:99:45:9a: 86:65:1d:37:a5:40:36:b8:a5:fa:cb:a5:ac:4a:85: 64:77:1f:00:a9:22:a9:ca:5a:9d:72:d0:00:a0:5f: 91:30:9a:85:81:03:c0:7e:d5:00:ef:15:6a:13:4b: ae:6f:5e:2f:82:7b:ef:8a:36:7a:93:48:30:32:ab: a7:e9:d6:db:05:1d:98:47:2d:54:58:35:ab:f7:9c: 8b:87:2a:84:44:8a:3f:55:4b:84:16:d8:d3:66:6c: b7:16:b3:c2:6c:ce:24:34:55:25:e1:e9:7c:4a:a5: 89:ed:9a:bd:af:ed:21:0d:92:98:d4:aa:67:fc:06: 29:69:47:42:f6:68:47:f8:1e:97:75:a0:6a:48:b6: 9f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9A:5E:8C:A8:1D:C5:76:06:86:84:38:7A:5B:D3:5E:BE:0D:66:3F X509v3 Authority Key Identifier: keyid:CE:B4:F9:AE:34:76:63:0A:AF:22:F4:CD:42:CE:60:6B:B4:44:41:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.222.0/23 Signature Algorithm: sha256WithRSAEncryption d4:c1:03:de:5f:5a:37:62:fc:0f:16:c8:57:73:dd:fa:ec:f8: f0:5f:af:e8:2c:a7:8a:12:14:ce:bc:65:8d:3a:bb:c2:e8:0a: 20:9f:1a:ee:3e:b1:7f:49:7a:b9:11:8c:4a:ce:17:34:a2:a5: e9:de:ab:03:4f:dc:94:52:cb:b9:8b:ec:97:ee:9a:d6:40:ad: 09:42:65:13:e9:9d:a3:fc:89:7c:3e:2d:64:dc:83:2c:90:39: 7a:9b:d4:cc:af:56:4c:d6:aa:43:85:fd:e1:03:6a:f8:83:8c: e8:8f:ce:c1:d1:55:bb:88:18:33:1a:55:31:d6:b8:26:77:2c: 1c:cd:b8:4b:6d:0f:de:8c:ca:19:95:6a:a1:ab:cb:ce:af:6b: d2:38:cb:1d:16:7e:68:40:4c:c4:65:a3:a1:67:ce:fa:68:74: 2e:90:36:3c:95:e3:98:77:76:27:e7:7f:b9:a4:02:af:d8:29: 29:49:23:d9:c5:ae:00:ad:1f:ce:81:cb:46:d6:a0:61:45:d8: 36:c3:66:fc:85:f3:65:c5:3e:d2:c6:a6:05:7f:45:8e:95:bb: 66:5c:3b:21:54:d3:ab:85:16:2b:d4:8b:61:3b:f7:04:a6:81: 14:d5:55:64:e2:c1:cd:a9:1f:09:48:0b:6c:3b:1c:07:a6:30: a5:72:8c:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUenk8P5QCTkUoP82wQgyLWoOhTNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VCNEY5QUUzNDc2NjMwQUFGMjJGNENENDJDRTYwNkJC NDQ0NDE0MDAeFw0yNDA1MjIxOTU4MjlaFw0yNTA1MjEyMDAzMjlaMDMxMTAvBgNV BAMTKDJDOUE1RThDQTgxREM1NzYwNjg2ODQzODdBNUJEMzVFQkUwRDY2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkpySzKcUQ4V3Lonnm661x5szh Mw1Cg7xqhYZ0iNpiE4LjB3a7eOPvkEXno15ps9plkjz/v/vOzO8XbbBMm1kCAvyR UIlzIstQH/GESj+IuN27JyjwHYpPaE+yGVrZOiRic1FfqMRVpoeiTkm+mFn69fvF CplFmoZlHTelQDa4pfrLpaxKhWR3HwCpIqnKWp1y0ACgX5EwmoWBA8B+1QDvFWoT S65vXi+Ce++KNnqTSDAyq6fp1tsFHZhHLVRYNav3nIuHKoREij9VS4QW2NNmbLcW s8JsziQ0VSXh6XxKpYntmr2v7SENkpjUqmf8BilpR0L2aEf4Hpd1oGpItp+vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULJpejKgdxXYGhoQ4elvTXr4NZj8wHwYDVR0j BBgwFoAUzrT5rjR2YwqvIvTNQs5ga7REQUAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTM3NmE2ZS0zZWNhLTRmNzMtOGQxNS1kMWRkZWU5MWZmOTgvMC9DRUI0RjlBRTM0 NzY2MzBBQUYyMkY0Q0Q0MkNFNjA2QkI0NDQ0MTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0VCNEY5QUUzNDc2NjMwQUFGMjJGNENENDJDRTYwNkJCNDQ0 NDE0MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMzc2YTZlLTNlY2EtNGY3My04 ZDE1LWQxZGRlZTkxZmY5OC8wLzMxMzUzNzJlMzEzMDJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQreMA0GCSqG SIb3DQEBCwUAA4IBAQDUwQPeX1o3YvwPFshXc9367PjwX6/oLKeKEhTOvGWNOrvC 6AognxruPrF/SXq5EYxKzhc0oqXp3qsDT9yUUsu5i+yX7prWQK0JQmUT6Z2j/Il8 Pi1k3IMskDl6m9TMr1ZM1qpDhf3hA2r4g4zoj87B0VW7iBgzGlUx1rgmdywczbhL bQ/ejMoZlWqhq8vOr2vSOMsdFn5oQEzEZaOhZ876aHQukDY8leOYd3Yn53+5pAKv 2CkpSSPZxa4ArR/OgctG1qBhRdg2w2b8hfNlxT7SxqYFf0WOlbtmXDshVNOrhRYr 1IthO/cEpoEU1VVk4sHNqR8JSAtsOxwHpjClcoy9 -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org