$ rpki-client -vvf repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/3135372e36362e3132322e302f32342d3234203d3e203633383538.roa File: 3135372e36362e3132322e302f32342d3234203d3e203633383538.roa (raw, json) Hash identifier: ABqsMeXfL8j7jSTQPe5p6pryIp+gFqsnjqoUXOdJcq8= Subject key identifier: 50:ED:81:62:2D:22:D0:2B:9E:AF:82:D4:27:A6:88:31:FE:02:1F:FB Certificate issuer: /CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Certificate serial: 69E256E446361F31AA1C374F9E47AB13416B7D5D Authority key identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/3135372e36362e3132322e302f32342d3234203d3e203633383538.roa Signing time: Wed 22 May 2024 12:12:41 +0000 ROA not before: Wed 22 May 2024 12:07:41 +0000 ROA not after: Wed 21 May 2025 12:12:41 +0000 asID: 63858 IP address blocks: 157.66.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:e2:56:e4:46:36:1f:31:aa:1c:37:4f:9e:47:ab:13:41:6b:7d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Validity Not Before: May 22 12:07:41 2024 GMT Not After : May 21 12:12:41 2025 GMT Subject: CN=50ED81622D22D02B9EAF82D427A68831FE021FFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4f:74:70:d3:7e:15:19:6f:bc:ba:0f:66:32: cf:f7:43:d9:b5:f5:0e:36:cb:cb:21:b1:d4:fa:55: fe:08:cf:b6:8a:7d:37:88:a9:cb:24:2a:d7:85:4a: 92:02:0d:3e:93:b7:bd:e8:d8:a5:ae:5c:28:51:ad: 1c:ca:ab:6d:ab:9c:9e:26:1a:2e:44:b7:c2:ce:57: e7:c6:e7:68:ff:14:4e:0f:ca:e5:a5:3d:44:22:2d: e9:f5:eb:eb:b8:aa:ad:d3:66:c3:30:1f:84:9b:df: dc:51:1d:d3:4f:99:cb:bb:11:66:91:e7:47:f8:c0: e2:f6:ed:e8:c5:b3:29:5d:3a:b0:36:e8:af:54:56: 54:45:74:58:41:d2:0a:c7:36:7b:d6:be:16:81:85: ce:e8:80:9e:32:43:f6:09:4d:3c:41:cc:05:c7:09: 61:76:75:10:b2:42:8e:69:aa:be:04:5b:24:5c:43: 5e:2a:bf:da:7c:78:36:3e:28:71:bd:06:bd:32:6b: 2c:99:00:94:0a:4e:54:a9:d3:b1:d2:be:52:d1:43: 52:ab:00:53:9d:44:f0:4d:0d:0c:6e:43:5e:e7:67: eb:87:29:60:8b:17:0d:25:1f:e6:f7:54:f3:fa:27: 56:8d:2b:6b:5f:cb:f3:4d:2e:76:ea:bd:ac:a4:e3: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:ED:81:62:2D:22:D0:2B:9E:AF:82:D4:27:A6:88:31:FE:02:1F:FB X509v3 Authority Key Identifier: keyid:5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/3135372e36362e3132322e302f32342d3234203d3e203633383538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.122.0/24 Signature Algorithm: sha256WithRSAEncryption 01:15:f4:ec:40:06:98:39:f5:25:de:0b:ed:f6:ee:ed:94:f7: 28:f2:1d:6e:16:6d:fc:16:7d:bd:bb:11:41:bd:39:a1:75:43: 5d:44:35:84:6b:e3:9b:e4:4d:a4:70:22:c3:43:74:3e:8a:7b: d0:c1:a5:07:b9:f9:1f:81:95:27:fb:8f:99:12:c8:7f:5d:0b: d5:7a:f0:5e:37:ca:0a:5b:0f:f2:d4:d8:fd:0c:02:c4:4b:57: a8:69:20:3e:3e:0a:54:8d:ca:f5:f6:0c:09:68:4f:86:e6:17: eb:ec:32:73:40:fc:e9:b3:b4:55:ab:fb:e3:c6:3a:ce:30:98: cf:70:39:7b:5e:1e:c8:c8:9b:9c:01:44:8d:fe:f0:9c:73:19: fc:34:08:7d:77:8f:d6:a9:dc:a2:8d:b7:4f:d8:50:dc:a1:5e: a6:6a:f6:c0:85:17:5d:12:88:37:e4:b7:cb:c9:02:db:c8:e2: 05:69:8a:69:bb:9e:1a:52:54:9a:31:cd:57:14:19:40:09:ea: 2c:f7:1f:b9:80:6c:83:44:26:b9:76:7d:92:d0:32:11:6a:05: fe:f8:e3:d8:34:fc:26:50:20:a5:72:a0:a6:33:f7:8f:40:54: 46:c3:8a:7c:41:1c:35:f2:2f:2c:44:79:58:55:14:a6:7b:36: 9c:be:73:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaeJW5EY2HzGqHDdPnkerE0FrfV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RE NEE5ODRFQjAeFw0yNDA1MjIxMjA3NDFaFw0yNTA1MjExMjEyNDFaMDMxMTAvBgNV BAMTKDUwRUQ4MTYyMkQyMkQwMkI5RUFGODJENDI3QTY4ODMxRkUwMjFGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbT3Rw034VGW+8ug9mMs/3Q9m1 9Q42y8shsdT6Vf4Iz7aKfTeIqcskKteFSpICDT6Tt73o2KWuXChRrRzKq22rnJ4m Gi5Et8LOV+fG52j/FE4PyuWlPUQiLen16+u4qq3TZsMwH4Sb39xRHdNPmcu7EWaR 50f4wOL27ejFsyldOrA26K9UVlRFdFhB0grHNnvWvhaBhc7ogJ4yQ/YJTTxBzAXH CWF2dRCyQo5pqr4EWyRcQ14qv9p8eDY+KHG9Br0yayyZAJQKTlSp07HSvlLRQ1Kr AFOdRPBNDQxuQ17nZ+uHKWCLFw0lH+b3VPP6J1aNK2tfy/NNLnbqvayk48IlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUO2BYi0i0Cuer4LUJ6aIMf4CH/swHwYDVR0j BBgwFoAUWo1N7F/Cm+biSQRi9YCQPdSphOswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZWNmNWQ5NC03ZjFmLTQzYmYtYjdhYS0yMjBmMGMxNTZlYzAvMC81QThENERFQzVG QzI5QkU2RTI0OTA0NjJGNTgwOTAzREQ0QTk4NEVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RENEE5 ODRFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlY2Y1ZDk0LTdmMWYtNDNiZi1i N2FhLTIyMGYwYzE1NmVjMC8wLzMxMzUzNzJlMzYzNjJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CejANBgkqhkiG 9w0BAQsFAAOCAQEAARX07EAGmDn1Jd4L7fbu7ZT3KPIdbhZt/BZ9vbsRQb05oXVD XUQ1hGvjm+RNpHAiw0N0Pop70MGlB7n5H4GVJ/uPmRLIf10L1XrwXjfKClsP8tTY /QwCxEtXqGkgPj4KVI3K9fYMCWhPhuYX6+wyc0D86bO0Vav748Y6zjCYz3A5e14e yMibnAFEjf7wnHMZ/DQIfXeP1qncoo23T9hQ3KFepmr2wIUXXRKIN+S3y8kC28ji BWmKabueGlJUmjHNVxQZQAnqLPcfuYBsg0QmuXZ9ktAyEWoF/vjj2DT8JlAgpXKg pjP3j0BURsOKfEEcNfIvLER5WFUUpns2nL5zCg== -----END CERTIFICATE-----Generated at Fri Sep 27 15:50:30 2024 by rpki-client on console-ams.rpki-client.org