$ rpki-client -vvf repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa File: 3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa (raw, json) Hash identifier: IMXqej13nX/y32IS6HrK0b9vTUytVKZq1jofauzBmsk= Subject key identifier: E6:72:74:42:9A:5B:39:F7:F6:3B:09:01:8A:41:F8:FC:DA:9C:80:44 Certificate issuer: /CN=9B2DB6A80E8A5860943D5E249BCF6F2C47D48549 Certificate serial: 14E1C25F52C1EF4EDB284D8181CECBAEE719C1D4 Authority key identifier: 9B:2D:B6:A8:0E:8A:58:60:94:3D:5E:24:9B:CF:6F:2C:47:D4:85:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa Signing time: Tue 19 Nov 2024 12:19:24 +0000 ROA not before: Tue 19 Nov 2024 12:14:24 +0000 ROA not after: Tue 18 Nov 2025 12:19:24 +0000 asID: 152758 IP address blocks: 157.66.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.crl rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e1:c2:5f:52:c1:ef:4e:db:28:4d:81:81:ce:cb:ae:e7:19:c1:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2DB6A80E8A5860943D5E249BCF6F2C47D48549 Validity Not Before: Nov 19 12:14:24 2024 GMT Not After : Nov 18 12:19:24 2025 GMT Subject: CN=E67274429A5B39F7F63B09018A41F8FCDA9C8044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:30:a8:cf:54:73:c0:69:bb:6f:00:20:3a: 45:38:19:ec:bd:3c:f1:fb:1e:73:06:e9:b8:64:19: c1:a8:33:c5:24:f1:66:50:6f:c0:95:17:f6:2d:d9: 8e:46:3c:c8:53:35:24:15:53:2d:d8:11:63:b3:f4: ac:93:0e:24:b4:76:e2:61:88:0c:0d:0c:3b:9c:ea: 92:1b:c7:e1:36:d1:eb:a8:e0:f5:86:82:41:22:73: 4b:3e:bd:4c:73:39:ad:d7:bc:1b:6a:09:6c:51:ba: 54:48:2e:7c:d3:79:de:5e:6a:6b:26:2e:e1:1e:d0: c4:9d:73:ec:db:70:38:1f:7a:20:e0:4f:cc:5a:01: 9d:40:82:0a:74:37:1f:9c:c8:75:c6:d2:88:20:99: 0e:a2:7e:45:94:81:bf:6a:df:e2:4a:b7:85:9d:e7: 20:41:60:02:a8:6f:d0:ee:da:91:88:69:75:c9:26: 19:e2:6d:38:73:07:ba:a6:37:d2:5c:69:11:e0:18: 64:de:2f:70:04:f6:c0:ca:08:b0:77:d4:1c:9c:6c: f6:cd:91:77:0b:9c:f4:5a:cd:6d:6b:3d:b2:d2:88: f0:d5:7d:bd:eb:64:fb:45:3a:6b:24:fa:db:99:31: a6:7d:a7:5b:b7:0f:26:20:33:56:f8:ba:46:92:de: 5d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:72:74:42:9A:5B:39:F7:F6:3B:09:01:8A:41:F8:FC:DA:9C:80:44 X509v3 Authority Key Identifier: keyid:9B:2D:B6:A8:0E:8A:58:60:94:3D:5E:24:9B:CF:6F:2C:47:D4:85:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.239.0/24 Signature Algorithm: sha256WithRSAEncryption c7:ec:cc:97:24:fa:4e:c3:6c:48:7c:4e:a8:5d:52:76:25:b1: 43:9c:bc:56:6e:e7:c3:72:a2:92:4b:e1:3d:b1:4c:cb:4e:d4: bd:99:80:31:02:92:92:51:cf:af:f9:a8:d0:88:b7:61:1d:5b: 01:d2:f4:13:6f:7c:70:d6:31:d2:df:22:65:f4:62:f1:95:05: 8a:84:a3:63:c4:8c:f7:b0:be:df:60:1c:af:5f:77:d5:b0:8e: 02:db:1a:71:bf:fe:e6:02:17:21:81:7d:ed:52:36:11:3c:03: 69:15:b2:5a:a6:51:f2:bb:ef:61:f3:21:ce:98:1c:15:40:5b: c7:44:ab:b8:cc:8f:db:87:ef:a7:8e:08:5c:96:88:55:93:9a: 47:ba:d0:29:64:f0:0c:5e:ed:8e:20:7c:3d:76:0e:cb:19:12: 14:64:55:38:eb:1f:4b:ab:4e:0d:25:1f:83:7d:1d:16:1e:d6: e8:b3:27:c7:38:21:d1:ef:1d:11:46:85:a2:c3:42:b8:46:bf: c6:61:49:68:a6:73:58:b0:29:d0:3b:dd:5c:e7:34:f5:43:7d: 54:c0:66:83:89:a8:8c:af:9c:f2:90:47:86:b1:de:e1:30:14: 22:dd:65:bc:66:ce:c6:42:ea:ad:a6:ef:82:eb:12:79:62:cb: aa:8b:3e:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFOHCX1LB707bKE2Bgc7LrucZwdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyREI2QTgwRThBNTg2MDk0M0Q1RTI0OUJDRjZGMkM0 N0Q0ODU0OTAeFw0yNDExMTkxMjE0MjRaFw0yNTExMTgxMjE5MjRaMDMxMTAvBgNV BAMTKEU2NzI3NDQyOUE1QjM5RjdGNjNCMDkwMThBNDFGOEZDREE5QzgwNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDMTCoz1RzwGm7bwAgOkU4Gey9 PPH7HnMG6bhkGcGoM8Uk8WZQb8CVF/Yt2Y5GPMhTNSQVUy3YEWOz9KyTDiS0duJh iAwNDDuc6pIbx+E20euo4PWGgkEic0s+vUxzOa3XvBtqCWxRulRILnzTed5eamsm LuEe0MSdc+zbcDgfeiDgT8xaAZ1Aggp0Nx+cyHXG0oggmQ6ifkWUgb9q3+JKt4Wd 5yBBYAKob9Du2pGIaXXJJhnibThzB7qmN9JcaRHgGGTeL3AE9sDKCLB31BycbPbN kXcLnPRazW1rPbLSiPDVfb3rZPtFOmsk+tuZMaZ9p1u3DyYgM1b4ukaS3l2VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5nJ0QppbOff2OwkBikH4/NqcgEQwHwYDVR0j BBgwFoAUmy22qA6KWGCUPV4km89vLEfUhUkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2RkMjUxOS0zMDc4LTQ3ZDMtOWU4Ni00OGZkM2JkZTc2YzgvMC85QjJEQjZBODBF OEE1ODYwOTQzRDVFMjQ5QkNGNkYyQzQ3RDQ4NTQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUIyREI2QTgwRThBNTg2MDk0M0Q1RTI0OUJDRjZGMkM0N0Q0 ODU0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5LTMwNzgtNDdkMy05 ZTg2LTQ4ZmQzYmRlNzZjOC8wLzMxMzUzNzJlMzYzNjJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnULvMA0GCSqG SIb3DQEBCwUAA4IBAQDH7MyXJPpOw2xIfE6oXVJ2JbFDnLxWbufDcqKSS+E9sUzL TtS9mYAxApKSUc+v+ajQiLdhHVsB0vQTb3xw1jHS3yJl9GLxlQWKhKNjxIz3sL7f YByvX3fVsI4C2xpxv/7mAhchgX3tUjYRPANpFbJaplHyu+9h8yHOmBwVQFvHRKu4 zI/bh++njghclohVk5pHutApZPAMXu2OIHw9dg7LGRIUZFU46x9Lq04NJR+DfR0W HtbosyfHOCHR7x0RRoWiw0K4Rr/GYUlopnNYsCnQO91c5zT1Q31UwGaDiaiMr5zy kEeGsd7hMBQi3WW8Zs7GQuqtpu+C6xJ5Ysuqiz7Y -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org