$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32322d3232203d3e203338313439.roa File: 3135302e3132392e3138382e302f32322d3232203d3e203338313439.roa (raw, json) Hash identifier: fMOvsTBxwwympgzVUMuVuCFirt9aVVF5URPsGLYzYTw= Subject key identifier: 7F:75:55:B4:2D:72:D1:1E:79:6B:FB:1B:01:70:73:ED:C1:08:1B:A0 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 5BBBF462DAF47F6553A026BB26F2D17CD83F5F60 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32322d3232203d3e203338313439.roa Signing time: Thu 19 Sep 2024 14:42:33 +0000 ROA not before: Thu 19 Sep 2024 14:37:33 +0000 ROA not after: Thu 18 Sep 2025 14:42:33 +0000 asID: 38149 IP address blocks: 150.129.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bb:f4:62:da:f4:7f:65:53:a0:26:bb:26:f2:d1:7c:d8:3f:5f:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 19 14:37:33 2024 GMT Not After : Sep 18 14:42:33 2025 GMT Subject: CN=7F7555B42D72D11E796BFB1B017073EDC1081BA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0f:05:de:9a:f9:cd:0b:76:ab:13:49:0b:bd: d2:c8:f1:bf:2d:bb:23:cb:a6:d2:bf:ad:2f:c2:fa: 9a:93:80:ff:7a:23:da:f3:7d:66:11:77:c1:71:0e: e9:60:ff:83:1a:1d:68:83:c2:3d:e9:36:81:08:18: 48:88:9f:1b:24:e4:d5:e4:a5:14:fd:92:37:ea:e7: 65:fe:f1:b0:31:68:dc:b5:5a:51:58:13:f9:fb:96: 20:36:55:29:bb:f1:2b:5a:5b:91:c6:11:c2:63:79: 5d:20:a6:4f:97:75:d7:40:c7:ae:64:86:40:d0:50: 48:b9:ed:3a:97:1c:a7:12:f9:87:aa:a5:98:a3:90: 66:3d:1a:11:9a:3f:c4:a1:5f:99:f7:f1:5d:1c:1d: 74:e0:d1:9c:a1:1d:0c:fc:7c:23:de:11:0c:64:eb: 83:e8:7c:49:0c:f2:3e:bc:2f:84:f3:ac:fe:c8:06: fb:15:03:62:c4:db:86:c9:f6:7f:7e:a3:0b:54:b0: b5:e6:64:1a:a5:6d:d1:11:45:c5:2d:24:5e:2a:0e: 57:b1:d5:5a:a3:bd:ee:14:f8:d5:9a:1f:6c:00:da: 85:31:19:9b:93:c0:cb:70:ad:96:61:65:87:4b:2d: d8:0d:3f:0f:09:aa:e7:83:74:00:22:75:26:92:4a: 49:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:75:55:B4:2D:72:D1:1E:79:6B:FB:1B:01:70:73:ED:C1:08:1B:A0 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32322d3232203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.188.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:3e:d0:f9:d6:2c:71:b4:79:19:83:2b:88:b4:66:99:46:51: 88:4b:c5:83:72:29:3e:9f:1a:00:f8:1b:c6:c4:e0:66:49:43: 8c:15:9a:b3:27:55:31:c0:d6:c2:2b:b9:1d:0f:67:7e:5b:27: a7:5d:fc:da:07:c7:ea:a0:eb:c6:ab:bb:32:cf:77:65:60:35: d6:0e:4c:cf:e0:03:0c:06:70:16:9d:39:1b:82:cf:80:cc:0c: ec:13:5e:78:09:5c:f0:f1:4e:2f:02:7c:99:79:6d:90:8d:b7: b3:37:3f:80:6f:71:0f:1f:6c:fd:de:43:cd:5e:d5:d2:a7:5b: b8:19:da:9a:2b:18:a3:12:f0:30:73:a6:83:9a:ca:c2:99:4b: d3:89:97:c5:bd:86:a3:21:b2:4f:9d:70:06:69:1d:da:06:f9: 4a:96:67:05:a5:25:d0:06:b9:92:a9:93:82:49:6f:c7:32:0a: 91:32:42:52:b9:4f:c2:40:04:33:7b:c2:13:2a:a0:10:a6:77: 4f:86:b4:29:b8:52:61:64:47:d1:60:3b:a5:68:bd:a5:e1:23: 71:33:20:0f:35:11:e1:c9:8c:c9:99:d8:48:03:ce:f5:25:de: 53:f8:b4:c1:65:24:a1:b1:86:a6:16:4f:e0:90:ec:43:36:8c: 95:1f:ec:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW7v0Ytr0f2VToCa7JvLRfNg/X2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTkxNDM3MzNaFw0yNTA5MTgxNDQyMzNaMDMxMTAvBgNV BAMTKDdGNzU1NUI0MkQ3MkQxMUU3OTZCRkIxQjAxNzA3M0VEQzEwODFCQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DwXemvnNC3arE0kLvdLI8b8t uyPLptK/rS/C+pqTgP96I9rzfWYRd8FxDulg/4MaHWiDwj3pNoEIGEiInxsk5NXk pRT9kjfq52X+8bAxaNy1WlFYE/n7liA2VSm78StaW5HGEcJjeV0gpk+XdddAx65k hkDQUEi57TqXHKcS+YeqpZijkGY9GhGaP8ShX5n38V0cHXTg0ZyhHQz8fCPeEQxk 64PofEkM8j68L4TzrP7IBvsVA2LE24bJ9n9+owtUsLXmZBqlbdERRcUtJF4qDlex 1Vqjve4U+NWaH2wA2oUxGZuTwMtwrZZhZYdLLdgNPw8JqueDdAAidSaSSkkpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUf3VVtC1y0R55a/sbAXBz7cEIG6AwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzUzMDJlMzEzMjM5MmUzMTM4MzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloG8MA0GCSqG SIb3DQEBCwUAA4IBAQAqPtD51ixxtHkZgyuItGaZRlGIS8WDcik+nxoA+BvGxOBm SUOMFZqzJ1UxwNbCK7kdD2d+WyenXfzaB8fqoOvGq7syz3dlYDXWDkzP4AMMBnAW nTkbgs+AzAzsE154CVzw8U4vAnyZeW2QjbezNz+Ab3EPH2z93kPNXtXSp1u4Gdqa KxijEvAwc6aDmsrCmUvTiZfFvYajIbJPnXAGaR3aBvlKlmcFpSXQBrmSqZOCSW/H MgqRMkJSuU/CQAQze8ITKqAQpndPhrQpuFJhZEfRYDulaL2l4SNxMyAPNRHhyYzJ mdhIA871Jd5T+LTBZSShsYamFk/gkOxDNoyVH+xo -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org