$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa File: 3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: OvyvdheJuMzbru6Ky1R20fFBCIcjoCjs3UJ3tnNrBeA= Subject key identifier: 5D:EE:58:0B:90:C1:DE:21:42:9B:85:4C:79:0A:0A:DF:DC:F1:25:38 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 25275E4C0863B1FF6057EA2214D814A29B9A47B4 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:36:31 +0000 ROA not before: Tue 17 Sep 2024 00:31:31 +0000 ROA not after: Tue 16 Sep 2025 00:36:31 +0000 asID: 38149 IP address blocks: 150.129.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:27:5e:4c:08:63:b1:ff:60:57:ea:22:14:d8:14:a2:9b:9a:47:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:31:31 2024 GMT Not After : Sep 16 00:36:31 2025 GMT Subject: CN=5DEE580B90C1DE21429B854C790A0ADFDCF12538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:be:4d:45:9e:be:3e:db:0d:36:3e:29:da: 1d:14:5d:e8:36:27:cf:c5:fb:60:1b:52:43:28:15: f9:ba:ea:59:85:fb:14:5b:0d:6b:70:d1:ba:c3:fa: 13:85:98:14:9b:8d:a2:29:16:77:2b:6c:0a:d0:8b: 9c:5b:d8:db:f6:be:6a:c1:bb:eb:a8:b9:cc:e6:ce: f2:89:87:93:6e:ea:ef:e6:84:f6:c7:ba:46:b4:0d: 57:47:5a:0c:4a:ef:35:23:4a:09:5b:7a:0e:73:01: 65:77:b4:46:17:63:4e:3a:e9:3f:16:02:7a:71:1a: 97:7e:10:a5:6b:eb:54:ac:19:59:1e:b8:69:a2:ff: 2b:49:38:73:4b:92:5a:b5:c3:27:cc:00:e9:2c:d8: 2d:17:6a:b9:fc:cb:5c:20:d9:9e:8c:f9:ef:bb:3c: 07:22:66:96:01:64:08:17:08:ac:82:be:7b:6c:1d: da:82:45:06:b9:fd:80:39:9b:f5:8f:14:21:15:53: f1:93:43:8f:5a:ba:f3:23:07:a1:6d:87:06:9a:1e: 2a:4f:ba:37:27:9b:16:32:7b:a9:c0:67:99:1e:5b: a8:dc:10:62:46:11:ce:6f:40:a9:76:5f:20:d9:ff: 5e:0f:c8:15:ba:6a:e2:eb:ad:c8:32:e6:14:65:bd: 17:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EE:58:0B:90:C1:DE:21:42:9B:85:4C:79:0A:0A:DF:DC:F1:25:38 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.188.0/24 Signature Algorithm: sha256WithRSAEncryption 74:16:44:a8:4e:b8:76:71:59:5e:4b:76:96:14:85:f4:25:c2: 48:b9:cc:ad:d4:55:f9:4d:54:58:27:20:34:fb:70:84:49:f2: 6a:fd:39:17:a2:14:56:03:db:2c:de:c4:63:c4:0d:21:bc:96: 89:4f:b8:d3:fe:16:b9:aa:b8:73:40:63:3a:0c:5d:4f:aa:04: 86:1c:e9:49:aa:ec:74:27:c6:00:b8:f6:68:f3:0b:b7:d6:72: ea:25:ed:20:41:3b:82:57:4e:fb:8b:a8:6b:31:8d:d3:18:c8: dc:02:4a:c0:36:45:0e:3e:74:bd:4d:cf:6e:94:56:40:7d:c5: 07:d1:87:43:a1:4a:52:01:f7:f2:47:11:3b:8b:55:62:68:60: af:26:40:6d:af:20:23:46:08:88:ea:c6:a8:fd:4b:e3:dd:5e: 63:57:e6:c2:5e:d8:b6:a1:ca:e3:16:02:f0:63:7a:66:c8:28: d2:42:81:69:d1:72:55:4e:bd:dc:ed:ce:73:d1:79:fc:cd:55: e8:ec:81:60:0c:76:c0:4d:b4:da:30:bf:e7:cb:09:ac:a5:46: 85:a7:97:9b:40:34:cb:59:2f:7a:57:f9:19:2c:2e:25:d6:f4: 41:f4:f7:75:f1:04:9b:23:2f:5f:2b:9f:a8:5e:93:f9:20:22: 44:b0:b8:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJSdeTAhjsf9gV+oiFNgUopuaR7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDMxMzFaFw0yNTA5MTYwMDM2MzFaMDMxMTAvBgNV BAMTKDVERUU1ODBCOTBDMURFMjE0MjlCODU0Qzc5MEEwQURGRENGMTI1MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuYL5NRZ6+PtsNNj4p2h0UXeg2 J8/F+2AbUkMoFfm66lmF+xRbDWtw0brD+hOFmBSbjaIpFncrbArQi5xb2Nv2vmrB u+uouczmzvKJh5Nu6u/mhPbHuka0DVdHWgxK7zUjSglbeg5zAWV3tEYXY0466T8W AnpxGpd+EKVr61SsGVkeuGmi/ytJOHNLklq1wyfMAOks2C0Xarn8y1wg2Z6M+e+7 PAciZpYBZAgXCKyCvntsHdqCRQa5/YA5m/WPFCEVU/GTQ49auvMjB6FthwaaHipP ujcnmxYye6nAZ5keW6jcEGJGEc5vQKl2XyDZ/14PyBW6auLrrcgy5hRlvRe/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXe5YC5DB3iFCm4VMeQoK39zxJTgwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzUzMDJlMzEzMjM5MmUzMTM4MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAloG8MA0GCSqG SIb3DQEBCwUAA4IBAQB0FkSoTrh2cVleS3aWFIX0JcJIucyt1FX5TVRYJyA0+3CE SfJq/TkXohRWA9ss3sRjxA0hvJaJT7jT/ha5qrhzQGM6DF1PqgSGHOlJqux0J8YA uPZo8wu31nLqJe0gQTuCV077i6hrMY3TGMjcAkrANkUOPnS9Tc9ulFZAfcUH0YdD oUpSAffyRxE7i1ViaGCvJkBtryAjRgiI6sao/Uvj3V5jV+bCXti2ocrjFgLwY3pm yCjSQoFp0XJVTr3c7c5z0Xn8zVXo7IFgDHbATbTaML/nywmspUaFp5ebQDTLWS96 V/kZLC4l1vRB9Pd18QSbIy9fK5+oXpP5ICJEsLgD -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org