$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa File: 3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: tDTZ/suZi8WZKxIsg3/UkPfyYPayY1nRFDPkKF6bSng= Subject key identifier: EF:AB:A1:C4:97:E0:BA:BC:97:B8:30:DA:68:E5:B6:4F:5A:F2:51:D3 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 197756000294EEC1712F83E8BB0BE22913CC06E9 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:37:21 +0000 ROA not before: Tue 17 Sep 2024 00:32:21 +0000 ROA not after: Tue 16 Sep 2025 00:37:21 +0000 asID: 38149 IP address blocks: 150.129.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:77:56:00:02:94:ee:c1:71:2f:83:e8:bb:0b:e2:29:13:cc:06:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:32:21 2024 GMT Not After : Sep 16 00:37:21 2025 GMT Subject: CN=EFABA1C497E0BABC97B830DA68E5B64F5AF251D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:b4:94:05:79:d4:ae:28:dd:34:8e:63:02: 9e:48:78:50:bb:49:eb:35:4f:2a:5c:a1:ef:7f:43: 2b:7b:a1:0c:9a:54:6a:a8:d2:51:f7:3f:a7:22:91: b5:d2:57:89:bf:30:3b:45:30:52:90:a4:c3:e4:28: 07:8f:9e:28:c7:9f:27:5d:ba:f3:f5:55:8a:60:33: 9a:a6:64:1b:17:0b:2c:b3:9e:83:eb:2b:9e:4d:13: 1f:5f:4a:85:7e:5d:ca:37:58:4b:e3:e0:e4:76:09: a0:42:11:1f:f7:11:c3:85:b3:e3:e8:2d:27:c6:f1: dd:ed:95:43:b0:5c:20:2c:4c:99:21:2a:a6:fb:bc: a9:e4:bc:8f:50:55:00:f7:d4:26:4c:be:77:8a:22: 83:ca:63:93:96:82:c2:89:fe:4e:69:c6:17:ae:f6: 42:3a:ed:0c:55:20:b8:8d:84:aa:8d:b0:11:ed:ac: a0:e9:68:fe:29:a9:6c:dc:15:81:99:8e:df:bc:a8: bd:25:00:83:19:53:f8:11:cc:41:89:ef:fd:42:1e: e9:86:34:e3:93:5c:8d:02:f5:66:da:4e:a9:2d:e5: f7:05:bb:14:fe:94:1d:db:3d:6f:44:d4:bf:02:2f: 81:ef:17:58:17:69:3f:57:f0:c2:eb:49:59:78:85: 27:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AB:A1:C4:97:E0:BA:BC:97:B8:30:DA:68:E5:B6:4F:5A:F2:51:D3 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.191.0/24 Signature Algorithm: sha256WithRSAEncryption 03:1c:58:42:31:f9:a2:76:72:97:70:44:73:d2:f1:66:09:e0: 1b:36:eb:b3:4b:8b:d6:20:5e:bb:20:f5:fb:73:91:1d:90:04: 98:58:e2:e2:e5:a1:18:91:b0:64:73:b3:95:87:33:cc:ba:35: ff:74:e3:1a:5f:ab:af:1c:56:28:4e:7a:3e:be:7c:a3:1c:95: a4:64:d8:9b:d1:0c:c4:95:20:4a:ed:e6:6b:57:7a:7d:ff:0a: 1f:92:0f:87:e4:7d:83:ea:74:23:4f:d2:50:f3:53:a8:dc:f2: 6f:e9:d2:5e:98:63:40:04:69:74:dc:41:13:c1:81:9d:14:a3: 97:75:1d:d9:a0:07:10:4d:e2:b9:47:6f:d9:b5:8a:24:af:a7: 68:06:d7:2d:da:29:a8:a9:6b:b5:63:59:e9:32:f1:70:9c:73: 3c:05:59:2c:a7:39:0a:c7:ba:2a:71:56:49:05:40:85:50:43: d3:78:87:b4:ad:72:eb:95:83:13:2a:72:dd:ed:3e:97:b8:d7: ef:c5:cf:ef:f8:d3:19:bd:ea:06:ec:42:b4:27:a2:4b:fb:f8: 59:10:2c:a8:9a:c9:e8:c5:75:ea:5d:2c:86:c3:21:53:c3:fa: 7d:f2:a7:2f:f2:88:d9:04:a0:3c:82:c6:57:10:76:9b:29:00: 13:8d:57:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGXdWAAKU7sFxL4PouwviKRPMBukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDMyMjFaFw0yNTA5MTYwMDM3MjFaMDMxMTAvBgNV BAMTKEVGQUJBMUM0OTdFMEJBQkM5N0I4MzBEQTY4RTVCNjRGNUFGMjUxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn/LSUBXnUrijdNI5jAp5IeFC7 Ses1Typcoe9/Qyt7oQyaVGqo0lH3P6cikbXSV4m/MDtFMFKQpMPkKAePnijHnydd uvP1VYpgM5qmZBsXCyyznoPrK55NEx9fSoV+Xco3WEvj4OR2CaBCER/3EcOFs+Po LSfG8d3tlUOwXCAsTJkhKqb7vKnkvI9QVQD31CZMvneKIoPKY5OWgsKJ/k5pxheu 9kI67QxVILiNhKqNsBHtrKDpaP4pqWzcFYGZjt+8qL0lAIMZU/gRzEGJ7/1CHumG NOOTXI0C9WbaTqkt5fcFuxT+lB3bPW9E1L8CL4HvF1gXaT9X8MLrSVl4hScjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU76uhxJfguryXuDDaaOW2T1ryUdMwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzUzMDJlMzEzMjM5MmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAloG/MA0GCSqG SIb3DQEBCwUAA4IBAQADHFhCMfmidnKXcERz0vFmCeAbNuuzS4vWIF67IPX7c5Ed kASYWOLi5aEYkbBkc7OVhzPMujX/dOMaX6uvHFYoTno+vnyjHJWkZNib0QzElSBK 7eZrV3p9/wofkg+H5H2D6nQjT9JQ81Oo3PJv6dJemGNABGl03EETwYGdFKOXdR3Z oAcQTeK5R2/ZtYokr6doBtct2imoqWu1Y1npMvFwnHM8BVkspzkKx7oqcVZJBUCF UEPTeIe0rXLrlYMTKnLd7T6XuNfvxc/v+NMZveoG7EK0J6JL+/hZECyomsnoxXXq XSyGwyFTw/p98qcv8ojZBKA8gsZXEHabKQATjVf1 -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org