$ rpki-client -vvf repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa File: 3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa (raw, json) Hash identifier: FkpJvfAJZskSw2RpW6IZFlM3nRvWIXVzCCgCII/z76M= Subject key identifier: 9A:73:03:47:F6:88:6A:54:10:E2:B7:D8:EF:92:43:EB:DB:83:01:78 Certificate issuer: /CN=78702A768CA1E1867D543013BB6186EDA3C06C16 Certificate serial: 1B1CABA1495C0B8E1C06CBAA3C8740DA7CDE9832 Authority key identifier: 78:70:2A:76:8C:A1:E1:86:7D:54:30:13:BB:61:86:ED:A3:C0:6C:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa Signing time: Thu 17 Oct 2024 08:59:23 +0000 ROA not before: Thu 17 Oct 2024 08:54:23 +0000 ROA not after: Thu 16 Oct 2025 08:59:23 +0000 asID: 152759 IP address blocks: 157.66.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.crl rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1c:ab:a1:49:5c:0b:8e:1c:06:cb:aa:3c:87:40:da:7c:de:98:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78702A768CA1E1867D543013BB6186EDA3C06C16 Validity Not Before: Oct 17 08:54:23 2024 GMT Not After : Oct 16 08:59:23 2025 GMT Subject: CN=9A730347F6886A5410E2B7D8EF9243EBDB830178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:58:07:18:73:a8:e0:c2:b0:46:57:a2:c1: 28:ac:8f:b6:bc:e5:51:97:71:93:68:7c:97:f5:9d: 25:8e:ab:30:fc:86:38:84:e1:d2:78:a3:6b:08:5a: 06:df:87:c2:12:13:4d:6e:8c:42:dd:e5:8d:49:4a: fa:43:4e:fe:b2:09:98:8a:c6:4f:03:25:58:03:5e: e5:7f:d2:e1:fd:80:70:2e:93:c7:59:0b:da:79:66: c4:8c:1e:7c:3a:98:bb:5a:aa:63:fe:9f:c7:fc:e0: f2:e9:c7:e5:25:c4:3b:24:1f:0b:52:38:2c:39:75: 5d:44:5d:ab:ac:65:23:0c:4f:c5:26:d1:11:df:de: fd:d2:2b:74:4f:b0:3e:9f:ae:19:90:bd:61:fb:6b: ba:20:56:2c:91:75:95:cf:5c:09:62:a2:05:a2:53: 55:d6:d6:7d:42:26:8b:43:33:63:b9:90:49:03:ff: 4c:78:8f:36:27:7a:bd:c8:fc:0f:39:f9:29:2c:82: aa:66:31:52:8a:73:11:dd:ce:4d:ad:18:22:00:7a: cd:b6:57:a0:a4:69:ff:e5:4f:24:c8:c1:95:3b:50: 06:4c:ec:ee:d3:ce:4c:e0:e4:4a:6c:48:c0:90:22: c5:9d:e2:d9:6e:3c:f2:27:53:c1:d2:cb:1c:54:6c: f3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:73:03:47:F6:88:6A:54:10:E2:B7:D8:EF:92:43:EB:DB:83:01:78 X509v3 Authority Key Identifier: keyid:78:70:2A:76:8C:A1:E1:86:7D:54:30:13:BB:61:86:ED:A3:C0:6C:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.141.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:93:29:42:d3:27:4e:6b:08:45:5e:06:17:1a:0b:9f:10:d1: c8:05:f7:f5:b0:5e:9d:d1:3a:9b:73:a6:7c:61:19:e7:0b:27: ff:f7:44:6a:64:57:1f:56:23:16:c2:47:47:93:ac:fe:52:88: e4:3d:99:35:cc:87:15:60:45:b1:b5:16:19:e6:60:e1:17:32: c6:6b:74:51:12:74:4d:51:d8:ae:e8:b3:c1:41:e5:7c:57:62: db:ee:d8:cb:f8:c0:62:ff:10:df:2f:cb:6c:6b:72:dc:93:d4: 67:21:2a:d3:14:c7:b3:cd:0c:45:bb:5b:4c:30:9c:7f:85:6f: fb:ec:30:9f:a7:57:1f:59:8d:e8:45:c7:15:3f:cb:62:a4:64: 33:12:55:3b:cd:0b:96:8e:b9:c1:56:9a:f7:c9:08:45:3f:a3: 83:e6:2f:40:a0:5e:67:59:1d:ac:11:30:d7:90:e9:df:97:0a: 1d:7a:95:a2:3b:49:94:80:45:17:33:d9:a6:82:3e:b6:7e:19: 2c:9a:14:ff:65:ff:13:80:ec:0c:40:7c:85:57:68:43:b2:ed: 5f:72:72:93:c5:1e:29:14:4b:51:44:13:7a:43:6a:ae:e4:fe: 91:36:d3:d0:12:60:74:b3:fb:ba:68:7d:c4:e9:6a:7e:af:8e: 08:45:26:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGxyroUlcC44cBsuqPIdA2nzemDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg3MDJBNzY4Q0ExRTE4NjdENTQzMDEzQkI2MTg2RURB M0MwNkMxNjAeFw0yNDEwMTcwODU0MjNaFw0yNTEwMTYwODU5MjNaMDMxMTAvBgNV BAMTKDlBNzMwMzQ3RjY4ODZBNTQxMEUyQjdEOEVGOTI0M0VCREI4MzAxNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT/1gHGHOo4MKwRleiwSisj7a8 5VGXcZNofJf1nSWOqzD8hjiE4dJ4o2sIWgbfh8ISE01ujELd5Y1JSvpDTv6yCZiK xk8DJVgDXuV/0uH9gHAuk8dZC9p5ZsSMHnw6mLtaqmP+n8f84PLpx+UlxDskHwtS OCw5dV1EXausZSMMT8Um0RHf3v3SK3RPsD6frhmQvWH7a7ogViyRdZXPXAliogWi U1XW1n1CJotDM2O5kEkD/0x4jzYner3I/A85+SksgqpmMVKKcxHdzk2tGCIAes22 V6Ckaf/lTyTIwZU7UAZM7O7Tzkzg5EpsSMCQIsWd4tluPPInU8HSyxxUbPOfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmnMDR/aIalQQ4rfY75JD69uDAXgwHwYDVR0j BBgwFoAUeHAqdoyh4YZ9VDATu2GG7aPAbBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmE5ZjRlMi1jNzNiLTQ0MjctOTgyOS0xZGExYmFhYjg3MGIvMC83ODcwMkE3NjhD QTFFMTg2N0Q1NDMwMTNCQjYxODZFREEzQzA2QzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzg3MDJBNzY4Q0ExRTE4NjdENTQzMDEzQkI2MTg2RURBM0Mw NkMxNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiYTlmNGUyLWM3M2ItNDQyNy05 ODI5LTFkYTFiYWFiODcwYi8wLzMxMzUzNzJlMzYzNjJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKNMA0GCSqG SIb3DQEBCwUAA4IBAQALkylC0ydOawhFXgYXGgufENHIBff1sF6d0Tqbc6Z8YRnn Cyf/90RqZFcfViMWwkdHk6z+UojkPZk1zIcVYEWxtRYZ5mDhFzLGa3RREnRNUdiu 6LPBQeV8V2Lb7tjL+MBi/xDfL8tsa3Lck9RnISrTFMezzQxFu1tMMJx/hW/77DCf p1cfWY3oRccVP8tipGQzElU7zQuWjrnBVpr3yQhFP6OD5i9AoF5nWR2sETDXkOnf lwodepWiO0mUgEUXM9mmgj62fhksmhT/Zf8TgOwMQHyFV2hDsu1fcnKTxR4pFEtR RBN6Q2qu5P6RNtPQEmB0s/u6aH3E6Wp+r44IRSbE -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org