$ rpki-client -vvf repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: /l+vrPvdnCw410viHoe0wV+CdihgaTS+aqUv/Z3QF3Y= Subject key identifier: 1C:C9:85:B2:11:34:AD:84:98:6F:EE:9C:BE:49:DE:26:A0:29:C4:96 Certificate issuer: /CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Certificate serial: 49BF5C977040B8A462186EF2E96CA6CEEE8AA86F Authority key identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa Signing time: Thu 11 Jan 2024 04:38:46 +0000 ROA not before: Thu 11 Jan 2024 04:33:46 +0000 ROA not after: Thu 09 Jan 2025 04:38:46 +0000 asID: 152082 IP address blocks: 157.10.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:bf:5c:97:70:40:b8:a4:62:18:6e:f2:e9:6c:a6:ce:ee:8a:a8:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Validity Not Before: Jan 11 04:33:46 2024 GMT Not After : Jan 9 04:38:46 2025 GMT Subject: CN=1CC985B21134AD84986FEE9CBE49DE26A029C496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:72:1f:78:a0:1b:ed:0e:ab:9d:06:44:8f:82: bb:40:1b:0a:3f:e1:1a:e6:75:73:35:dc:17:53:1e: ef:c0:d6:89:65:4d:e7:5a:4e:bc:12:3f:b7:d2:d2: 60:51:f8:c4:eb:f9:e3:8e:a0:90:cc:8b:d2:c0:92: c7:06:4b:04:59:80:bb:6b:72:98:60:49:05:3c:34: c1:e8:55:52:73:f8:85:3d:9b:66:af:9a:af:e3:d6: 46:3d:44:a9:b7:54:30:c1:f9:95:ad:08:e0:21:d6: b9:bc:f0:e7:2b:9e:5e:85:2e:79:93:f5:da:db:5d: bd:a4:87:58:68:39:6a:66:0d:7c:a6:f0:ff:fd:14: a7:f1:3f:17:07:cf:7c:9c:e3:26:95:31:23:29:7b: 03:8f:66:0e:d2:ea:d6:9b:00:33:0c:a3:68:1a:fa: 4e:19:d9:e0:cb:c9:b6:25:fc:af:8d:fb:8c:cf:b5: 0f:a6:b5:a3:63:4c:fc:26:ab:db:0f:08:a7:96:a0: 31:71:4e:10:87:03:a7:fc:96:23:02:08:5e:eb:5e: f5:86:8b:cb:19:a2:89:90:51:f8:6f:87:a8:96:5a: 54:65:ed:6b:91:e2:0a:60:5b:95:68:63:b8:00:2b: 53:53:a8:26:ba:93:11:21:5e:45:aa:82:2c:9b:29: 62:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C9:85:B2:11:34:AD:84:98:6F:EE:9C:BE:49:DE:26:A0:29:C4:96 X509v3 Authority Key Identifier: keyid:C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/24 Signature Algorithm: sha256WithRSAEncryption 57:50:80:4b:96:6e:24:a3:63:1f:59:5a:23:2d:44:6a:6d:8d: da:78:1b:97:83:59:9a:f7:13:08:85:76:4f:41:d2:d4:38:8b: b4:32:2d:d5:59:2b:50:ad:b0:b2:e3:f1:5c:95:fe:e3:d6:b9: 16:0c:b6:73:45:34:b0:7d:89:83:9a:c0:e0:c7:a8:a8:42:64: ef:53:32:70:10:3c:fb:e9:6f:3b:94:da:2f:a1:8a:15:c9:68: 62:1b:51:89:c6:03:4a:aa:a7:29:4e:94:d0:e3:56:b3:7a:16: 71:4d:17:d0:bd:cf:11:57:15:67:88:c4:9b:ce:e9:18:82:61: d8:c0:47:3d:97:9a:0c:76:65:48:21:76:7e:91:1e:be:fc:c4: 55:17:b7:88:8c:09:80:7b:14:09:d5:b2:5a:dc:34:8c:f5:a1: 43:7a:af:e4:dc:d2:7b:e3:ff:3e:2e:71:58:79:a5:fe:e9:21: 3f:80:df:60:88:37:7a:6a:35:0a:37:fe:35:11:aa:31:f2:e1: c1:70:09:7c:e2:d5:5d:bf:20:e5:9d:ab:8f:36:50:b2:a3:06: e7:32:1e:83:9d:91:98:9e:d7:50:ce:fa:d2:f9:09:fb:c1:6a: 4a:68:9f:f0:14:c7:73:08:f5:ee:45:5f:57:1a:12:b5:60:c0: f1:67:d2:b9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSb9cl3BAuKRiGG7y6Wymzu6KqG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE3MzI1NzE4MTBDOUQ0OTc2Q0QxQTQ3RDU1ODQ3MjZD RjBDQzdCRDAeFw0yNDAxMTEwNDMzNDZaFw0yNTAxMDkwNDM4NDZaMDMxMTAvBgNV BAMTKDFDQzk4NUIyMTEzNEFEODQ5ODZGRUU5Q0JFNDlERTI2QTAyOUM0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbch94oBvtDqudBkSPgrtAGwo/ 4RrmdXM13BdTHu/A1ollTedaTrwSP7fS0mBR+MTr+eOOoJDMi9LAkscGSwRZgLtr cphgSQU8NMHoVVJz+IU9m2avmq/j1kY9RKm3VDDB+ZWtCOAh1rm88Ocrnl6FLnmT 9drbXb2kh1hoOWpmDXym8P/9FKfxPxcHz3yc4yaVMSMpewOPZg7S6tabADMMo2ga +k4Z2eDLybYl/K+N+4zPtQ+mtaNjTPwmq9sPCKeWoDFxThCHA6f8liMCCF7rXvWG i8sZoomQUfhvh6iWWlRl7WuR4gpgW5VoY7gAK1NTqCa6kxEhXkWqgiybKWJTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHMmFshE0rYSYb+6cvkneJqApxJYwHwYDVR0j BBgwFoAUwXMlcYEMnUl2zRpH1VhHJs8Mx70wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMC9DMTczMjU3MTgx MEM5RDQ5NzZDRDFBNDdENTU4NDcyNkNGMENDN0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzE3MzI1NzE4MTBDOUQ0OTc2Q0QxQTQ3RDU1ODQ3MjZDRjBD QzdCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAV1CAS5ZuJKNjH1laIy1Eam2N2ngbl4NZmvcTCIV2T0HS1DiL tDIt1VkrUK2wsuPxXJX+49a5Fgy2c0U0sH2Jg5rA4MeoqEJk71MycBA8++lvO5Ta L6GKFcloYhtRicYDSqqnKU6U0ONWs3oWcU0X0L3PEVcVZ4jEm87pGIJh2MBHPZea DHZlSCF2fpEevvzEVRe3iIwJgHsUCdWyWtw0jPWhQ3qv5NzSe+P/Pi5xWHml/ukh P4DfYIg3emo1Cjf+NRGqMfLhwXAJfOLVXb8g5Z2rjzZQsqMG5zIeg52RmJ7XUM76 0vkJ+8FqSmif8BTHcwj17kVfVxoStWDA8WfSuQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org