$ rpki-client -vvf repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e203136353039.roa File: 3135372e36362e3134322e302f32342d3234203d3e203136353039.roa (raw, json) Hash identifier: 9d2OYF5hewIGqVhPx90ouzQVVPmFmJUDCrLjB5HOjzI= Subject key identifier: AC:0C:9E:D3:0E:4C:D0:E1:C3:4E:9B:D8:38:3C:92:EC:D2:56:8C:A5 Certificate issuer: /CN=9C0CD04CE56225A0085EF8AB28640C3808768B42 Certificate serial: 07A3BE6D17267C40A3271FD04B733A2D376C0F3C Authority key identifier: 9C:0C:D0:4C:E5:62:25:A0:08:5E:F8:AB:28:64:0C:38:08:76:8B:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e203136353039.roa Signing time: Mon 03 Jun 2024 16:19:43 +0000 ROA not before: Mon 03 Jun 2024 16:14:43 +0000 ROA not after: Mon 02 Jun 2025 16:19:43 +0000 asID: 16509 IP address blocks: 157.66.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.crl rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 06:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a3:be:6d:17:26:7c:40:a3:27:1f:d0:4b:73:3a:2d:37:6c:0f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C0CD04CE56225A0085EF8AB28640C3808768B42 Validity Not Before: Jun 3 16:14:43 2024 GMT Not After : Jun 2 16:19:43 2025 GMT Subject: CN=AC0C9ED30E4CD0E1C34E9BD8383C92ECD2568CA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1c:97:82:2d:a6:59:6a:72:f6:e9:4b:9b:fa: 30:98:ab:b7:41:47:87:30:a7:26:36:66:4e:96:cb: ee:17:cf:e9:b3:ed:20:f4:3e:df:54:b2:93:4f:9e: f7:d0:45:8e:d8:75:4a:c4:f5:ba:ac:5a:aa:cb:eb: 3a:e1:8c:2b:42:1e:f3:34:6e:dd:0a:1c:5c:2a:55: 57:1b:b7:9f:f3:e5:c9:2d:c7:a7:b9:09:5f:ba:08: b0:bf:39:8b:ea:84:bd:54:3f:87:a4:dc:62:d1:6a: aa:4c:0c:bc:bd:c3:eb:8b:bc:72:47:38:c4:72:a1: 2c:23:bc:1e:5f:26:be:22:db:99:c5:21:6d:a6:57: b2:33:af:7b:61:e5:7f:9e:4f:8c:f5:66:de:24:2f: d2:38:48:ab:24:09:56:81:17:01:84:7b:a2:23:f8: a7:8c:73:5b:51:df:1b:ca:3d:0d:1b:aa:b5:58:12: d9:74:a3:0a:2f:bd:e0:ce:2d:3e:86:f6:af:3c:ae: ea:09:a0:20:37:c7:e1:4f:b4:5d:09:17:e5:bd:bf: a6:ba:fc:84:90:72:fd:a7:87:fb:71:55:92:9c:e8: 3b:07:ab:8a:ab:69:a7:3e:6b:f8:6d:b8:c6:28:8d: 56:5f:49:98:2a:1e:12:ce:4d:5d:f9:37:52:d9:f3: cc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0C:9E:D3:0E:4C:D0:E1:C3:4E:9B:D8:38:3C:92:EC:D2:56:8C:A5 X509v3 Authority Key Identifier: keyid:9C:0C:D0:4C:E5:62:25:A0:08:5E:F8:AB:28:64:0C:38:08:76:8B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.142.0/24 Signature Algorithm: sha256WithRSAEncryption b2:0f:31:52:09:7f:f5:8e:9e:ff:fc:2d:08:fe:d5:52:75:c4: b5:1a:a3:3f:f6:0b:a3:17:e5:1c:b3:56:2b:90:e5:fb:87:f3: f1:93:6d:40:85:73:a9:72:ab:2a:b2:b3:0b:e2:bc:cf:e7:d2: 6d:ee:8e:19:c3:91:52:6d:4e:7e:7a:db:a6:cc:91:9b:b8:d3: 20:60:18:06:a2:4b:c0:d1:c9:09:a5:1c:b0:48:5b:40:2c:38: c8:3b:2d:99:37:f9:7b:5f:20:0b:16:e6:da:cb:8f:da:98:57: fa:44:f2:98:c4:a9:56:eb:bb:f9:0c:72:d3:16:a7:29:ff:70: 13:33:8c:ab:51:0b:b2:29:e8:e8:27:9d:6b:c8:46:62:ca:50: 55:ea:47:c5:fb:94:de:54:81:10:27:fa:69:1a:9b:05:0f:d4: 96:03:9c:02:da:d6:02:0b:b4:46:a3:5c:18:24:c2:52:57:45: 07:6f:0b:62:cf:b3:2a:8e:f9:6f:5f:c6:9e:28:12:31:70:41: c0:e5:1e:4a:b1:d1:6b:5a:f6:11:6a:a0:b0:dc:9d:19:03:30: 80:13:60:9e:a3:b2:19:70:d0:53:ea:76:a7:bc:31:2a:4c:64: b6:c5:47:91:c3:3d:2e:f4:05:83:2c:b3:e0:52:9f:ce:a9:46: 3e:db:92:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB6O+bRcmfECjJx/QS3M6LTdsDzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUMwQ0QwNENFNTYyMjVBMDA4NUVGOEFCMjg2NDBDMzgw ODc2OEI0MjAeFw0yNDA2MDMxNjE0NDNaFw0yNTA2MDIxNjE5NDNaMDMxMTAvBgNV BAMTKEFDMEM5RUQzMEU0Q0QwRTFDMzRFOUJEODM4M0M5MkVDRDI1NjhDQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNHJeCLaZZanL26Uub+jCYq7dB R4cwpyY2Zk6Wy+4Xz+mz7SD0Pt9UspNPnvfQRY7YdUrE9bqsWqrL6zrhjCtCHvM0 bt0KHFwqVVcbt5/z5cktx6e5CV+6CLC/OYvqhL1UP4ek3GLRaqpMDLy9w+uLvHJH OMRyoSwjvB5fJr4i25nFIW2mV7Izr3th5X+eT4z1Zt4kL9I4SKskCVaBFwGEe6Ij +KeMc1tR3xvKPQ0bqrVYEtl0owovveDOLT6G9q88ruoJoCA3x+FPtF0JF+W9v6a6 /ISQcv2nh/txVZKc6DsHq4qraac+a/htuMYojVZfSZgqHhLOTV35N1LZ88x/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrAye0w5M0OHDTpvYODyS7NJWjKUwHwYDVR0j BBgwFoAUnAzQTOViJaAIXvirKGQMOAh2i0IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjMxMWY4OS0zOGZkLTQ0MjQtOGE5Ni1mYTIxNzJkODdkNmYvMC85QzBDRDA0Q0U1 NjIyNUEwMDg1RUY4QUIyODY0MEMzODA4NzY4QjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUMwQ0QwNENFNTYyMjVBMDA4NUVGOEFCMjg2NDBDMzgwODc2 OEI0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2MzExZjg5LTM4ZmQtNDQyNC04 YTk2LWZhMjE3MmQ4N2Q2Zi8wLzMxMzUzNzJlMzYzNjJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNjM1MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CjjANBgkqhkiG 9w0BAQsFAAOCAQEAsg8xUgl/9Y6e//wtCP7VUnXEtRqjP/YLoxflHLNWK5Dl+4fz 8ZNtQIVzqXKrKrKzC+K8z+fSbe6OGcORUm1OfnrbpsyRm7jTIGAYBqJLwNHJCaUc sEhbQCw4yDstmTf5e18gCxbm2suP2phX+kTymMSpVuu7+Qxy0xanKf9wEzOMq1EL sino6Ceda8hGYspQVepHxfuU3lSBECf6aRqbBQ/UlgOcAtrWAgu0RqNcGCTCUldF B28LYs+zKo75b1/GnigSMXBBwOUeSrHRa1r2EWqgsNydGQMwgBNgnqOyGXDQU+p2 p7wxKkxktsVHkcM9LvQFgyyz4FKfzqlGPtuSRg== -----END CERTIFICATE-----Generated at Fri Jun 28 22:39:23 2024 by rpki-client on console-fra.rpki-client.org