$ rpki-client -vvf repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39302e302f32332d3233203d3e20313532303836.roa File: 3135372e31302e39302e302f32332d3233203d3e20313532303836.roa (raw, json) Hash identifier: T696t09s1lEHX3xDzPeEBd35lBqL8WLXsYL+YPqRb3I= Subject key identifier: 9F:E6:94:01:6B:C3:E0:E8:76:F4:D8:3C:3C:D7:17:E8:87:AE:6A:A9 Certificate issuer: /CN=5EC928AFD73AFC70F10C468E21482031920DF521 Certificate serial: 2CC9772337DF62D4E2C58FEB77D89B04851EA275 Authority key identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39302e302f32332d3233203d3e20313532303836.roa Signing time: Sun 18 Feb 2024 16:13:40 +0000 ROA not before: Sun 18 Feb 2024 16:08:40 +0000 ROA not after: Sun 16 Feb 2025 16:13:40 +0000 asID: 152086 IP address blocks: 157.10.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c9:77:23:37:df:62:d4:e2:c5:8f:eb:77:d8:9b:04:85:1e:a2:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC928AFD73AFC70F10C468E21482031920DF521 Validity Not Before: Feb 18 16:08:40 2024 GMT Not After : Feb 16 16:13:40 2025 GMT Subject: CN=9FE694016BC3E0E876F4D83C3CD717E887AE6AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:27:10:fa:bc:e3:2a:89:c3:65:ec:ad:1e: 81:8d:db:0c:c2:98:9b:82:c6:b8:55:17:f4:c4:fc: 19:b7:64:15:1b:eb:61:31:cd:47:7d:c2:ac:f6:5f: 2e:51:ec:56:db:29:0a:47:05:00:f7:dc:ec:e9:a7: 69:29:06:c4:15:d4:e1:0d:10:d9:82:7f:bd:af:82: 54:2f:07:1c:92:2f:8c:a0:17:de:9c:b9:3f:f0:62: 07:d3:14:72:d9:53:2c:04:40:c3:25:44:3e:5e:c8: c9:85:fb:7f:01:9e:48:1c:86:da:cb:45:2d:15:00: da:fd:b3:63:bc:c6:73:0f:0a:8a:75:d8:0a:93:63: 6a:b6:37:09:94:91:99:ad:ae:84:01:0e:4d:a5:fa: 17:07:3e:f3:00:d6:f1:90:9e:32:6c:cd:e9:1c:30: cc:65:c9:5c:73:9d:37:07:1b:b1:50:ad:ea:5d:47: b5:a7:97:7a:89:70:d6:bd:c0:33:ab:81:e2:69:d1: f8:81:c6:21:05:57:35:04:cb:57:4f:3b:10:2d:a2: 75:41:1c:ac:17:a7:f9:2c:05:00:6c:b3:21:f2:6c: fd:b9:7e:51:bb:f1:3f:b7:f1:c7:85:bf:39:16:2e: ae:bb:9f:f3:86:6b:40:b6:a3:77:1f:ee:77:e7:aa: 8a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E6:94:01:6B:C3:E0:E8:76:F4:D8:3C:3C:D7:17:E8:87:AE:6A:A9 X509v3 Authority Key Identifier: keyid:5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39302e302f32332d3233203d3e20313532303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.90.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:22:09:3b:50:a2:26:28:ba:28:70:0b:a5:b8:89:a2:d4:39: c7:72:24:75:b3:dc:fb:81:dd:a3:33:c3:55:6f:32:e4:57:cc: be:11:fc:37:3c:2f:42:74:22:e3:ac:67:23:8e:9b:1a:c0:8e: 08:22:2a:96:29:a2:19:f6:f5:18:10:45:e7:d7:18:fe:58:1a: fe:9a:bb:b6:d6:4c:43:36:fb:f4:de:e4:63:4a:3f:79:fb:7e: b4:1b:68:f3:dc:28:fe:e2:d1:f9:19:42:22:a9:09:34:9a:fc: c6:5a:39:f3:82:85:9d:4f:bb:fc:d7:f1:a2:3c:cd:08:d9:82: 4f:a4:07:7f:65:92:53:90:13:f7:09:a6:14:0f:af:7a:51:ba: 41:02:f0:75:b0:64:b8:0f:c3:2d:e9:8b:ab:9a:38:c4:20:5f: bd:b2:40:9c:b3:2f:89:15:0d:4f:28:a3:82:7d:14:d9:19:f8: b0:7f:47:41:6f:65:dd:fd:32:91:2d:6a:9d:5b:c1:22:7e:07: 7c:9a:cc:e7:14:64:0e:b3:84:7f:aa:6f:0b:f8:70:39:da:d4: a2:0b:72:5e:12:5b:56:df:b7:26:12:33:23:f6:d0:2e:cb:ef: 16:93:47:5f:db:c4:ed:4a:c9:07:98:ce:5e:e1:40:09:9e:b4: b7:8b:bc:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULMl3IzffYtTixY/rd9ibBIUeonUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5 MjBERjUyMTAeFw0yNDAyMTgxNjA4NDBaFw0yNTAyMTYxNjEzNDBaMDMxMTAvBgNV BAMTKDlGRTY5NDAxNkJDM0UwRTg3NkY0RDgzQzNDRDcxN0U4ODdBRTZBQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnZycQ+rzjKonDZeytHoGN2wzC mJuCxrhVF/TE/Bm3ZBUb62ExzUd9wqz2Xy5R7FbbKQpHBQD33Ozpp2kpBsQV1OEN ENmCf72vglQvBxySL4ygF96cuT/wYgfTFHLZUywEQMMlRD5eyMmF+38BnkgchtrL RS0VANr9s2O8xnMPCop12AqTY2q2NwmUkZmtroQBDk2l+hcHPvMA1vGQnjJszekc MMxlyVxznTcHG7FQrepdR7Wnl3qJcNa9wDOrgeJp0fiBxiEFVzUEy1dPOxAtonVB HKwXp/ksBQBssyHybP25flG78T+38ceFvzkWLq67n/OGa0C2o3cf7nfnqop3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn+aUAWvD4Oh29Ng8PNcX6IeuaqkwHwYDVR0j BBgwFoAUXskor9c6/HDxDEaOIUggMZIN9SEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Y2YzZjhjOC0wNDA2LTRiMzgtYTdhOC1kY2IxNWU0MWYyYjcvMC81RUM5MjhBRkQ3 M0FGQzcwRjEwQzQ2OEUyMTQ4MjAzMTkyMERGNTIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5MjBE RjUyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjZjNmOGM4LTA0MDYtNGIzOC1h N2E4LWRjYjE1ZTQxZjJiNy8wLzMxMzUzNzJlMzEzMDJlMzkzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWjANBgkqhkiG 9w0BAQsFAAOCAQEAXCIJO1CiJii6KHALpbiJotQ5x3IkdbPc+4HdozPDVW8y5FfM vhH8NzwvQnQi46xnI46bGsCOCCIqlimiGfb1GBBF59cY/lga/pq7ttZMQzb79N7k Y0o/eft+tBto89wo/uLR+RlCIqkJNJr8xlo584KFnU+7/NfxojzNCNmCT6QHf2WS U5AT9wmmFA+velG6QQLwdbBkuA/DLemLq5o4xCBfvbJAnLMviRUNTyijgn0U2Rn4 sH9HQW9l3f0ykS1qnVvBIn4HfJrM5xRkDrOEf6pvC/hwOdrUogtyXhJbVt+3JhIz I/bQLsvvFpNHX9vE7UrJB5jOXuFACZ60t4u8qw== -----END CERTIFICATE-----Generated at Wed Nov 20 18:42:10 2024 by rpki-client on console-fra.rpki-client.org