$ rpki-client -vvf repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39312e302f32342d3234203d3e20313532303836.roa File: 3135372e31302e39312e302f32342d3234203d3e20313532303836.roa (raw, json) Hash identifier: 3Tf67Q3SmMgqt6fs8JAIsUlRV93pGdA1ekQhD/EOrWo= Subject key identifier: A1:FA:D6:EB:D9:8C:EA:91:4E:5D:25:25:C9:47:87:C3:4F:CE:17:27 Certificate issuer: /CN=5EC928AFD73AFC70F10C468E21482031920DF521 Certificate serial: 0C4C17D15FB25CE00A8935973FA8C189E057F476 Authority key identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39312e302f32342d3234203d3e20313532303836.roa Signing time: Sun 18 Feb 2024 15:53:09 +0000 ROA not before: Sun 18 Feb 2024 15:48:09 +0000 ROA not after: Sun 16 Feb 2025 15:53:09 +0000 asID: 152086 IP address blocks: 157.10.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:4c:17:d1:5f:b2:5c:e0:0a:89:35:97:3f:a8:c1:89:e0:57:f4:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC928AFD73AFC70F10C468E21482031920DF521 Validity Not Before: Feb 18 15:48:09 2024 GMT Not After : Feb 16 15:53:09 2025 GMT Subject: CN=A1FAD6EBD98CEA914E5D2525C94787C34FCE1727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:52:d2:94:24:d8:62:3f:92:e5:13:a3:8e:67: 98:fa:ba:df:ec:45:44:61:33:80:31:0d:75:f1:3e: 54:99:07:78:ee:8d:47:e7:59:2e:1e:df:bc:52:d8: 37:57:67:4c:85:83:69:dc:99:cc:12:37:2d:12:1b: 85:dd:91:e4:54:e2:91:3b:4a:00:1a:e8:73:10:8d: 9e:9a:b1:2e:f5:37:68:4e:61:d9:90:2f:b4:80:5a: c3:93:36:65:5c:c3:e1:d8:d5:37:72:d9:9a:1e:90: 06:6a:fb:75:c1:26:95:29:33:bb:6c:b8:a0:36:ae: f8:31:97:27:9d:a9:b8:83:00:8e:54:f1:41:98:68: 43:42:c0:04:84:7b:ac:90:b4:9e:fd:82:b4:46:fb: 75:05:70:bb:38:1d:c2:63:a9:4f:b7:27:a2:a6:0f: 75:49:13:d3:11:c3:16:6d:a8:aa:d0:bf:78:49:41: d1:44:f1:85:05:6e:fa:e3:27:a4:44:02:e2:da:7a: 4f:83:ed:4d:7e:11:c7:06:a2:01:cb:a5:27:f8:2a: 84:15:46:89:d6:d9:e8:26:6d:e4:ac:1d:fd:ef:22: 41:41:ba:e8:35:07:fd:72:ef:83:9e:f8:5d:c8:95: 3a:83:82:5a:ac:e7:23:85:c9:ff:0e:3e:95:3a:4a: e0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:FA:D6:EB:D9:8C:EA:91:4E:5D:25:25:C9:47:87:C3:4F:CE:17:27 X509v3 Authority Key Identifier: keyid:5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39312e302f32342d3234203d3e20313532303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.91.0/24 Signature Algorithm: sha256WithRSAEncryption 08:c7:4c:77:aa:03:2b:a3:82:4b:40:1d:68:9c:30:77:3e:3b: 8b:a9:81:d5:29:60:64:83:62:b0:23:eb:ee:aa:d2:f0:69:1a: 13:f7:e5:6d:59:e5:d8:28:4a:a8:a8:07:5d:bb:6c:9d:e3:b3: 82:d9:88:bd:36:92:8d:e5:a2:9a:25:b3:ed:7c:1d:16:40:f5: 46:ea:18:6d:74:e5:24:b5:82:21:93:a2:a9:ae:c2:cb:c7:c6: ea:ff:33:61:82:00:47:6a:bf:6e:d3:a0:94:b9:21:ba:a4:59: 3e:0d:f5:f5:a6:5b:fc:b5:ef:b9:e3:8f:04:ea:a1:aa:42:08: c5:39:4d:a5:78:01:18:89:25:33:e6:3e:a5:33:e9:85:72:a0: 67:53:5e:b6:64:5a:a7:d8:82:b7:02:b6:7f:82:ba:1c:ee:18: ed:7f:0c:39:82:5f:cb:22:c2:bf:70:ab:8e:18:25:84:0d:07: 16:80:11:65:f5:2c:95:6f:6f:0d:ef:83:8e:6e:63:65:42:1e: db:5e:f2:f7:7d:48:99:f7:77:b1:d2:bc:5e:41:08:e6:e3:70: 92:91:a5:98:18:5c:43:0c:9a:0c:ab:8f:62:32:37:e4:f0:49: f8:c7:4a:b6:2d:1c:a5:6d:ef:9d:15:f9:9b:94:cc:a3:bf:07: d6:67:87:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDEwX0V+yXOAKiTWXP6jBieBX9HYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5 MjBERjUyMTAeFw0yNDAyMTgxNTQ4MDlaFw0yNTAyMTYxNTUzMDlaMDMxMTAvBgNV BAMTKEExRkFENkVCRDk4Q0VBOTE0RTVEMjUyNUM5NDc4N0MzNEZDRTE3MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UtKUJNhiP5LlE6OOZ5j6ut/s RURhM4AxDXXxPlSZB3jujUfnWS4e37xS2DdXZ0yFg2ncmcwSNy0SG4XdkeRU4pE7 SgAa6HMQjZ6asS71N2hOYdmQL7SAWsOTNmVcw+HY1Tdy2ZoekAZq+3XBJpUpM7ts uKA2rvgxlyedqbiDAI5U8UGYaENCwASEe6yQtJ79grRG+3UFcLs4HcJjqU+3J6Km D3VJE9MRwxZtqKrQv3hJQdFE8YUFbvrjJ6REAuLaek+D7U1+EccGogHLpSf4KoQV RonW2egmbeSsHf3vIkFBuug1B/1y74Oe+F3IlTqDglqs5yOFyf8OPpU6SuBRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUofrW69mM6pFOXSUlyUeHw0/OFycwHwYDVR0j BBgwFoAUXskor9c6/HDxDEaOIUggMZIN9SEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Y2YzZjhjOC0wNDA2LTRiMzgtYTdhOC1kY2IxNWU0MWYyYjcvMC81RUM5MjhBRkQ3 M0FGQzcwRjEwQzQ2OEUyMTQ4MjAzMTkyMERGNTIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5MjBE RjUyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjZjNmOGM4LTA0MDYtNGIzOC1h N2E4LWRjYjE1ZTQxZjJiNy8wLzMxMzUzNzJlMzEzMDJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWzANBgkqhkiG 9w0BAQsFAAOCAQEACMdMd6oDK6OCS0AdaJwwdz47i6mB1SlgZINisCPr7qrS8Gka E/flbVnl2ChKqKgHXbtsneOzgtmIvTaSjeWimiWz7XwdFkD1RuoYbXTlJLWCIZOi qa7Cy8fG6v8zYYIAR2q/btOglLkhuqRZPg319aZb/LXvueOPBOqhqkIIxTlNpXgB GIklM+Y+pTPphXKgZ1NetmRap9iCtwK2f4K6HO4Y7X8MOYJfyyLCv3CrjhglhA0H FoARZfUslW9vDe+Djm5jZUIe217y931Imfd3sdK8XkEI5uNwkpGlmBhcQwyaDKuP YjI35PBJ+MdKti0cpW3vnRX5m5TMo78H1meHhg== -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:48 2024 by rpki-client on console-ams.rpki-client.org