$ rpki-client -vvf repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa File: 3135372e36362e33382e302f32332d3234203d3e203633383635.roa (raw, json) Hash identifier: +9aUVXVrakF3/6jXiUFt1IaoR/brdXNPYJwCjA4ETO8= Subject key identifier: 5C:E8:7D:D6:A9:D6:4B:28:EC:65:F7:0F:F8:4D:D2:43:EB:61:B7:80 Certificate issuer: /CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Certificate serial: 5F5827423BAD966ACA88D87F05AE665F8DE6DD70 Authority key identifier: C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa Signing time: Tue 14 May 2024 09:43:03 +0000 ROA not before: Tue 14 May 2024 09:38:03 +0000 ROA not after: Tue 13 May 2025 09:43:03 +0000 asID: 63865 IP address blocks: 157.66.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.crl rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:58:27:42:3b:ad:96:6a:ca:88:d8:7f:05:ae:66:5f:8d:e6:dd:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Validity Not Before: May 14 09:38:03 2024 GMT Not After : May 13 09:43:03 2025 GMT Subject: CN=5CE87DD6A9D64B28EC65F70FF84DD243EB61B780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b5:d9:72:88:cf:b0:49:81:bb:9e:19:0e:06: 3a:a9:1b:64:a1:96:3f:79:5c:e4:a8:68:d3:84:ce: cd:23:70:70:bb:2a:46:48:f4:3e:ad:98:94:90:b2: 5c:4c:e0:4b:af:f4:25:cc:2f:c5:e8:cc:1d:4a:0e: 9e:1f:91:d2:4a:f0:79:e9:81:40:f2:e6:02:0d:a7: c2:45:6e:e3:21:57:b9:4b:aa:e8:05:9f:67:53:95: 00:c7:88:ed:39:6c:d7:72:b4:81:72:58:f5:6c:64: c9:9c:85:7b:d0:9a:f4:b3:b7:e4:6b:2f:ff:c7:10: a1:af:22:9d:0c:b4:df:b5:23:75:0a:61:cc:d0:e3: 07:b1:e9:12:27:5b:97:bd:db:85:f2:3f:b9:80:f6: 0a:f7:57:35:5c:29:78:5a:23:2f:34:9d:58:12:f6: 4b:eb:f9:c6:a7:e1:92:b6:8f:cf:3c:d9:a3:fb:d2: 04:57:6a:13:12:f2:74:17:ac:6f:f3:8d:e4:2c:7e: 1c:cb:5d:a2:8a:31:3b:ff:e3:7d:27:52:dd:7c:ac: ca:6f:b7:c1:2d:d5:9d:49:39:34:65:7d:8a:e6:fd: ca:75:67:76:92:d8:40:b8:74:d8:de:15:a7:9d:dc: 8b:7a:5b:93:b0:07:14:22:64:76:da:23:24:2e:e6: 1d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E8:7D:D6:A9:D6:4B:28:EC:65:F7:0F:F8:4D:D2:43:EB:61:B7:80 X509v3 Authority Key Identifier: keyid:C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.38.0/23 Signature Algorithm: sha256WithRSAEncryption 28:fc:27:cf:0f:83:b4:0a:18:ed:27:b0:16:85:12:bd:c7:2a: 56:f0:5e:2b:d5:d2:96:ce:61:17:86:da:ae:76:a6:1a:4a:40: 57:ec:68:27:78:7e:8e:4d:9d:03:fb:e9:a5:1a:9e:ac:c7:44: 1e:93:f2:92:83:85:6a:dd:da:d1:d4:02:5f:0d:12:33:d8:83: 6a:9e:4b:45:2f:12:c9:9a:7d:75:92:4f:df:df:3a:98:b5:1b: c9:6f:71:33:f2:2c:f7:7a:32:15:8e:df:2c:61:7c:7d:07:9a: 3f:33:ce:45:c2:e4:67:1e:a9:0d:53:9f:e9:a5:4c:e8:bf:99: da:5d:13:d5:06:76:50:6f:8f:97:51:db:1d:3f:7d:20:d9:5a: 62:22:19:ec:f7:62:f7:f4:33:5d:17:c7:a1:0a:7d:04:11:84: 45:73:00:71:9c:6e:2c:64:95:52:12:ec:a9:2c:b1:80:ec:9f: c8:73:29:e3:0a:1f:bd:87:ca:88:5a:f8:9f:40:d7:44:37:87: 61:d9:4b:01:2e:3f:b8:e1:dc:1a:cc:dd:36:89:49:4f:d6:29: 5f:dc:97:3d:be:2d:6e:97:bd:c4:37:83:6b:ae:63:76:f1:ac: f1:50:71:a8:c0:55:18:b7:07:5b:c8:18:9a:f9:d3:45:bb:39: 5c:f5:21:13 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUX1gnQjutlmrKiNh/Ba5mX43m3XAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzRGQ0RDNDI0QzVCNEIyQTU2M0YwRDA3MjU3M0E1NDky QUNGOEUzNjAeFw0yNDA1MTQwOTM4MDNaFw0yNTA1MTMwOTQzMDNaMDMxMTAvBgNV BAMTKDVDRTg3REQ2QTlENjRCMjhFQzY1RjcwRkY4NEREMjQzRUI2MUI3ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCutdlyiM+wSYG7nhkOBjqpG2Sh lj95XOSoaNOEzs0jcHC7KkZI9D6tmJSQslxM4Euv9CXML8XozB1KDp4fkdJK8Hnp gUDy5gINp8JFbuMhV7lLqugFn2dTlQDHiO05bNdytIFyWPVsZMmchXvQmvSzt+Rr L//HEKGvIp0MtN+1I3UKYczQ4wex6RInW5e924XyP7mA9gr3VzVcKXhaIy80nVgS 9kvr+can4ZK2j8882aP70gRXahMS8nQXrG/zjeQsfhzLXaKKMTv/430nUt18rMpv t8Et1Z1JOTRlfYrm/cp1Z3aS2EC4dNjeFaed3It6W5OwBxQiZHbaIyQu5h0DAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXOh91qnWSyjsZfcP+E3SQ+tht4AwHwYDVR0j BBgwFoAUxPzcQkxbSypWPw0HJXOlSSrPjjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWIyNjdhNC01MDMwLTRhNGYtYmI4Ni03MWZkMjMwZjUzZDEvMC9DNEZDREM0MjRD NUI0QjJBNTYzRjBEMDcyNTczQTU0OTJBQ0Y4RTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzRGQ0RDNDI0QzVCNEIyQTU2M0YwRDA3MjU3M0E1NDkyQUNG OEUzNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYjI2N2E0LTUwMzAtNGE0Zi1i Yjg2LTcxZmQyMzBmNTNkMS8wLzMxMzUzNzJlMzYzNjJlMzMzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQiYwDQYJKoZIhvcN AQELBQADggEBACj8J88Pg7QKGO0nsBaFEr3HKlbwXivV0pbOYReG2q52phpKQFfs aCd4fo5NnQP76aUanqzHRB6T8pKDhWrd2tHUAl8NEjPYg2qeS0UvEsmafXWST9/f Opi1G8lvcTPyLPd6MhWO3yxhfH0Hmj8zzkXC5GceqQ1Tn+mlTOi/mdpdE9UGdlBv j5dR2x0/fSDZWmIiGez3Yvf0M10Xx6EKfQQRhEVzAHGcbixklVIS7KkssYDsn8hz KeMKH72Hyoha+J9A10Q3h2HZSwEuP7jh3BrM3TaJSU/WKV/clz2+LW6XvcQ3g2uu Y3bxrPFQcajAVRi3B1vIGJr500W7OVz1IRM= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:22 2024 by rpki-client on console-ams.rpki-client.org