$ rpki-client -vvf repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/3135372e36362e38362e302f32332d3234203d3e20313532343432.roa File: 3135372e36362e38362e302f32332d3234203d3e20313532343432.roa (raw, json) Hash identifier: n01B0+QX3ZNWpX+DEnQCCVM6NRztIEbwDneGS8PBh+8= Subject key identifier: 4B:1D:E6:DC:9C:3B:3B:0C:69:13:76:D3:41:3F:4E:97:D8:6E:E2:5D Certificate issuer: /CN=EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17 Certificate serial: 0F332928C363E9E4EC6F7F88FE1896E1978368E5 Authority key identifier: EF:7C:A8:2C:5B:45:FD:41:2D:E8:92:CB:6D:A7:A8:CA:15:C8:5B:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/3135372e36362e38362e302f32332d3234203d3e20313532343432.roa Signing time: Fri 14 Jun 2024 04:38:46 +0000 ROA not before: Fri 14 Jun 2024 04:33:46 +0000 ROA not after: Fri 13 Jun 2025 04:38:46 +0000 asID: 152442 IP address blocks: 157.66.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.crl rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:33:29:28:c3:63:e9:e4:ec:6f:7f:88:fe:18:96:e1:97:83:68:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17 Validity Not Before: Jun 14 04:33:46 2024 GMT Not After : Jun 13 04:38:46 2025 GMT Subject: CN=4B1DE6DC9C3B3B0C691376D3413F4E97D86EE25D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:57:9f:56:a5:3e:bb:a4:a2:61:ff:f1:8e:9e: 01:a1:b6:a0:34:f0:c4:a5:0a:00:97:4c:7e:60:7f: ab:87:02:d9:bf:3f:8b:c1:b0:dc:b1:52:1f:50:cd: ae:29:e5:2c:f1:8d:a9:e3:58:f2:64:83:95:52:c1: 76:09:81:a2:3f:89:69:5f:96:56:3b:63:ab:86:af: 99:d9:49:32:75:b7:78:b9:a2:c7:e8:6c:09:74:7f: ad:18:b0:29:17:c9:16:21:f5:13:f0:63:d3:ef:7d: 3b:a5:a9:d0:1d:ec:2e:ea:e2:07:d8:c9:55:dd:be: af:34:24:09:5b:74:22:b1:c0:44:31:5a:57:1c:d9: a6:eb:1f:93:29:be:2c:d4:9a:96:0c:ae:8b:bd:0d: 1e:c2:72:60:cb:2e:1b:7d:17:d7:8e:4f:d5:48:88: 79:8d:58:6a:af:12:f1:56:36:35:ca:03:6e:25:73: 62:ce:0b:96:51:09:32:a2:91:46:16:b4:03:ca:99: 72:2b:69:8a:1b:7f:0f:b0:5f:05:a5:8e:75:ff:a7: 09:80:3f:8d:fa:36:d9:d1:b1:c5:86:a2:8e:d9:b9: 2c:84:19:ae:66:c9:fc:65:e9:ba:f8:cf:f0:0c:27: 5d:68:78:2a:47:69:77:f6:f3:1e:c9:7c:b1:dd:55: 93:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1D:E6:DC:9C:3B:3B:0C:69:13:76:D3:41:3F:4E:97:D8:6E:E2:5D X509v3 Authority Key Identifier: keyid:EF:7C:A8:2C:5B:45:FD:41:2D:E8:92:CB:6D:A7:A8:CA:15:C8:5B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/3135372e36362e38362e302f32332d3234203d3e20313532343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.86.0/23 Signature Algorithm: sha256WithRSAEncryption 40:41:5e:98:c0:b5:19:c1:83:73:54:35:16:7d:7e:ef:01:11: 98:f3:46:d1:7d:f3:06:c9:73:ab:f7:ce:4d:11:29:b9:fe:dc: 8e:cc:1a:db:0b:e5:46:c9:08:b1:8e:f0:d2:09:65:05:9d:54: 20:e0:3d:8d:8d:08:db:94:b1:9c:da:45:1a:0f:3f:24:21:5d: 10:5f:64:a9:4b:e6:84:ce:cf:df:47:b0:7d:a1:8d:94:3f:c2: 23:27:e7:ab:e5:a4:3f:f9:4f:65:93:a1:76:00:d5:77:fa:06: ae:87:b9:f1:47:93:6f:58:0f:e9:1a:0d:5a:5c:4d:9b:2c:15: 40:b0:1d:3b:f3:05:cc:e5:5c:98:b7:10:19:8d:1d:2d:93:c8: 7e:c2:64:e1:24:78:c9:67:bd:fc:9d:88:48:fa:34:ad:0c:e4: c6:cb:ff:b4:54:e0:60:22:9d:4f:3e:b2:c3:4e:ca:32:62:f1: 41:4f:e3:16:20:e8:fc:0d:72:bc:9a:f2:79:b1:8c:95:f1:9e: da:49:42:2f:d8:8b:40:9c:ec:b6:61:6f:5a:9b:71:34:b3:8b: cb:6a:0a:f0:16:92:6a:2c:bf:55:9f:9d:80:81:d1:7c:a2:da: fd:63:8f:d4:80:55:e7:6a:95:74:0d:e3:06:b8:20:3f:a4:b7: 05:dc:2c:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDzMpKMNj6eTsb3+I/hiW4ZeDaOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUY3Q0E4MkM1QjQ1RkQ0MTJERTg5MkNCNkRBN0E4Q0Ex NUM4NUIxNzAeFw0yNDA2MTQwNDMzNDZaFw0yNTA2MTMwNDM4NDZaMDMxMTAvBgNV BAMTKDRCMURFNkRDOUMzQjNCMEM2OTEzNzZEMzQxM0Y0RTk3RDg2RUUyNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWV59WpT67pKJh//GOngGhtqA0 8MSlCgCXTH5gf6uHAtm/P4vBsNyxUh9Qza4p5SzxjanjWPJkg5VSwXYJgaI/iWlf llY7Y6uGr5nZSTJ1t3i5osfobAl0f60YsCkXyRYh9RPwY9PvfTulqdAd7C7q4gfY yVXdvq80JAlbdCKxwEQxWlcc2abrH5MpvizUmpYMrou9DR7CcmDLLht9F9eOT9VI iHmNWGqvEvFWNjXKA24lc2LOC5ZRCTKikUYWtAPKmXIraYobfw+wXwWljnX/pwmA P436NtnRscWGoo7ZuSyEGa5myfxl6br4z/AMJ11oeCpHaXf28x7JfLHdVZP9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSx3m3Jw7OwxpE3bTQT9Ol9hu4l0wHwYDVR0j BBgwFoAU73yoLFtF/UEt6JLLbaeoyhXIWxcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODdkZDU5Ny00MGNkLTQwOWItYjNjNS0yODUyY2UwMTQ4ODkvMC9FRjdDQTgyQzVC NDVGRDQxMkRFODkyQ0I2REE3QThDQTE1Qzg1QjE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUY3Q0E4MkM1QjQ1RkQ0MTJERTg5MkNCNkRBN0E4Q0ExNUM4 NUIxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3LTQwY2QtNDA5Yi1i M2M1LTI4NTJjZTAxNDg4OS8wLzMxMzUzNzJlMzYzNjJlMzgzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CVjANBgkqhkiG 9w0BAQsFAAOCAQEAQEFemMC1GcGDc1Q1Fn1+7wERmPNG0X3zBslzq/fOTREpuf7c jswa2wvlRskIsY7w0gllBZ1UIOA9jY0I25SxnNpFGg8/JCFdEF9kqUvmhM7P30ew faGNlD/CIyfnq+WkP/lPZZOhdgDVd/oGroe58UeTb1gP6RoNWlxNmywVQLAdO/MF zOVcmLcQGY0dLZPIfsJk4SR4yWe9/J2ISPo0rQzkxsv/tFTgYCKdTz6yw07KMmLx QU/jFiDo/A1yvJryebGMlfGe2klCL9iLQJzstmFvWptxNLOLy2oK8BaSaiy/VZ+d gIHRfKLa/WOP1IBV52qVdA3jBrggP6S3BdwsQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org