$ rpki-client -vvf repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/3135372e36362e35352e302f32342d3234203d3e20313431383932.roa File: 3135372e36362e35352e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: D0QSrTbbajLK0QqFhX3VKJcPiGrWSQpUK9CmIM7tZNk= Subject key identifier: 7D:15:E7:C5:0F:69:07:12:AF:79:72:A3:8A:DC:76:8B:ED:41:18:C1 Certificate issuer: /CN=528098CFFE1330AD3E557BCFEC2D8B4692F51248 Certificate serial: 15532F03FDBB8FC1C54526080EB26B9117868438 Authority key identifier: 52:80:98:CF:FE:13:30:AD:3E:55:7B:CF:EC:2D:8B:46:92:F5:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/3135372e36362e35352e302f32342d3234203d3e20313431383932.roa Signing time: Fri 05 Apr 2024 08:28:27 +0000 ROA not before: Fri 05 Apr 2024 08:23:27 +0000 ROA not after: Fri 04 Apr 2025 08:28:27 +0000 asID: 141892 IP address blocks: 157.66.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.crl rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 12:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:53:2f:03:fd:bb:8f:c1:c5:45:26:08:0e:b2:6b:91:17:86:84:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528098CFFE1330AD3E557BCFEC2D8B4692F51248 Validity Not Before: Apr 5 08:23:27 2024 GMT Not After : Apr 4 08:28:27 2025 GMT Subject: CN=7D15E7C50F690712AF7972A38ADC768BED4118C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:04:a3:cb:57:c3:24:95:4a:fb:5d:07:24:af: ca:f5:1a:f9:dd:07:d0:06:46:f3:cd:f2:86:07:93: 2b:e6:63:3e:e7:f2:76:50:14:fc:fa:1d:51:cb:48: 6d:f5:46:54:0b:c7:4e:7e:a6:68:8b:52:b2:4e:b8: 60:e1:91:37:ce:29:b9:24:aa:8d:97:68:43:ad:13: de:6c:37:fc:7e:c4:89:59:32:89:23:2b:41:4c:4a: 24:29:e8:11:27:ab:57:ac:d7:5f:56:60:77:8e:c5: 83:12:fd:83:57:96:16:ba:ea:3e:df:35:29:87:12: c6:e6:b1:40:82:63:92:83:b4:95:b8:03:1f:e7:e2: a1:de:ee:5f:1d:67:74:3d:ee:f0:d2:6d:24:cd:a2: 4c:ee:97:7c:8a:23:52:f0:4a:3b:06:05:ee:a2:ba: 91:29:60:e7:4f:c8:cd:58:d1:f9:6f:eb:bc:e0:e8: 15:f0:1e:97:95:da:7c:a9:7a:58:2a:52:0e:43:01: 68:51:a1:58:4f:99:36:ff:92:4a:10:65:5f:51:25: 2f:b6:6c:35:89:1d:cd:1c:c1:df:a3:f4:a3:8c:6f: 28:89:29:03:38:32:8e:b0:67:a9:6d:b4:7a:a0:c1: aa:1b:3e:c0:99:5e:44:6e:e2:56:80:d7:0a:f8:5e: 92:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:15:E7:C5:0F:69:07:12:AF:79:72:A3:8A:DC:76:8B:ED:41:18:C1 X509v3 Authority Key Identifier: keyid:52:80:98:CF:FE:13:30:AD:3E:55:7B:CF:EC:2D:8B:46:92:F5:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/3135372e36362e35352e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.55.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:1c:d0:44:e6:14:0e:e4:c2:7b:f1:8c:d5:0c:f1:02:86:6d: a7:89:e5:eb:6a:ff:5c:6c:53:bf:36:5e:9f:e5:2c:a1:69:55: e3:54:78:6c:2c:66:5e:e9:cd:f8:ea:b7:cc:44:96:78:3e:4b: e8:a2:01:f0:3b:16:ef:08:0e:d4:ff:62:6c:5c:ac:a6:06:1c: 2d:6f:05:cb:a3:a0:e4:ee:e3:0d:cc:c6:5e:30:48:ad:1c:a4: b9:ee:91:35:45:02:77:9c:2d:3b:0c:4f:9c:f6:89:ec:6b:31: a7:bb:6a:6b:ea:c3:5d:1f:21:e7:d2:56:20:5f:43:20:bf:fa: b6:5f:23:09:e9:d4:aa:b5:83:25:3e:42:a8:cb:7c:b8:9d:06: ac:fc:c9:db:2c:2f:91:26:b0:a8:20:2b:a9:85:c2:cb:f9:d4: d8:9d:ae:d7:04:a1:d4:c4:2e:7f:64:bd:d8:f9:56:14:46:00: 53:78:d7:79:10:b8:c9:03:cd:cf:4c:99:45:e3:61:11:36:99: a5:30:f8:99:83:de:5a:27:c0:58:a7:26:9e:0d:ac:ad:dd:a7: b5:52:8c:10:8a:05:9b:f1:d9:44:37:12:56:81:a9:39:fe:77: ef:d3:48:ea:2c:04:a0:11:f7:1c:27:2d:25:63:bd:50:fe:65: 15:91:a1:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFVMvA/27j8HFRSYIDrJrkReGhDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4MDk4Q0ZGRTEzMzBBRDNFNTU3QkNGRUMyRDhCNDY5 MkY1MTI0ODAeFw0yNDA0MDUwODIzMjdaFw0yNTA0MDQwODI4MjdaMDMxMTAvBgNV BAMTKDdEMTVFN0M1MEY2OTA3MTJBRjc5NzJBMzhBREM3NjhCRUQ0MTE4QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMBKPLV8MklUr7XQckr8r1Gvnd B9AGRvPN8oYHkyvmYz7n8nZQFPz6HVHLSG31RlQLx05+pmiLUrJOuGDhkTfOKbkk qo2XaEOtE95sN/x+xIlZMokjK0FMSiQp6BEnq1es119WYHeOxYMS/YNXlha66j7f NSmHEsbmsUCCY5KDtJW4Ax/n4qHe7l8dZ3Q97vDSbSTNokzul3yKI1LwSjsGBe6i upEpYOdPyM1Y0flv67zg6BXwHpeV2nypelgqUg5DAWhRoVhPmTb/kkoQZV9RJS+2 bDWJHc0cwd+j9KOMbyiJKQM4Mo6wZ6lttHqgwaobPsCZXkRu4laA1wr4XpJZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfRXnxQ9pBxKveXKjitx2i+1BGMEwHwYDVR0j BBgwFoAUUoCYz/4TMK0+VXvP7C2LRpL1EkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OGRjMDg0OS04M2ZiLTRjYzgtOGMyMS1iZTZjYTdhMmVkODMvMC81MjgwOThDRkZF MTMzMEFEM0U1NTdCQ0ZFQzJEOEI0NjkyRjUxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTI4MDk4Q0ZGRTEzMzBBRDNFNTU3QkNGRUMyRDhCNDY5MkY1 MTI0OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4ZGMwODQ5LTgzZmItNGNjOC04 YzIxLWJlNmNhN2EyZWQ4My8wLzMxMzUzNzJlMzYzNjJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CNzANBgkqhkiG 9w0BAQsFAAOCAQEAHxzQROYUDuTCe/GM1QzxAoZtp4nl62r/XGxTvzZen+UsoWlV 41R4bCxmXunN+Oq3zESWeD5L6KIB8DsW7wgO1P9ibFyspgYcLW8Fy6Og5O7jDczG XjBIrRykue6RNUUCd5wtOwxPnPaJ7Gsxp7tqa+rDXR8h59JWIF9DIL/6tl8jCenU qrWDJT5CqMt8uJ0GrPzJ2ywvkSawqCArqYXCy/nU2J2u1wSh1MQuf2S92PlWFEYA U3jXeRC4yQPNz0yZReNhETaZpTD4mYPeWifAWKcmng2srd2ntVKMEIoFm/HZRDcS VoGpOf5379NI6iwEoBH3HCctJWO9UP5lFZGhXw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:35 2024 by rpki-client on console-ams.rpki-client.org