$ rpki-client -vvf repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa File: 3135372e31302e36332e302f32342d3234203d3e20313532303835.roa (raw, json) Hash identifier: M93pxbIAs1Pryd9TjQFFBfJQwjvArbju+c3MXIwtsaY= Subject key identifier: 22:31:06:EE:92:07:E7:D7:F9:CB:DF:AD:B5:8B:8E:1A:B7:8E:45:7F Certificate issuer: /CN=4A37764CC80D1B8A6819E0F0F145466E0BE52CBD Certificate serial: 3A70103B1E6199DD6372211E4FC518E201E6FBFC Authority key identifier: 4A:37:76:4C:C8:0D:1B:8A:68:19:E0:F0:F1:45:46:6E:0B:E5:2C:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa Signing time: Tue 02 Apr 2024 09:02:01 +0000 ROA not before: Tue 02 Apr 2024 08:57:01 +0000 ROA not after: Tue 01 Apr 2025 09:02:01 +0000 asID: 152085 IP address blocks: 157.10.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.crl rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:70:10:3b:1e:61:99:dd:63:72:21:1e:4f:c5:18:e2:01:e6:fb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A37764CC80D1B8A6819E0F0F145466E0BE52CBD Validity Not Before: Apr 2 08:57:01 2024 GMT Not After : Apr 1 09:02:01 2025 GMT Subject: CN=223106EE9207E7D7F9CBDFADB58B8E1AB78E457F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b7:f6:e4:98:a1:05:b4:76:61:21:cc:f3:dc: 4d:09:0a:04:e7:ed:69:54:ed:dc:53:3c:89:4f:35: 40:51:29:69:d1:17:3c:3a:ed:7f:69:81:84:d2:e2: 68:1a:2c:92:be:e9:de:61:91:18:0d:a5:09:d2:80: 25:b5:a7:b9:0b:a5:79:ad:13:0c:0f:ba:df:97:fd: 14:4d:cf:a4:8d:e0:ad:a3:bf:0e:3b:c1:40:da:b1: 5e:bf:62:00:de:8a:55:61:46:5c:76:17:fb:c6:26: 42:dd:aa:f9:80:d0:e1:00:9c:c3:94:cd:d6:62:37: 97:88:d7:9c:74:d1:cf:b3:5f:05:8c:86:cf:14:57: 11:22:2d:88:ee:c5:c0:f8:66:aa:00:da:54:06:3e: 55:93:c4:7e:f7:fa:05:bc:7e:25:fd:8d:a5:57:53: b9:5e:58:59:ce:29:c9:6c:2a:b2:b1:4a:d0:b7:2f: 11:14:dd:77:90:c5:52:19:cd:1a:ee:c8:04:2d:f3: 81:5a:98:bc:cf:3d:da:4e:7a:35:ec:d1:6b:b6:e5: e5:70:c4:0f:ba:9e:97:0b:86:5d:2b:dd:55:35:d2: db:d5:8b:df:40:6c:af:07:be:0d:95:97:6d:44:4f: 1c:83:8d:62:12:3b:c1:96:07:51:05:b3:67:de:24: 3d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:31:06:EE:92:07:E7:D7:F9:CB:DF:AD:B5:8B:8E:1A:B7:8E:45:7F X509v3 Authority Key Identifier: keyid:4A:37:76:4C:C8:0D:1B:8A:68:19:E0:F0:F1:45:46:6E:0B:E5:2C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.63.0/24 Signature Algorithm: sha256WithRSAEncryption 04:3f:73:1d:38:64:6e:97:d1:ed:ff:d9:0c:3e:a0:30:a1:f5: a6:d3:01:8d:84:a4:a7:d9:a6:f5:fb:9f:f0:c8:f1:d9:b6:36: 50:66:9a:d1:48:3f:1e:ee:cd:11:f5:01:fe:8c:dc:b3:69:83: 8b:ca:fc:88:ac:6e:21:1d:fc:14:3b:3d:ac:9b:83:91:26:05: b5:b4:4f:b6:79:ba:d8:95:ff:89:65:56:da:96:1d:87:27:b9: 5a:9c:09:1a:e6:5b:0b:3c:f3:47:0a:ce:42:ed:f6:02:b1:1b: 3a:d6:b1:4c:2e:79:df:f3:35:81:0a:4c:99:63:92:f4:d4:e6: 24:22:28:9f:15:8e:16:05:25:1a:87:0e:6a:48:fc:86:3e:27: 39:eb:53:e0:3a:1c:6e:bf:a3:eb:98:e7:f7:74:ea:3b:e3:30: 15:9d:6e:44:c7:9e:d5:c8:9c:ab:da:89:08:6b:68:6e:bb:3d: 9c:4c:da:47:4a:ff:19:dc:42:f1:51:9c:4f:dc:87:a2:5f:06: 06:1a:08:e3:d7:75:67:a6:78:f6:ce:01:77:7e:2f:27:68:02: 79:84:63:17:ef:aa:63:94:9a:fe:7d:9c:aa:7c:39:0c:13:cf: 63:8d:1f:f1:f7:2f:fd:8b:98:bc:3b:47:c4:86:d0:bd:66:6f: 76:3f:13:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOnAQOx5hmd1jciEeT8UY4gHm+/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEEzNzc2NENDODBEMUI4QTY4MTlFMEYwRjE0NTQ2NkUw QkU1MkNCRDAeFw0yNDA0MDIwODU3MDFaFw0yNTA0MDEwOTAyMDFaMDMxMTAvBgNV BAMTKDIyMzEwNkVFOTIwN0U3RDdGOUNCREZBREI1OEI4RTFBQjc4RTQ1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2t/bkmKEFtHZhIczz3E0JCgTn 7WlU7dxTPIlPNUBRKWnRFzw67X9pgYTS4mgaLJK+6d5hkRgNpQnSgCW1p7kLpXmt EwwPut+X/RRNz6SN4K2jvw47wUDasV6/YgDeilVhRlx2F/vGJkLdqvmA0OEAnMOU zdZiN5eI15x00c+zXwWMhs8UVxEiLYjuxcD4ZqoA2lQGPlWTxH73+gW8fiX9jaVX U7leWFnOKclsKrKxStC3LxEU3XeQxVIZzRruyAQt84FamLzPPdpOejXs0Wu25eVw xA+6npcLhl0r3VU10tvVi99AbK8Hvg2Vl21ETxyDjWISO8GWB1EFs2feJD3DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIjEG7pIH59f5y9+ttYuOGreORX8wHwYDVR0j BBgwFoAUSjd2TMgNG4poGeDw8UVGbgvlLL0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDNhMmZkZi1iY2JhLTQ3NTctYjM2Ni1lMWEwYWQyZDM3NGEvMC80QTM3NzY0Q0M4 MEQxQjhBNjgxOUUwRjBGMTQ1NDY2RTBCRTUyQ0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNEEzNzc2NENDODBEMUI4QTY4MTlFMEYwRjE0NTQ2NkUwQkU1 MkNCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkM2EyZmRmLWJjYmEtNDc1Ny1i MzY2LWUxYTBhZDJkMzc0YS8wLzMxMzUzNzJlMzEzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KPzANBgkqhkiG 9w0BAQsFAAOCAQEABD9zHThkbpfR7f/ZDD6gMKH1ptMBjYSkp9mm9fuf8Mjx2bY2 UGaa0Ug/Hu7NEfUB/ozcs2mDi8r8iKxuIR38FDs9rJuDkSYFtbRPtnm62JX/iWVW 2pYdhye5WpwJGuZbCzzzRwrOQu32ArEbOtaxTC553/M1gQpMmWOS9NTmJCIonxWO FgUlGocOakj8hj4nOetT4Docbr+j65jn93TqO+MwFZ1uRMee1cicq9qJCGtobrs9 nEzaR0r/GdxC8VGcT9yHol8GBhoI49d1Z6Z49s4Bd34vJ2gCeYRjF++qY5Sa/n2c qnw5DBPPY40f8fcv/YuYvDtHxIbQvWZvdj8TOQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org