$ rpki-client -vvf repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa File: 3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa (raw, json) Hash identifier: J/Wg5I3AAWGTjt0qXGXk8aEhIm0PYlLw1GdX0NdjbV8= Subject key identifier: 81:A2:6F:47:FC:8B:E5:94:8D:6F:08:C9:52:77:E9:17:BA:6A:B4:D5 Certificate issuer: /CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Certificate serial: 49EAB1F4080033FF1C30D5B5F0921B91885D5F90 Authority key identifier: 3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa Signing time: Wed 03 Apr 2024 02:50:54 +0000 ROA not before: Wed 03 Apr 2024 02:45:54 +0000 ROA not after: Wed 02 Apr 2025 02:50:54 +0000 asID: 141120 IP address blocks: 157.20.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ea:b1:f4:08:00:33:ff:1c:30:d5:b5:f0:92:1b:91:88:5d:5f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Validity Not Before: Apr 3 02:45:54 2024 GMT Not After : Apr 2 02:50:54 2025 GMT Subject: CN=81A26F47FC8BE5948D6F08C95277E917BA6AB4D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:29:cd:a9:c1:86:f6:6e:78:18:df:41:ac:0c: 9b:58:08:f7:a2:18:b8:ff:1b:fe:7e:5f:c6:7b:43: c1:1f:b7:a7:2a:9e:1f:9f:83:72:f8:39:a9:01:b5: db:d8:c4:84:d4:c2:48:0f:7d:44:76:61:b0:da:a0: 18:ef:97:cd:3e:35:dd:ca:ac:c9:2d:f2:a8:99:3b: 20:8d:27:31:8f:9d:d4:2f:34:ee:15:c2:15:21:69: 72:86:53:32:52:6b:14:b7:f0:90:3c:3e:79:d4:fc: 0b:85:7e:a3:63:67:be:0d:3e:e7:e8:8a:8f:e7:5d: 73:b4:93:96:81:d8:b6:97:49:27:e7:8a:de:29:85: a1:86:f5:47:19:13:24:4b:11:c8:b5:c1:e1:cd:8b: 4d:74:77:67:9f:a1:70:48:62:39:67:62:c0:d5:c9: d9:1f:6f:e5:ff:20:c2:65:68:bd:4f:67:b9:5e:05: 88:40:4b:09:b1:e2:b0:90:52:b7:b1:5c:e2:52:6c: c7:97:be:d5:52:20:4a:b3:8d:5a:84:a9:24:ff:9c: 09:06:32:8d:2e:c9:1c:5a:4d:93:1b:06:cb:f9:42: c3:bb:50:eb:1b:2c:28:d8:01:ce:62:57:f0:3f:ed: 2f:d1:56:ff:eb:b2:a0:f2:d6:5c:cb:8c:68:c7:6a: 5d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A2:6F:47:FC:8B:E5:94:8D:6F:08:C9:52:77:E9:17:BA:6A:B4:D5 X509v3 Authority Key Identifier: keyid:3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.158.0/23 Signature Algorithm: sha256WithRSAEncryption ad:98:d3:42:54:5c:e3:66:61:f3:9a:41:9c:d1:d0:f2:2e:25: a7:eb:f9:d7:2f:51:e4:f6:6e:fb:d2:7e:4b:76:8d:72:a5:9b: 63:61:85:89:a6:58:73:d6:01:36:15:b8:e0:9e:69:bd:86:4d: 2e:83:4e:af:25:1d:5a:56:49:6b:d7:83:71:40:10:ed:58:a3: 91:b2:54:bd:d5:b6:b0:ff:d7:08:87:17:6e:e8:7c:51:da:a2: d9:ed:1e:25:17:0e:31:f0:54:94:ef:4b:87:df:99:e0:01:1f: 90:11:7a:02:cf:af:cb:d1:c3:66:67:b5:30:ad:65:92:d2:34: b4:b4:28:67:32:b6:d4:cd:64:b2:19:57:d7:a3:d5:05:40:f4: 0e:44:9d:a3:ae:7d:d9:36:9f:12:d1:4e:bf:3f:85:65:2a:e6: 6c:c5:cd:7c:1e:5b:d6:5b:24:a1:f7:37:77:0b:d0:4b:a8:b1: b4:84:dc:80:29:ac:b3:8f:50:20:39:1a:ed:8b:3e:60:21:cb: 56:b5:83:8f:c9:b3:94:d3:4c:ab:e3:03:b0:59:1a:a6:aa:c7: f3:92:b0:aa:11:90:a6:13:13:b6:1d:18:bd:4f:d7:c0:62:d6: 9d:7d:7c:bb:12:39:6e:6a:44:48:07:09:f4:26:08:de:c4:0f: 11:c8:2c:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSeqx9AgAM/8cMNW18JIbkYhdX5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBF MzREMjlBQjAeFw0yNDA0MDMwMjQ1NTRaFw0yNTA0MDIwMjUwNTRaMDMxMTAvBgNV BAMTKDgxQTI2RjQ3RkM4QkU1OTQ4RDZGMDhDOTUyNzdFOTE3QkE2QUI0RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJKc2pwYb2bngY30GsDJtYCPei GLj/G/5+X8Z7Q8Eft6cqnh+fg3L4OakBtdvYxITUwkgPfUR2YbDaoBjvl80+Nd3K rMkt8qiZOyCNJzGPndQvNO4VwhUhaXKGUzJSaxS38JA8PnnU/AuFfqNjZ74NPufo io/nXXO0k5aB2LaXSSfnit4phaGG9UcZEyRLEci1weHNi010d2efoXBIYjlnYsDV ydkfb+X/IMJlaL1PZ7leBYhASwmx4rCQUrexXOJSbMeXvtVSIEqzjVqEqST/nAkG Mo0uyRxaTZMbBsv5QsO7UOsbLCjYAc5iV/A/7S/RVv/rsqDy1lzLjGjHal1jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgaJvR/yL5ZSNbwjJUnfpF7pqtNUwHwYDVR0j BBgwFoAUPG10hdYa1UImFS5dioE9cONNKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTU5YTM2Mi05NTBjLTQ1YzItYWVjYy04MmIyMTRiY2U0NzQvMC8zQzZENzQ4NUQ2 MUFENTQyMjYxNTJFNUQ4QTgxM0Q3MEUzNEQyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBFMzRE MjlBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNTlhMzYyLTk1MGMtNDVjMi1h ZWNjLTgyYjIxNGJjZTQ3NC8wLzMxMzUzNzJlMzIzMDJlMzEzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSeMA0GCSqG SIb3DQEBCwUAA4IBAQCtmNNCVFzjZmHzmkGc0dDyLiWn6/nXL1Hk9m770n5Ldo1y pZtjYYWJplhz1gE2Fbjgnmm9hk0ug06vJR1aVklr14NxQBDtWKORslS91baw/9cI hxdu6HxR2qLZ7R4lFw4x8FSU70uH35ngAR+QEXoCz6/L0cNmZ7UwrWWS0jS0tChn MrbUzWSyGVfXo9UFQPQORJ2jrn3ZNp8S0U6/P4VlKuZsxc18HlvWWySh9zd3C9BL qLG0hNyAKayzj1AgORrtiz5gIctWtYOPybOU00yr4wOwWRqmqsfzkrCqEZCmExO2 HRi9T9fAYtadfXy7EjluakRIBwn0JgjexA8RyCwn -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org