$ rpki-client -vvf repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa File: 3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa (raw, json) Hash identifier: 3pQvTbCuYBm6Vo1nBcoEIrPxsYdZ+bSd9Ar6iUoXGJ0= Subject key identifier: EB:11:26:20:5D:43:9E:71:0C:C2:91:AA:06:58:C7:F4:C3:7D:A5:76 Certificate issuer: /CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Certificate serial: 22837820E241D6BE4268FDDD02F268582DAE87F3 Authority key identifier: 3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa Signing time: Wed 03 Apr 2024 02:51:37 +0000 ROA not before: Wed 03 Apr 2024 02:46:37 +0000 ROA not after: Wed 02 Apr 2025 02:51:37 +0000 asID: 141120 IP address blocks: 157.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:83:78:20:e2:41:d6:be:42:68:fd:dd:02:f2:68:58:2d:ae:87:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Validity Not Before: Apr 3 02:46:37 2024 GMT Not After : Apr 2 02:51:37 2025 GMT Subject: CN=EB1126205D439E710CC291AA0658C7F4C37DA576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5d:5e:c7:7a:4c:ad:84:d8:72:13:f0:13:b5: 57:e3:c9:d3:32:a2:96:10:81:bc:0f:ba:87:19:22: de:f7:b1:42:48:11:f7:a2:a0:0a:54:0f:9a:12:d5: c2:5c:67:88:04:a7:e3:f1:be:2f:2a:98:7a:d4:9b: 57:fd:2c:41:ce:9a:43:35:03:b5:b6:27:61:59:b1: 05:16:fb:96:1e:1f:41:3f:eb:91:b3:50:38:6a:ab: 41:59:9a:96:94:f0:91:b0:31:cd:1e:2e:a0:32:14: f9:4e:ae:0a:eb:bf:42:cc:bd:0f:46:75:5f:e6:cd: 33:0b:be:2f:b0:b3:1f:24:5a:0d:20:e7:2b:d0:59: 3a:50:2e:81:35:f2:cc:ef:ce:7e:00:34:b6:39:a8: c1:7b:ea:95:fc:f5:a0:55:44:2f:c5:0b:3b:c3:61: d9:0d:7f:4e:01:41:96:1c:d1:11:63:45:16:7e:e0: ea:f9:32:ec:0a:95:df:ea:ae:b2:2c:69:f4:d8:62: 3b:50:92:07:96:2d:47:26:5b:cc:26:0e:cb:93:f8: 73:3e:31:51:f9:d8:d3:a7:e4:41:b9:d6:97:9b:ea: 01:0f:6e:d5:a0:f6:5a:41:b1:cd:79:1d:fa:f5:ae: 2e:11:b5:47:bc:3e:1e:1b:40:95:4a:0a:ec:f4:06: ee:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:11:26:20:5D:43:9E:71:0C:C2:91:AA:06:58:C7:F4:C3:7D:A5:76 X509v3 Authority Key Identifier: keyid:3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.158.0/24 Signature Algorithm: sha256WithRSAEncryption 55:50:92:13:b2:83:c6:e4:d4:0d:69:09:98:83:a2:37:7a:33: 57:b3:12:e1:44:fe:73:18:09:e1:c1:9d:35:d3:3a:2c:31:de: 20:ca:6f:3f:76:0c:b8:bc:dd:66:e0:7e:cd:84:4a:9c:08:1e: e9:8c:26:df:66:99:0a:04:92:17:51:89:f7:cd:b6:f7:9e:d8: 94:5a:f1:d6:24:d9:6a:7f:e6:55:a3:5c:b8:cd:bc:49:1e:ef: 5d:bd:20:9d:a4:f1:b8:6a:98:e3:5b:c4:b7:32:bb:12:83:8c: 99:02:9d:86:a0:b1:b7:b9:c0:a5:81:26:5a:74:a0:9d:a9:b2: cf:ec:1e:76:9b:33:ef:c4:8a:f1:01:d3:6a:e7:d1:60:a7:22: fa:7d:fb:c3:5a:b1:d2:14:9c:16:e4:e3:d2:96:2b:f9:2c:b2: 70:c4:b1:24:9d:d2:0d:76:86:cd:da:be:8c:c6:db:ae:b4:33: 4c:e8:0a:b5:4f:76:c5:89:57:56:6b:98:4d:8a:06:d2:44:5b: b6:bd:b8:a4:7c:66:cc:0c:20:b9:6f:25:61:52:13:c7:e7:4b: 69:af:b5:19:c1:65:22:64:0f:b4:3f:e6:7d:4a:e1:99:b2:d7: 93:37:f9:72:cc:2c:b5:72:10:6d:68:0f:e8:1b:84:64:de:bb: 42:13:b5:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIoN4IOJB1r5CaP3dAvJoWC2uh/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBF MzREMjlBQjAeFw0yNDA0MDMwMjQ2MzdaFw0yNTA0MDIwMjUxMzdaMDMxMTAvBgNV BAMTKEVCMTEyNjIwNUQ0MzlFNzEwQ0MyOTFBQTA2NThDN0Y0QzM3REE1NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQXV7HekythNhyE/ATtVfjydMy opYQgbwPuocZIt73sUJIEfeioApUD5oS1cJcZ4gEp+Pxvi8qmHrUm1f9LEHOmkM1 A7W2J2FZsQUW+5YeH0E/65GzUDhqq0FZmpaU8JGwMc0eLqAyFPlOrgrrv0LMvQ9G dV/mzTMLvi+wsx8kWg0g5yvQWTpQLoE18szvzn4ANLY5qMF76pX89aBVRC/FCzvD YdkNf04BQZYc0RFjRRZ+4Or5MuwKld/qrrIsafTYYjtQkgeWLUcmW8wmDsuT+HM+ MVH52NOn5EG51peb6gEPbtWg9lpBsc15Hfr1ri4RtUe8Ph4bQJVKCuz0Bu7BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6xEmIF1DnnEMwpGqBljH9MN9pXYwHwYDVR0j BBgwFoAUPG10hdYa1UImFS5dioE9cONNKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTU5YTM2Mi05NTBjLTQ1YzItYWVjYy04MmIyMTRiY2U0NzQvMC8zQzZENzQ4NUQ2 MUFENTQyMjYxNTJFNUQ4QTgxM0Q3MEUzNEQyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBFMzRE MjlBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNTlhMzYyLTk1MGMtNDVjMi1h ZWNjLTgyYjIxNGJjZTQ3NC8wLzMxMzUzNzJlMzIzMDJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSeMA0GCSqG SIb3DQEBCwUAA4IBAQBVUJITsoPG5NQNaQmYg6I3ejNXsxLhRP5zGAnhwZ010zos Md4gym8/dgy4vN1m4H7NhEqcCB7pjCbfZpkKBJIXUYn3zbb3ntiUWvHWJNlqf+ZV o1y4zbxJHu9dvSCdpPG4apjjW8S3MrsSg4yZAp2GoLG3ucClgSZadKCdqbLP7B52 mzPvxIrxAdNq59FgpyL6ffvDWrHSFJwW5OPSliv5LLJwxLEkndINdobN2r6Mxtuu tDNM6Aq1T3bFiVdWa5hNigbSRFu2vbikfGbMDCC5byVhUhPH50tpr7UZwWUiZA+0 P+Z9SuGZsteTN/lyzCy1chBtaA/oG4Rk3rtCE7U5 -----END CERTIFICATE-----Generated at Sat May 4 11:06:16 2024 by rpki-client on console-fra.rpki-client.org