$ rpki-client -vvf repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/3135372e31302e3235322e302f32332d3234203d3e20313336303532.roa File: 3135372e31302e3235322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: A0LXNZDBmYWP8yF6vKyzD5w6P7O+aadp1gc6783ScrQ= Subject key identifier: 36:61:BD:52:70:97:C9:30:25:0B:C3:7A:FD:74:19:B1:44:BB:D0:AB Certificate issuer: /CN=F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C Certificate serial: 93317B132F871E65227453122757CED0DCA8B5 Authority key identifier: F5:A4:53:4B:74:D0:CE:EE:CF:5A:05:F0:9B:C9:EF:45:22:FA:32:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/3135372e31302e3235322e302f32332d3234203d3e20313336303532.roa Signing time: Mon 29 Jan 2024 07:36:30 +0000 ROA not before: Mon 29 Jan 2024 07:31:30 +0000 ROA not after: Mon 27 Jan 2025 07:36:30 +0000 asID: 136052 IP address blocks: 157.10.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.crl rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 15:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93:31:7b:13:2f:87:1e:65:22:74:53:12:27:57:ce:d0:dc:a8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C Validity Not Before: Jan 29 07:31:30 2024 GMT Not After : Jan 27 07:36:30 2025 GMT Subject: CN=3661BD527097C930250BC37AFD7419B144BBD0AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5e:f4:08:67:96:a0:b8:ac:31:92:00:09:f5: 24:23:e3:84:68:d1:70:ca:22:53:72:84:7b:72:6d: 11:d5:7b:d6:54:13:da:8e:c0:75:1a:ed:35:8c:2a: b9:e5:ad:1e:c2:7d:8b:4d:f2:3b:15:7f:ba:d9:1a: 48:f8:14:28:fa:74:43:69:5e:82:a1:a0:79:4e:ad: ac:aa:3f:13:3d:28:2c:1b:e5:11:74:fb:92:10:9c: c5:1f:41:59:c2:12:7f:eb:e4:81:f9:e9:0d:66:af: be:c7:23:c9:a6:e6:ed:6e:e8:50:77:cd:25:84:6d: 27:59:18:17:b7:6a:24:e8:1a:d5:48:0d:33:42:54: cf:75:01:be:59:9a:93:21:de:11:b4:ca:86:f4:49: 7d:08:b8:85:93:8a:a2:70:d2:0e:d1:ea:52:08:51: 0b:76:28:ee:f6:1c:82:d4:8b:86:b4:e9:45:f8:50: 41:49:b7:f7:ed:e6:f9:e2:ec:ab:d4:e3:b2:fb:f5: 19:19:00:9e:65:58:62:cd:25:64:41:39:97:56:74: 63:2d:10:55:12:8e:af:5f:1c:f8:7a:41:33:91:e4: 51:6d:b6:fa:ca:75:f5:97:2b:e4:52:1d:f2:c3:b5: 86:fa:83:2f:6d:f2:18:8c:4b:17:79:92:fd:2e:7b: 83:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:61:BD:52:70:97:C9:30:25:0B:C3:7A:FD:74:19:B1:44:BB:D0:AB X509v3 Authority Key Identifier: keyid:F5:A4:53:4B:74:D0:CE:EE:CF:5A:05:F0:9B:C9:EF:45:22:FA:32:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/3135372e31302e3235322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.252.0/23 Signature Algorithm: sha256WithRSAEncryption 01:f4:2b:81:2d:90:36:ff:3d:83:d6:b2:15:71:29:70:3e:00: 33:b5:f2:84:08:c5:20:b4:e9:70:ac:47:14:2f:9d:9d:25:7a: 32:02:ec:ec:52:af:ab:4b:1d:ad:71:b6:bc:2e:ab:a1:bc:f3: d9:98:19:5e:dc:57:cd:0e:92:9e:88:8e:1d:64:6c:10:e0:0d: 70:91:81:11:33:75:c5:cb:71:8c:5e:5e:9f:8f:75:d6:4e:07: 28:17:c6:d7:78:7a:72:d3:09:bf:05:c5:bb:30:99:6d:1c:47: 3c:08:46:d8:cb:5e:58:5d:4d:e0:37:06:d0:e0:79:81:e5:b2: 01:d1:5e:a7:80:42:cd:db:e7:0f:76:83:6e:16:71:13:59:3c: 5c:8d:8f:e7:4e:ca:b4:fe:4e:4f:5a:46:a6:cf:1b:be:e6:26: 8e:e8:09:8a:03:55:b2:d4:e7:c1:4a:2b:17:5f:94:83:39:f8: 91:81:84:0b:f3:a1:a3:dc:46:e0:f8:5e:64:da:dd:80:76:b2: 64:bb:dc:d4:80:00:8a:ee:c0:6a:a2:c1:90:02:95:1a:6d:e1: 07:da:8b:b3:90:82:c5:f4:36:12:35:ae:c2:a3:f0:02:96:d7: 21:9c:74:34:9f:f0:a6:c2:26:e0:ed:0e:44:ec:7b:ad:49:3f: d0:1f:a0:4c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAJMxexMvhx5lInRTEidXztDcqLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVBNDUzNEI3NEQwQ0VFRUNGNUEwNUYwOUJDOUVGNDUy MkZBMzI2QzAeFw0yNDAxMjkwNzMxMzBaFw0yNTAxMjcwNzM2MzBaMDMxMTAvBgNV BAMTKDM2NjFCRDUyNzA5N0M5MzAyNTBCQzM3QUZENzQxOUIxNDRCQkQwQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeXvQIZ5aguKwxkgAJ9SQj44Ro 0XDKIlNyhHtybRHVe9ZUE9qOwHUa7TWMKrnlrR7CfYtN8jsVf7rZGkj4FCj6dENp XoKhoHlOrayqPxM9KCwb5RF0+5IQnMUfQVnCEn/r5IH56Q1mr77HI8mm5u1u6FB3 zSWEbSdZGBe3aiToGtVIDTNCVM91Ab5ZmpMh3hG0yob0SX0IuIWTiqJw0g7R6lII UQt2KO72HILUi4a06UX4UEFJt/ft5vni7KvU47L79RkZAJ5lWGLNJWRBOZdWdGMt EFUSjq9fHPh6QTOR5FFttvrKdfWXK+RSHfLDtYb6gy9t8hiMSxd5kv0ue4OLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNmG9UnCXyTAlC8N6/XQZsUS70KswHwYDVR0j BBgwFoAU9aRTS3TQzu7PWgXwm8nvRSL6MmwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTcwZTkzNC04NzUxLTRhNjEtOTk1MC1kNGZhNDgwY2RhNDEvMC9GNUE0NTM0Qjc0 RDBDRUVFQ0Y1QTA1RjA5QkM5RUY0NTIyRkEzMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjVBNDUzNEI3NEQwQ0VFRUNGNUEwNUYwOUJDOUVGNDUyMkZB MzI2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5NzBlOTM0LTg3NTEtNGE2MS05 OTUwLWQ0ZmE0ODBjZGE0MS8wLzMxMzUzNzJlMzEzMDJlMzIzNTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQr8MA0GCSqG SIb3DQEBCwUAA4IBAQAB9CuBLZA2/z2D1rIVcSlwPgAztfKECMUgtOlwrEcUL52d JXoyAuzsUq+rSx2tcba8LquhvPPZmBle3FfNDpKeiI4dZGwQ4A1wkYERM3XFy3GM Xl6fj3XWTgcoF8bXeHpy0wm/BcW7MJltHEc8CEbYy15YXU3gNwbQ4HmB5bIB0V6n gELN2+cPdoNuFnETWTxcjY/nTsq0/k5PWkamzxu+5iaO6AmKA1Wy1OfBSisXX5SD OfiRgYQL86Gj3Ebg+F5k2t2AdrJku9zUgACK7sBqosGQApUabeEH2ouzkILF9DYS Na7Co/ACltchnHQ0n/Cmwibg7Q5E7HutST/QH6BM -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:21 2024 by rpki-client on console-ams.rpki-client.org