$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa File: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: JvWayg5dc2xDP/4DFHc9KwfldN6lyp17KnD2mXZm0oQ= Subject key identifier: 51:F4:C8:00:82:38:D7:67:CB:F6:3D:04:A3:03:31:C6:01:67:72:3F Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 0D7352BD87941AA02D4C9326B040CF7086AD9B4E Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa Signing time: Fri 12 Jan 2024 02:20:46 +0000 ROA not before: Fri 12 Jan 2024 02:15:46 +0000 ROA not after: Fri 10 Jan 2025 02:20:46 +0000 asID: 136052 IP address blocks: 157.10.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 15:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:73:52:bd:87:94:1a:a0:2d:4c:93:26:b0:40:cf:70:86:ad:9b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Jan 12 02:15:46 2024 GMT Not After : Jan 10 02:20:46 2025 GMT Subject: CN=51F4C8008238D767CBF63D04A30331C60167723F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a6:4c:c2:33:d4:55:f0:36:0f:e5:48:8a:8f: 1e:7a:5c:0f:f9:b5:a0:24:78:45:40:d2:52:de:2d: 3f:d6:00:57:a2:2b:f6:01:6d:da:aa:e1:8e:9f:cb: e9:10:0e:1c:f1:ef:91:11:be:ab:a8:00:da:14:14: ed:f7:8d:23:aa:cc:30:25:64:e8:98:24:23:41:01: 70:5a:9d:7b:f7:11:e8:f3:67:6c:c7:af:89:c2:2b: 23:17:c0:1e:f8:e8:57:02:52:c2:03:37:54:92:f4: 06:58:52:31:8b:66:7d:92:b7:c5:38:2a:08:90:2f: d2:64:6d:31:25:77:4b:ef:c7:1f:bc:e8:57:b1:64: 43:74:9c:fe:e3:7e:ea:65:89:bc:fc:88:01:38:12: 6d:89:8c:e1:4e:39:81:86:90:d7:98:4f:f8:61:5d: b7:1e:db:33:78:77:46:e4:b1:df:7c:e9:9f:2f:45: 90:d7:a4:4f:9c:3e:25:85:2e:92:2f:38:78:27:cf: 2a:ab:c9:57:9f:38:8b:1e:72:68:d1:fe:88:08:1a: b9:2f:71:bb:59:6e:bb:cd:14:4c:6b:76:93:28:19: 72:9f:6f:f1:6e:ae:e4:3b:34:35:27:66:c9:df:6c: 93:0e:d0:c7:f5:ac:81:03:0d:af:ba:96:c5:ec:1d: 2d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F4:C8:00:82:38:D7:67:CB:F6:3D:04:A3:03:31:C6:01:67:72:3F X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.160.0/23 Signature Algorithm: sha256WithRSAEncryption 87:8f:b2:ed:a8:8a:bc:35:98:7f:1f:a2:21:a3:b1:d6:76:1e: f9:76:62:18:6c:a5:7e:63:23:9e:b7:21:ec:7a:59:82:03:ae: 9e:b2:75:72:36:d7:96:33:d4:02:7d:46:9b:06:cc:a4:1d:b9: e8:74:6e:a1:ac:bb:79:f2:eb:76:7c:27:64:b6:1d:69:ec:ff: c4:78:e3:7f:62:8e:e1:84:75:cc:78:da:19:d3:c5:35:0f:51: e3:8d:27:db:04:c0:d6:c8:a3:31:24:02:9b:77:b2:05:e6:b4: 0d:97:a8:17:4a:67:17:31:63:03:29:6d:31:bc:6b:d7:c9:f8: 26:37:66:cc:3d:03:21:52:13:4a:a3:eb:cc:d5:ca:ed:85:39: 78:78:47:ab:29:91:d3:4a:a8:e4:30:70:2b:02:22:32:73:29: 1d:ac:9f:ce:31:d6:b6:63:12:42:0e:49:a4:a2:56:47:70:e9: 00:3d:17:17:75:1f:c6:5f:07:49:5b:e0:7e:13:56:0d:f6:2b: 25:4d:7e:e0:4a:b3:f4:dc:e5:31:a4:87:ad:dc:be:cf:cc:5b: f8:74:f1:7b:3e:88:1d:aa:d9:c2:f5:40:8b:41:05:eb:e4:6f: d3:b7:dd:61:58:eb:b3:88:63:f7:c8:26:ec:0a:f0:cf:f4:73: 0e:bb:3c:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDXNSvYeUGqAtTJMmsEDPcIatm04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNDAxMTIwMjE1NDZaFw0yNTAxMTAwMjIwNDZaMDMxMTAvBgNV BAMTKDUxRjRDODAwODIzOEQ3NjdDQkY2M0QwNEEzMDMzMUM2MDE2NzcyM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCppkzCM9RV8DYP5UiKjx56XA/5 taAkeEVA0lLeLT/WAFeiK/YBbdqq4Y6fy+kQDhzx75ERvquoANoUFO33jSOqzDAl ZOiYJCNBAXBanXv3EejzZ2zHr4nCKyMXwB746FcCUsIDN1SS9AZYUjGLZn2St8U4 KgiQL9JkbTEld0vvxx+86FexZEN0nP7jfuplibz8iAE4Em2JjOFOOYGGkNeYT/hh Xbce2zN4d0bksd986Z8vRZDXpE+cPiWFLpIvOHgnzyqryVefOIsecmjR/ogIGrkv cbtZbrvNFExrdpMoGXKfb/FuruQ7NDUnZsnfbJMO0Mf1rIEDDa+6lsXsHS3lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUfTIAII412fL9j0EowMxxgFncj8wHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjMmZjMWQ0LTM3YTYtNDk0My1i NGM2LTZkOGU5YjRlNTU5MS8wLzMxMzUzNzJlMzEzMDJlMzEzNjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQqgMA0GCSqG SIb3DQEBCwUAA4IBAQCHj7LtqIq8NZh/H6Iho7HWdh75dmIYbKV+YyOetyHselmC A66esnVyNteWM9QCfUabBsykHbnodG6hrLt58ut2fCdkth1p7P/EeON/Yo7hhHXM eNoZ08U1D1HjjSfbBMDWyKMxJAKbd7IF5rQNl6gXSmcXMWMDKW0xvGvXyfgmN2bM PQMhUhNKo+vM1crthTl4eEerKZHTSqjkMHArAiIycykdrJ/OMda2YxJCDkmkolZH cOkAPRcXdR/GXwdJW+B+E1YN9islTX7gSrP03OUxpIet3L7PzFv4dPF7PogdqtnC 9UCLQQXr5G/Tt91hWOuziGP3yCbsCvDP9HMOuzw6 -----END CERTIFICATE-----Generated at Tue Apr 30 15:50:32 2024 by rpki-client on console-fra.rpki-client.org