$ rpki-client -vvf repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa File: 3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa (raw, json) Hash identifier: uXN8fe3vkJx+wSW+M/ejclDs8Allv99c27F8IyjPFGI= Subject key identifier: 4C:B7:13:29:B3:9E:4A:7E:D6:BD:C9:20:D9:9B:75:0F:09:E6:5A:47 Certificate issuer: /CN=260881823F2804BCA7A65AC93BD3DC9A7EE1730A Certificate serial: 4F90BB78092042AB89F986302F068EB83DD6899E Authority key identifier: 26:08:81:82:3F:28:04:BC:A7:A6:5A:C9:3B:D3:DC:9A:7E:E1:73:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa Signing time: Tue 16 Apr 2024 11:32:27 +0000 ROA not before: Tue 16 Apr 2024 11:27:27 +0000 ROA not after: Tue 15 Apr 2025 11:32:27 +0000 asID: 152422 IP address blocks: 157.20.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.crl rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:90:bb:78:09:20:42:ab:89:f9:86:30:2f:06:8e:b8:3d:d6:89:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=260881823F2804BCA7A65AC93BD3DC9A7EE1730A Validity Not Before: Apr 16 11:27:27 2024 GMT Not After : Apr 15 11:32:27 2025 GMT Subject: CN=4CB71329B39E4A7ED6BDC920D99B750F09E65A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:02:63:32:12:0a:8f:ec:6d:00:f6:16:65: 68:fd:9f:1a:c1:f7:18:63:58:15:0e:dc:b5:63:0a: cf:8c:d8:65:b8:dd:73:1e:75:8a:9c:90:83:cd:c1: 52:1c:bc:1f:a6:52:6a:52:fd:f3:a1:18:50:c8:83: be:c0:4d:02:d0:cf:13:47:af:5d:a6:d7:02:74:73: a6:6e:e5:7a:c8:b9:a5:7f:09:05:6d:6c:2a:ae:b0: 71:a6:a3:46:d4:6c:5e:c3:24:0b:96:48:ba:79:b0: a1:79:2c:8f:3a:8d:40:b7:b0:68:d5:f6:84:d6:2d: 06:f4:4c:b2:cc:ad:a8:fc:b8:22:55:ae:04:e0:8f: e6:14:49:5c:57:b6:ba:10:62:55:38:76:78:e8:10: 2f:8e:cd:27:43:7e:28:81:71:11:d7:83:54:42:84: 02:83:71:8d:73:29:33:31:28:f3:af:6f:f4:ae:f4: 3f:e5:21:6b:8b:f3:ec:19:40:a9:81:df:56:f9:50: cc:ac:49:a9:ac:60:18:8f:8a:24:b6:fc:ab:96:12: e9:0b:e6:86:2f:9c:b2:0b:7d:46:da:7a:23:90:c1: dc:a9:6c:66:90:9c:9c:b2:76:49:23:87:37:d8:54: f8:9d:29:61:7d:4f:f7:5d:94:28:a9:e9:fc:41:c8: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B7:13:29:B3:9E:4A:7E:D6:BD:C9:20:D9:9B:75:0F:09:E6:5A:47 X509v3 Authority Key Identifier: keyid:26:08:81:82:3F:28:04:BC:A7:A6:5A:C9:3B:D3:DC:9A:7E:E1:73:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.188.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:23:ea:50:ac:bb:d7:a1:58:48:64:2b:b9:be:83:af:cc:db: 44:81:a2:e4:02:dc:18:51:80:99:28:a0:ae:ea:0a:ac:cf:64: 1f:8f:ee:a2:74:74:f0:96:e6:92:ff:73:59:1f:31:8e:8b:8c: 9e:2a:b6:d1:31:61:f9:05:8c:ca:e8:3a:d5:b1:be:59:8d:79: bd:ee:0c:d9:25:12:5a:86:b3:c3:9f:9a:cc:ea:ac:e6:e2:a5: e9:37:3f:27:57:f9:89:90:c3:28:04:96:73:f7:ed:a7:5b:78: ef:7f:71:26:bd:ed:e5:3e:1c:f4:0f:49:98:8e:fa:65:91:4d: d4:8d:c4:b7:04:a7:7c:fa:37:42:ca:cb:40:6d:a7:20:40:92: ce:b3:76:97:89:a1:dd:03:aa:43:57:3a:ca:da:f1:98:71:57: 26:ea:0b:df:ef:e6:e3:22:0e:a0:52:4a:8c:49:0e:f1:98:d3: df:d8:b2:84:a1:02:b0:1a:89:e9:e4:e6:64:cd:6f:d3:29:31: 78:65:b2:37:2f:60:65:78:6a:c5:20:a5:63:13:b2:c4:95:45: 2d:56:6c:9d:8c:5f:3c:d9:d8:99:e8:74:18:7c:19:2d:25:92: a0:7e:e7:21:88:48:bb:80:9a:4f:28:7b:14:8d:f4:58:68:45: c9:81:57:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT5C7eAkgQquJ+YYwLwaOuD3WiZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjYwODgxODIzRjI4MDRCQ0E3QTY1QUM5M0JEM0RDOUE3 RUUxNzMwQTAeFw0yNDA0MTYxMTI3MjdaFw0yNTA0MTUxMTMyMjdaMDMxMTAvBgNV BAMTKDRDQjcxMzI5QjM5RTRBN0VENkJEQzkyMEQ5OUI3NTBGMDlFNjVBNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/gJjMhIKj+xtAPYWZWj9nxrB 9xhjWBUO3LVjCs+M2GW43XMedYqckIPNwVIcvB+mUmpS/fOhGFDIg77ATQLQzxNH r12m1wJ0c6Zu5XrIuaV/CQVtbCqusHGmo0bUbF7DJAuWSLp5sKF5LI86jUC3sGjV 9oTWLQb0TLLMraj8uCJVrgTgj+YUSVxXtroQYlU4dnjoEC+OzSdDfiiBcRHXg1RC hAKDcY1zKTMxKPOvb/Su9D/lIWuL8+wZQKmB31b5UMysSamsYBiPiiS2/KuWEukL 5oYvnLILfUbaeiOQwdypbGaQnJyydkkjhzfYVPidKWF9T/ddlCip6fxByGEbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTLcTKbOeSn7Wvckg2Zt1DwnmWkcwHwYDVR0j BBgwFoAUJgiBgj8oBLynplrJO9Pcmn7hcwowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTM2OGFlMy1kZDEyLTRhYTMtODk0OC01NDZkZTA0YzUxZTQvMC8yNjA4ODE4MjNG MjgwNEJDQTdBNjVBQzkzQkQzREM5QTdFRTE3MzBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjYwODgxODIzRjI4MDRCQ0E3QTY1QUM5M0JEM0RDOUE3RUUx NzMwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxMzY4YWUzLWRkMTItNGFhMy04 OTQ4LTU0NmRlMDRjNTFlNC8wLzMxMzUzNzJlMzIzMDJlMzEzODM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRS8MA0GCSqG SIb3DQEBCwUAA4IBAQCNI+pQrLvXoVhIZCu5voOvzNtEgaLkAtwYUYCZKKCu6gqs z2Qfj+6idHTwluaS/3NZHzGOi4yeKrbRMWH5BYzK6DrVsb5ZjXm97gzZJRJahrPD n5rM6qzm4qXpNz8nV/mJkMMoBJZz9+2nW3jvf3Emve3lPhz0D0mYjvplkU3UjcS3 BKd8+jdCystAbacgQJLOs3aXiaHdA6pDVzrK2vGYcVcm6gvf7+bjIg6gUkqMSQ7x mNPf2LKEoQKwGonp5OZkzW/TKTF4ZbI3L2BleGrFIKVjE7LElUUtVmydjF882diZ 6HQYfBktJZKgfuchiEi7gJpPKHsUjfRYaEXJgVfU -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:32 2024 by rpki-client on console-ams.rpki-client.org