$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34342e302f32342d3234203d3e20313532333932.roa File: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (raw, json) Hash identifier: 20xyi7WGXkhpJhYMMa60rCEDcWMrrO4WibLNf+8UjDs= Subject key identifier: C8:52:2E:17:61:E3:2C:AF:F3:CB:B5:50:43:BD:07:62:25:16:17:E0 Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 24BDAAD62E3781E0BA6826435AFBFED953D10EAC Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34342e302f32342d3234203d3e20313532333932.roa Signing time: Mon 15 Jul 2024 03:19:47 +0000 ROA not before: Mon 15 Jul 2024 03:14:47 +0000 ROA not after: Mon 14 Jul 2025 03:19:47 +0000 asID: 152392 IP address blocks: 157.20.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:bd:aa:d6:2e:37:81:e0:ba:68:26:43:5a:fb:fe:d9:53:d1:0e:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jul 15 03:14:47 2024 GMT Not After : Jul 14 03:19:47 2025 GMT Subject: CN=C8522E1761E32CAFF3CBB55043BD0762251617E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7a:ef:e6:f7:72:0e:f7:4f:71:82:67:fa:c4: 24:0a:55:e2:94:c6:db:db:9f:52:a4:dc:b9:2f:84: d6:e0:5d:b8:9e:50:80:5d:c6:95:77:fa:dc:b0:db: f1:0a:30:08:20:dc:c9:1e:8b:24:41:50:7f:45:78: 63:53:56:3e:e2:a4:a0:85:fe:77:40:9e:5a:2a:57: 00:b4:ab:af:ef:90:a8:3e:96:05:bc:90:29:10:bb: 8c:87:6c:5e:9b:28:42:e1:2b:be:39:3e:8a:29:72: ab:30:e0:83:ea:1f:e1:77:9b:90:a6:aa:c7:f4:69: 56:9a:cb:bd:7b:55:00:cb:2c:a1:e5:fe:ee:f0:9d: 44:3f:ae:04:66:e5:0c:dd:78:bc:0f:35:b0:b1:82: e3:f7:12:2b:9e:28:c7:d1:2d:a4:6c:98:f6:e4:08: 84:24:0b:25:de:e2:95:eb:2f:3e:b0:05:9c:17:e9: aa:89:4f:3c:90:ef:ef:02:83:0d:a5:8d:77:f2:cd: 03:74:35:02:5f:76:f8:cc:74:bb:13:67:b2:93:9f: 2d:35:37:88:04:c9:d4:1e:0e:7b:fd:7a:51:55:8a: c8:8e:f4:45:fb:78:29:f2:97:19:41:51:3c:0f:f0: ec:fc:22:78:b0:e6:a7:91:a1:f0:9d:a4:52:c7:2f: 33:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:52:2E:17:61:E3:2C:AF:F3:CB:B5:50:43:BD:07:62:25:16:17:E0 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34342e302f32342d3234203d3e20313532333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.44.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:c2:72:41:94:11:e7:63:e7:58:8f:25:fe:c0:f5:e3:e1:35: dd:a1:42:8e:8b:9f:7a:81:13:37:48:52:80:29:3b:39:13:71: 15:0f:32:ef:70:2d:1c:b9:69:b1:87:f5:4c:a4:cf:2d:b6:72: f3:3f:0a:22:74:3d:43:61:d2:99:53:07:9f:38:95:b8:14:ba: 75:f8:8a:7c:1f:0f:f6:64:02:6d:1b:26:ad:2d:12:0b:a5:4f: 20:9a:2a:af:04:79:6b:c3:8d:97:f8:c4:31:b2:d2:5c:c5:42: 68:e4:ed:43:b3:f0:1a:bf:f7:f1:54:36:f2:5a:d0:08:55:c9: 40:fa:25:34:2f:21:41:64:d6:69:01:db:30:a9:2e:91:e3:ef: f8:fe:1b:92:43:d7:6d:35:cd:33:77:fc:3b:1f:6c:8e:ff:83: 30:5c:6e:cf:1a:dc:a5:d2:da:88:02:95:b1:48:57:5a:48:0f: 35:97:8a:12:ab:1f:f6:b9:2a:b6:8a:d5:50:28:29:2e:d0:c6: fe:85:d2:e4:84:ce:f2:8a:a4:27:36:99:62:44:f7:5d:ce:9d: 70:7c:a8:2d:89:d8:45:37:ee:40:4e:3e:5e:2e:33:7b:fd:19: e5:0b:3f:0a:ae:36:4a:7a:b1:ea:a0:9f:01:f0:1b:60:07:99: 7b:e9:5f:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJL2q1i43geC6aCZDWvv+2VPRDqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNDA3MTUwMzE0NDdaFw0yNTA3MTQwMzE5NDdaMDMxMTAvBgNV BAMTKEM4NTIyRTE3NjFFMzJDQUZGM0NCQjU1MDQzQkQwNzYyMjUxNjE3RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eu/m93IO909xgmf6xCQKVeKU xtvbn1Kk3LkvhNbgXbieUIBdxpV3+tyw2/EKMAgg3MkeiyRBUH9FeGNTVj7ipKCF /ndAnloqVwC0q6/vkKg+lgW8kCkQu4yHbF6bKELhK745Poopcqsw4IPqH+F3m5Cm qsf0aVaay717VQDLLKHl/u7wnUQ/rgRm5QzdeLwPNbCxguP3EiueKMfRLaRsmPbk CIQkCyXe4pXrLz6wBZwX6aqJTzyQ7+8Cgw2ljXfyzQN0NQJfdvjMdLsTZ7KTny01 N4gEydQeDnv9elFVisiO9EX7eCnylxlBUTwP8Oz8Iniw5qeRofCdpFLHLzPDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyFIuF2HjLK/zy7VQQ70HYiUWF+AwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3LTZhOTItNDI5My04 ODAwLWI1M2UyYTkxOGFjYS8wLzMxMzUzNzJlMzIzMDJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0ULDANBgkqhkiG 9w0BAQsFAAOCAQEAX8JyQZQR52PnWI8l/sD14+E13aFCjoufeoETN0hSgCk7ORNx FQ8y73AtHLlpsYf1TKTPLbZy8z8KInQ9Q2HSmVMHnziVuBS6dfiKfB8P9mQCbRsm rS0SC6VPIJoqrwR5a8ONl/jEMbLSXMVCaOTtQ7PwGr/38VQ28lrQCFXJQPolNC8h QWTWaQHbMKkukePv+P4bkkPXbTXNM3f8Ox9sjv+DMFxuzxrcpdLaiAKVsUhXWkgP NZeKEqsf9rkqtorVUCgpLtDG/oXS5ITO8oqkJzaZYkT3Xc6dcHyoLYnYRTfuQE4+ Xi4ze/0Z5Qs/Cq42Snqx6qCfAfAbYAeZe+lfBA== -----END CERTIFICATE-----Generated at Tue Nov 26 02:25:08 2024 by rpki-client on console-ams.rpki-client.org