$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20313532333932.roa File: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (raw, json) Hash identifier: jbMFn3kNUo/m8uz8dpflKAJHnKvcbaIlaJRtbj0yWV0= Subject key identifier: 52:24:CF:74:49:A2:51:BB:B0:21:19:AF:24:11:59:C3:B9:24:F4:BF Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 5F8EDF5E06D49A34E7E9604F352982C6CFD56C Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20313532333932.roa Signing time: Mon 15 Jul 2024 03:20:07 +0000 ROA not before: Mon 15 Jul 2024 03:15:07 +0000 ROA not after: Mon 14 Jul 2025 03:20:07 +0000 asID: 152392 IP address blocks: 157.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:8e:df:5e:06:d4:9a:34:e7:e9:60:4f:35:29:82:c6:cf:d5:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jul 15 03:15:07 2024 GMT Not After : Jul 14 03:20:07 2025 GMT Subject: CN=5224CF7449A251BBB02119AF241159C3B924F4BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:75:d9:c0:70:89:d1:0b:53:48:9a:1f:6d: d7:0b:41:f3:e8:75:88:e5:d3:11:58:57:72:fd:d4: c6:20:b2:97:7a:8d:49:fa:31:a6:b3:e0:e1:11:80: a8:e5:5f:11:f0:5c:27:3e:8a:79:96:6a:f9:c1:43: de:b2:cb:9c:a7:cc:82:e2:0f:22:f7:b1:40:04:f3: 1b:5a:a5:cc:f5:3f:7d:19:4c:8a:d8:35:1a:27:c1: db:97:37:b2:99:14:1f:46:ae:e9:c9:c3:27:49:02: 5a:f9:f2:30:3d:38:e4:ad:3c:2e:70:c9:74:5e:04: 1a:ea:d8:85:c5:b2:c6:8e:a7:61:5d:c5:e4:b8:51: 0f:a5:96:92:04:02:5e:ea:fc:98:72:5b:af:26:fa: d5:d8:32:1c:75:11:e3:99:49:35:09:fd:96:d6:b7: da:c3:aa:28:d6:f0:b4:da:2f:98:4c:06:61:a7:1f: 40:ca:4c:2e:aa:0a:45:f0:29:3d:77:66:b1:5d:04: e9:79:56:e1:10:cb:2f:32:f9:a4:2f:26:0a:61:fc: e4:ef:68:44:1f:19:5e:ea:42:8e:4b:c8:b2:e7:d7: b3:c6:e9:a9:c7:a0:98:0b:16:3d:6e:d2:6b:3b:cd: ce:a6:6c:96:ac:a9:b5:dc:98:e3:93:66:70:f4:7c: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:24:CF:74:49:A2:51:BB:B0:21:19:AF:24:11:59:C3:B9:24:F4:BF X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20313532333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:0e:95:aa:0d:ab:fe:e1:c5:15:d5:5e:99:29:3d:31:08:46: 12:2e:f5:01:27:3e:b2:3f:95:f8:d3:3d:bf:08:98:b8:d8:77: c7:c8:52:91:94:8c:76:af:c9:68:eb:b4:1e:e2:04:58:d8:cf: 3c:98:7a:9e:97:a0:12:06:d7:4d:e1:1d:43:8a:e9:a1:e0:98: a6:fd:41:93:b2:e0:aa:d9:88:66:4b:87:8e:46:9a:50:b6:4e: 4d:cc:c4:20:7a:ad:bd:c6:aa:43:05:c7:c1:ce:29:cb:cd:66: 84:53:42:61:43:e8:23:34:14:e2:79:74:6a:cc:e5:36:3a:2e: b1:b1:91:ec:46:5f:48:24:a1:c4:a9:ab:95:4a:96:5a:6e:89: e5:f6:c2:e8:64:7f:78:fb:3e:18:0c:e1:fa:4c:c9:19:29:01: ff:3d:00:55:41:4f:4b:83:5d:1d:c7:11:ac:85:b8:10:56:00: f9:15:9c:38:7b:9e:79:c8:83:4e:ea:4e:6b:ef:5d:dd:24:0b: 81:8b:4c:47:a4:24:2c:bb:a5:35:0f:f5:d0:cf:e6:c7:cb:0b: 22:4d:36:ef:af:28:67:95:f5:36:32:85:24:7b:23:48:3b:f6: 25:a7:9b:b0:c9:73:ca:40:94:ed:46:21:bd:08:f8:06:90:81: bf:59:8d:c7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgITX47fXgbUmjTn6WBPNSmCxs/VbDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwRUFGMkEwQ0QyMjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUw NzVDQTNFMB4XDTI0MDcxNTAzMTUwN1oXDTI1MDcxNDAzMjAwN1owMzExMC8GA1UE AxMoNTIyNENGNzQ0OUEyNTFCQkIwMjExOUFGMjQxMTU5QzNCOTI0RjRCRjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTQddnAcInRC1NImh9t1wtB8+h1 iOXTEVhXcv3UxiCyl3qNSfoxprPg4RGAqOVfEfBcJz6KeZZq+cFD3rLLnKfMguIP IvexQATzG1qlzPU/fRlMitg1GifB25c3spkUH0au6cnDJ0kCWvnyMD045K08LnDJ dF4EGurYhcWyxo6nYV3F5LhRD6WWkgQCXur8mHJbryb61dgyHHUR45lJNQn9lta3 2sOqKNbwtNovmEwGYacfQMpMLqoKRfApPXdmsV0E6XlW4RDLLzL5pC8mCmH85O9o RB8ZXupCjkvIsufXs8bpqcegmAsWPW7SazvNzqZslqyptdyY45NmcPR85BECAwEA AaOCAjIwggIuMB0GA1UdDgQWBBRSJM90SaJRu7AhGa8kEVnDuST0vzAfBgNVHSME GDAWgBQOryoM0iUj2whzdUFwOOQWUHXKPjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1 ODhkZmY3LTZhOTItNDI5My04ODAwLWI1M2UyYTkxOGFjYS8wLzBFQUYyQTBDRDIy NTIzREIwODczNzU0MTcwMzhFNDE2NTA3NUNBM0UuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMS8wRUFGMkEwQ0QyMjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVD QTNFLmNlcjCBogYIKwYBBQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMzEzNTM3MmUzMjMwMmUzNDM1MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzEzNTMyMzMzOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRQtMA0GCSqGSIb3 DQEBCwUAA4IBAQA7DpWqDav+4cUV1V6ZKT0xCEYSLvUBJz6yP5X40z2/CJi42HfH yFKRlIx2r8lo67Qe4gRY2M88mHqel6ASBtdN4R1Diumh4Jim/UGTsuCq2YhmS4eO RppQtk5NzMQgeq29xqpDBcfBzinLzWaEU0JhQ+gjNBTieXRqzOU2Oi6xsZHsRl9I JKHEqauVSpZabonl9sLoZH94+z4YDOH6TMkZKQH/PQBVQU9Lg10dxxGshbgQVgD5 FZw4e555yINO6k5r713dJAuBi0xHpCQsu6U1D/XQz+bHywsiTTbvryhnlfU2MoUk eyNIO/Ylp5uwyXPKQJTtRiG9CPgGkIG/WY3H -----END CERTIFICATE-----Generated at Fri Sep 27 18:55:47 2024 by rpki-client on console-ams.rpki-client.org