$ rpki-client -vvf repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa File: 3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa (raw, json) Hash identifier: YOfV9l8mIphWSX9GO2VG6QOcO1lYY9wjqJShR8OC/dU= Subject key identifier: 26:E6:FD:E8:8D:D4:0B:59:30:CC:16:3C:7B:1F:E3:47:04:91:11:C1 Certificate issuer: /CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Certificate serial: 28C9AEB474DC43B6C095F9818816EDF7A537F476 Authority key identifier: 04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa Signing time: Thu 30 May 2024 09:23:08 +0000 ROA not before: Thu 30 May 2024 09:18:08 +0000 ROA not after: Thu 29 May 2025 09:23:08 +0000 asID: 138089 IP address blocks: 157.20.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c9:ae:b4:74:dc:43:b6:c0:95:f9:81:88:16:ed:f7:a5:37:f4:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Validity Not Before: May 30 09:18:08 2024 GMT Not After : May 29 09:23:08 2025 GMT Subject: CN=26E6FDE88DD40B5930CC163C7B1FE347049111C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2a:ad:6e:96:1d:94:67:8a:b1:97:26:4d:2c: 97:29:3b:ed:80:7b:26:71:4a:0c:e7:59:d4:3f:67: 12:34:0c:f7:8c:3b:14:87:c6:7f:22:4e:69:c9:06: 55:fc:15:16:09:97:d4:d4:e3:f7:5d:d5:6e:28:02: 60:15:e2:58:34:65:82:17:aa:90:c7:c8:8e:83:24: ad:fe:e2:9f:5b:d0:e1:9b:61:7d:a2:74:e8:f8:e9: 31:3f:aa:7c:a6:93:2d:2c:5b:04:db:55:25:2c:9a: e9:75:89:91:ac:17:49:fc:1d:fa:dc:45:08:98:a2: cd:39:b3:93:52:99:02:bd:75:08:22:d5:be:36:dc: 60:bc:9b:24:66:a2:0f:84:98:8b:d4:25:d9:18:ad: 38:84:d1:03:f5:8c:24:eb:bc:ea:ef:9f:8e:c3:74: a2:ee:47:4e:aa:20:2e:d3:04:fc:04:73:af:99:96: 36:b6:75:6d:7a:95:c2:46:6e:b7:c7:9d:e0:c0:58: 7e:40:ed:0f:6b:c8:df:ec:db:c2:aa:7c:1a:21:ff: a5:09:c0:b2:00:f2:ca:4d:d9:f7:88:04:87:13:cd: 8b:3d:1d:24:d0:4b:59:db:8e:c0:dc:92:59:82:1c: 89:3e:06:6f:5d:3d:22:da:d4:cb:0c:27:25:19:c4: 48:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E6:FD:E8:8D:D4:0B:59:30:CC:16:3C:7B:1F:E3:47:04:91:11:C1 X509v3 Authority Key Identifier: keyid:04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.252.0/23 Signature Algorithm: sha256WithRSAEncryption 72:67:f9:bd:51:78:ed:e3:21:dd:8c:55:d9:8f:cb:92:a5:76: 17:41:4d:58:92:8f:3c:7e:c2:bb:b9:5c:6f:26:00:f1:ed:ce: 10:92:2d:ec:11:c0:0c:98:ec:5d:69:bf:64:bd:fb:0e:c0:08: 68:7e:8a:db:59:d4:d9:f5:36:bd:3c:c1:3e:68:e5:12:9a:56: 96:1f:73:56:24:77:b6:f9:49:77:25:ab:b0:6b:ca:9b:85:64: 07:b1:eb:65:24:3d:54:23:50:c6:65:41:78:0a:ab:44:c6:aa: 8a:19:06:e9:1a:e6:a3:26:01:b0:a7:27:87:78:35:39:19:da: d8:3b:37:cb:e5:2d:91:20:0e:86:9d:a0:c7:62:3e:1e:2d:e9: 07:33:13:e4:89:a7:89:5f:43:f1:37:7f:40:a2:e6:82:e7:f8: a9:ca:fb:dd:29:12:79:08:38:1e:63:41:da:fa:86:27:25:4d: 13:e7:c1:19:b5:b7:43:ba:90:49:ed:89:94:a1:d7:90:d6:40: fb:01:5f:39:d4:20:1e:69:96:af:4c:06:b7:95:bf:c3:5d:3e: 79:5f:32:56:5c:d8:84:14:b7:f5:1f:63:28:8a:1a:e6:c9:65: 3d:ea:8c:57:c4:c3:2e:0d:63:15:21:05:4a:3e:da:0a:29:c1: 22:a5:4e:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKMmutHTcQ7bAlfmBiBbt96U39HYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1 RURFMzMwMDAeFw0yNDA1MzAwOTE4MDhaFw0yNTA1MjkwOTIzMDhaMDMxMTAvBgNV BAMTKDI2RTZGREU4OERENDBCNTkzMENDMTYzQzdCMUZFMzQ3MDQ5MTExQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeKq1ulh2UZ4qxlyZNLJcpO+2A eyZxSgznWdQ/ZxI0DPeMOxSHxn8iTmnJBlX8FRYJl9TU4/dd1W4oAmAV4lg0ZYIX qpDHyI6DJK3+4p9b0OGbYX2idOj46TE/qnymky0sWwTbVSUsmul1iZGsF0n8Hfrc RQiYos05s5NSmQK9dQgi1b423GC8myRmog+EmIvUJdkYrTiE0QP1jCTrvOrvn47D dKLuR06qIC7TBPwEc6+Zlja2dW16lcJGbrfHneDAWH5A7Q9ryN/s28KqfBoh/6UJ wLIA8spN2feIBIcTzYs9HSTQS1nbjsDcklmCHIk+Bm9dPSLa1MsMJyUZxEjXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJub96I3UC1kwzBY8ex/jRwSREcEwHwYDVR0j BBgwFoAUBNPS4GAkOtkX1PaCki5KgF7eMwAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZThkNThhOC1lMTk3LTQxNzktYjczYy02MDhlMDQ3ZDA5YTMvMC8wNEQzRDJFMDYw MjQzQUQ5MTdENEY2ODI5MjJFNEE4MDVFREUzMzAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1RURF MzMwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRT8MA0GCSqG SIb3DQEBCwUAA4IBAQByZ/m9UXjt4yHdjFXZj8uSpXYXQU1Yko88fsK7uVxvJgDx 7c4Qki3sEcAMmOxdab9kvfsOwAhoforbWdTZ9Ta9PME+aOUSmlaWH3NWJHe2+Ul3 Jauwa8qbhWQHsetlJD1UI1DGZUF4CqtExqqKGQbpGuajJgGwpyeHeDU5GdrYOzfL 5S2RIA6GnaDHYj4eLekHMxPkiaeJX0PxN39AouaC5/ipyvvdKRJ5CDgeY0Ha+oYn JU0T58EZtbdDupBJ7YmUodeQ1kD7AV851CAeaZavTAa3lb/DXT55XzJWXNiEFLf1 H2MoihrmyWU96oxXxMMuDWMVIQVKPtoKKcEipU4I -----END CERTIFICATE-----Generated at Fri Sep 27 14:21:40 2024 by rpki-client on console-fra.rpki-client.org