$ rpki-client -vvf repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa File: 3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa (raw, json) Hash identifier: xOzigRErFODQdDARf5QM/i0Y/lZ+YPGavEVLu/65CLs= Subject key identifier: 3D:69:81:CF:98:87:F1:FC:F8:4E:7A:F6:F5:A2:24:CD:B6:5C:DB:40 Certificate issuer: /CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Certificate serial: 3E6A371C5F2E482000A915448D36A8B438526E43 Authority key identifier: 04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa Signing time: Thu 30 May 2024 09:24:17 +0000 ROA not before: Thu 30 May 2024 09:19:17 +0000 ROA not after: Thu 29 May 2025 09:24:17 +0000 asID: 152750 IP address blocks: 157.20.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:6a:37:1c:5f:2e:48:20:00:a9:15:44:8d:36:a8:b4:38:52:6e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Validity Not Before: May 30 09:19:17 2024 GMT Not After : May 29 09:24:17 2025 GMT Subject: CN=3D6981CF9887F1FCF84E7AF6F5A224CDB65CDB40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:02:a4:6f:79:b3:28:04:b2:01:27:24:46: 26:6d:e1:c7:c7:06:df:dc:91:41:3b:30:b7:83:46: 72:e0:bc:93:fa:be:02:c7:1b:1d:22:6e:32:9c:0f: 98:fb:bf:93:9b:ed:15:08:bc:ce:ef:4d:93:75:35: f9:ea:4f:fd:8c:82:99:86:73:11:aa:f4:ec:ed:f9: 02:1b:4f:64:93:3f:16:e5:8b:24:2c:76:37:56:de: 65:61:f5:23:5f:96:75:7f:16:51:e8:ec:87:42:4c: e7:28:9c:8d:5b:81:80:0a:fa:02:82:7e:f6:0a:4f: db:0d:b7:cf:8d:0d:96:59:8c:91:34:b5:86:ae:e6: 7a:43:f1:0f:7f:6c:7e:57:4e:b4:f8:7c:56:fa:82: b4:a3:ff:f3:9e:f6:cb:95:e2:48:1d:51:c6:53:b9: f3:d2:5e:4b:f3:9b:5c:cf:43:af:59:29:2e:3f:a8: 35:dd:9e:df:fd:74:31:0a:21:0c:27:e6:9e:32:6b: 89:ca:28:6e:57:a4:4d:4b:59:44:51:17:c3:a0:d9: 0f:a6:45:29:60:30:fa:15:8f:4e:41:46:9e:13:93: 10:6d:96:e9:b5:8e:81:cd:80:ac:10:59:ee:5d:ed: 12:5b:a7:df:b5:c1:cd:bb:6d:48:40:38:d6:77:28: 54:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:69:81:CF:98:87:F1:FC:F8:4E:7A:F6:F5:A2:24:CD:B6:5C:DB:40 X509v3 Authority Key Identifier: keyid:04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.252.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:63:92:83:df:81:b2:62:ae:41:23:c1:c9:89:a6:00:55:df: 9a:e7:70:58:61:e4:17:33:21:18:22:b3:91:74:ad:33:8e:0f: 8f:3b:8c:53:d3:f8:33:e1:66:df:2f:1f:73:57:9f:e8:17:ff: 5b:a4:71:34:e3:90:21:55:0f:dc:50:7b:a6:c5:e0:a0:dd:04: 61:d9:3f:d7:26:31:b9:93:34:20:29:1e:00:d2:20:fb:97:18: 69:bc:c9:a3:89:12:f2:37:ba:3f:71:41:8f:f2:0e:99:34:59: 9e:ae:db:a5:16:78:bf:67:bd:68:00:90:55:92:bb:0b:ed:be: c3:01:a2:77:a8:de:df:95:7e:d9:68:27:b3:bd:15:f9:38:56: a4:fd:a0:d6:fd:c1:39:2f:84:30:77:e3:13:a6:a9:56:37:3f: 8a:e4:8a:c5:b7:d1:f1:bf:50:59:0d:08:79:64:ed:e9:7e:cc: 8b:b7:63:12:3c:5f:88:2e:54:d4:64:e3:64:c0:8c:22:cf:e2: ce:9d:9b:61:98:a3:35:f3:83:de:81:e4:e0:f5:fc:75:1e:d7: ff:e1:76:a6:86:29:19:6c:52:22:d4:a7:08:1b:be:57:38:62: 78:7f:8b:01:ee:22:b5:75:46:29:1c:da:f8:dc:04:34:32:ff: 5e:f2:79:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPmo3HF8uSCAAqRVEjTaotDhSbkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1 RURFMzMwMDAeFw0yNDA1MzAwOTE5MTdaFw0yNTA1MjkwOTI0MTdaMDMxMTAvBgNV BAMTKDNENjk4MUNGOTg4N0YxRkNGODRFN0FGNkY1QTIyNENEQjY1Q0RCNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC98QKkb3mzKASyASckRiZt4cfH Bt/ckUE7MLeDRnLgvJP6vgLHGx0ibjKcD5j7v5Ob7RUIvM7vTZN1NfnqT/2MgpmG cxGq9Ozt+QIbT2STPxbliyQsdjdW3mVh9SNflnV/FlHo7IdCTOconI1bgYAK+gKC fvYKT9sNt8+NDZZZjJE0tYau5npD8Q9/bH5XTrT4fFb6grSj//Oe9suV4kgdUcZT ufPSXkvzm1zPQ69ZKS4/qDXdnt/9dDEKIQwn5p4ya4nKKG5XpE1LWURRF8Og2Q+m RSlgMPoVj05BRp4TkxBtlum1joHNgKwQWe5d7RJbp9+1wc27bUhAONZ3KFRtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPWmBz5iH8fz4Tnr29aIkzbZc20AwHwYDVR0j BBgwFoAUBNPS4GAkOtkX1PaCki5KgF7eMwAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZThkNThhOC1lMTk3LTQxNzktYjczYy02MDhlMDQ3ZDA5YTMvMC8wNEQzRDJFMDYw MjQzQUQ5MTdENEY2ODI5MjJFNEE4MDVFREUzMzAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1RURF MzMwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRT8MA0GCSqG SIb3DQEBCwUAA4IBAQANY5KD34GyYq5BI8HJiaYAVd+a53BYYeQXMyEYIrORdK0z jg+PO4xT0/gz4WbfLx9zV5/oF/9bpHE045AhVQ/cUHumxeCg3QRh2T/XJjG5kzQg KR4A0iD7lxhpvMmjiRLyN7o/cUGP8g6ZNFmertulFni/Z71oAJBVkrsL7b7DAaJ3 qN7flX7ZaCezvRX5OFak/aDW/cE5L4Qwd+MTpqlWNz+K5IrFt9Hxv1BZDQh5ZO3p fsyLt2MSPF+ILlTUZONkwIwiz+LOnZthmKM184PegeTg9fx1Htf/4XamhikZbFIi 1KcIG75XOGJ4f4sB7iK1dUYpHNr43AQ0Mv9e8nlk -----END CERTIFICATE-----Generated at Fri Sep 27 14:21:40 2024 by rpki-client on console-fra.rpki-client.org