$ rpki-client -vvf repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa File: 3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: /J4qwElze/bQ2HOvKHKpbauyy3nIBEQmoLrnIDKLWb0= Subject key identifier: 3C:BF:8E:F8:17:44:B7:A7:5C:BD:52:AA:00:AA:A2:D4:4B:32:1A:6C Certificate issuer: /CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Certificate serial: 2B100168741C478093051272424FBCDCE1A4B889 Authority key identifier: 04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa Signing time: Thu 30 May 2024 09:23:38 +0000 ROA not before: Thu 30 May 2024 09:18:38 +0000 ROA not after: Thu 29 May 2025 09:23:38 +0000 asID: 138089 IP address blocks: 157.20.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:10:01:68:74:1c:47:80:93:05:12:72:42:4f:bc:dc:e1:a4:b8:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Validity Not Before: May 30 09:18:38 2024 GMT Not After : May 29 09:23:38 2025 GMT Subject: CN=3CBF8EF81744B7A75CBD52AA00AAA2D44B321A6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:12:21:e1:96:ce:5d:60:ad:30:9f:79:14:ba: 7a:4b:d3:e9:f0:48:d4:59:84:94:ee:bb:0b:6a:8f: c2:0b:b1:c1:2c:6d:c6:83:9a:b6:18:ab:3f:7f:eb: 87:36:f2:1b:c6:82:5f:36:7b:a0:19:00:98:1f:d5: 97:de:15:1b:31:82:6b:6f:b8:b1:ef:bb:b6:59:0c: 74:9b:d4:24:68:bb:5c:91:ba:bf:d7:20:af:ec:9e: c9:ba:88:12:a7:e3:f1:41:12:34:4f:ef:cb:a7:7e: 58:c7:a8:7b:13:d1:02:32:d0:63:78:82:92:7f:21: 8f:19:61:f3:75:3c:86:6b:0a:c7:12:58:97:54:46: 31:5f:b6:54:c2:d0:ed:1b:4b:4e:91:33:52:75:2a: d4:46:ed:3a:a3:34:06:ff:04:0a:63:78:ae:93:af: 6f:ed:76:21:45:d6:c7:a9:58:93:72:5e:92:44:08: 19:14:7a:a8:e7:d8:b0:63:11:09:c5:96:55:ff:88: f4:68:27:6d:74:47:cf:52:2b:b4:79:57:87:0f:81: 58:82:cc:3d:09:6b:6e:e0:d7:1d:96:10:52:99:50: 23:05:3a:dd:3e:36:72:ca:9c:07:75:e2:f3:f1:6c: 47:46:7c:1f:6b:62:db:34:7e:d1:cc:7b:d2:66:1a: b9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BF:8E:F8:17:44:B7:A7:5C:BD:52:AA:00:AA:A2:D4:4B:32:1A:6C X509v3 Authority Key Identifier: keyid:04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.253.0/24 Signature Algorithm: sha256WithRSAEncryption 17:4d:f5:e8:7a:02:83:20:4f:5f:52:05:3a:95:92:7b:a7:b1: b9:65:e0:e1:f4:e7:70:9b:d7:cf:48:af:d3:d8:70:82:8c:39: e6:60:ab:8d:f1:c6:bc:55:a4:6c:1a:89:9f:d0:05:13:54:b2: 1f:6e:e9:ad:22:da:5e:f1:f5:64:bb:2b:4d:c9:54:e8:74:c9: 85:9f:0b:36:50:2f:7a:b8:f0:7e:09:48:84:b5:bb:d6:bd:c1: 17:1c:9f:46:30:77:b9:b2:0c:be:6f:2c:fc:ae:51:f5:43:a7: a9:87:eb:6f:0b:b4:b5:0a:b9:ab:7c:f7:dd:29:46:e0:8e:65: f6:69:cc:bb:0f:02:62:51:45:cd:95:1b:be:36:e4:30:52:51: 20:2b:05:6f:56:71:c5:83:29:11:91:72:15:0c:d5:e3:f6:1f: fb:ba:ad:02:e5:66:5f:8a:e0:c3:82:0e:8a:60:b4:6d:8f:79: 97:b3:64:ce:34:71:80:7f:87:78:a6:08:24:cc:7c:c8:37:66: 4b:3b:4b:01:16:3e:5c:de:12:2d:b5:21:96:0a:86:34:d4:10: f5:3f:d5:87:69:20:9d:a5:36:9d:1a:29:f6:ea:12:85:79:51: 19:5b:21:85:2a:00:9e:d0:4a:b3:da:3c:fa:ce:f6:6d:10:7b: 81:44:5e:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKxABaHQcR4CTBRJyQk+83OGkuIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1 RURFMzMwMDAeFw0yNDA1MzAwOTE4MzhaFw0yNTA1MjkwOTIzMzhaMDMxMTAvBgNV BAMTKDNDQkY4RUY4MTc0NEI3QTc1Q0JENTJBQTAwQUFBMkQ0NEIzMjFBNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdEiHhls5dYK0wn3kUunpL0+nw SNRZhJTuuwtqj8ILscEsbcaDmrYYqz9/64c28hvGgl82e6AZAJgf1ZfeFRsxgmtv uLHvu7ZZDHSb1CRou1yRur/XIK/snsm6iBKn4/FBEjRP78unfljHqHsT0QIy0GN4 gpJ/IY8ZYfN1PIZrCscSWJdURjFftlTC0O0bS06RM1J1KtRG7TqjNAb/BApjeK6T r2/tdiFF1sepWJNyXpJECBkUeqjn2LBjEQnFllX/iPRoJ210R89SK7R5V4cPgViC zD0Ja27g1x2WEFKZUCMFOt0+NnLKnAd14vPxbEdGfB9rYts0ftHMe9JmGrlBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPL+O+BdEt6dcvVKqAKqi1EsyGmwwHwYDVR0j BBgwFoAUBNPS4GAkOtkX1PaCki5KgF7eMwAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZThkNThhOC1lMTk3LTQxNzktYjczYy02MDhlMDQ3ZDA5YTMvMC8wNEQzRDJFMDYw MjQzQUQ5MTdENEY2ODI5MjJFNEE4MDVFREUzMzAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1RURF MzMwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRT9MA0GCSqG SIb3DQEBCwUAA4IBAQAXTfXoegKDIE9fUgU6lZJ7p7G5ZeDh9Odwm9fPSK/T2HCC jDnmYKuN8ca8VaRsGomf0AUTVLIfbumtItpe8fVkuytNyVTodMmFnws2UC96uPB+ CUiEtbvWvcEXHJ9GMHe5sgy+byz8rlH1Q6eph+tvC7S1CrmrfPfdKUbgjmX2acy7 DwJiUUXNlRu+NuQwUlEgKwVvVnHFgykRkXIVDNXj9h/7uq0C5WZfiuDDgg6KYLRt j3mXs2TONHGAf4d4pggkzHzIN2ZLO0sBFj5c3hIttSGWCoY01BD1P9WHaSCdpTad Gin26hKFeVEZWyGFKgCe0Eqz2jz6zvZtEHuBRF4Y -----END CERTIFICATE-----Generated at Fri Sep 27 14:21:40 2024 by rpki-client on console-fra.rpki-client.org