$ rpki-client -vvf repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa File: 3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa (raw, json) Hash identifier: /YZ7UPzqRWOqNORMwAU0aktuCWK1Mc/z4bxWTdpgapg= Subject key identifier: 71:E0:77:42:0E:EF:36:30:1E:87:06:74:BB:F7:2F:AF:8A:CB:52:2F Certificate issuer: /CN=41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4 Certificate serial: 6C17C7D89BCDD6F8978404D332E7B6FD9E7211CB Authority key identifier: 41:A4:79:AD:6B:97:4B:50:B9:9A:0D:FC:BE:24:FF:8A:AC:44:18:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa Signing time: Thu 21 Mar 2024 13:48:01 +0000 ROA not before: Thu 21 Mar 2024 13:43:01 +0000 ROA not after: Thu 20 Mar 2025 13:48:01 +0000 asID: 152426 IP address blocks: 157.20.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.crl rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:17:c7:d8:9b:cd:d6:f8:97:84:04:d3:32:e7:b6:fd:9e:72:11:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4 Validity Not Before: Mar 21 13:43:01 2024 GMT Not After : Mar 20 13:48:01 2025 GMT Subject: CN=71E077420EEF36301E870674BBF72FAF8ACB522F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3f:dd:14:da:66:80:6a:f5:82:c1:42:7f:55: 82:22:c5:cb:c9:a9:40:4d:b6:6a:be:bf:56:cf:5c: 4f:3f:4d:e6:38:c6:29:37:1c:08:90:7d:c8:28:c8: 87:fe:a7:c2:ef:61:46:61:e1:9f:31:20:d0:13:58: a8:34:e3:8d:d7:84:19:66:3f:91:be:0a:ae:e0:84: 29:54:71:59:3f:c5:bb:7d:92:f4:8d:35:3d:99:0b: f0:99:06:8b:c4:b2:b6:d8:25:9a:56:11:b0:84:15: 06:e5:3e:c0:cc:52:c6:94:a3:88:42:3c:5a:24:9a: a1:c6:2b:c5:2e:ab:c9:29:60:70:2e:48:7f:d4:48: e0:2e:62:74:a3:c0:93:ca:b7:9b:d3:10:8e:71:91: 8e:9d:1b:d6:35:77:82:70:76:03:5e:ce:47:2c:23: d8:cc:e7:4e:f5:5b:11:d0:87:af:9e:b4:fb:c1:39: dc:66:8d:80:fc:25:8f:11:58:8b:8f:46:60:8d:6a: 3b:d3:f4:d1:12:4e:51:19:63:eb:08:8f:28:00:0e: cd:60:47:03:c2:da:ed:87:8a:d1:39:b2:49:80:f4: f9:10:4b:f1:80:1d:07:85:bc:64:4f:ce:3f:b9:43: 3b:0d:d5:57:60:2a:6c:50:4a:be:bb:d8:84:7f:ef: 6e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E0:77:42:0E:EF:36:30:1E:87:06:74:BB:F7:2F:AF:8A:CB:52:2F X509v3 Authority Key Identifier: keyid:41:A4:79:AD:6B:97:4B:50:B9:9A:0D:FC:BE:24:FF:8A:AC:44:18:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.220.0/23 Signature Algorithm: sha256WithRSAEncryption 86:90:52:6c:e1:7c:e8:bc:4d:2a:e1:49:b7:47:55:a8:ea:22: 96:fc:8a:8e:a7:8a:12:fc:78:94:d8:fa:7e:c4:38:15:7e:88: c6:57:a8:c4:db:ad:bd:46:cd:de:23:cd:31:3a:5b:62:77:b8: 35:b8:9d:7b:a0:37:70:fc:02:7d:7a:c5:a3:35:2e:80:0e:c9: c3:57:94:78:d5:e5:c7:8b:ba:0e:eb:7d:57:e7:2b:7d:3f:d6: c4:42:85:12:cf:d7:87:15:01:e3:36:18:c2:4c:a4:09:4c:dd: 8b:fd:5a:78:05:c7:7a:bf:28:08:e6:aa:70:81:71:51:b9:49: 81:e0:7a:e6:cc:15:24:41:72:6e:19:54:de:c0:59:32:c7:22: 55:fb:e4:ca:41:16:60:e7:5a:43:1a:2c:d7:92:27:ee:21:57: 39:bc:bd:fa:38:7e:28:e8:48:71:12:5e:0d:88:10:5a:d8:d6: 17:69:7d:c4:ca:2d:f3:b9:d6:2d:65:fe:f6:2d:1a:d7:ea:e0: f5:01:5d:76:c2:d1:89:02:05:15:77:85:c1:2b:a1:46:27:0d: fe:32:66:d7:ab:f8:4d:24:9c:cd:f3:41:a6:58:ba:cb:12:e8: 3d:6f:45:1a:b8:a8:64:ba:11:97:d9:2f:7f:76:47:d8:61:db: a9:6d:34:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbBfH2JvN1viXhATTMue2/Z5yEcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFBNDc5QUQ2Qjk3NEI1MEI5OUEwREZDQkUyNEZGOEFB QzQ0MThENDAeFw0yNDAzMjExMzQzMDFaFw0yNTAzMjAxMzQ4MDFaMDMxMTAvBgNV BAMTKDcxRTA3NzQyMEVFRjM2MzAxRTg3MDY3NEJCRjcyRkFGOEFDQjUyMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEP90U2maAavWCwUJ/VYIixcvJ qUBNtmq+v1bPXE8/TeY4xik3HAiQfcgoyIf+p8LvYUZh4Z8xINATWKg0443XhBlm P5G+Cq7ghClUcVk/xbt9kvSNNT2ZC/CZBovEsrbYJZpWEbCEFQblPsDMUsaUo4hC PFokmqHGK8Uuq8kpYHAuSH/USOAuYnSjwJPKt5vTEI5xkY6dG9Y1d4JwdgNezkcs I9jM5071WxHQh6+etPvBOdxmjYD8JY8RWIuPRmCNajvT9NESTlEZY+sIjygADs1g RwPC2u2HitE5skmA9PkQS/GAHQeFvGRPzj+5QzsN1VdgKmxQSr672IR/724nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUceB3Qg7vNjAehwZ0u/cvr4rLUi8wHwYDVR0j BBgwFoAUQaR5rWuXS1C5mg38viT/iqxEGNQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWRkNGNjYi00MmUzLTRiNzItOTE5My1lOTE4ZTdiMzA2N2QvMC80MUE0NzlBRDZC OTc0QjUwQjk5QTBERkNCRTI0RkY4QUFDNDQxOEQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDFBNDc5QUQ2Qjk3NEI1MEI5OUEwREZDQkUyNEZGOEFBQzQ0 MThENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlZGQ0Y2NiLTQyZTMtNGI3Mi05 MTkzLWU5MThlN2IzMDY3ZC8wLzMxMzUzNzJlMzIzMDJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTcMA0GCSqG SIb3DQEBCwUAA4IBAQCGkFJs4XzovE0q4Um3R1Wo6iKW/IqOp4oS/HiU2Pp+xDgV fojGV6jE2629Rs3eI80xOltid7g1uJ17oDdw/AJ9esWjNS6ADsnDV5R41eXHi7oO 631X5yt9P9bEQoUSz9eHFQHjNhjCTKQJTN2L/Vp4Bcd6vygI5qpwgXFRuUmB4Hrm zBUkQXJuGVTewFkyxyJV++TKQRZg51pDGizXkifuIVc5vL36OH4o6EhxEl4NiBBa 2NYXaX3Eyi3zudYtZf72LRrX6uD1AV12wtGJAgUVd4XBK6FGJw3+MmbXq/hNJJzN 80GmWLrLEug9b0UauKhkuhGX2S9/dkfYYdupbTR4 -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org