$ rpki-client -vvf repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa File: 3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa (raw, json) Hash identifier: 47XUtIsbPhvEMu3eZ7qPRDeVpw2v8OOWFwMXf8PZG1I= Subject key identifier: E8:7D:1F:54:40:6A:00:A1:D4:E0:5A:67:BF:13:5D:8A:5C:23:FC:92 Certificate issuer: /CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Certificate serial: 058D0E5C9EA5A8CEF6367643E9AE00B920105DEC Authority key identifier: C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa Signing time: Sat 21 Dec 2024 10:50:17 +0000 ROA not before: Sat 21 Dec 2024 10:45:17 +0000 ROA not after: Sat 20 Dec 2025 10:50:17 +0000 asID: 152429 IP address blocks: 157.20.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 15:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:8d:0e:5c:9e:a5:a8:ce:f6:36:76:43:e9:ae:00:b9:20:10:5d:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Validity Not Before: Dec 21 10:45:17 2024 GMT Not After : Dec 20 10:50:17 2025 GMT Subject: CN=E87D1F54406A00A1D4E05A67BF135D8A5C23FC92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:83:65:30:1a:7f:68:56:d2:b5:4b:6c:74:74: 81:5a:fd:35:94:f4:c2:9c:04:be:56:23:38:7d:8a: 78:7f:8d:6b:8d:7b:e4:99:eb:55:7d:e3:4f:fe:4f: 44:b4:c1:a9:49:9f:0c:ae:66:4c:4a:be:3b:3f:65: 97:0b:30:5b:82:64:2a:8d:aa:77:1b:75:1b:c0:44: a0:de:fb:98:9e:19:e6:39:a8:2a:a9:11:2b:77:38: cc:9c:c5:8b:26:15:48:f8:8c:7b:13:35:59:8a:65: 21:5b:7a:4d:da:cf:03:84:0f:44:ec:3b:97:e7:b7: 54:6f:e4:1a:e0:62:a8:a3:31:19:26:f6:f8:e4:72: 94:a5:7d:d5:5c:7a:9c:f6:d7:7b:9c:25:6d:0d:38: 4f:4f:7a:f9:55:c5:95:66:17:ea:35:1f:c5:5a:df: 6a:e1:5f:75:40:c6:ae:24:57:5b:f6:7e:11:11:80: 66:59:d5:6a:c6:54:27:3d:d7:35:a8:e0:88:c5:ee: f3:10:39:ff:dd:c3:e6:bb:a4:96:49:17:ad:01:77: b2:9f:86:58:ad:c4:5f:5e:1a:20:d1:00:bd:e7:01: 0c:a3:f1:80:52:e9:64:68:26:13:8e:8d:4b:3e:80: 7a:a6:03:c6:bb:90:bb:9a:86:9b:86:cd:0f:15:fb: 2d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7D:1F:54:40:6A:00:A1:D4:E0:5A:67:BF:13:5D:8A:5C:23:FC:92 X509v3 Authority Key Identifier: keyid:C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.238.0/23 Signature Algorithm: sha256WithRSAEncryption c0:76:44:63:2b:97:8b:86:aa:aa:aa:74:0f:b8:e4:1a:60:f7: b9:16:ac:64:67:32:ad:08:11:32:27:f3:f2:04:71:96:20:d9: 25:ad:6c:0d:2d:cd:01:87:cc:74:1a:44:69:7d:04:a2:95:50: 23:9f:16:07:d7:49:4f:4a:3c:5f:21:6e:e9:95:de:c7:6f:36: 1a:14:07:b6:dc:e0:13:eb:10:93:cb:3f:88:7f:16:17:07:b8: 17:73:d5:b5:dd:15:f5:a7:52:d6:c1:7e:ed:45:8a:26:27:ce: 9a:bc:72:56:bb:61:4e:59:75:68:a2:ae:ed:75:9e:ad:d2:1f: 59:4f:f3:38:e1:0c:d0:50:66:05:84:d8:54:4e:24:28:67:4e: eb:4b:19:1d:99:ad:d9:f9:85:dc:4b:fe:a9:c6:16:2f:16:a6: 30:2d:eb:a2:dd:88:7b:36:0f:66:ff:f6:a9:12:b1:b9:ac:2c: d6:43:50:89:08:84:56:b3:08:d0:66:61:14:2d:d3:7b:b4:29: 1e:66:08:cd:3f:2b:bf:28:89:60:2f:93:6b:56:cf:32:84:ee: f6:44:72:fd:b2:b5:58:39:19:e5:af:5c:21:61:f4:78:34:80: 32:0b:5f:7b:d0:d5:15:8a:2e:d7:b3:3c:1a:ff:cd:c4:ed:49: bd:84:43:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBY0OXJ6lqM72NnZD6a4AuSAQXewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5 MjcwRkQyQTAeFw0yNDEyMjExMDQ1MTdaFw0yNTEyMjAxMDUwMTdaMDMxMTAvBgNV BAMTKEU4N0QxRjU0NDA2QTAwQTFENEUwNUE2N0JGMTM1RDhBNUMyM0ZDOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBg2UwGn9oVtK1S2x0dIFa/TWU 9MKcBL5WIzh9inh/jWuNe+SZ61V940/+T0S0walJnwyuZkxKvjs/ZZcLMFuCZCqN qncbdRvARKDe+5ieGeY5qCqpESt3OMycxYsmFUj4jHsTNVmKZSFbek3azwOED0Ts O5fnt1Rv5BrgYqijMRkm9vjkcpSlfdVcepz213ucJW0NOE9PevlVxZVmF+o1H8Va 32rhX3VAxq4kV1v2fhERgGZZ1WrGVCc91zWo4IjF7vMQOf/dw+a7pJZJF60Bd7Kf hlitxF9eGiDRAL3nAQyj8YBS6WRoJhOOjUs+gHqmA8a7kLuahpuGzQ8V+y3lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6H0fVEBqAKHU4FpnvxNdilwj/JIwHwYDVR0j BBgwFoAUx4OUJ/RMjtiebCcg8ZzPJ5Jw/SowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OGQxYzQ0OS05NzhjLTQ4NDUtYjgyMy1iNTkyNWE5MDU0MjcvMC9DNzgzOTQyN0Y0 NEM4RUQ4OUU2QzI3MjBGMTlDQ0YyNzkyNzBGRDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5Mjcw RkQyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTuMA0GCSqG SIb3DQEBCwUAA4IBAQDAdkRjK5eLhqqqqnQPuOQaYPe5FqxkZzKtCBEyJ/PyBHGW INklrWwNLc0Bh8x0GkRpfQSilVAjnxYH10lPSjxfIW7pld7HbzYaFAe23OAT6xCT yz+IfxYXB7gXc9W13RX1p1LWwX7tRYomJ86avHJWu2FOWXVooq7tdZ6t0h9ZT/M4 4QzQUGYFhNhUTiQoZ07rSxkdma3Z+YXcS/6pxhYvFqYwLeui3Yh7Ng9m//apErG5 rCzWQ1CJCIRWswjQZmEULdN7tCkeZgjNPyu/KIlgL5NrVs8yhO72RHL9srVYORnl r1whYfR4NIAyC1970NUVii7Xszwa/83E7Um9hEMu -----END CERTIFICATE-----Generated at Wed Feb 19 22:21:22 2025 by rpki-client