$ rpki-client -vvf repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa File: 3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa (raw, json) Hash identifier: YUfWeO4Zp71JGwLmW0ExOlIuGUiX5R5EB5q+WHM4Ews= Subject key identifier: 07:84:A9:47:97:05:23:84:34:5C:0E:3B:9A:38:39:5A:D0:43:F3:CD Certificate issuer: /CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Certificate serial: 5438E6C32A3FBD296E4C8A54A03BAE750F7CF6A4 Authority key identifier: C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa Signing time: Thu 03 Oct 2024 04:57:05 +0000 ROA not before: Thu 03 Oct 2024 04:52:05 +0000 ROA not after: Thu 02 Oct 2025 04:57:05 +0000 asID: 152429 IP address blocks: 157.20.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:38:e6:c3:2a:3f:bd:29:6e:4c:8a:54:a0:3b:ae:75:0f:7c:f6:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Validity Not Before: Oct 3 04:52:05 2024 GMT Not After : Oct 2 04:57:05 2025 GMT Subject: CN=0784A94797052384345C0E3B9A38395AD043F3CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:6c:77:27:2c:ec:92:69:ee:06:02:b4:93: 5e:d6:e3:49:79:6e:6a:f1:f9:7a:85:f2:19:1e:72: ae:a6:24:40:97:68:e0:1e:e5:98:33:0a:9c:ec:d9: 84:06:84:77:62:66:99:5d:79:9d:05:a4:38:ec:de: 17:87:35:47:30:ae:8b:2e:e0:ce:cd:ce:26:38:fa: 8b:52:ac:24:ff:49:cd:13:f3:2d:db:74:ec:18:aa: 4a:05:57:bf:b9:53:c3:33:32:98:90:52:7d:c8:05: 66:b8:0f:07:f7:24:7d:0f:1a:d1:be:44:02:1f:6f: b5:a0:97:06:af:10:7f:c7:9c:65:d2:6f:db:99:b3: b1:aa:da:dc:1d:b5:38:c8:d1:41:45:40:62:9e:2a: ca:f4:15:2f:4a:4f:aa:6f:bd:7b:d2:c0:0d:c9:a7: a3:8d:cb:62:25:ed:c2:df:02:96:bb:27:b0:33:7e: a8:ed:cf:6d:05:18:60:3f:02:d1:f4:03:9c:ab:42: d6:a2:fb:cc:f7:12:b4:07:c0:d9:28:18:a1:f0:5f: 23:35:c1:eb:d0:69:bf:1e:9f:37:a6:98:5a:e2:6c: 4f:cc:1f:9b:cb:5d:ba:fc:31:e0:ce:6a:38:5b:10: 6e:01:67:c9:54:59:92:46:7e:30:7d:fc:b6:bb:10: a0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:84:A9:47:97:05:23:84:34:5C:0E:3B:9A:38:39:5A:D0:43:F3:CD X509v3 Authority Key Identifier: keyid:C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.238.0/24 Signature Algorithm: sha256WithRSAEncryption 84:37:b1:86:65:1c:d1:c1:a1:5a:bf:f4:35:ac:ad:d0:e7:9d: d7:40:c5:05:f4:bc:b9:ad:e0:55:45:74:99:51:eb:1e:ed:9d: 96:65:24:7f:6d:f6:b2:50:bd:ff:8f:1b:e6:a2:b6:85:fd:73: 0a:3f:02:75:1f:26:1f:90:48:72:4a:da:f1:da:a0:77:42:c2: 6a:9f:e7:3a:3a:05:7c:fd:73:91:56:bc:f8:7a:27:2c:0d:ac: ba:a9:8a:46:49:15:2c:66:02:53:77:00:3f:d5:f0:c4:d3:31: 4f:a0:d3:d1:fc:dd:2a:38:50:5f:b7:ba:cc:2f:c0:29:fd:39: 63:94:ec:94:18:9e:6e:d0:cc:48:05:57:1d:de:4d:d8:36:18: 91:a9:df:18:90:5f:3c:c7:63:9c:5c:ca:72:1d:9e:cb:33:9d: d7:c8:cb:29:71:52:f1:44:34:52:2c:33:00:50:15:8e:19:a0: a6:90:ef:a2:9b:a0:77:32:76:c0:d7:bf:98:5e:15:d3:20:49: c3:03:ee:6e:1b:1d:ae:39:4d:6c:dc:21:7d:42:b2:99:b2:a1: fb:ed:80:ad:af:d7:fe:2c:23:ff:9f:dc:0e:ba:e3:12:08:62: 6f:43:43:c5:03:e4:68:fc:54:2b:30:a4:08:5e:e9:3a:d8:73: 91:99:f2:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVDjmwyo/vSluTIpUoDuudQ989qQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5 MjcwRkQyQTAeFw0yNDEwMDMwNDUyMDVaFw0yNTEwMDIwNDU3MDVaMDMxMTAvBgNV BAMTKDA3ODRBOTQ3OTcwNTIzODQzNDVDMEUzQjlBMzgzOTVBRDA0M0YzQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxGx3JyzskmnuBgK0k17W40l5 bmrx+XqF8hkecq6mJECXaOAe5ZgzCpzs2YQGhHdiZpldeZ0FpDjs3heHNUcwrosu 4M7NziY4+otSrCT/Sc0T8y3bdOwYqkoFV7+5U8MzMpiQUn3IBWa4Dwf3JH0PGtG+ RAIfb7WglwavEH/HnGXSb9uZs7Gq2twdtTjI0UFFQGKeKsr0FS9KT6pvvXvSwA3J p6ONy2Il7cLfApa7J7Azfqjtz20FGGA/AtH0A5yrQtai+8z3ErQHwNkoGKHwXyM1 wevQab8enzemmFribE/MH5vLXbr8MeDOajhbEG4BZ8lUWZJGfjB9/La7EKARAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB4SpR5cFI4Q0XA47mjg5WtBD880wHwYDVR0j BBgwFoAUx4OUJ/RMjtiebCcg8ZzPJ5Jw/SowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OGQxYzQ0OS05NzhjLTQ4NDUtYjgyMy1iNTkyNWE5MDU0MjcvMC9DNzgzOTQyN0Y0 NEM4RUQ4OUU2QzI3MjBGMTlDQ0YyNzkyNzBGRDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5Mjcw RkQyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTuMA0GCSqG SIb3DQEBCwUAA4IBAQCEN7GGZRzRwaFav/Q1rK3Q553XQMUF9Ly5reBVRXSZUese 7Z2WZSR/bfayUL3/jxvmoraF/XMKPwJ1HyYfkEhyStrx2qB3QsJqn+c6OgV8/XOR Vrz4eicsDay6qYpGSRUsZgJTdwA/1fDE0zFPoNPR/N0qOFBft7rML8Ap/TljlOyU GJ5u0MxIBVcd3k3YNhiRqd8YkF88x2OcXMpyHZ7LM53XyMspcVLxRDRSLDMAUBWO GaCmkO+im6B3MnbA17+YXhXTIEnDA+5uGx2uOU1s3CF9QrKZsqH77YCtr9f+LCP/ n9wOuuMSCGJvQ0PFA+Ro/FQrMKQIXuk62HORmfKg -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org