$ rpki-client -vvf repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa File: 3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa (raw, json) Hash identifier: +vgEkqNs4IZ18TGSuIZbEqxX1A4966mLzeBSJvGF+d0= Subject key identifier: 24:2E:30:90:B2:EC:26:02:FD:0D:83:0E:2D:A0:53:68:10:B9:C4:E6 Certificate issuer: /CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Certificate serial: 63C80EE738DB5A945975BB42B43ABE862B82BA82 Authority key identifier: C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa Signing time: Thu 03 Oct 2024 04:57:41 +0000 ROA not before: Thu 03 Oct 2024 04:52:41 +0000 ROA not after: Thu 02 Oct 2025 04:57:41 +0000 asID: 152429 IP address blocks: 157.20.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c8:0e:e7:38:db:5a:94:59:75:bb:42:b4:3a:be:86:2b:82:ba:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Validity Not Before: Oct 3 04:52:41 2024 GMT Not After : Oct 2 04:57:41 2025 GMT Subject: CN=242E3090B2EC2602FD0D830E2DA0536810B9C4E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:08:51:fc:e5:d5:df:72:1c:fa:c3:ed:04:ea: c9:4b:15:08:41:e9:25:66:b9:23:ef:d7:5a:e9:92: 49:12:16:67:df:e7:2c:d3:25:1a:0e:d3:88:98:dd: ab:1f:13:48:3a:52:3c:bc:0a:b7:5f:41:8b:ff:34: ce:bc:2e:3b:06:da:a6:4e:d9:36:da:34:41:8f:d3: ff:0b:e1:35:a0:fd:74:dc:ed:33:6f:eb:dd:10:98: b8:4c:58:da:ad:9b:00:f7:37:53:17:fe:6a:24:60: b8:b4:34:fd:ac:43:d9:41:e7:2d:ef:80:59:15:99: 33:96:21:d3:5a:86:2d:5d:f2:95:5f:1e:47:fe:93: 70:74:37:89:02:89:76:ad:ae:5d:89:e8:28:52:e6: 2e:9b:f9:08:d1:c9:72:2e:73:ff:2a:1b:57:19:74: d2:4e:1d:c6:e4:3c:d0:94:8a:e6:94:01:24:96:35: 11:19:10:5b:4e:6f:90:9c:33:b8:f0:cb:0d:ef:5d: ab:15:2a:9e:fd:64:8e:93:e7:26:ca:38:90:8a:e9: 9a:1d:aa:d3:a2:51:09:83:78:a7:3c:ad:5c:a7:4c: 96:97:be:98:13:7b:34:b0:f9:9d:25:fe:c1:f4:28: 29:d1:73:5e:eb:94:15:50:09:ac:38:74:44:0a:69: e6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2E:30:90:B2:EC:26:02:FD:0D:83:0E:2D:A0:53:68:10:B9:C4:E6 X509v3 Authority Key Identifier: keyid:C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.239.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:8b:fb:09:44:8a:d5:02:2a:e9:d7:37:f1:e0:b5:db:93:f0: bd:63:d0:d5:00:b3:fe:ad:a8:75:bd:7a:b3:eb:f5:e2:aa:67: f7:76:fd:fe:e9:bb:f7:ba:6b:fc:c3:0d:78:47:fa:49:72:54: 0d:13:f8:64:3d:b2:56:52:0b:ce:1a:37:74:40:6e:00:ed:3d: e8:ca:1a:70:f2:e1:f1:b9:c9:62:38:0a:ff:51:10:18:24:6d: d7:a3:a1:31:47:44:c2:5f:ac:27:f2:f4:b9:75:fa:0c:03:f7: 0f:cb:af:6a:c1:5e:59:5b:6a:3b:35:de:bd:bc:22:b4:62:c2: ab:96:5e:8c:a4:31:db:03:85:74:7c:c4:84:85:e2:82:62:48: bb:d7:9b:57:67:72:31:cb:d0:15:87:31:35:e8:a3:a5:12:b3: 6d:4d:e7:51:5e:a0:89:88:16:ce:e2:7a:93:c0:23:36:d4:b4: fd:f4:24:44:98:9b:3f:46:3c:93:e7:94:7a:18:03:9b:1e:46: 69:08:8a:4a:e9:e0:60:94:91:b9:57:7a:56:b3:90:7f:c2:b9: 2e:7e:63:d6:66:d5:59:7d:64:fe:ca:4a:94:cb:c9:22:04:85: f4:8d:19:18:d4:3e:ea:ff:cc:85:d0:30:b5:74:25:fa:ee:76: 70:29:11:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY8gO5zjbWpRZdbtCtDq+hiuCuoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5 MjcwRkQyQTAeFw0yNDEwMDMwNDUyNDFaFw0yNTEwMDIwNDU3NDFaMDMxMTAvBgNV BAMTKDI0MkUzMDkwQjJFQzI2MDJGRDBEODMwRTJEQTA1MzY4MTBCOUM0RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRCFH85dXfchz6w+0E6slLFQhB 6SVmuSPv11rpkkkSFmff5yzTJRoO04iY3asfE0g6Ujy8CrdfQYv/NM68LjsG2qZO 2TbaNEGP0/8L4TWg/XTc7TNv690QmLhMWNqtmwD3N1MX/mokYLi0NP2sQ9lB5y3v gFkVmTOWIdNahi1d8pVfHkf+k3B0N4kCiXatrl2J6ChS5i6b+QjRyXIuc/8qG1cZ dNJOHcbkPNCUiuaUASSWNREZEFtOb5CcM7jwyw3vXasVKp79ZI6T5ybKOJCK6Zod qtOiUQmDeKc8rVynTJaXvpgTezSw+Z0l/sH0KCnRc17rlBVQCaw4dEQKaeYBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJC4wkLLsJgL9DYMOLaBTaBC5xOYwHwYDVR0j BBgwFoAUx4OUJ/RMjtiebCcg8ZzPJ5Jw/SowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OGQxYzQ0OS05NzhjLTQ4NDUtYjgyMy1iNTkyNWE5MDU0MjcvMC9DNzgzOTQyN0Y0 NEM4RUQ4OUU2QzI3MjBGMTlDQ0YyNzkyNzBGRDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5Mjcw RkQyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTvMA0GCSqG SIb3DQEBCwUAA4IBAQBci/sJRIrVAirp1zfx4LXbk/C9Y9DVALP+rah1vXqz6/Xi qmf3dv3+6bv3umv8ww14R/pJclQNE/hkPbJWUgvOGjd0QG4A7T3oyhpw8uHxucli OAr/URAYJG3Xo6ExR0TCX6wn8vS5dfoMA/cPy69qwV5ZW2o7Nd69vCK0YsKrll6M pDHbA4V0fMSEheKCYki715tXZ3Ixy9AVhzE16KOlErNtTedRXqCJiBbO4nqTwCM2 1LT99CREmJs/RjyT55R6GAObHkZpCIpK6eBglJG5V3pWs5B/wrkufmPWZtVZfWT+ ykqUy8kiBIX0jRkY1D7q/8yF0DC1dCX67nZwKRHm -----END CERTIFICATE-----Generated at Tue Nov 26 02:25:08 2024 by rpki-client on console-ams.rpki-client.org