$ rpki-client -vvf repo-rpki.idnic.net/repo/1d755347-6b1c-42c1-9f54-d7eab22e182c/0/3135372e36362e35362e302f32342d3234203d3e203538343737.roa File: 3135372e36362e35362e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: mNyigsx6fiPTgdjz6nFdMMBq/cl8SacZCUjTw8QheXg= Subject key identifier: 23:F9:29:E9:8A:2A:BC:FA:0B:22:58:09:BF:05:91:AC:11:A3:9E:EE Certificate issuer: /CN=5131743F5E95BB0AD5AE61B0BDC1884C1021B476 Certificate serial: 205F0F5D997580360C7B1FB8D3712F9B635D1CB0 Authority key identifier: 51:31:74:3F:5E:95:BB:0A:D5:AE:61:B0:BD:C1:88:4C:10:21:B4:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5131743F5E95BB0AD5AE61B0BDC1884C1021B476.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d755347-6b1c-42c1-9f54-d7eab22e182c/0/3135372e36362e35362e302f32342d3234203d3e203538343737.roa Signing time: Tue 27 Aug 2024 08:09:57 +0000 ROA not before: Tue 27 Aug 2024 08:04:57 +0000 ROA not after: Tue 26 Aug 2025 08:09:57 +0000 asID: 58477 IP address blocks: 157.66.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d755347-6b1c-42c1-9f54-d7eab22e182c/0/5131743F5E95BB0AD5AE61B0BDC1884C1021B476.crl rsync://repo-rpki.idnic.net/repo/1d755347-6b1c-42c1-9f54-d7eab22e182c/0/5131743F5E95BB0AD5AE61B0BDC1884C1021B476.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5131743F5E95BB0AD5AE61B0BDC1884C1021B476.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 09:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5f:0f:5d:99:75:80:36:0c:7b:1f:b8:d3:71:2f:9b:63:5d:1c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5131743F5E95BB0AD5AE61B0BDC1884C1021B476 Validity Not Before: Aug 27 08:04:57 2024 GMT Not After : Aug 26 08:09:57 2025 GMT Subject: CN=23F929E98A2ABCFA0B225809BF0591AC11A39EEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:59:b3:f6:97:ed:71:35:8d:ac:5d:60:a1:77: ac:5f:cd:de:53:7d:f4:4e:68:b7:5a:23:ea:e3:74: b6:bc:f3:0f:45:74:35:d8:d9:5e:cf:db:86:e3:72: 21:56:0d:fa:16:bb:7a:c0:7b:10:49:b3:c3:53:05: 38:52:fc:6d:95:fd:ac:37:50:84:12:b4:2e:8c:51: 57:24:eb:d5:64:79:c6:de:36:77:13:82:77:8e:7a: 03:31:b0:77:1a:23:ba:97:af:61:f8:2d:5d:3f:5c: a2:10:fb:75:f7:a3:26:42:34:af:6f:f8:2a:bd:43: 5c:ef:27:4a:97:8c:21:13:f7:8b:40:96:b3:f2:b4: e9:a2:92:e3:f0:13:87:52:cc:e2:9c:01:97:a2:ff: ee:e8:0f:d2:e7:26:16:21:6a:1a:aa:bc:c4:17:37: 71:06:4d:16:4d:5c:b7:c9:4d:b1:68:5f:67:fc:1d: 51:71:f1:4b:f1:7d:0e:0f:a4:5c:c2:86:96:44:e5: 7b:e0:e2:2a:6e:31:c1:a5:fd:9f:76:d6:0e:0e:f0: 24:58:90:f5:26:57:be:e9:c3:e0:d0:68:b1:42:d3: e6:e0:06:50:fd:28:5c:c7:37:cf:cc:99:fa:e3:5a: d2:11:08:bd:f8:cd:66:1c:c7:9d:c0:be:ca:8d:62: fc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F9:29:E9:8A:2A:BC:FA:0B:22:58:09:BF:05:91:AC:11:A3:9E:EE X509v3 Authority Key Identifier: keyid:51:31:74:3F:5E:95:BB:0A:D5:AE:61:B0:BD:C1:88:4C:10:21:B4:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d755347-6b1c-42c1-9f54-d7eab22e182c/0/5131743F5E95BB0AD5AE61B0BDC1884C1021B476.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5131743F5E95BB0AD5AE61B0BDC1884C1021B476.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d755347-6b1c-42c1-9f54-d7eab22e182c/0/3135372e36362e35362e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.56.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:78:52:62:44:64:98:a4:a4:cb:c3:5d:e4:75:20:e0:3c:e3: 5f:49:db:cc:b5:79:18:ed:f4:01:7a:9f:bc:2d:dc:8a:ab:58: ea:07:32:a6:e0:05:d6:54:13:6c:07:25:a5:89:31:84:fe:af: c1:46:4d:26:a7:17:2a:a1:cc:83:9a:83:3a:09:3a:74:22:58: 71:10:d0:e9:8b:ad:e5:1f:ea:6c:72:98:2f:1d:75:77:b2:3f: e2:36:d1:be:9f:f9:02:95:b3:a0:54:cb:3f:6e:4c:4c:d2:6b: 64:09:94:e4:77:1c:06:de:ec:73:92:c5:7a:40:2e:c0:ad:6c: 32:44:80:51:34:cb:f8:2c:10:72:b8:cd:35:c3:10:13:f8:75: be:90:c5:19:fd:24:4e:45:65:83:2b:c0:e1:2b:ad:b8:0e:3f: bb:24:d4:dd:76:6f:6a:73:17:da:44:d7:42:11:d6:db:e5:a5: a1:8f:22:a5:82:df:31:44:07:a0:83:cd:3f:17:8b:a6:ca:c3: 8f:aa:44:97:28:f2:ad:c9:e4:43:7a:74:b2:65:6a:5f:da:47: a3:60:84:80:df:34:1f:11:a4:72:fa:ff:0d:35:e0:e4:dc:d2: ce:e8:1f:a4:d8:87:14:3c:e9:90:23:0b:4f:04:c9:1b:4c:77: 2d:f1:5f:3f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIF8PXZl1gDYMex+403Evm2NdHLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEzMTc0M0Y1RTk1QkIwQUQ1QUU2MUIwQkRDMTg4NEMx MDIxQjQ3NjAeFw0yNDA4MjcwODA0NTdaFw0yNTA4MjYwODA5NTdaMDMxMTAvBgNV BAMTKDIzRjkyOUU5OEEyQUJDRkEwQjIyNTgwOUJGMDU5MUFDMTFBMzlFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUWbP2l+1xNY2sXWChd6xfzd5T ffROaLdaI+rjdLa88w9FdDXY2V7P24bjciFWDfoWu3rAexBJs8NTBThS/G2V/aw3 UIQStC6MUVck69VkecbeNncTgneOegMxsHcaI7qXr2H4LV0/XKIQ+3X3oyZCNK9v +Cq9Q1zvJ0qXjCET94tAlrPytOmikuPwE4dSzOKcAZei/+7oD9LnJhYhahqqvMQX N3EGTRZNXLfJTbFoX2f8HVFx8UvxfQ4PpFzChpZE5Xvg4ipuMcGl/Z921g4O8CRY kPUmV77pw+DQaLFC0+bgBlD9KFzHN8/MmfrjWtIRCL34zWYcx53AvsqNYvzNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUI/kp6YoqvPoLIlgJvwWRrBGjnu4wHwYDVR0j BBgwFoAUUTF0P16VuwrVrmGwvcGITBAhtHYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDc1NTM0Ny02YjFjLTQyYzEtOWY1NC1kN2VhYjIyZTE4MmMvMC81MTMxNzQzRjVF OTVCQjBBRDVBRTYxQjBCREMxODg0QzEwMjFCNDc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTEzMTc0M0Y1RTk1QkIwQUQ1QUU2MUIwQkRDMTg4NEMxMDIx QjQ3Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkNzU1MzQ3LTZiMWMtNDJjMS05 ZjU0LWQ3ZWFiMjJlMTgyYy8wLzMxMzUzNzJlMzYzNjJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQjgwDQYJKoZIhvcN AQELBQADggEBAIp4UmJEZJikpMvDXeR1IOA8419J28y1eRjt9AF6n7wt3IqrWOoH MqbgBdZUE2wHJaWJMYT+r8FGTSanFyqhzIOagzoJOnQiWHEQ0OmLreUf6mxymC8d dXeyP+I20b6f+QKVs6BUyz9uTEzSa2QJlOR3HAbe7HOSxXpALsCtbDJEgFE0y/gs EHK4zTXDEBP4db6QxRn9JE5FZYMrwOErrbgOP7sk1N12b2pzF9pE10IR1tvlpaGP IqWC3zFEB6CDzT8Xi6bKw4+qRJco8q3J5EN6dLJlal/aR6NghIDfNB8RpHL6/w01 4OTc0s7oH6TYhxQ86ZAjC08EyRtMdy3xXz8= -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:49 2025 by rpki-client